t.y1h1.com/visit/61e55f98081ec20007c7f606?exid=1701668831-emEOaG&srcTrafficSource=Redirect&srcCampaign=0_Redirect&type=Cloak
428 B URL t.y1h1.com/visit/61e55f98081ec20007c7f606?exid=1701668831-emEOaG&srcTrafficSource=Redirect&srcCampaign=0_Redirect&type=Cloak
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (428), with no line terminators
Hash b4ea1894507bac7cfb4d48f597886863
1b4ef3c1b9fca5ccc9b7e8472019ab0fe1fee62d
6f9a26519d856f485b1d57793a688e22f996a4929a42d68f35847f8dcd1fe4f8
GET /visit/61e55f98081ec20007c7f606?exid=1701668831-emEOaG&srcTrafficSource=Redirect&srcCampaign=0_Redirect&type=Cloak HTTP/1.1
Host: t.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:29 GMT
content-length: 428
refresh: 0;URL=https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
set-cookie: vid=1701668849-iCUmKP; Path=/; Domain=y1h1.com; Max-Age=604800; Expires=Mon, 11 Dec 2023 05:47:29 GMT; Secure; HttpOnly; SameSite=None
lv_61e55f98081ec20007c7f606=1701668849-iCUmKP; Path=/; Domain=y1h1.com; Max-Age=3600; Expires=Mon, 04 Dec 2023 06:47:29 GMT; Secure; HttpOnly; SameSite=None
vn_61e55f98081ec20007c7f606=1; Path=/; Domain=y1h1.com; Max-Age=3600; Expires=Mon, 04 Dec 2023 06:47:29 GMT; Secure; HttpOnly; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W8EMTmcZesYqyyXCrUWZ6XYj5aMiZ%2F7dQxYl6RtUZM%2FBWvRqBhJ%2BokRRFa8nWdTq18FrcEqXhBfJDcGBHkl8wYQuci1lqhcWswSPjcwMGWWkWFm%2Fgc5jUltt8%2FWk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c143ce53b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/loading.gif
200 OK 5.1 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/loading.gif
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type GIF image data, version 89a, 50 x 50\012- data
Hash f4f031edfb2f37765dab11b35eafd026
1901e655edaaf84a56454516189adfa72c1630a4
835f56bb96eb76384dc480bc6c866efb1980d4a36ad42fbc82e46d9167542050
GET /sweeps/ww/giftcard2/loading.gif HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/gif
content-length: 5139
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-1413"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=feDLGQDGtCoNj7k6onz0KKhHaxZhkNpUpg5u3Z6gEdUw20HPgCkLiephvjkPA8O9LLKcS9nVSy5jRgZ8SZj2quOohA41r%2FPfZWCQOBOtO%2BBhCNaIhrZSHpB4pQdLjBTNUT0QKCKi9v%2FC1RM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14a9986b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/gift.png
200 OK 4.1 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/gift.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 84 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c8a99f8106a7e0c99be0e2333301537
ff30510621a4e58a72b2adaf5270fed28c944307
4fda556b7901692f8165abb1f7eea0a42f5fc54d0d2b257e8daf5a30b0b8c9c3
GET /sweeps/ww/giftcard2/gift.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 4051
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-fd3"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y8Jk0Sqj25kWqZM6iF9xd9usgEZk9wHAuqj%2F0NLDZUWL3Cun41ymtlpWCIh0Gtmi%2B3zG5kLccGF1K4ja04Ei6dGqI1hBrB592%2BaObqryHv0YiKRcJiVCa4R5EgFYGkwILS0Y5QhgCUXNves%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ab98db4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/prize1.png
200 OK 8.2 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/prize1.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 86 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 6290cff800ceb96ee20d5a19d0664880
ec920e4a2ecb24a6efec0dd55dd72f636c198d29
d110d7d2f6ea28a3f3e757b7d73f88d9f8d5b2974cb46b4c19e9bed9afc7d5e6
GET /sweeps/ww/giftcard2/prize1.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 8215
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-2017"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2BixfD8KEQlMNti1sWBf0YDAYjUkSdisb4T6IZ%2F0E44j3chtUhyMvKm1TyW%2FhvVN%2FdNXMl75nFGfxBkKFErkZSe7x21PGGczxcQu7euhFGd4cfB6cBlLxt7xfCGxG0fNusMzVDmEAdqzrDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ab98fb4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/prize2.png
200 OK 7.3 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/prize2.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 83 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash d1fea41e41e0b65df696294be795b34f
46f37e9ac56617cf366adddf2ed2389b5b6dae0d
3d89d40b25c079be8baa42705fcd9c35933b6fd1456c66e849c3fdf37aa3856f
GET /sweeps/ww/giftcard2/prize2.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 7264
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-1c60"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CYzQQ3sopwkdEVY%2BEmSUy69yN7zMinpempBM4C%2FvRsdyB22fW0LntCXB7XQIEIcZ%2FZ73Xw2FNmehNOqx%2BFDoMGIve%2FRRoqjH9vkagz5hpr0jmpx6mqf%2BTA%2FBJJqySBtAvhQhmbBBkIZh0w4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ab990b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
200 OK 18 kB URL User Request GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
IP
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 8b9e7e9be8754879be4e48569b9ad527
bb272228782052becac5323ef35a796898b51e4d
922040c57b8921f102789995ea2f9568ef5a44fe3f70cb3debd321b6ba66aa69
GET /sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2 HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uFBCItYUwF5pjlcachoREvGoxGLtt%2BWRy3U671ClQ8pH0F9CJbwjSmJdtB4lJcVAlHWMS9FScMDW831%2BVzbn6lwmzQS8hLwESIXUYR%2BfOCnE77P4q%2F22tmRd7Il2RViUV0JJ0fUTWX5WywY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c1489887b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/4.jpg
200 OK 1.8 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/4.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 59389d99986c2c273716a3a8318d137a
fb4182ad157fd847a0e454263fb1ce981751ae8e
a76e62e7aa1c08feb38cc3203ec6ae986bb5bfdf1820dd42b256061fa2a0990f
GET /sweeps/ww/giftcard2/4.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1803
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-70b"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HNrj%2FEsA7IfmCQd%2B0C6wOIk9lJNxZNo0mwneeRnPcCtC7SDSKm0lE51tu17A4QQDTyUjc8zjh0rYkz3BFUsWHPOcm906Am4VDw1w5U9cs%2BHlCsL%2B9KaB0tk1y3wVdaSLBsM2is%2BWfUaBIWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14af9fdb4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/like_user_1.jpg
200 OK 1.3 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/like_user_1.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2aa0d43e70d60d76ac4bdff139f8c7cb
d7e3433297ad90f5d99249aee29b645265c9f3eb
e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
GET /sweeps/ww/giftcard2/like_user_1.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1293
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-50d"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bky%2BVhlYwKEeBINFVZ8I9HtrH92B9L%2FvjpHt%2B2JtAiYagxhGgfJ0yBg5aMw1ulyv8OfIR9saWLFGZ9VwTLw8kiWISug7Ict3h1KQJfVJXt8gvqnOTX9FF4%2BOkhE%2FryFIH6BdD3D%2FZR6HYLU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ac9a0b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/like_user_2.jpg
200 OK 1.2 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/like_user_2.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f9299c2023539a8f27a6e1b12ed260e5
046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2
ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
GET /sweeps/ww/giftcard2/like_user_2.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1216
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-4c0"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0dRQCrxMq1yh5MFOkc2QoGuP7Ttrxn2hBVYGHNjBknVLHo0h5sUDtYI%2FEK1px1oIlc46qFL7W3mUMVuwhxyh%2Bx2SdYfXoGYTbSxPAMUbV%2BQhvCRY6jaSa7GDqYnyorEYxbSaeepSzR9oRo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ad9d1b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/3.jpg
200 OK 1.6 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/3.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 8f52afa9e7a247acf53632fdfd62aa21
45fa6dc2c4bc5f134bcc59bd1b80214daac8f84b
58db8ee68cc5c89b372646ed7c7ac68588fcf2635452a831470e6a572bc49842
GET /sweeps/ww/giftcard2/3.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1648
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-670"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tHTWSIE%2BOjF1k213g93o5RN0KkxLKmfj%2FowbN6KDq%2BLMuNDC1MFlrP80q%2F5s9Xo4aTlb4tfzkGQO7Udx4KnhjrNE%2F%2FJ%2FBTRRaYwD%2FrT%2BMG5V8ngaY0UQMQzRQBlGmtky8AYU3%2BSkkiEdK5E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ad9d7b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/2.jpg
200 OK 2.2 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/2.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 7af1c5ea7c34e1748aa8e4ac65d26256
506ccb8359f870d196643c85c38a8739e044b78b
afa0d114beef551ec69b8a3bf82f292729b7e8930f022a83bd68bec11e5fe474
GET /sweeps/ww/giftcard2/2.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 2182
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-886"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FgrpYNE%2Bbs99B6KMqCom%2FoNIiWgxoc6Ls7xDVAEk5esoYJxxuHdZfN2EST3KgEkjjQSd3qW4W4LPMgrQs5JuAHDGU%2FNKzrxrFS9wBs1LuZeAGVPNddgHsl8Gf5OiLm0qlgupgaEK%2FpE31fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ad9d4b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/7.jpg
200 OK 2.1 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/7.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 3641990a28227bb5ed59021aff1d14e3
e6897de78a1019809f344f738a8ce2e757e10cef
8d7dc01c529864b54f1d3e7bffb73649056cea39a1907daadc18254e139c2cd6
GET /sweeps/ww/giftcard2/7.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 2095
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-82f"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e7MoOfWKg10RWy13tA62hC8jTRaxVc2ifhq3NhJu%2B1hetncx4hLsFsN7k1B9kGad3UJUS4zJxYSlEw16NsfwUkL%2FgdA5d%2F%2B%2BJIEIPqQYYKTDxtVpHbQhn%2FpXyqJMfa1tXp94iY7CfKTm%2FGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ad9d3b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/8.jpg
200 OK 1.6 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/8.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash c31e3d6f2d5d38af20fee54b89568db4
38570ab4bd66cf8421877b46486b106beb925787
49194aa4fbfb6dfbeaa47328bd1a721e96c80e7d78cb8a6a15febb7a59d1c9e9
GET /sweeps/ww/giftcard2/8.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1561
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-619"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0d%2FCSU3exj5DnLT588XYnEOdoEv4s6fGV%2FHBIO2Gk23mWm1YHo%2B3pfBbNkR8bn0RvLZEsSVslFoOVKD8E5%2B%2BE20yZz0OFIZXNM8cICUlC3XN6obPPWIrJSdh1D7abf9cnBS6Q1Kj20iMC2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14b0a03b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/1.jpg
200 OK 1.9 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/1.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 7c4c03a240fbd38d376111329cb3399c
429f149a2f076040c32d328f89b2099308835d70
1ad68d21bdc5d7616e0ea09fda1fe683ac7ff548e3afa35680de2614dfbee051
GET /sweeps/ww/giftcard2/1.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1863
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-747"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uVcueHA7HoqdaBON9m%2FRk25rOTN230gc4LYxV2i4oD7uzRe0cooLC6mb2BG%2BkweTtVFWDztzXiZsNq%2FoQOH0pMH2WE7A8WZEAkpiEYo54O%2B%2BvZ1ObbSSwWDOOlnPRcy%2FUa9F9R74vZ9rPEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14af9ffb4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/6.jpg
200 OK 1.5 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/6.jpg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 5cc7c7967e306b120f82fd0db3b457f6
db91fe10bd961a81c0cd0862c5f4836a50e44dd6
5f49dbcc11d1704c3f66ea256fc589c602cee87fea1f10d2d24181aeaf30ec14
GET /sweeps/ww/giftcard2/6.jpg HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/jpeg
content-length: 1495
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-5d7"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B8rHIEifIUsLKJiPejYfOvrnBd0iZyeHcgycWGEW6lsZSuOYF4RiyQYsN1T3nxWUZUxaSAbXGmKE32i40D8A80vfFB96IdUbIYj7iagBJaKCdoIhlA6FE3NJv590AfIUoSxC0%2BdQvUaIWUA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14af9feb4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/clip_footer_3.png
200 OK 2.5 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/clip_footer_3.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
GET /sweeps/ww/giftcard2/clip_footer_3.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 2460
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-99c"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nLP2jPDIrvzv%2BnMolFo8zFeJxcrS4cqj3JJMBE%2F0PJXU41pu%2F29FJUh2lKjxCgveiv0l%2FJpRehq12FZ8nwfGcqQ3OS157aoEE96EtY63p6OexAZhRU55qBQ2dY76xamidcUJXct%2FnyKb8wc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14b1a09b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/footer_right.png
200 OK 6.8 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/footer_right.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 300 x 118, 8-bit/color RGB, non-interlaced\012- data
Hash ed8f956b5be34d80b8b6320dc43741ab
8448e9bcc591804bc820944e6cc073cf363d005a
1f69493b3c8fa89a0f217632374effe57b80d981d1726604e1283b9d3663abd0
GET /sweeps/ww/giftcard2/footer_right.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 6825
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-1aa9"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eqBnxi10usAy9IXVXVx3tQEuRjXYNisBvMtOd4bqLbnupkzJdZK7nm0syvAas5Pykjpl%2FyeaegFDjVHpklN1FGEFz1FprWLQlW%2FqYyHXQAymrV9iWR9KtTLHT5nAp70iTAAWYhLNxltl2kI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14b1a0ab4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/pw_ix2.png
200 OK 74 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/pw_ix2.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 501 x 501, 8-bit/color RGBA, non-interlaced\012- data
Hash b9df5f56ef0c73de5d98acb6463a5663
935ed05378fd9461d074079f43d53187423138ff
5265aaacece3998b6363becfdd7e2a32eb53fb0a292e618701c2dc56a2405f93
GET /sweeps/ww/giftcard2/pw_ix2.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 74474
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-122ea"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i2VOBE1pWObvwvYvHt6HA%2FGtBqFmjVuGm%2Bmvf7entMW0%2FQHJ5YS4n4C7hocgESNtwBr4BM8IlZqefWRNyuQ7zPvXUYWrKtvcrv6wnG%2BqiJjJHRB9xs0k7NH4XVV5c9wZDJWCShsYxTUgrs0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14aa989b4f7-OSL
X-Firefox-Spdy: h2
rs.y1h1.com/recaptcha.css
200 OK 28 B URL GET HTTP/2 rs.y1h1.com/recaptcha.css
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 8f48e083a831bd16da0aada175478aaa
df342632e700b5453c189d3129a1e7c5a27598c6
ec8e585ab06e164d11e99adcf9b18d3074de0ece7c922fc6cc99d86fad4d9ea7
GET /recaptcha.css HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/css
content-length: 28
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
cf-polished: origSize=31
etag: "5dc0edfb-1f"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Tue, 05 Nov 2019 03:35:23 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yT1WgwUw%2BzRsAVoe9tBsebAFiQ987f6RbOHh14YupleuDdYE7YP7CMzkBWp5iLjTi4u27Z5wjfJQU1BfxE%2B22wbvqzzH8zJx5wszJszb0TRec6nHsTIFSiXVmDaJMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14b4ea1b4f4-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/whatsapp-official-logo-png-download.png
200 OK 218 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/whatsapp-official-logo-png-download.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 1012 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size 218 kB (217588 bytes)
Hash 569f0618faf737c699990a7b93e5f5b0
61648e75b7583f5c77a6856d70b0abd1913b830d
2d35027ed66ca224dd911778b3862002ca70e3c5282fbc4dde91136701c71922
GET /sweeps/ww/giftcard2/whatsapp-official-logo-png-download.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 217588
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-351f4"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uClJWlSjTHFjUbKl%2BlJCmg%2FCddZ%2BYvvU0Iu5DT9uBfAPmWNMAB0G%2FvhrPK3ghw6Q7glRt0O2tophZIa0Oxy9RupH5EAlFk7Qwxn2z%2FyZZg6OmBaMra%2Bb2VBygqIMrn3ee4b6%2BV4VwRZiwoM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14a9985b4f7-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-37GE99Q100
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-37GE99Q100
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Hash d736aa484e5670750d68b20316fe6b36
eedb9591fa24caade316e1837146fb6b07f80a10
a831a7f5de710a9f11e8eb18f839e401762e014b20b501b40ee9ca6333a9ca44
GET /gtag/js?id=G-37GE99Q100 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Dec 2023 05:47:30 GMT
expires: Mon, 04 Dec 2023 05:47:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85525
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rs.y1h1.com/trans.css
200 OK 1.4 kB IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5fdc97e7bb931fcb50ca74d494783b8d
270701559f936aa963b492c0bb28468512fadfd9
c250897d281e4b8243f74e64681478e80c2def1b1448dd84863e12d39ea86e43
GET /trans.css HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/css
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
cf-polished: origSize=398
etag: W/"63e622b9-18e"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Fri, 10 Feb 2023 10:55:53 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UD%2B9uCicrSb8wLm4%2BXT5bxpwPQYpPCkdloWmipafmbp5%2BccKXwAZwLuJr7Quhp31ox00XR4WImAJSagVqvi6Wr18XDJopxyY38s2OnEDJw%2F1oyRRGzEzego50QDW%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14c2f26b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/SegoeUI.woff
200 OK 246 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/SegoeUI.woff
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 245844, version 5.5\012- data
Size 246 kB (245844 bytes)
Hash ee10411f11ca61338f5bcaebefbdf700
4c720d1b7f057aa38a9ac184bc209990778dc651
88c5bf1d6f30b660f9764bd76aa70cdefcb11207fdc77d0d0285d95a0bc135ac
GET /sweeps/ww/giftcard2/SegoeUI.woff HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: font/woff
content-length: 245844
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-3c054"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=opWOhUzmF30Zs1A5%2Bxnxbl9dxp2YbWTZhCD6JrN%2Bofd9CqUfHyWIMCXqK4WqyyMbg5Yzm7sQe9o1SR7tbZ5t2GUavH8%2Bio%2BURYezMkkQaSgQC8pAU3LWJtJ4lt62oGnCFFkxjGUFRnTeHck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14d3b93b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/action_icons_20px_2x.png
200 OK 1.7 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/action_icons_20px_2x.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Hash b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /sweeps/ww/giftcard2/action_icons_20px_2x.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
Cookie: googtrans=/auto/en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 1726
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-6be"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46s9qpkifE6QOxQX3%2FuP3309p8dO3OXgTtn3mjpNb3LlEQJyAdlcwkJp2qmghcLQNKV%2BjVfHlCRkS30KzxFw7Mc5qMYlbC8IJAYA9DcRsh1uHp5GZG5Zoz0kiH1r6%2BsFUG3vqF%2BpiRVn%2Fq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ddbc8b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/comment_action_2x.png
200 OK 641 B URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/comment_action_2x.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data
Hash e9b3872b3e63e19728176d45f0aa6986
b638f89d5d80c4cd65327da973c52f778e30bd55
a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
GET /sweeps/ww/giftcard2/comment_action_2x.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
Cookie: googtrans=/auto/en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 641
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-281"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YimwApJxBFhszbEf2FPS24dpQ%2B%2F5qu4RauZbDREyo6ZhMEmve9zTbv7xtQME1b9uhQF06IJQHg0A9xXNdcPS9O6%2F8WDDqnp47PA8wHfI4%2F9jLnw78zvdQrOJNSz%2FnqhOUrci8ZE5PI33%2B1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ddbcab4f7-OSL
X-Firefox-Spdy: h2
t.y1h1.com/update?eventSub3=view&event3=1
200 OK 2 B URL GET HTTP/2 t.y1h1.com/update?eventSub3=view&event3=1
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /update?eventSub3=view&event3=1 HTTP/1.1
Host: t.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gifts2935.giftforyou.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/plain;charset=UTF-8
content-length: 2
access-control-allow-origin: https://gifts2935.giftforyou.top
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a3IIhE42VGtQZd8SPfOXS7%2BlhhRiXMLHy8lkIyFhVNoONmQPvI3eYIYvHUVsKDY5YFSkfPKUrbl%2BUf5yv5J8%2F3sFjpR9kP7hL08m6NYwZq3O3pW9Yx3iFd6HaGve"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14de84ab4f4-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/spin_prize2.png
200 OK 20 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/spin_prize2.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 142 x 173, 8-bit/color RGBA, non-interlaced\012- data
Hash 841b7dfad526a441082480272cec4d68
449f96d4797b6fce41dd7a528d37ef6a8915c963
a8d7a8a7438d524a0428090ed9b4a4524cd02b5df2afa35ffeafbe4526fc8be3
GET /sweeps/ww/giftcard2/spin_prize2.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
Cookie: googtrans=/auto/en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 20274
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-4f32"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jqNCBTS7oDpnxfV2nj6C7rkgkdTTIwr9zBV6xUEx6PFbJb1ECCDcIMCDh7tJFeioCMopgdan57jorom1l1PbNBNDkxisCizhSI%2FdAke2DUdtvpdkEup485vxX9fRKS8pLp2pzdFLb%2BeL1go%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ddbc7b4f7-OSL
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/main-bg.png
200 OK 699 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/main-bg.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 760 x 1396, 8-bit/color RGBA, non-interlaced\012- data
Size 699 kB (698653 bytes)
Hash adbccee0708ae3b7a71d9652fb353299
1eb43728f22ca4adfacab76009e48bcb428e2182
077376ddc9c604e63cb3b7552b415042ea1c9f408ddbe3a571f419bb83cd72bd
GET /sweeps/ww/giftcard2/main-bg.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 698653
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-aa91d"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pkRfzE1XzYkwRgZa0BoXJht2NPOrCYA1ox%2BltosVxZz5CvDIYZn1Qc5oV5W4Js%2FQJ5SdyLnF6Og7y71HUK7NBls%2FU1OriMWMW59PlrCBR7%2By9HnYMkX4YyCKxQcSnB3Jpf0KdlAgtLle9Sw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14d3b91b4f7-OSL
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gifts2935.giftforyou.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 64501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
200 OK 4.0 kB URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (20367), with no line terminators
Hash 72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:17:05 GMT
expires: Thu, 28 Nov 2024 19:17:05 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 383426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.ttRLJuPcOaM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpsbBT3WoHl989mVdUAqBV9y2qo-Q/m=el_main
200 OK 83 kB URL GET HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.ttRLJuPcOaM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpsbBT3WoHl989mVdUAqBV9y2qo-Q/m=el_main
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (2193)
Hash a1acfecef726b580906cef3ab91396af
af79aac165259b3ed32c0b1ad1a97cfd4c3f55bf
98f6e8c47cc9172e4c8c74ec2a4b4a8df8988dd3b77803cd88bc435c42db2936
GET /_/translate_http/_/js/k=translate_http.tr.no.ttRLJuPcOaM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpsbBT3WoHl989mVdUAqBV9y2qo-Q/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 83047
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 18:15:27 GMT
expires: Thu, 28 Nov 2024 18:15:27 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Nov 2023 22:11:38 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 387124
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 19:06:15 GMT
expires: Mon, 02 Dec 2024 19:06:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 38476
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 64501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/product/2x/translate_24dp.png
200 OK 1.8 kB URL GET HTTP/3 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:20:13 GMT
expires: Fri, 29 Nov 2024 05:20:13 GMT
cache-control: public, max-age=31536000
age: 347238
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
200 OK 3.3 kB URL GET HTTP/2 fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Hash 2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:23:19 GMT
expires: Fri, 29 Nov 2024 23:23:19 GMT
cache-control: public, max-age=31536000
age: 282252
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/fonts.css
200 OK 1.5 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/fonts.css
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash cb8a2906723d5d7ddb73ce926716500f
60959ca3d1a4a0a3257e6f1f528066110ce84e3e
527e6525d42b193adb2ded825facf1ad1d417020188ee6986f48603fd963a861
GET /sweeps/ww/giftcard2/fonts.css HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/css
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: W/"612a1700-11e"
expires: Mon, 04 Dec 2023 17:47:30 GMT
cache-control: max-age=43200
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FU93XOJUz0JfUgqXZcGojoBqXZdnkHF1FE8UykbVO2C414yeoo6SShrzlRIZNzer%2B6UgDd%2F%2F5ffqJkm0cX%2FVUHJubn4sMa4XD8HhQJ%2BVG5UTxEILftx4SIl88tpos5K5SMGxK0Fl8tCLCoI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14a897cb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 325151
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 330204
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gifts2935.giftforyou.top/sweeps/ww/giftcard2/newmain.js
200 OK 192 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/newmain.js
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Size 192 kB (192117 bytes)
Hash 3b2681f3ab28a976311d724cd06c72ab
fb5134f8c92a45779c54b44c3e8f3058b895b32c
fd847f161a4f61ba58d0e50146bafb435aa5b9fcd48aa6f2c00434f9f41798d0
GET /sweeps/ww/giftcard2/newmain.js HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
last-modified: Mon, 18 Oct 2021 21:08:10 GMT
vary: Accept-Encoding
etag: W/"616de23a-110b"
expires: Mon, 04 Dec 2023 17:47:30 GMT
cache-control: max-age=43200
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w5Qx9nzqPbl%2FZJYld1wZVfHzYB291KjHxWdtn3KuGKlmNixAOrgGEOFVQoTGqN%2BDDbQ%2BxMdzjD6%2BnCzapNnA7p3IMRJvObOBNhuM9Vr4Gpb%2BdehuFPcaBdX3pMNl5NNvA%2BC%2FSMpWeAz110U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14a997fb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 374988
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL POST HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Origin: https://gifts2935.giftforyou.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://gifts2935.giftforyou.top
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Mon, 04 Dec 2023 05:47:41 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+514; expires=Wed, 03-Dec-2025 05:47:41 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 04 Dec 2023 05:47:41 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL POST HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 316
Origin: https://gifts2935.giftforyou.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://gifts2935.giftforyou.top
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 04 Dec 2023 05:47:41 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+586; expires=Wed, 03-Dec-2025 05:47:41 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 04 Dec 2023 05:47:41 GMT
www.google.com/recaptcha/api.js?render=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y
200 OK 884 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash 36e0cd29a77ae88caaa781385a97a0e5
e4d471517d6e08958d4a2f832800aaa15a9b15e7
4d78d5171a3d155f0aff360d08bb8dfabaccd59b2efab3bb6b438578e2ebae79
GET /recaptcha/api.js?render=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Mon, 04 Dec 2023 05:47:30 GMT
date: Mon, 04 Dec 2023 05:47:30 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
200 OK 18 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash b3fb821cfea6bf83b60667cd87946594
35afc2e6e5bdb17f85b7f1f1bee44ae0a76e75ee
f973e0ae72502c046a26df4645ce245b9143963eea72bf7abdcf01523ff47589
GET /sweeps/ww/giftcard2/jumostyle.css HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: text/css
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
vary: Accept-Encoding
etag: W/"612a1700-444b"
expires: Mon, 04 Dec 2023 17:47:30 GMT
cache-control: max-age=43200
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JTWzvM%2Fqsu%2F%2FdYH8WJAgl3yv9TKQiDEBuzedaY7T%2F6KRPDclq%2BTGAI9S4wBXWhFImleErmMT0VTGqdivUSvcUQdGjxyYuEdWCETYQ6hcs%2Bn5L2nuIoDMzKndWZPBCfXdcGbEStbVGSZTA00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14a897db4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
rs.y1h1.com/trans.js
200 OK 282 B IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 13692cee8fa907e4403534562fe4acad
54af8724f76d6e5516973bb0d5da1ba5e13c6dee
c4a377bf2d0085af95e405ccadda341b324dd834bf5b8dea4dea75d0e666f95b
GET /trans.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
cf-polished: origSize=337
etag: W/"60837b56-151"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Sat, 24 Apr 2021 01:58:46 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MYzX%2F4ohEvFHqsdlU5TWTbLfXe2arank1mvfh5zRxL%2FbSSC0j8FJTZMe2SxaWkOkfvD3XI53692otSCQ5HwHiB8z2yWZ3PS2xqgxK%2FZVw4X3SXwx1aISpBiFhuPaog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14cefa8b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
rs.y1h1.com/backbutton.js
200 OK 4.8 kB URL GET HTTP/2 rs.y1h1.com/backbutton.js
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (4821), with no line terminators
Hash cc74e717b3fb50c15e5e4b50faf55bc9
36fdd2a173f70f53d7f5f4b82d6c89accf6c2bc3
49da637a24a8a355014704c23fa18387f0bd339368153a5e64c90a062b03b795
GET /backbutton.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
etag: W/"61d46677-12d0"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Tue, 04 Jan 2022 15:23:35 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lnf7OootXR73q09ssK7l17dBYIrOgWKStQ73h0RGFeCPAp6GnsMqeraS6SY4QGpigaN3t9Zbix9NCBTGlj4ecxcwCFx4%2F%2BPwqhFwwzrs%2FxjLefcGFXC%2BojE%2BGMAbdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14b4e9ab4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/menu_2x.png
200 OK 15 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/menu_2x.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 8714f78a15df3b8769c66518ad411404
4f1c074c4f7cd824c4e0a7a06a4f36838ec57bc7
c1d04143995e571804cca18baa14b05794545f77171d6697abde9ac432db57f1
GET /sweeps/ww/giftcard2/menu_2x.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 15194
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-3b5a"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kr82rjXN0zzu4QLUaO5udD3Ecb3x0Sp4ZZrL%2FN%2BlthXdC1%2BLXGkIcbFnyX%2BF7iZDP1hBTDRPd21lNmsC5ln%2BwgEQdhFVYi8r1lKFBBJg47i2zmSiy%2BO2G0djSvoSyjM049SRVHN7yxHz0fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14a9984b4f7-OSL
X-Firefox-Spdy: h2
rs.y1h1.com/load.js
200 OK 7.1 kB IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7056), with no line terminators
Hash e2494b9cd7f26ba05e504ab12aacdb89
d3224387f27e022d556f4ecd6b3aac9485bd1362
eda9e1ca8b96059ca3ed3cdd8f1e6822a8ef23604293b1cb914117caa5371d94
GET /load.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
etag: W/"6311dce6-1b90"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Fri, 02 Sep 2022 10:37:26 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBK5t1h57g%2BdO8GzK44HIidjP1C%2B84MkreK01TfnvyEaVu8ioQnZbWBj1TBsemSyJvSzid%2BXk28W6aTCNWM1nIP4O6IWQdJS2mUxhHUj3YtkR5ZjZ6wQrK%2FwxEsl5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14b3e8db4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/sweeps/ww/giftcard2/notify_2x.png
200 OK 1.2 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/notify_2x.png
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type PNG image data, 56 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash f13fc2443b52ebc1535d3005ddcccb13
f4f7936ded15daf1b9bc8331e913e7d44d3b0da8
33774a02b8eb284b011ccbcd96e46f10132d50e26ec87491cbb1250dcd1140b2
GET /sweeps/ww/giftcard2/notify_2x.png HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/jumostyle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: image/png
content-length: 1157
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
etag: "612a1700-485"
expires: Wed, 03 Jan 2024 05:47:30 GMT
cache-control: max-age=2592000
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wIhBFWpnYhf3n0hBOuUKg%2BlqPMbWYC4a6wyFl0Ss%2Bfeix8Is2SP9Bm2Mg25NePVqyqOzaRJW%2F%2FPp5QBKF5Dx6cXxCF5U306F5aqa682fXaGVStANPGEy1NWWeajSS%2FFYXp%2BQ7ZtvcT3Hnno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14d3b90b4f7-OSL
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/reload?k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y
200 OK 35 kB URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (35392)
Hash 9a9da466fcf4eb8736b7752c3f682819
f961b94c1ae56b62e78390b39e9ca573d57e08c4
6e99b35bc032fed762fbeb096dc044b22f5770b8f32a6e5d89ea8b104439ed56
POST /recaptcha/api2/reload?k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6833
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Mon, 04 Dec 2023 05:47:32 GMT
expires: Mon, 04 Dec 2023 05:47:32 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ALb3HLdWGZE9lsofg7fVivs-f640P4UrAxT8ISVKYqtjHpD78w2J_i1CRON4Me9RtCYrVQNaILnzTqbTqNL8vIM;Path=/recaptcha;Expires=Sat, 01-Jun-2024 05:47:32 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
rs.y1h1.com/checkbot.js
200 OK 8.2 kB IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (8175), with no line terminators
Hash ce0c2c4ee0cb0c547667698772dc25b1
7fdc7c61cf11d289c270ebe3c23032667d010e53
b2b11e955ad96caa642a0b963217b7a9e81c66ca8bcf0fe15b8ef0ea0d565d31
GET /checkbot.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
etag: W/"6222c2ff-1fef"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Sat, 05 Mar 2022 01:55:11 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TYlBGU8MIVbO1Yu0fnFVXAExdT0v%2F43wrOFfpwm4zFRnodtJl9CnVv8I%2BmhG9YjAVrSeoNG72CdfpWX31v0dyamDHHzdIUORfW6dAi6ynJlf8plrzxSbS8XX0WlCEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14b4e99b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
gifts2935.giftforyou.top/favicon.ico
200 OK 68 kB URL GET HTTP/2 gifts2935.giftforyou.top/favicon.ico
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel\012- data
Hash 5d314e000175f9fec4ab4325ef438be9
4d48298cec69fc284570437dba43e5f14fe99be5
a3e831628af5a26e9a51d53636e42db46d8d2e7c59e7d2845c988baf1ccd18e3
GET /favicon.ico HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:31 GMT
content-type: image/x-icon
last-modified: Mon, 10 Jan 2022 06:10:46 GMT
etag: W/"61dbcde6-1083e"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=woyOSn2L2RSyUNroU%2B0Ll2Pg8sNAYuwh%2FtrJT0ZaSf8AAwp7W24dgjzXqFy2dczzWGMP0WLUOOdkJKzqITyJkk99ryARchw5DuiEH3d5O5%2FT%2B06S2t%2BiRsW9ENIEsjWsMBv0q6ranZBO42c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8301c14ebc12b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
rs.y1h1.com/common.js
200 OK 17 kB IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type C source, ASCII text, with very long lines (17150), with no line terminators
Hash e82a7475219924f096429f180b359bfb
914006151a4b38056a5ab70a51abfb389bc7b7eb
ecfa449cbb48255f0ece7b436e2015299b9e6adceb9f4df863a9ce36eab71278
GET /common.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
etag: W/"6214ae9e-42fe"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Tue, 22 Feb 2022 09:36:30 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sfOkLii%2FC%2BSOoq4OWvHERNEgr9BrQ4rdsF8wMEjHUvEb7ngPBlC6I05YDiCs3XwPE0WFniZTJs1Q%2BgxDHcp1gpE%2BFzn5AkF%2FdFUdeedCpVrC9LkF9cx3m5ky83iUng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14b2e76b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
t.y1h1.com/recaptcha/verify?token=03AFcWeA7cfUwmaQunGSGPkbGlQ4a9AaLvicKr6M01L3Regl6l4MWZcfgs5GJdTPSJCJcmFpGHVcORw5afhqgQ4hJw9DTJY6lpvfpYi3BlxgBe32vRFlmqr_s1kf2cOou7mtzyGtp0PqNGh_VxX-3fbXNyMPo6F0Rs1fNobi-7uF9q0jagwe1-ltkoS3IMZRZ6jCiPWJ409YKBImfGNywPWmfkSsQxzLnmEzU2ZSuWDrzS74nM2GUmm5J6YZeawduieoduxzxlgruRUJby59Z71OA17EPJ0SILnxcVN_a0bOa30lLqtf8mDRbMLoQ2xED58V1naBZOaILRuNVfEY2Aoxnzed2xBCLQmAxsio-fNbOmOsp_w1H6iKgmeIdkSO7lqf0FeW-9tn4dMPzJYAsi4UrboIwNZLSYZFWTeMq0TK8-jKhKg7XRuj9KDT6PY9zl__vHnDPZr6mVS4YTA35BSecrRwLbElS8cE24mxwZetW8HRmNPEeWFeswqfnVGlKOI4vJ5iRCVQvE4VC_JRpZLwa_ZNUEo--muwOWfY0noxVMyoyQc0Dv2Q0&vid=1701668849-iCUmKP&eventSubField=eventSub9&eventField=event9&botScore=0.5
200 OK 145 B URL GET HTTP/2 t.y1h1.com/recaptcha/verify?token=03AFcWeA7cfUwmaQunGSGPkbGlQ4a9AaLvicKr6M01L3Regl6l4MWZcfgs5GJdTPSJCJcmFpGHVcORw5afhqgQ4hJw9DTJY6lpvfpYi3BlxgBe32vRFlmqr_s1kf2cOou7mtzyGtp0PqNGh_VxX-3fbXNyMPo6F0Rs1fNobi-7uF9q0jagwe1-ltkoS3IMZRZ6jCiPWJ409YKBImfGNywPWmfkSsQxzLnmEzU2ZSuWDrzS74nM2GUmm5J6YZeawduieoduxzxlgruRUJby59Z71OA17EPJ0SILnxcVN_a0bOa30lLqtf8mDRbMLoQ2xED58V1naBZOaILRuNVfEY2Aoxnzed2xBCLQmAxsio-fNbOmOsp_w1H6iKgmeIdkSO7lqf0FeW-9tn4dMPzJYAsi4UrboIwNZLSYZFWTeMq0TK8-jKhKg7XRuj9KDT6PY9zl__vHnDPZr6mVS4YTA35BSecrRwLbElS8cE24mxwZetW8HRmNPEeWFeswqfnVGlKOI4vJ5iRCVQvE4VC_JRpZLwa_ZNUEo--muwOWfY0noxVMyoyQc0Dv2Q0&vid=1701668849-iCUmKP&eventSubField=eventSub9&eventField=event9&botScore=0.5
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 133ac2777f674c1d191a5d5fa54717f2
28ffb036c8a7c7780452df922bea9601c0b0331e
954f53c4a23c6da227634166e65f3fb999acf292f63e8a30e04b3e7769e661f1
GET /recaptcha/verify?token=03AFcWeA7cfUwmaQunGSGPkbGlQ4a9AaLvicKr6M01L3Regl6l4MWZcfgs5GJdTPSJCJcmFpGHVcORw5afhqgQ4hJw9DTJY6lpvfpYi3BlxgBe32vRFlmqr_s1kf2cOou7mtzyGtp0PqNGh_VxX-3fbXNyMPo6F0Rs1fNobi-7uF9q0jagwe1-ltkoS3IMZRZ6jCiPWJ409YKBImfGNywPWmfkSsQxzLnmEzU2ZSuWDrzS74nM2GUmm5J6YZeawduieoduxzxlgruRUJby59Z71OA17EPJ0SILnxcVN_a0bOa30lLqtf8mDRbMLoQ2xED58V1naBZOaILRuNVfEY2Aoxnzed2xBCLQmAxsio-fNbOmOsp_w1H6iKgmeIdkSO7lqf0FeW-9tn4dMPzJYAsi4UrboIwNZLSYZFWTeMq0TK8-jKhKg7XRuj9KDT6PY9zl__vHnDPZr6mVS4YTA35BSecrRwLbElS8cE24mxwZetW8HRmNPEeWFeswqfnVGlKOI4vJ5iRCVQvE4VC_JRpZLwa_ZNUEo--muwOWfY0noxVMyoyQc0Dv2Q0&vid=1701668849-iCUmKP&eventSubField=eventSub9&eventField=event9&botScore=0.5 HTTP/1.1
Host: t.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gifts2935.giftforyou.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:32 GMT
content-type: text/plain;charset=UTF-8
access-control-allow-origin: https://gifts2935.giftforyou.top
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D6GMa3j5skzwQUsxbgTSRh3A%2Fas3ECDOCEDj5D9fRlQ3jYOItD%2B7xHCSNQH1n4sqVSi5SOSGe3ZP8HeuiNMl%2F%2B6XHEl1oFT24rVkAn0nNp26V8FK22Yu5hOsRuGC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c1586d73b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
rs.y1h1.com/copy.js
200 OK 3.8 kB IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjecty1h1.com
FingerprintCF:8A:ED:DF:BB:57:09:E6:84:5E:C8:B0:2F:BE:C2:A8:51:32:58:F8
ValiditySun, 02 Apr 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3752), with no line terminators
Hash e8b6c2f6a93914adfb6c0ee4e3dfe046
9d261977b498029390d716a9b28290463b9256f5
29daea46fd37a5f226b28e122dbfe919646b40a1aeeb5f3318a12d375bb11b2b
GET /copy.js HTTP/1.1
Host: rs.y1h1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cache-control: max-age=43200
cf-bgj: minify
etag: W/"6308a3c6-ea8"
expires: Mon, 04 Dec 2023 17:47:30 GMT
last-modified: Fri, 26 Aug 2022 10:43:18 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ERflTHAap4rzC9XVj3BwIkJTNr45bkIem0UeIX457SZlgo9iBwuAzHEYORA9zNXno%2BArb8%2FYyilqTNyEZm8%2BmFNuYBpJZuM%2FTy5F1beF6ym497neWY75Dg6bw1xtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14b2e78b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
200 OK 60 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (51983)
Hash 7eb173b6d9777c0091dacaaeabbb373b
684fbe361ee10a1d5e8810623f4cbec04497c83d
427be4147f50f7b78219f88b4aa8260eb6906dc1217740d8931f52a0c075b9a4
GET /recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 04 Dec 2023 05:47:31 GMT
content-security-policy: script-src 'nonce-GofrjbuU6iEjpiqLEBlbVA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200 OK 91 kB URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (2462)
Hash 410c9b895e0383376c52fb00074d5996
f3de37be8115da5601bb3734673af9d8871d5ce4
2bd9396f20ec3bd61b3d413916e70aaa92a08fcdfd84cfa592301300e3d07888
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 04 Dec 2023 05:47:31 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+592; expires=Wed, 03-Dec-2025 05:47:31 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 102 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with no line terminators
Hash b581f6e6ac7eb4d572233bdd384918f8
12a90cd14cfea2286982801538560f638670eaff
b62f36160407c81030404ab242125afd42fa0da6626ef11e5f406dda12acf144
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXQ7EUAAAAAEY-1sgLx4eGQQDwXNdzlKssae-Y&co=aHR0cHM6Ly9naWZ0czI5MzUuZ2lmdGZvcnlvdS50b3A6NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=kpywk0ysoo1t
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 04 Dec 2023 05:47:31 GMT
date: Mon, 04 Dec 2023 05:47:31 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gifts2935.giftforyou.top/sweeps/ww/giftcard2/jquery.min.js
200 OK 86 kB URL GET HTTP/2 gifts2935.giftforyou.top/sweeps/ww/giftcard2/jquery.min.js
IP
Requested by https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Certificate IssuerCloudflare, Inc.
Subjectgiftforyou.top
Fingerprint18:25:82:EE:0B:BF:44:15:C8:A5:8E:CE:31:40:54:56:76:E5:2F:20
ValidityTue, 18 Jul 2023 00:00:00 GMT - Tue, 16 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash 710458dd559c957714ac4a8e95357eb5
f694238d616f579a0690001f37984af430c19963
b409c14a10b4caad6b54844aa63a5faf748b83eecc2dd0d4fb1d913f8de55365
GET /sweeps/ww/giftcard2/jquery.min.js HTTP/1.1
Host: gifts2935.giftforyou.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gifts2935.giftforyou.top/sweeps/ww/giftcard2/index_en-us.php?vid=1701668849-iCUmKP&utm_medium=%7Bsub1%7D&utm_source=Redirect&utm_campaign=0_AutoSmartlink&utm_content=Smartlink_With_Push_RandomPub&isp=Blix+Group+AS&city=Oslo&br=0&sp=1&iw=False&checked=0&trans=1&ipp=0&lpkey=172c015a6638943549&ck=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 05:47:30 GMT
content-type: application/javascript
last-modified: Sat, 28 Aug 2021 10:59:12 GMT
vary: Accept-Encoding
etag: W/"612a1700-14e4e"
expires: Mon, 04 Dec 2023 17:47:30 GMT
cache-control: max-age=43200
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xRFBuiOnM4FMmngm97IE11YCI8AAWuzoHSaeR5nDCNuO5O3HWlW0yKHbmuBw%2FJJ5UUTrPMQZ4Xmry3D1C%2FCjKV%2Fqs5ueaAjOiF7%2B8ytpDA7TjVSVgoniEpjkiBe2af%2BI1T2fZswN4boiaV8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8301c14a997eb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
172.67.129.176
104.21.23.161
0.0.0.0