track.supercosmo.xyz/6b980925-880f-4605-a9f2-e4924a181af8
302 0 B URL HTTP/1.1 track.supercosmo.xyz/6b980925-880f-4605-a9f2-e4924a181af8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /6b980925-880f-4605-a9f2-e4924a181af8 HTTP/1.1
Host: track.supercosmo.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Sun, 22 Jan 2023 21:54:24 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Pragma: no-cache
Set-Cookie: 6b980925-880f-4605-a9f2-e4924a181af8-v4=G8hcj615H19pns8bZrnjMMWYLiVMiropP-j0nfE7YqQ; Max-Age=86400; Expires=Mon, 23-Jan-2023 21:54:24 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly
cep-v4=u7OPDkDl9Eeft4VRnW9LFqPhl1Apq6ZL8Syl1Yg6AeYH89I0DFpM5YkplUl6yJEUXDS2VR-8NLct5ssIi_cWC5OivHE_pWaiSBiB2Z3Nn40aFFbZJUPSCmZQjhpim0DWLE7Fm4JELzB5ymiEqvMm9UleNEinfcoyhMF4XNJzRRPkQfhbBXrdmoMG7hbP_ajXpnXio7dkN6Rwd8Xl8Um6saDeOytdM63Fvd5wkvBB73lz7ZuwoJUS5JrQH2Dn4LyasuRIfAV7CwX76Ml_ivDj3JyhxSxO4h6VKl7CBgy2Cucl-OT0g96-BzKKTzSNVP_-f-BERpL4cM_KtQxSBd7FVtB0QDGJlqfv59qiDOOHVAE; Max-Age=86400; Expires=Mon, 23-Jan-2023 21:54:24 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12887
Expires: Mon, 23 Jan 2023 01:29:12 GMT
Date: Sun, 22 Jan 2023 21:54:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15360
Expires: Mon, 23 Jan 2023 02:10:25 GMT
Date: Sun, 22 Jan 2023 21:54:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 21:34:52 GMT
content-type: application/json
age: 1173
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11436
Expires: Mon, 23 Jan 2023 01:05:01 GMT
Date: Sun, 22 Jan 2023 21:54:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PZmgOzh34VFeJ2fSLPmkAJJOfhviI9YCF6csjViV1GMdCx9mJe8FIXGxYuVbp1a7omehA6f4b40=
x-amz-request-id: JSDJXDKV0J5MS6MC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 21:47:27 GMT
age: 418
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 41d9a97f3e66fa295337149c04ad0bae
5d0ffce8986ba0d9e47cd508b79c1feab18076cf
fa5f51ac868aed9106d71f0d5ae7d2fba4afed36bc9fdb94a5a66cea3ac15550
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 21:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mxsupergifts.digital/mxmonetizer/img/loader.gif
200 OK 1.6 kB URL HTTP/2 mxsupergifts.digital/mxmonetizer/img/loader.gif
IP
File type GIF image data, version 89a, 128 x 15\012- data
Hash 08e97d5e5060e42634268c5e8c425d18
694968120010617fdcabde621b6e0690d01b44fd
92d619282a3d1a329605067fb43a6987b74e454aed2ffbd15974152c07ae7c0a
GET /mxmonetizer/img/loader.gif HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: image/gif
content-length: 1633
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: "661-5a38a414e0600"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 41d9a97f3e66fa295337149c04ad0bae
5d0ffce8986ba0d9e47cd508b79c1feab18076cf
fa5f51ac868aed9106d71f0d5ae7d2fba4afed36bc9fdb94a5a66cea3ac15550
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 21:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 21:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2
200 OK 7.5 kB URL HTTP/2 fonts.gstatic.com/s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7540, version 1.0\012- data
Hash 6b7ddab100c1b0132d284a7f6caa79c4
7cdb85a66e11956cfddd77787fa63eb04767a556
eb49ce211df074142d735927bb3e8b655ccf39a7cc444baf02e871bcd47986df
GET /s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxsupergifts.digital
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 18:54:05 GMT
expires: Mon, 22 Jan 2024 18:54:05 GMT
cache-control: public, max-age=31536000
age: 10820
last-modified: Mon, 09 May 2022 18:37:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 21:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 21:17:30 GMT
age: 2215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2376
Cache-Control: max-age=129118
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 21:54:25 GMT
Etag: "63ccfca7-1d7"
Expires: Tue, 24 Jan 2023 09:46:23 GMT
Last-Modified: Sun, 22 Jan 2023 09:06:47 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
mxsupergifts.digital/mxmonetizer/img/coffee1.jpg
404 Not Found 219 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/img/coffee1.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d8978597a0001f8bc4a67dcf6b1a746d
4de3a8d4719dce50210698c146572217d5eb2567
6abec0fde6e84f0eb819c48a7f2cfac6c6001442886e771b4f3661dece53fe99
GET /mxmonetizer/img/coffee1.jpg HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10429
Expires: Mon, 23 Jan 2023 00:48:16 GMT
Date: Sun, 22 Jan 2023 21:54:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10429
Expires: Mon, 23 Jan 2023 00:48:16 GMT
Date: Sun, 22 Jan 2023 21:54:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10429
Expires: Mon, 23 Jan 2023 00:48:16 GMT
Date: Sun, 22 Jan 2023 21:54:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10429
Expires: Mon, 23 Jan 2023 00:48:16 GMT
Date: Sun, 22 Jan 2023 21:54:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0b111b9-f539-44ed-9667-4c69b6c7fc17.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0b111b9-f539-44ed-9667-4c69b6c7fc17.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948fa7fe4ba4b6dd0d31cbcb06fc0957
664552f4c80796a63353e62196bd6e05177e4d95
342a38f0c7e058c3e5ef402df230c656926baea5e82f912ff5f1efb1889a6150
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0b111b9-f539-44ed-9667-4c69b6c7fc17.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10204
x-amzn-requestid: a3fe3da3-19c8-40cc-945a-12b9985a948e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYXGGAZoAMF6Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0760-3b65934a7cad371d7b049ae2;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KvDIbsxcuLhmy8IkuaziGP0ABqEEf-JVOezo1vUc8mDLf2-hvF6Xwg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:46:37 GMT
age: 65270
etag: "664552f4c80796a63353e62196bd6e05177e4d95"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2aec02a691f126259e2a3c701e322ffe
af9161eefc1ee381a8f531c593ea7354d73493eb
e0094d54ca9bbbc4154abec2ce152453ddb1544e020b4a859e5da1f7073a26d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4796
x-amzn-requestid: 9ad3dcbc-3d19-4619-a8cb-b316a8d51290
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULpHgKIAMFmYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a4a-769bcf2f4d7787d007ec30e2;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cpUKWrVc9VnFVE6eDSZon8G9ZIpx11BZgd-2uthefrTP3cSet1hmXQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 12:57:16 GMT
age: 32231
etag: "af9161eefc1ee381a8f531c593ea7354d73493eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tYwSI7_1wwDixmup43f8j54sJ541GjyzB2rboENRXfSpuwPKImlNjA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 01:38:03 GMT
age: 72984
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e5cb3e8d03fffcd307c5ebaef08167
1a813821d15afd416b82c3343a7920a0ffc909cb
84a81b6f63faa3f17a20222b8fa389761a0fb0512a1549b4848849c0425539c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7656
x-amzn-requestid: 6e1ebd9d-6ef0-48d0-a891-51bbf914ed42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNlYHaUoAMFr-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c88-479e8fb72b0b248d020d9e77;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Pu5h9aerRhgCkbAszYjgiRrblEiomyl7ev5WRmdAjQSTQNgSqczG0A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:58:15 GMT
age: 86172
etag: "1a813821d15afd416b82c3343a7920a0ffc909cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e71636bb9a13ad7d52d253e16cd6a3f
401dd58e34982d3434739b9a2f7182487ea1cac5
1ac336df72b6eb569983e197f094378a26a175113249bedca0610cabd57e2e54
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 5469b005-6740-4f3d-80ca-a45fd39cae68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkCFiZoAMF8oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c80-210da08f113a3273257b7d61;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75pGAcylxKUIPpPoXBhc4v4OUldfaTgT0zjrU3_7BSgcp4Webl7bQw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:54:19 GMT
age: 8
etag: "401dd58e34982d3434739b9a2f7182487ea1cac5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F612dbd3f-3cd3-44bd-8729-b4d4aa118f87.jpeg
200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F612dbd3f-3cd3-44bd-8729-b4d4aa118f87.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b7dac109bc648666356225a0d21ed17
f07e82cffe064c296cb1b2c80f7b09feb7552bbe
cc8997d71cd85021addccb0f6a0f00edf95f9747333ff0a436581db4ede78f51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F612dbd3f-3cd3-44bd-8729-b4d4aa118f87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6102
x-amzn-requestid: 256e7b90-3052-41f7-abcf-43c455a2ee7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHOFfEZtIAMFWhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5d56-3237bb0a1f86766b5eb86e82;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:47:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PcHoBpKnLZj86KR261shofMwYYOoYLkwFHLgXS4ICo5jaySNb3f8_Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 22:00:49 GMT
age: 86018
etag: "f07e82cffe064c296cb1b2c80f7b09feb7552bbe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/js/script.js
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/js/script.js
IP
GET /mxmonetizer/js/script.js HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"9b9-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Passion+One
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Passion+One
IP
GET /css?family=Passion+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 21:54:25 GMT
date: Sun, 22 Jan 2023 21:54:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
IP
GET /mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3 HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/css/main.css
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/css/main.css
IP
GET /mxmonetizer/css/main.css HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"cb1-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/css/boilerplate.css
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/css/boilerplate.css
IP
GET /mxmonetizer/css/boilerplate.css HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"26d0-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/js/respond.min.js
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/js/respond.min.js
IP
GET /mxmonetizer/js/respond.min.js HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"c90-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js
200 OK 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js
IP
GET /mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"1786a-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/images/coffee-favicon.ico
404 Not Found 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/images/coffee-favicon.ico
IP
GET /mxmonetizer/images/coffee-favicon.ico HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
mxsupergifts.digital/mxmonetizer/img/subculture-coffee-icon.png
404 Not Found 0 B URL HTTP/2 mxsupergifts.digital/mxmonetizer/img/subculture-coffee-icon.png
IP
GET /mxmonetizer/img/subculture-coffee-icon.png HTTP/1.1
Host: mxsupergifts.digital
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxsupergifts.digital/mxmonetizer/index.php?brand=Desktop&cep=j3MVslbPsmUPX_IXyBhuaeTfjCSQ-I75IR4u9HuN-Xy8_dAxEzJ5WJvuat4tCcA3s0t0zy6U0H4opT-66REEHrcqz0pTvPiHcYJ5Kx1tzWyrXB7a_J1h4GuTdhSrjJ5Ii--5NkrGKCo_7yCR9EeKnPCdzbcXM4peFpevMU4R7OJWtTGdClo0L731uluzpW3bCiQBjFfmnxdN5ll6BiGt4jzYuSnnVzSQoo9ln-qvTTIyI8gXT3LORLjLJoOGn17cpkITJInj89OaMfbarpr2uFPb4jgSAg2P0Aax83S74alQ9n6MD-IuPuII2grsZsXnQV57nYH_xKYbeUdaMjkv2Nzz2_prMDKdi_zS_NAD9qs&lptoken=16cf746842f662ce64e3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 22 Jan 2023 21:54:25 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
18.192.108.151
23.36.77.32
35.241.9.150
217.69.13.14
93.184.220.29