urlquery - report: hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2373	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5856	34.160.144.191
ajax.googleapis.com (1)	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389	30824	142.250.74.42
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	54.191.251.76
img-getpocket.cdn.mozilla.net (6)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3246	71629	34.120.237.76
hot-message.co (17)	0	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6374	122817	159.65.112.75
r3.o.lencr.org (5)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1690	4434	95.101.11.115
ocsp.digicert.com (2)	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682	1534	93.184.220.29
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	229	34.117.237.239
ocsp.pki.goog (2)	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686	1400	142.250.74.131
wwvv.secure-notifications.co (1)	0	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	294	706	99.83.154.118

Scan Date	Severity	Indicator	Comment
2022-12-01	medium	hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	Phishing
2022-12-01	medium	hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/javascript.js	Phishing
2022-12-01	medium	hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/text.js	Phishing

Date	UQ / IDS / BL	URL	IP
2023-04-18 04:54:05 UTC	0 - 0 - 3	briskmemo.online/SW_FL/SW-03G2-VOUCHER-ES-MER (...)	159.65.112.75
2023-04-17 18:14:58 UTC	0 - 0 - 3	briskmemo.online/SW/SW-03PPV2-VOUCHER-ES-MER- (...)	159.65.112.75
2023-04-17 14:56:28 UTC	0 - 0 - 2	briskmemo.online/SW/SW-03PPV2-VOUCHER-PH-PRGO (...)	159.65.112.75
2023-04-07 14:23:11 UTC	0 - 0 - 3	briskmemo.online/SW_FL/SW-03G2-VOUCHER-ES-MER (...)	159.65.112.75
2023-04-07 04:58:42 UTC	0 - 0 - 2	briskmemo.online/SW/SW-03PPV2-VOUCHER-ZA-CHCK (...)	159.65.112.75

Date	UQ / IDS / BL	URL	IP
2023-06-03 23:56:32 UTC	0 - 2 - 4	advisorycouncil.top/	167.99.137.250
2023-06-03 23:52:05 UTC	3 - 0 - 9	bafybeidalcgaj4ol4ls5exxbksgv6xhwguxgjfgt3pjr (...)	167.99.28.56
2023-06-03 23:45:47 UTC	0 - 6 - 0	lactans.serveo.net/	159.89.214.31
2023-06-03 23:20:39 UTC	0 - 10 - 0	tiny.cc/tdbank016?06	157.245.113.153
2023-06-03 23:20:30 UTC	0 - 12 - 0	tiny.cc/tdbank0016?33	157.245.113.153

Date	UQ / IDS / BL	URL	IP
2023-01-30 04:24:57 UTC	0 - 0 - 5	hot-message.co/SW/SW-03PPV2-VOUCHER-ZA-CHCK-E (...)	159.65.112.75
2023-01-27 02:45:52 UTC	0 - 0 - 4	hot-message.co/SW/SW-03PPV2-VOUCHER-ZA-CHCK-E (...)	159.65.112.75
2023-01-20 16:30:46 UTC	0 - 0 - 3	hot-message.co/SW/SW-03PPV2-VOUCHER-ZA-CHCK-E (...)	159.65.112.75
2023-01-18 10:07:41 UTC	0 - 0 - 3	hot-message.co/SW/SW-03PPV2-VOUCHER-ZA-CHCK-E (...)	159.65.112.75
2023-01-18 09:56:40 UTC	0 - 0 - 4	hot-message.co/SW/SW-03PPV2-VOUCHER-ZA-CHCK-E (...)	159.65.112.75

Date	UQ / IDS / BL	URL	IP
2023-03-25 18:20:13 UTC	0 - 0 - 3	secure.wisecaptcha.com/912b226a-0dcc-4e00-8a5 (...)	18.193.209.105
2023-03-25 17:57:36 UTC	0 - 0 - 2	bolt-dispatch.xyz/SW/SW-03PPV2-VOUCHER-ZA-CHC (...)	159.65.112.75
2023-03-25 15:17:28 UTC	0 - 0 - 2	bolt-dispatch.xyz/SW/SW-03PPV2-VOUCHER-ZA-CHC (...)	159.65.112.75
2023-03-25 15:17:28 UTC	0 - 0 - 2	bolt-dispatch.xyz/SW/SW-03PPV2-VOUCHER-ZA-CHC (...)	159.65.112.75
2023-03-11 18:25:58 UTC	0 - 0 - 3	secure.um-captcha.com/4fed63d9-6282-4d70-bed1 (...)	18.193.209.105

Request	Response
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	159.65.112.75 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 25 Dec 2020 08:56:08 GMT ETag: W/"930-5b746186bcbac" Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators Size: 851 Md5: 79e65839f19db7ada1913904757532ec Sha1: dec37037206922ffbd2aa2fd48769498a3038ad8 Sha256: cf44e43a74ab1d5bf812697c43b5252fd073f1b1f9f492bed2812e01824cf996 Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17469 Expires: Fri, 02 Dec 2022 03:03:52 GMT Date: Thu, 01 Dec 2022 22:12:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3bbb845b153026fc5332dd4506585b57 Sha1: 3cad200fac28fd00f34ce6ef79373e661e188743 Sha256: 6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5439 Cache-Control: 'max-age=158059' Date: Thu, 01 Dec 2022 22:12:43 GMT Last-Modified: Thu, 01 Dec 2022 20:42:04 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 0c748388899e8a8d3680355da2ea5020 Sha1: 903c620cd137613daafb0da0508c37b2f4a67212 Sha256: 39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4560 Expires: Thu, 01 Dec 2022 23:28:43 GMT Date: Thu, 01 Dec 2022 22:12:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 55b4c61a1e99001307750e3647fe1102 Sha1: 7559f9f6770b7d3f45b723167062096312641e08 Sha256: 39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 01 Dec 2022 21:19:49 GMT cache-control: public,max-age=3600 age: 3174 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 14cd9a0afb6ba9a763651d5112760d1e Sha1: 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: 85oR+H//NV6YqBoq5Sk6S/5ZzVrLUwjm2F34Tr4Npdha9ZCNuG5eTQqBukgRObnrHfmOqYzenQ3VqxrIv39+IA== x-amz-request-id: Q5PTRMTTEHJVRFX8 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 01 Dec 2022 21:45:49 GMT age: 1614 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/style.css HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 25 Dec 2020 08:56:14 GMT ETag: W/"129e-5b74618bc7bc8" Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 1507 Md5: bdf11b79e48cc3a5a880bb6f7b34d6a7 Sha1: bb10a4303f09abacc9d8dbefc4a1d016e7ded788 Sha256: 0e8df3d3b2167f8fb572f917c5c79be1fa55ccfc6d96b53d54a3d7cec65a3a42
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/javascript.js HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 25 Dec 2020 08:56:11 GMT ETag: W/"224c-5b7461894335a" Content-Encoding: gzip --- Additional Info --- Magic: Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with very long lines (1642), with CRLF line terminators Size: 2955 Md5: 5efb9302e5b3acb7e971b98ca92fb89e Sha1: 17f67716c5be38a190a3b1f624cc476517da2c0f Sha256: 07c7d91e131e65d2d4420ad3397ab039c0e042359c96709e39e892a83edf8553 Blocklists: - fortinet: Phishing
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 01 Dec 2022 22:12:43 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/text.js HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 25 Dec 2020 08:56:15 GMT ETag: W/"e80-5b74618d756bd" Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1360 Md5: be60d9eddd42b880bc2e7730a51fb811 Sha1: c8ccfa176441b2627808b0064e4df39adf4796e6 Sha256: 849edc84578509afd4a51b33b2c2411a2e1afe1b02a30ab6bc2b8f21f3ae6230 Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 22:12:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3519a58310eefa01756f0440e2acd7dd Sha1: 50153382830684a6abb653dc7b4e41d7c7e386b5 Sha256: 5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://hot-message.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.42 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 29725 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Dec 2022 08:31:51 GMT expires: Fri, 01 Dec 2023 08:31:51 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 49252 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32025) Size: 29725 Md5: 83b3b5729cdff3976db52c51831e96b8 Sha1: d23dc823e37f58e5366340be755730f3fa9a850d Sha256: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421
GET /js/pub.min.js HTTP/1.1 Host: wwvv.secure-notifications.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/	99.83.154.118 HTTP/1.1 200 OK Content-Type: text/javascript;charset=UTF-8 Date: Thu, 01 Dec 2022 22:12:43 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx X-Language: norwegian Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 --- Additional Info --- Magic: ASCII text Size: 341 Md5: 0dbdc3bad08bd103a3ca4dd2ee9bd588 Sha1: 1c81165a3a1a925064a16c68991393f35f828844 Sha256: 0c823605e45fd47b02f9a669a0fd4489d1fd748d64ddbe3cc0f2c62c2afd1a79
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 22:12:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3519a58310eefa01756f0440e2acd7dd Sha1: 50153382830684a6abb653dc7b4e41d7c7e386b5 Sha256: 5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/l.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/style.css	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 175 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:11 GMT ETag: "af-5b746189730f9" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 13 x 12, 4-bit colormap, non-interlaced\012- data Size: 175 Md5: 7f5f867f5a1cc4c7f1bee43696ea4af9 Sha1: 2dfcae77833aa29271c69009dc617688fcfbea0e Sha256: 2afc36927f6530f2e793065e7e077ddba745cf85dd81eedf5633025ba80924bd
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/m_w.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 236 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:12 GMT ETag: "ec-5b74618a4dcf3" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 40 x 50, 8-bit/color RGBA, non-interlaced\012- data Size: 236 Md5: 7c55d0a952585a0934374a44fd38fc26 Sha1: b1fce8b92d801908234542184852a79a96b3c69e Sha256: 0ba95122154369bab4a5809962d9cf8fe91b69161e490bcbfd61581365b940a7
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/o.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 11491 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:13 GMT ETag: "2ce3-5b74618af0e4e" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 250 x 64, 8-bit/color RGBA, non-interlaced\012- data Size: 11491 Md5: a52e92971a22c542c647f7d97527aad5 Sha1: 3a70a6fa2227a7a59a03d2f02f2e93500049d2a8 Sha256: 554f1383a34a92cf345dcdf13111625dbfbbfdde9ab2a3ae9f1605e1dc7e7428
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/1.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 2995 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:02 GMT ETag: "bb3-5b746180dfc35" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 2995 Md5: 8791e59b59badc491d77aa441ff2d5a4 Sha1: 1c49d467b4f0c79c5c1f3447ed039f8ef5085be0 Sha256: eb7a23dac70eeaaee3f98d90dc6e1a320b09efa45e3d040ff39ef356db534e76
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/4.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 3042 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:03 GMT ETag: "be2-5b746181b988f" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 3042 Md5: 01de7788fa43fd9bc2b5a8a42157885e Sha1: bde6c95effbca931967a3865fee51202995f614a Sha256: 65c9b64dc0645a9d33257df0a2090b592c491055941d4e35cb78b42dc70d961f
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/5.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 2944 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:04 GMT ETag: "b80-5b746182898a9" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 2944 Md5: 8a406874bb03e9e25415e31098ea935d Sha1: 16aef4f599c9eea9a6ff7974cc6029e172c0cd4a Sha256: 7201139a2f3258951332500c7835025482e222e79754c0956c1ba99a51390b86
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/2.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 2980 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:02 GMT ETag: "ba4-5b746180ddcf5" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 2980 Md5: 11305d3c7846f8fe26653ab69ab2ab70 Sha1: f4794abaadaef1630b17da5cac433dae7fdcc23f Sha256: 068243b297239afbf7abc00dcb74f12c4f507eebed96f399a51537be8be09ec9
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/3.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 3117 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:03 GMT ETag: "c2d-5b746181b3acf" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 3117 Md5: 40d8b04b73de59c93750121445aed498 Sha1: ba5307d2ab27fc5e6c28407de93820dd2ecf0b49 Sha256: 9c9c2b5518312287d6377a38286b36d0025cb9bdc19d106e0ef358d0c9ecd156
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/a.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 21047 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:05 GMT ETag: "5237-5b74618360623" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced\012- data Size: 21047 Md5: 00079ff1ac333a44fcef3d9caf7b88e1 Sha1: d7b0fd07a16bdabb4be71ee4a889fcb02c9a539e Sha256: 11c473d8a2d02601a32761c5d22e1f7564205d3006a9d18e4a269183053ed3f4
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/6.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 3111 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:04 GMT ETag: "c27-5b746182934e9" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size: 3111 Md5: 2dac80b17741d265574d17ad5bfcc866 Sha1: e1cec63c76f2be07abf318fa1899f88f12fc336c Sha256: 6b6946c28a3d2da5b9dd9632aa80fb85b8883d052db771ec17489fd8473413ef
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/s.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 9775 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:13 GMT ETag: "262f-5b74618b288ed" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size: 9775 Md5: fff94a5719a346c10d76c34b55b15023 Sha1: 988be071c096b37b716670d139ea62179d25d138 Sha256: 4cdfdb1301d3d2c30a88cc6683062ce0f38867d5b62c4cb704855df748abc0ac
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/ixs.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Thu, 01 Dec 2022 22:12:43 GMT Content-Length: 50806 Connection: keep-alive Last-Modified: Fri, 25 Dec 2020 08:56:10 GMT ETag: "c676-5b7461886a6a0" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 250 x 185, 8-bit/color RGBA, non-interlaced\012- data Size: 50806 Md5: 13c54f611e2d013935a78f68acf1bda4 Sha1: 005f6244d47575e2592c0bbaa3bc36c810385009 Sha256: b758d73b3d9b95ce0fe4d8c3769910432bc10c85e568fc64d733e94625a45ce4
GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/f.png HTTP/1.1 Host: hot-message.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html	159.65.112.75 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Thu, 01 Dec 2022 22:12:44 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 283 Md5: 2065026f0b0e1f2572971dc61c909e88 Sha1: 6cf2975375c69da6cf55e0e4e3f9d1c0bec3372e Sha256: 2740a84523cc48f6e534c77021dbfeff5a947d121ccaacac5488a8a1b0cfcb1f
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 01 Dec 2022 22:08:56 GMT cache-control: public,max-age=3600 age: 228 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5486 Cache-Control: max-age=131131 Date: Thu, 01 Dec 2022 22:12:44 GMT Etag: "63886ea9-1d7" Expires: Sat, 03 Dec 2022 10:38:15 GMT Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 1f88399f3fdd89dbb9ca1229cb67143a Sha1: 325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3 Sha256: 831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: BtKwq7cEEHm5dIsrFUJFOw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	54.191.251.76 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 2K1a4eQHlpbh8qUBUpBiqfEwh84= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12207 Expires: Fri, 02 Dec 2022 01:36:12 GMT Date: Thu, 01 Dec 2022 22:12:45 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12207 Expires: Fri, 02 Dec 2022 01:36:12 GMT Date: Thu, 01 Dec 2022 22:12:45 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12207 Expires: Fri, 02 Dec 2022 01:36:12 GMT Date: Thu, 01 Dec 2022 22:12:45 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12898 x-amzn-requestid: 57b0b2d9-b5e2-4ea0-88ab-c4e8a8fdb704 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cb0TRFdToAMFRNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cdae-5b5571c21dfc17d05b186901;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: j9Wb5zA-8dcUqm8xIiyWCCE5pg8Edc3b48gVtOWM5QUgWzTfT4K_aA== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 21:49:20 GMT age: 1405 etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12898 Md5: 820cf89fcab8380adff42982c9fb11ed Sha1: 84241ddddbbfd7de30118307fb1a62800d0a4cb3 Sha256: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4762 x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cP7uSFcMoAMF2CQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 13:29:36 GMT age: 31389 etag: "fa2217bae05b7beca2e12597eaad835298276b82" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4762 Md5: d2dd5a4bcfd47db8f38544bf39ce3031 Sha1: fa2217bae05b7beca2e12597eaad835298276b82 Sha256: 3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13411 x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz6vH05oAMF_qw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 21:48:19 GMT age: 1466 etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13411 Md5: 328ce221bcf3442f88d09373193ff594 Sha1: 63bfa2ea925aa2c188c664a7bf7af7b0e5417e60 Sha256: 21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9459 x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cMpBiGoHIAMFR2g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 10:48:24 GMT age: 41061 etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9459 Md5: e1e6b6ba4f82221b41c3d9129008c76d Sha1: 2f9532d698b4c28df23e18bbb66399ec776d5b9f Sha256: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 16038 x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz80EHboAMFtmQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 21:45:33 GMT age: 1632 etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 16038 Md5: ffd12f9c423ffc627d9e3b3145944fe4 Sha1: 5cf9a7a784952e1bb0cbe499104f1774b1269d08 Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8740 x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cP7SqHjYIAMF8xw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google date: Thu, 01 Dec 2022 12:31:43 GMT age: 34862 etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8740 Md5: 26d6dffbf400da4803a2e76e2a8ef2f8 Sha1: 2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8 Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             93.184.220.29

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 5439 

                                            
                                                
Cache-Control: 'max-age=158059' 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Last-Modified: Thu, 01 Dec 2022 20:42:04 GMT 

                                            
                                                
Server: ECS (ska/F6FD) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    0c748388899e8a8d3680355da2ea5020

                                                Sha1:   903c620cd137613daafb0da0508c37b2f4a67212

                                                Sha256: 39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 939 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Thu, 01 Dec 2022 21:19:49 GMT 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
age: 3174 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    14cd9a0afb6ba9a763651d5112760d1e

                                                Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa

                                                Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/style.css HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:14 GMT 

                                            
                                                
ETag: W/"129e-5b74618bc7bc8" 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   1507

                                                Md5:    bdf11b79e48cc3a5a880bb6f7b34d6a7

                                                Sha1:   bb10a4303f09abacc9d8dbefc4a1d016e7ded788

                                                Sha256: 0e8df3d3b2167f8fb572f917c5c79be1fa55ccfc6d96b53d54a3d7cec65a3a42

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.117.237.239

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
content-length: 12 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   472

                                                Md5:    3519a58310eefa01756f0440e2acd7dd

                                                Sha1:   50153382830684a6abb653dc7b4e41d7c7e386b5

                                                Sha256: 5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

                                        
                                            GET /js/pub.min.js HTTP/1.1 

                                        
                                            
Host: wwvv.secure-notifications.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/

                                        
                                             99.83.154.118

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript;charset=UTF-8

                                            

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Server: nginx 

                                            
                                                
X-Language: norwegian 

                                            
                                                
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile 

                                            
                                                
Accept-CH-Lifetime: 30 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   341

                                                Md5:    0dbdc3bad08bd103a3ca4dd2ee9bd588

                                                Sha1:   1c81165a3a1a925064a16c68991393f35f828844

                                                Sha256: 0c823605e45fd47b02f9a669a0fd4489d1fd748d64ddbe3cc0f2c62c2afd1a79

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/l.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/style.css

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 175 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:11 GMT 

                                            
                                                
ETag: "af-5b746189730f9" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 13 x 12, 4-bit colormap, non-interlaced\012- data

                                                Size:   175

                                                Md5:    7f5f867f5a1cc4c7f1bee43696ea4af9

                                                Sha1:   2dfcae77833aa29271c69009dc617688fcfbea0e

                                                Sha256: 2afc36927f6530f2e793065e7e077ddba745cf85dd81eedf5633025ba80924bd

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/o.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 11491 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:13 GMT 

                                            
                                                
ETag: "2ce3-5b74618af0e4e" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 250 x 64, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   11491

                                                Md5:    a52e92971a22c542c647f7d97527aad5

                                                Sha1:   3a70a6fa2227a7a59a03d2f02f2e93500049d2a8

                                                Sha256: 554f1383a34a92cf345dcdf13111625dbfbbfdde9ab2a3ae9f1605e1dc7e7428

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/4.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 3042 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:03 GMT 

                                            
                                                
ETag: "be2-5b746181b988f" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data

                                                Size:   3042

                                                Md5:    01de7788fa43fd9bc2b5a8a42157885e

                                                Sha1:   bde6c95effbca931967a3865fee51202995f614a

                                                Sha256: 65c9b64dc0645a9d33257df0a2090b592c491055941d4e35cb78b42dc70d961f

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/2.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 2980 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:02 GMT 

                                            
                                                
ETag: "ba4-5b746180ddcf5" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data

                                                Size:   2980

                                                Md5:    11305d3c7846f8fe26653ab69ab2ab70

                                                Sha1:   f4794abaadaef1630b17da5cac433dae7fdcc23f

                                                Sha256: 068243b297239afbf7abc00dcb74f12c4f507eebed96f399a51537be8be09ec9

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/a.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 21047 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:05 GMT 

                                            
                                                
ETag: "5237-5b74618360623" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   21047

                                                Md5:    00079ff1ac333a44fcef3d9caf7b88e1

                                                Sha1:   d7b0fd07a16bdabb4be71ee4a889fcb02c9a539e

                                                Sha256: 11c473d8a2d02601a32761c5d22e1f7564205d3006a9d18e4a269183053ed3f4

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/s.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:43 GMT 

                                            
                                                
Content-Length: 9775 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Fri, 25 Dec 2020 08:56:13 GMT 

                                            
                                                
ETag: "262f-5b74618b288ed" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   9775

                                                Md5:    fff94a5719a346c10d76c34b55b15023

                                                Sha1:   988be071c096b37b716670d139ea62179d25d138

                                                Sha256: 4cdfdb1301d3d2c30a88cc6683062ce0f38867d5b62c4cb704855df748abc0ac

                                        
                                            GET /SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/f.png HTTP/1.1 

                                        
                                            
Host: hot-message.co

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html

                                        
                                             159.65.112.75

                                            
                                                HTTP/1.1 404 Not Found 

                                            
                                                
Content-Type: text/html; charset=iso-8859-1

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:44 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   283

                                                Md5:    2065026f0b0e1f2572971dc61c909e88

                                                Sha1:   6cf2975375c69da6cf55e0e4e3f9d1c0bec3372e

                                                Sha256: 2740a84523cc48f6e534c77021dbfeff5a947d121ccaacac5488a8a1b0cfcb1f

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             93.184.220.29

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 5486 

                                            
                                                
Cache-Control: max-age=131131 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:44 GMT 

                                            
                                                
Etag: "63886ea9-1d7" 

                                            
                                                
Expires: Sat, 03 Dec 2022 10:38:15 GMT 

                                            
                                                
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT 

                                            
                                                
Server: ECS (ska/F6FD) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    1f88399f3fdd89dbb9ca1229cb67143a

                                                Sha1:   325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3

                                                Sha256: 831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" 

                                            
                                                
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=12207 

                                            
                                                
Expires: Fri, 02 Dec 2022 01:36:12 GMT 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:45 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    ecab83d593cc540b02689be5be7abc8a

                                                Sha1:   81cda579b7b9b22332b85266b0126585f3d3f73f

                                                Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" 

                                            
                                                
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=12207 

                                            
                                                
Expires: Fri, 02 Dec 2022 01:36:12 GMT 

                                            
                                                
Date: Thu, 01 Dec 2022 22:12:45 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    ecab83d593cc540b02689be5be7abc8a

                                                Sha1:   81cda579b7b9b22332b85266b0126585f3d3f73f

                                                Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4762 

                                            
                                                
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cP7uSFcMoAMF2CQ= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw== 

                                            
                                                
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Thu, 01 Dec 2022 13:29:36 GMT 

                                            
                                                
age: 31389 

                                            
                                                
etag: "fa2217bae05b7beca2e12597eaad835298276b82" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4762

                                                Md5:    d2dd5a4bcfd47db8f38544bf39ce3031

                                                Sha1:   fa2217bae05b7beca2e12597eaad835298276b82

                                                Sha256: 3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 9459 

                                            
                                                
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cMpBiGoHIAMFR2g= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg== 

                                            
                                                
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Thu, 01 Dec 2022 10:48:24 GMT 

                                            
                                                
age: 41061 

                                            
                                                
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9459

                                                Md5:    e1e6b6ba4f82221b41c3d9129008c76d

                                                Sha1:   2f9532d698b4c28df23e18bbb66399ec776d5b9f

                                                Sha256: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 8740 

                                            
                                                
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cP7SqHjYIAMF8xw= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw== 

                                            
                                                
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Thu, 01 Dec 2022 12:31:43 GMT 

                                            
                                                
age: 34862 

                                            
                                                
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8740

                                                Md5:    26d6dffbf400da4803a2e76e2a8ef2f8

                                                Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8

                                                Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

URL	hot-message.co/SW/SW-03G2-VOUCHER-ZA-CHCK-EN-HJ_CL/index.html
IP	159.65.112.75 (Germany)
ASN	#14061 DIGITALOCEAN-ASN
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access
Report completed	2022-12-01 22:12:54 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	3
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (11)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 159.65.112.75

Last 5 reports on ASN: DIGITALOCEAN-ASN

Last 5 reports on domain: hot-message.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (7)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (39)

Overview

Domain Summary (11)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 159.65.112.75

Last 5 reports on ASN: DIGITALOCEAN-ASN

Last 5 reports on domain: hot-message.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (7)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (39)

Network Intrusion Detection Systems