www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
143.204.55.121200 OK 4.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
IP 143.204.55.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (329)
Hash 74caa4a619a6048dcdf9539a8a708b5e
146062b312c3a47304822819355e5a5ee82aacdd
a724a71253fa506ac6e4737320acfd2423886960d2f2002ab8d683f502711d00
GET /sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538 HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:48 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: W/"7f0c6d3ba4eebe2802fa427338c627ee"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KjghgbO6DXG6T5P--GfqUq4lvoZnDtCxxtsuklqFaOTZ9VyCb_GJsQ==
Age: 33390
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14552
Expires: Sun, 22 Jan 2023 11:16:24 GMT
Date: Sun, 22 Jan 2023 07:13:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14234
Expires: Sun, 22 Jan 2023 11:11:06 GMT
Date: Sun, 22 Jan 2023 07:13:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 06:42:29 GMT
content-type: application/json
age: 1883
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5518
Expires: Sun, 22 Jan 2023 08:45:50 GMT
Date: Sun, 22 Jan 2023 07:13:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HysTRSvWRD4V09NyLfqeDdWcEyKlEmKMoexfM+lwoSGVyKWwLCTOw2i2JUTwT9Fhep3NptKwCog=
x-amz-request-id: KK3J81RKH2M3EP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 06:47:11 GMT
age: 1601
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
143.204.55.121200 OK 3.2 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
IP 143.204.55.121:0
Hash 722d63f0a2238f36259cbd98a1019e3f
ba9160fa594e72e601d3df3f5af663a5c1f525f0
32573c52a7a8505b9289d1cfb79fbcf4c0def43cfdb3bd911e7b9cd19e78d5f5
GET /sweeps/iPhone14-EN-Spinner+Flag/style.css HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 21 Jan 2023 21:57:25 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:09 GMT
ETag: W/"8c24a5cb4c55b9d6cd3029f5fd2c6fe7"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: btIqF3ivkWq0wv_H6wnciaWg0AU5AkB-VHYJioSGjvYGq1X_Fu8t8Q==
Age: 33388
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 07:13:52 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/Flag.jpg
143.204.55.121200 OK 27 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/Flag.jpg
IP 143.204.55.121:0
File type PNG image data, 35 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a14e35bd9062718e507ebaf0ab765d9
67e18e0def6cd6d8512a3a1de358f9147b9bdb67
5fc09f252b00889eb9ad17cca89a75a8e170d1f7d5dc83b9e18d81fa17ee3136
GET /sweeps/iPhone14-EN-Spinner+Flag/Flag.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 27233
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:45 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "4a14e35bd9062718e507ebaf0ab765d9"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TXJ1zhyYVUw-L7rvA4G0Ypp-CMr37ND4Y67VGXHOjpRka8I2zlLxZg==
Age: 33387
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ix-g.png
143.204.55.121200 OK 61 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ix-g.png
IP 143.204.55.121:0
File type PNG image data, 165 x 212, 8-bit/color RGBA, non-interlaced\012- data
Hash 2871030791a2d8133dcc84ef9006f36a
695e1be18b21138789eab9cdc36a32ce5d478ee8
2b0d36dd971d9198097a20cca798f7daff5dda7069ab7ddf625f938071ae5476
GET /sweeps/iPhone14-EN-Spinner+Flag/ix-g.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 60764
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:49 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "2871030791a2d8133dcc84ef9006f36a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rH7qwPdliRLu_rYRe6coFN1nNnRKg0mhyNt38jxw4AhdJ0q4QuTHDg==
Age: 33386
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/pw_ix.png
143.204.55.121200 OK 110 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/pw_ix.png
IP 143.204.55.121:0
File type PNG image data, 501 x 501, 8-bit/color RGBA, non-interlaced\012- data
Size 110 kB (109634 bytes)
Hash de538795cb2b233bfe7e7260e8e39639
2629a7a0ba9388ff818c5765b29b99e51ecc146a
679339fe7782ed051447c0d5185ae2e756d0a61f6eaae3a32e17ec71a70cd065
GET /sweeps/iPhone14-EN-Spinner+Flag/pw_ix.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 109634
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:59 GMT
ETag: "de538795cb2b233bfe7e7260e8e39639"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DSH5fzcEnkVDvDI1O6KtoJZUlop2i-_Ia-OfGj9jLMVqw75AchXplA==
Age: 83226
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ix-s.png
143.204.55.121200 OK 42 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ix-s.png
IP 143.204.55.121:0
File type PNG image data, 165 x 212, 8-bit/color RGBA, non-interlaced\012- data
Hash 139051dbc1da09a373199e000f6f64b5
ac6d13c159d744eaa3282e2b9704ce42a36d78e3
e5ba681fe87641859ddf32adb0b9a49839d90731d2e507b18da04bb2156d6792
GET /sweeps/iPhone14-EN-Spinner+Flag/ix-s.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 42417
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:50 GMT
ETag: "139051dbc1da09a373199e000f6f64b5"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: H8AUWB8TAIE2f5P_A2TLmG8tHuEz8x97TIcGFWIs6PEwyTmZY7hViA==
Age: 83226
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/like_user_2.jpeg
143.204.55.121200 OK 1.2 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/like_user_2.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f9299c2023539a8f27a6e1b12ed260e5
046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2
ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/like_user_2.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1216
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:53 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "f9299c2023539a8f27a6e1b12ed260e5"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PWCuYJS3EoU0z9Jit7tTg66n-U46JHbrxGvun8kSF2CS_kMz2S_fOw==
Age: 33385
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/like_user_1.jpeg
143.204.55.121200 OK 1.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/like_user_1.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2aa0d43e70d60d76ac4bdff139f8c7cb
d7e3433297ad90f5d99249aee29b645265c9f3eb
e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/like_user_1.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1293
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:52 GMT
ETag: "2aa0d43e70d60d76ac4bdff139f8c7cb"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 46zJE0jp_G2ise5iUwFSOg9CxkK-ypKBwCc8yEXc32EX5jGS3aWoXA==
Age: 83226
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/2.jpg
143.204.55.121200 OK 2.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/2.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash 2d38216bf35b56368815f026724ad7a6
aa431f11b160c1d6de7c00cdd294eb3082deb8b2
7d32ddf4f92f6fb856eac6ea9db1bf4e3e7d8ce35c27388a814a0e3da9818817
GET /sweeps/iPhone14-EN-Spinner+Flag/2.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1997
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:35 GMT
ETag: "2d38216bf35b56368815f026724ad7a6"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iBJXoymkfuo_G4-FbKZAEe1jK7uyY8E0zSWl-MZCG2bGaFufLIB1xQ==
Age: 83226
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/7.jpeg
143.204.55.121200 OK 4.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/7.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash b067b7287cb30c70952a17bb2c7b2ba8
86208b6a77c998a3121de739716bf30d108d4768
b6c91b9d5eacc1dcc9c4331d865a7f26474a96a18a1d4d80aee0bbdeb7ffb775
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/7.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4333
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:39 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "b067b7287cb30c70952a17bb2c7b2ba8"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6N29HYlToMlAMe8dAK1K3TfxxjQ-tHVoun4Sa1IAWf_0ul6tunkWvA==
Age: 33386
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/3.jpg
143.204.55.121200 OK 2.8 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/3.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash c0435c5a0b8dd743d5b207bccd854567
7b3b222278eddf3448fe2a8aae43e8bec306da91
13c64405bb582243ef141e364556f17e40d2339d8908ef1243f64580535c8911
GET /sweeps/iPhone14-EN-Spinner+Flag/3.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2798
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:36 GMT
ETag: "c0435c5a0b8dd743d5b207bccd854567"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FuBQ3jjBOEMq5Wpbkl3iO-ANxKbilcgRKcbjiYUaWYT_kzGlSX2U9g==
Age: 83226
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/4.jpeg
143.204.55.121200 OK 4.5 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/4.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash ce65860a3580eeb0663aeef0879d9b45
de58e30241ef04769d91e23462eb0b7660fc4888
7a9408bac7aff3dbb3053960f1fda2cd13b39c965105c33556897c5c01e94468
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/4.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4515
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:37 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "ce65860a3580eeb0663aeef0879d9b45"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4HRu5a6mI5jHrkeJQSOHHvn_hYY5LRHHRhpO1xEn19nw5PywW4RYWQ==
Age: 33385
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/6.jpg
143.204.55.121200 OK 2.3 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/6.jpg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5], baseline, precision 8, 50x50, components 3\012- data
Hash 69e5cc03921c4062d38f919618a099c9
3cd7704a62d2307abd2b031117e66e5675b4e870
ca0ebc484c7b346381f4e52721dc1495e7b1b7421c6d471712b248a19265ce78
GET /sweeps/iPhone14-EN-Spinner+Flag/6.jpg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2263
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:38 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "69e5cc03921c4062d38f919618a099c9"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b7KIMIjTAvupOO_fh-UIHyJGj9vzD8g6_nPN891NcotaRz-3Ydrr7w==
Age: 33385
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/8.jpeg
143.204.55.121200 OK 6.1 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/8.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 4c3de954b1a95aad7726248624aad1f3
7022b5b701205dd9a5c0f2b68efa63fd519432a5
cab3a2c8b31da648fbf2594c99f9c33e77b15f1f868e778c31063fc501474dff
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/8.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 6097
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:40 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "4c3de954b1a95aad7726248624aad1f3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tF_kO2mnKL6bI-YfxRrboX5muniALzUL4T3l3gxBo58A6xB6eZ5UbQ==
Age: 33385
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/menu_2x.png
143.204.55.121200 OK 124 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/menu_2x.png
IP 143.204.55.121:0
File type PNG image data, 40 x 36, 8-bit gray+alpha, non-interlaced\012- data
Hash 8f68efd9388ccd80b43759b2ed542305
9f2cf96efe3bdec2ab64bc51856619cc02958fe6
455b82fa1e54fc88fe0699eabecb02155f1d6228e0ae3d7f72e1abe92dae8f3c
GET /sweeps/iPhone14-EN-Spinner+Flag/menu_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 124
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:56 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "8f68efd9388ccd80b43759b2ed542305"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PjnzFuCN2mUDvID7_gkVOd4g_eTwPvo4LL2ZIfPQGIQIs_keaTu4YA==
Age: 33387
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/footer_right.png
143.204.55.121200 OK 4.9 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/footer_right.png
IP 143.204.55.121:0
File type PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data
Hash 0e786b7344ac0b63609290a3a415fc4f
c2e77827e895aaa13522f1c5c0ef79d4caef0bb2
f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5
GET /sweeps/iPhone14-EN-Spinner+Flag/footer_right.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4919
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:47 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:52 GMT
ETag: "0e786b7344ac0b63609290a3a415fc4f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Pgef83y5rirMV-fJXWMpzjAFr_z7o1hc1hPlYVIBnK1K9rzqY4Es3w==
Age: 33385
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/notify_2x.png
143.204.55.121200 OK 229 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/notify_2x.png
IP 143.204.55.121:0
File type PNG image data, 36 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 988234626ae7a880ed9c6a92f6336c0f
173967c2b59baed4a06997d874aba32ab65da201
4566dd8f59a09f51415a7c8955f48f75298522fc6db554bc1a59ad79c3e3e314
GET /sweeps/iPhone14-EN-Spinner+Flag/notify_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 229
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:48 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:57 GMT
ETag: "988234626ae7a880ed9c6a92f6336c0f"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O-XVGaAcImswf0OMku44ZY40469sjiTVVqP3P_w7QYEL8nt54cEi6g==
Age: 83225
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/spin_prize2.png
143.204.55.121200 OK 2.8 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/spin_prize2.png
IP 143.204.55.121:0
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash f278c8d30fc51b72e0774b9ecb49214c
03b574db82b31ee5758eb5093fda8ea25d1b00d8
43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c
GET /sweeps/iPhone14-EN-Spinner+Flag/spin_prize2.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2814
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:08 GMT
ETag: "f278c8d30fc51b72e0774b9ecb49214c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h1PxsofW05Nxm-o3maq6xy9syK8q6DhkYcFEDOKfKOhFJag6H5VV-w==
Age: 83225
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/comment_action_2x.png
143.204.55.121200 OK 641 B URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/comment_action_2x.png
IP 143.204.55.121:0
File type PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data
Hash e9b3872b3e63e19728176d45f0aa6986
b638f89d5d80c4cd65327da973c52f778e30bd55
a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
GET /sweeps/iPhone14-EN-Spinner+Flag/comment_action_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 641
Connection: keep-alive
Date: Sat, 21 Jan 2023 08:06:47 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:43 GMT
ETag: "e9b3872b3e63e19728176d45f0aa6986"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v7_-mYMJtSa9TiM5d4czdEAaGB2eDKpK6rFs0cO5fAMpcVWR0XIJtw==
Age: 83225
hop.greenbluefrog.click/js/pub.min.js
108.178.23.115301 Moved Permanently 162 B URL HTTP/1.1 hop.greenbluefrog.click/js/pub.min.js
IP 108.178.23.115:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /js/pub.min.js HTTP/1.1
Host: hop.greenbluefrog.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 07:13:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://hop.greenbluefrog.click/js/pub.min.js
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ixo.png
143.204.55.121200 OK 562 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/ixo.png
IP 143.204.55.121:0
File type PNG image data, 423 x 880, 8-bit/color RGBA, non-interlaced\012- data
Size 562 kB (561946 bytes)
Hash 3db6e9a86a250c13268be4a224a40333
63fdc9bdf962bd044cc99800e68a7c945298e05b
0f3a2e2e7f8ab18b9513fd334f82e227911e2f0f378ddc63b8b34347f12534c6
GET /sweeps/iPhone14-EN-Spinner+Flag/ixo.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 561946
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 08:17:47 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:53 GMT
ETag: "3db6e9a86a250c13268be4a224a40333"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mIuW6KVELa2p0zh1aRywpIHtHwX9C3eJlK3ZMnk9NlhTDE7dRpWoBQ==
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/main_script.js
143.204.55.121200 OK 1.0 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/main_script.js
IP 143.204.55.121:0
File type CSV text\012- , ASCII text
Hash d743b1d027c4b919ac47f50a5e6160ad
f03c5bcb1db9b12631aae95e45232501670ce798
24642e99f41cfa9b67867fc43036d8a9a8fedfb744143bc2ec97647961c9c932
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/main_script.js HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 22 Jan 2023 07:13:53 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:55 GMT
ETag: W/"dc9a27d01c1e53204a61a4a78b5bec2a"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Le5WDLfa_frBBLqBsXbgewT_JfsajjhPqtq11DN679QmbCSSKFOdBA==
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/clip_footer_3.png
143.204.55.121200 OK 2.5 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/clip_footer_3.png
IP 143.204.55.121:0
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
GET /sweeps/iPhone14-EN-Spinner+Flag/clip_footer_3.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2460
Connection: keep-alive
Date: Sun, 22 Jan 2023 07:13:54 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:42 GMT
ETag: "e1b626392882cc25b4d891afaa68afd4"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EeNuayoxWFr2evrsNdcpEAKN1KBdbANwxNtEUoEmQSWkGiEXjNSsxQ==
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/1.jpeg
143.204.55.121200 OK 2.6 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/1.jpeg
IP 143.204.55.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 50x50, components 3\012- data
Hash cc828ee97beb67097fc7ab536c4af12c
84fea9004c5e5ac398956b2839fc4cd16d6a93ee
a00457ad70d21f9a9e8ab218b4b2174a3fe7ec928f3bcc9e44f994fa382d7d94
Analyzer Verdict Alert fortinet Phishing
GET /sweeps/iPhone14-EN-Spinner+Flag/1.jpeg HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2561
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 06:09:34 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 22 Jan 2023 07:13:54 GMT
ETag: "cc828ee97beb67097fc7ab536c4af12c"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E6oqWapkxm3JOM5XsDlX9n_dDGjUWi6MGDUBklIBqiLM-xHbkF3s4A==
hop.greenbluefrog.click/js/pub.min.js
108.178.23.115200 OK 1.5 kB URL HTTP/2 hop.greenbluefrog.click/js/pub.min.js
IP 108.178.23.115:0
File type ASCII text, with very long lines (2752)
Hash 31c303586c1b78e33984bd252b8e2644
8083e2aad4cbf8242a4e6fb53657d49552b85f82
d2c713c2734353dc0ef2896d057021e9b04f35bb7c851d920d390941769c66be
GET /js/pub.min.js HTTP/1.1
Host: hop.greenbluefrog.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.your-lucky-days.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 07:13:53 GMT
content-type: application/javascript
content-length: 1482
last-modified: Fri, 09 Sep 2022 11:46:08 GMT
vary: Accept-Encoding
etag: "631b2780-5ca"
content-encoding: gzip
expires: Mon, 23 Jan 2023 07:13:53 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 06:17:30 GMT
age: 3383
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/action_icons_20px_2x.png
143.204.55.121200 OK 1.7 kB URL HTTP/1.1 www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/action_icons_20px_2x.png
IP 143.204.55.121:0
File type PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Hash b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /sweeps/iPhone14-EN-Spinner+Flag/action_icons_20px_2x.png HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/style.css
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1726
Connection: keep-alive
Date: Sun, 22 Jan 2023 07:13:54 GMT
Last-Modified: Sun, 23 Oct 2022 06:09:41 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: svZVXfUxw9rOQx14F5Pu5l1EfAfc-35H6A6lVG3rPpgjkJs_cYYy1Q==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2342
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 07:13:53 GMT
Last-Modified: Sun, 22 Jan 2023 06:34:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.88.143.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.143.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: l2hdOJ14sXbXOy3otGCq+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 30DpKd4sRth6jpPX+Fok6uP7fC4=
www.your-lucky-days.xyz/favicon.ico
143.204.55.121403 Forbidden 243 B URL HTTP/1.1 www.your-lucky-days.xyz/favicon.ico
IP 143.204.55.121:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash c43d3209bf640f46c75b29189718fc86
82ef4d3f05a8153b105bc14c9b66901896531279
095814fdde1b781e205c2f4c278aeb8faa7cc301a0f93f30e7ffc05e2b8ee66d
GET /favicon.ico HTTP/1.1
Host: www.your-lucky-days.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.your-lucky-days.xyz/sweeps/iPhone14-EN-Spinner+Flag/index.html?cep=F21FfEt013f6kfVqu2BgT29giOJcQxICK46Hq2TZmzjpG_n9Jddf1N1NA5tmhif8UWeoneLSXw0a67qaxDL4hOE887muGncR46FLb-K1WFXoPdoYqBzL6UUJCtpINYTOUb7VsanNjErdu3aBaLMh7vou_1FuoM2TZK86sA0WLx49XT5Am7-9GsOcZ2DN9CiIveaRvpwLPOKeNUPY5psIfpiizV4DbTx8YnK3Dbd6z3yjzAasaIdMGm-1gDmHTkYTPu9SZ9aBu2x8XclQPD-lqE2lkFIyWAKrLzhsfzz0fGNk91zlQ8_WLZsDExSThjTbzWyzOTl3JyvXMUxy8hocedVaZGEuwDabq6n_ni-7EYxAnCal4Md2vX2PttuiKH1c7wgANFdueF5Q7C0DtX0zV5KybMib02nY8NdfBhz2V78&lptoken=164a747937a334591538
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 22 Jan 2023 07:13:52 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VynD03M9oo20lUEurJJye2CW550JFVhYEon_Whmw3DaQK2O69HgTSw==
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4896
Expires: Sun, 22 Jan 2023 08:35:30 GMT
Date: Sun, 22 Jan 2023 07:13:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4896
Expires: Sun, 22 Jan 2023 08:35:30 GMT
Date: Sun, 22 Jan 2023 07:13:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4896
Expires: Sun, 22 Jan 2023 08:35:30 GMT
Date: Sun, 22 Jan 2023 07:13:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 965b482ff463008a1b5ff0d71d7e6d40
d76bd06810c236fd5fc1450b2bd0b851ebc11d46
0ed628d9cf3c181d5b95da521f0e725661e858e24bff1bb78b5f933c580b3e97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10470
x-amzn-requestid: 572b1438-68f8-4492-9e57-5d0177114b68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF8sIAMFq5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-207d1a1d29c50a80328d65c2;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DIOBA_5UREdjzutxlCzf-4_71pY84L-3tf6iDCgP-ziBTtPMJr71Tw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:26:33 GMT
age: 6441
etag: "d76bd06810c236fd5fc1450b2bd0b851ebc11d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2aec02a691f126259e2a3c701e322ffe
af9161eefc1ee381a8f531c593ea7354d73493eb
e0094d54ca9bbbc4154abec2ce152453ddb1544e020b4a859e5da1f7073a26d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d78dc13-3c8d-4c31-8f64-3f9de4ba79d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4796
x-amzn-requestid: 9ad3dcbc-3d19-4619-a8cb-b316a8d51290
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULpHgKIAMFmYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a4a-769bcf2f4d7787d007ec30e2;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -TjivJmHgT_N2QWC1rn8ng1sl5h53FcgoU9ALMINJEY6onseYEWGRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 08:08:25 GMT
age: 83129
etag: "af9161eefc1ee381a8f531c593ea7354d73493eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd73f3807-16ae-46ce-a9a5-84b639ea80c6.jpeg
34.120.237.76200 OK 2.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd73f3807-16ae-46ce-a9a5-84b639ea80c6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83d96b777a2cac4cb6d577309c8d07e7
86bc900c65d14a338c1d08a0b407590940b39059
50856a41d2bbaec73e06255e06e5ee648f1e7ed1fb04049810d4c03650621bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd73f3807-16ae-46ce-a9a5-84b639ea80c6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2555
x-amzn-requestid: d5425eec-2182-4b90-a03f-47dfa76439bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHOFpEoIoAMF83A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5d57-5326fe1a504805be37823571;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:47:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oxNnK5wjQI8w-_5fTcDKXBdExNMJ_S6y8chMHd_woRSBfkBy3fqR8Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
etag: "86bc900c65d14a338c1d08a0b407590940b39059"
content-type: image/jpeg
age: 33948
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b429642344aabb638e3acbd63463fe8d
f9ea147291359b0fb6e7a78983643949665003d7
acda68bb2566774c9b279e048b62aaaa5a27b87e783048d6765e598ac2c584fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6c542779-10fa-4bbd-9294-3127a104de12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkBEa3IAMF6-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c7f-4d5a606011cb84fd14d7b175;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NLwQoDRTYi8Ol0cDp3gaJpQ7-0kq6ITtm9lzj1qFrKe2oGOK7YWMzg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
age: 33948
etag: "f9ea147291359b0fb6e7a78983643949665003d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54bb2c2439cbf0cefc3075f25576f161
e4e506d7acc877b266c18ae6da3b948e0d41bb1e
8cfef01c8eea67086fdea9865d760f9ed1ecc15dc42f3b2c94fc85d609a31aa2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9334
x-amzn-requestid: 23f9071b-5274-4c6a-9a4a-d63ea74c7483
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWQETCoAMFdjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-393e62854ba77f783f142985;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BWc9_KsIp1FH10PJZFoIteQrb0Q8cfqRN8RiynsqbHyFUHhDCxwqIw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
age: 33948
etag: "e4e506d7acc877b266c18ae6da3b948e0d41bb1e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d59b0db3cc1f31f9154d32804a8e3940
498c310e0f4a84c1350bae55aec0d2a0192f8dda
14a2b4e9763a62478015d8f61bf9e44eb67dfe08a58cc94dc836dc8ff3f1b6cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7014
x-amzn-requestid: c428f2cb-4da9-42e2-abf3-07c2ea3015e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fG9JIF3LoAMF-zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc423a-686ea8b06855d7d57292b617;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 19:51:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lgOnD5vev30ENGosqVxz8i7NfQnRXUqmY2NlSP-wR2PvSWSgLi9UUA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:10:01 GMT
age: 7433
etag: "498c310e0f4a84c1350bae55aec0d2a0192f8dda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2