www.takeyourchance.life/id_iphone13p/index.html
54.230.111.101200 OK 4.0 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/index.html
IP 54.230.111.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1167)
Hash 337d7d1b0c3b50ea8a1a3fa12e14ac8e
8d1d2a96a689cadee39c175ab5872a40ff58da88
21badc026c9c21ffe4ca1e6642d57ea22e659a46ee4a76b3c9aed14ec8474770
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/index.html HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 09:49:39 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 08 Jan 2023 10:04:10 GMT
ETag: W/"6919a6e7ca332820fe9f1cde21f484fa"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: F7dHg6-TxTwi5PodJz2XmyOy3fVN9QgDd9YXJEICaTLAjeNJXRdwoQ==
Age: 16112
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3836
Expires: Sun, 08 Jan 2023 15:36:38 GMT
Date: Sun, 08 Jan 2023 14:32:42 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e4bdd77c0369662aa71ce2d01fd3edab
0ab1c5857e200e7e7946424c2c844537bfbb9775
a163c19fcc8fcf985e8df6ad4bd7ce73912b3df892d8236c70f9bc80820b26da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A163C19FCC8FCF985E8DF6AD4BD7CE73912B3DF892D8236C70F9BC80820B26DA"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6869
Expires: Sun, 08 Jan 2023 16:27:11 GMT
Date: Sun, 08 Jan 2023 14:32:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 08 Jan 2023 13:48:17 GMT
content-type: application/json
age: 2665
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 75f0037a1d53a9a5321a796206ec3e24
70d42c9bf1334f20e1cea4ce3c8212e0e780ee77
80ec1e61f9563e799c9f44ea31e616c37daea1b9670091fbbc6efc39ebafe3d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80EC1E61F9563E799C9F44EA31E616C37DAEA1B9670091FBBC6EFC39EBAFE3D3"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4646
Expires: Sun, 08 Jan 2023 15:50:08 GMT
Date: Sun, 08 Jan 2023 14:32:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oZcW4soq1uYFJSrmBfdKlP7CR12Phdx/YhiVlpnTsetPQfqBT0wBczPZyIJZkv6aWPll34qM8J2otRcLWiF+JA==
x-amz-request-id: 49BVNYXYJ4SGKV61
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 14:15:48 GMT
age: 1014
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.takeyourchance.life/id_iphone13p/css/app.css?id=c588c17324f2be0e0ec9
54.230.111.101200 OK 33 B URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/css/app.css?id=c588c17324f2be0e0ec9
IP 54.230.111.101:0
File type ASCII text, with no line terminators
Hash c588c17324f2be0e0ec90a18f39e7d7c
69d360eddd15f527aac7f7e610346517732b7770
b83e8830b6b2f1253a78f90191cf1087e8fd7638831fd4c1376a7a6029297240
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/css/app.css?id=c588c17324f2be0e0ec9 HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 33
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:39 GMT
ETag: "c588c17324f2be0e0ec90a18f39e7d7c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cwka0xjh9b-TLJGY6-l0N-E9j-KBxUVcSjmdDUno5wXqYRgF3aX7Xw==
Age: 29079
www.takeyourchance.life/id_iphone13p/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
54.230.111.101200 OK 1.1 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444
IP 54.230.111.101:0
File type ASCII text, with very long lines (3495), with no line terminators
Hash 198a79f375484ab46c756a2977f12709
7fcf58f7242c363bb0eb398ada164f02e597b7ce
9118ca9b669cbdea0c8b74d6621177e27e2e0c81f9dab0d70c455a1d9e4fd02f
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/css/landers/prizewheel-fb/app.css?id=cd41123a11e97e0f2444 HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:41 GMT
ETag: W/"cd41123a11e97e0f2444b57d180631a0"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IfjK1PCbbDo3hPKd39XEjn9lTJVZToMKz-_jntanA6iRW_xb-We4ew==
Age: 29079
www.takeyourchance.life/id_iphone13p/js/app.js?id=15b1bae461854d516179
54.230.111.101200 OK 977 B URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/js/app.js?id=15b1bae461854d516179
IP 54.230.111.101:0
File type ASCII text, with very long lines (977), with no line terminators
Hash 15b1bae461854d516179a34a8c9b5f08
330c1d191253fe07c5fe6b5af37872408f2e5904
1bd25e467ea078265aee433e0cf9732a7e127514304634590a2de17fb2330896
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/js/app.js?id=15b1bae461854d516179 HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 977
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:40 GMT
ETag: "15b1bae461854d516179a34a8c9b5f08"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HalnXxonhO1HfkNJcr1EMWzgV3WpbWHg7HmNAE0xdt0KZeIbkOqlTQ==
Age: 29079
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 14:32:42 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.takeyourchance.life/id_iphone13p/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6
54.230.111.101200 OK 52 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6
IP 54.230.111.101:0
File type ASCII text, with very long lines (65475)
Hash 82e9f1b63b269fd837fe360c77cdce43
ec40c4794904d8bfe8f0c81baefb9c6a7df8fe85
722d123f5ce5a1af3fa1b3c8ff825c8181758b330111c4b8a7678b8c8aa800ba
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/js/landers/prizewheel-fb/app.js?id=c3c399d8b44b50eee3e6 HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:45 GMT
ETag: W/"cdf97653c213f02233f50a1ec975633c"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xVJSqdxRTxLxcFlMdEoepExFT5ow-pKOQzX8iLC7d0hhRe1vRxq_pw==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/loader.gif
54.230.111.101200 OK 5.1 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/loader.gif
IP 54.230.111.101:0
File type GIF image data, version 89a, 50 x 50\012- data
Hash ed786659a534e0d183c09a90c50abc9d
a6c3d90bfaa86a7cda490bc5d04c8939c31a414e
cbaeb154dcb93bff5f6e382cede5d51a11175a2295e56bb2790611910280ba97
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/landers/prizewheel-fb/loader.gif HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 5083
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:42 GMT
ETag: "ed786659a534e0d183c09a90c50abc9d"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FTc0iEhWIqvHkka3Hv-DCSGq2zLje-hOQi3CV2m8j4etpJW39EtjAQ==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/prizes/iphone-12-pro-max/default@0.5x.png
54.230.111.101200 OK 32 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/prizes/iphone-12-pro-max/default@0.5x.png
IP 54.230.111.101:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c562f63263ffff2688791c38014b36bc
59fe19592cb3f6a2709c418026f0a1ddb12c1314
c331ce815fcd0ed99bc592c082eed6e51efd0f107d2ae967021d0273def59ae8
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/prizes/iphone-12-pro-max/default@0.5x.png HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 32266
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:44 GMT
ETag: "c562f63263ffff2688791c38014b36bc"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4uvSHe0LwFis2lVTb7A_YiyyFZCLA-u7ZTgW2hPeTeFt10wi_ASlwQ==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/prizewheel_spinner.jpg
54.230.111.101200 OK 32 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/prizewheel_spinner.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1002x1002, components 3\012- data
Hash d4655cba21d806e849eed4e4119fbe1a
6453039d85005643e9d65074ca022f63b5d47cdd
90f2363aaebaf03f06fb20c6c02fb2e97497d7cd54b611281303ce7e10335ee7
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/landers/prizewheel-fb/prizewheel_spinner.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 32496
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:43 GMT
ETag: "d4655cba21d806e849eed4e4119fbe1a"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SDH1nYD46SGLx0pkJ6JtFe5aRvOxNRb0Wc7IMf8Sd7oIaVe3KiGcVA==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/notification.png
54.230.111.101200 OK 449 B URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/notification.png
IP 54.230.111.101:0
File type PNG image data, 30 x 28, 8-bit colormap, non-interlaced\012- data
Hash bd5203f2cc9e7a9125e4575e029541b0
9fa565ab2f4b55da4735b79e529562252b3c9afe
db94c8ae725f947f20e12df29e6b6c8ade5ffcd5a7dc9ffd9be0351d963f826f
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/landers/prizewheel-fb/notification.png HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 449
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:42 GMT
ETag: "bd5203f2cc9e7a9125e4575e029541b0"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c_GRwrKjMHkdbZ080Lp7v4aBRMuUMfmr7XotCOLGXPZDkcbrbnoYPg==
Age: 29079
poavoabe.net/pfe/current/micro.tag.min.js?z=5635023&sw=/sw-check-permissions-77dfa.js
139.45.197.251200 OK 14 kB URL HTTP/1.1 poavoabe.net/pfe/current/micro.tag.min.js?z=5635023&sw=/sw-check-permissions-77dfa.js
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (39559), with no line terminators
Hash 710afc5f904ea87801da7e4974cf1979
8e8351827329a8671b337441784391195dc27c4f
24e7227f0bed8ca17bcc0a344c550167c34016d0160111bfff4136b570f82ca8
Analyzer Verdict Alert quad9 Sinkholed
GET /pfe/current/micro.tag.min.js?z=5635023&sw=/sw-check-permissions-77dfa.js HTTP/1.1
Host: poavoabe.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 14:32:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 21 Dec 2022 12:58:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63a302ea-9a87"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/prizewheel_static.png
54.230.111.101200 OK 3.4 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/landers/prizewheel-fb/prizewheel_static.png
IP 54.230.111.101:0
File type PNG image data, 1002 x 1002, 4-bit colormap, non-interlaced\012- data
Hash dc484e0043b5ff6191b1880c8779863c
a5b67e3dff3dea3940eed090431aecbb36611b1d
30bc059973d84a6e1d22d16747bce062025561f2555cdd9cec012a87866abcb6
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/landers/prizewheel-fb/prizewheel_static.png HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3370
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:43 GMT
ETag: "dc484e0043b5ff6191b1880c8779863c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: avHEYCT9z4ib9pOSDMvUE4T9dMnbxEOKphjpn5ipBCt361yWboLHdQ==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/3@0.25x.jpg
54.230.111.101200 OK 2.2 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/3@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 416a9ac5fd0ca2aed360978e25be371f
5dc8bdaf5a76cf8d30704307028f4d99a4d23d8c
aecf7c36838378c8cd64dc23ffc41520af456be9988a8dc7cea7ac4c2c8622c8
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/female/3@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2158
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:47 GMT
ETag: "416a9ac5fd0ca2aed360978e25be371f"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tSeOvWsAB7lGVqedTNXtDO7kvXjaHjgpmSEyWOPu1-ZHl_WO-Ra6gg==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/3@0.25x.jpg
54.230.111.101200 OK 2.3 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/3@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 6ede8ec6c006ba9b6d599594b1216b39
de9935d33084c6039356754089b37bc6dddc7967
9ce1ea56ece22bc5538f1e00e20b9711bf8a6ce2ae50c3784bbdee8045810a5f
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/male/3@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2339
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:49 GMT
ETag: "6ede8ec6c006ba9b6d599594b1216b39"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zCr8X7PE87vG7pRPhEziIBoNO3wuaqPu5wchufpF1KG9p8r-axPFmg==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/10@0.25x.jpg
54.230.111.101200 OK 2.9 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/10@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 86b261eb8d87cbde9c3abe9e26c0a40f
6d55e83dbc2c00ebd72234bc262e21672e442bd1
08bbfd3aae6e03405edf03a9fcd59b4e89f3c9a5ca589903529ef68ca69d6180
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/male/10@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2943
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:48 GMT
ETag: "86b261eb8d87cbde9c3abe9e26c0a40f"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cAvgQL4D1NgnqahigVOCkHYWwsB9u1DoJ4RfkWOc16ML8EkI53NL1w==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/6@0.25x.jpg
54.230.111.101200 OK 2.0 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/6@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 59847cce3476cca8505c7a827872236f
ea39084f48871e89a0223e0e965015efff7ee38c
c8f0a621fe9c6ce356739a9acda6fe820662bd484599b78376a7103ad98f1fc5
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/female/6@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2028
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:48 GMT
ETag: "59847cce3476cca8505c7a827872236f"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OLjFX3VjVRKRvg4RkUX8nUoFsvexgA2QLAHdbTdGmTR3TT24FqiGGQ==
Age: 29079
www.takeyourchance.life/id_iphone13p/img/prizes/iphone-12-pro-max/proof.jpg
54.230.111.101200 OK 23 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/prizes/iphone-12-pro-max/proof.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 339x450, components 3\012- data
Hash 029d38095e06ced0688fd67a58e70781
b5bdaddeb39b947c35f883f001f34dd163bcb362
5e41534f027f676ce89db3b87319ffbdc1a1e7515e379f80f476e0989fa4bcc1
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/prizes/iphone-12-pro-max/proof.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 23152
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:05 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:45 GMT
ETag: "029d38095e06ced0688fd67a58e70781"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N5OSrHnqY-2GOLTuvRrOw7XCZLaBgYACrQ1OF-EQUJpxtYnvRnuVUQ==
Age: 29078
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/5@0.25x.jpg
54.230.111.101200 OK 2.1 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/5@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 66de87531ed7a3a15bfedf1243f2d47d
9f16d255c345cc6aa5f11c55054b14a437cb9928
deb4baab3c5b3d69a77c4d54223a779e8abd1c16901e868761daea039b72938d
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/female/5@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2119
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:05 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:47 GMT
ETag: "66de87531ed7a3a15bfedf1243f2d47d"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YGLAOQ4PWuh4pw9wv3QWVmqfIZsq5TFAFDLMjMJPHqG2FvJXdu5NOA==
Age: 29078
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/1@0.25x.jpg
54.230.111.101200 OK 2.7 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/female/1@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash c18edd23c9c6a3e0de0422f70ebea2b9
9fe0441e72106139a4b0fef099f9edd59dfaa8a8
26dd2d0dcc9c52e45ace408e9b8825b382d470d56e3ea26c46f255678c7bbff7
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/female/1@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2684
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:05 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:46 GMT
ETag: "c18edd23c9c6a3e0de0422f70ebea2b9"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VhqVsQ1AMUkP95imkHlhyYy2LakfbF6TnsTMe-7GHBnD30eUurDsAw==
Age: 29078
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/2@0.25x.jpg
54.230.111.101200 OK 2.8 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/2@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 6b9fc88b7c9acdcace6645590078a62e
a39c1b2c0228e09416c1ea638ecea595b4cc10dc
997f2108d246b9be0badf2d20de35962423f41a3a5acb884c7cf85ed18b25f50
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/male/2@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2804
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:05 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:49 GMT
ETag: "6b9fc88b7c9acdcace6645590078a62e"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LNsCZalGiRkcaci_RFJKCplJBKJU5gA9Ai8Dp4o82KmLofoorq63bQ==
Age: 29078
www.takeyourchance.life/id_iphone13p/img/fb-like.svg
54.230.111.101200 OK 2.1 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/fb-like.svg
IP 54.230.111.101:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4627), with no line terminators
Hash 6cf8d9808a9896bbdebf2695f527a2da
569fc54492f5fdfe334a995f237a13fcb101796c
ab89135d104824678836f96584c3010e40f976d5b165fbd0a4a5b4a7aa367ca6
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/fb-like.svg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:05 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:40 GMT
ETag: W/"765203989756e91925e8f947e660b644"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pqFHatU9UGZt_2rTHzyJGO-G75PAWKOVf3XAzRbBP0grW8BJv6d8cQ==
Age: 29078
www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/9@0.25x.jpg
54.230.111.101200 OK 2.0 kB URL HTTP/1.1 www.takeyourchance.life/id_iphone13p/img/profiles/central-asian/male/9@0.25x.jpg
IP 54.230.111.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 42c42ca4051afc4736a3ea8205b10f29
0e7b93ec64391e7166f3872789cfd393f0cdc533
0dde6f7fb9af606964e2832a11fdf256a2769a34a2a36361607bb4539539e01a
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /id_iphone13p/img/profiles/central-asian/male/9@0.25x.jpg HTTP/1.1
Host: www.takeyourchance.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.takeyourchance.life/id_iphone13p/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1996
Connection: keep-alive
Date: Sun, 08 Jan 2023 06:28:04 GMT
Last-Modified: Sat, 07 Jan 2023 09:49:50 GMT
ETag: "42c42ca4051afc4736a3ea8205b10f29"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xbgsBoacx2-era6g3w0H425kNBv0MvjdXCjpLjRoU_AnZa73aUbG8g==
Age: 29079
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 08 Jan 2023 14:17:21 GMT
age: 922
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 54ac41a005cad66e958c904071ea1d4f
66932889be57eb15ab99237a69d292b12090c68d
52545e144a7ca5c37c5369d5f5b566b4e5e820b1920ab7fe8e413e7fe022e21b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 521
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 14:32:43 GMT
Last-Modified: Sun, 08 Jan 2023 14:24:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.147.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.147.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VJ1y9PPLg//t08WDeNuPDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: x8ARJW/g/vi+as1R6xbM3/54fC8=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4149
Expires: Sun, 08 Jan 2023 15:41:53 GMT
Date: Sun, 08 Jan 2023 14:32:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4149
Expires: Sun, 08 Jan 2023 15:41:53 GMT
Date: Sun, 08 Jan 2023 14:32:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4149
Expires: Sun, 08 Jan 2023 15:41:53 GMT
Date: Sun, 08 Jan 2023 14:32:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4149
Expires: Sun, 08 Jan 2023 15:41:53 GMT
Date: Sun, 08 Jan 2023 14:32:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 407fef75-2217-4da7-8ea8-b5ede48a0615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNKshEEvoAMFkMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b524b6-72ca4e7b3034e7ac1f3fa1ed;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xOpZDrVh8MsfFqh0HuJJIWFvlgIm0jUE73p9MpgRA1PO_VAv0vP2nw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 16:43:14 GMT
age: 78570
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0146cae6edad6011c47f44fb03277839
b6813e83720deba540bfbd7b469aa74b591d2f95
1cf46ba1abeb0533a36297e16789764b05e4bd8e989bb31d1d4c2897e81edd77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4946
x-amzn-requestid: f6c37ccb-08b2-4c4e-917a-02be4ac06ca0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvWEJeoAMFXgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-45a9e95a0213e1bc23044927;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wcgeUZbWS02iObvDp6Zha-9yNLj61Up5boN0zNQAv77pL_NYf3bvtw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:04:33 GMT
etag: "b6813e83720deba540bfbd7b469aa74b591d2f95"
content-type: image/jpeg
age: 59291
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc604aed78008733f09b024b71a6fda9
0f3f633b0b34ac3662febdc45704362c49622a42
7c4f5871e571148c25f83b8676846ab1b0e82be3f4a1b3fb7c05bfe23e29c1b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9644
x-amzn-requestid: 63281b3f-e673-4836-9729-7f595b0fb8b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDu5FkioAMF9tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e65f-5869b987090de6f758472be9;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JsNm98uTnFfNyDnk651OGxB92JTaNKc7H92yP3FCBhUb9BBsFs-Ygg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:41:46 GMT
age: 60658
etag: "0f3f633b0b34ac3662febdc45704362c49622a42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30c53ae078b112f7186e910c38898233
d3c58c28f0734f98bed64a26ede077464c3ad3f2
8f7dd1cf9f1472468a7caaf67a8f9c15bfe8836badcfb3249a9a8a7a6c3c0533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13787
x-amzn-requestid: 2598b4fe-a032-47d7-8e6c-cfdcfbe9d64a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvYE35IAMF1Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-574eb7370aac63dd531d6b75;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cd50TSdgJPa-oMD9VpvWgVF9DMls8TmQqVUNNj5d6BPlVnN1_3vTUA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:05:52 GMT
age: 59212
etag: "d3c58c28f0734f98bed64a26ede077464c3ad3f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2abe0388f11bae93f827a971bd29802
a57915c3b8388bc23c3a677ba12cc0525d949c2c
d23c15ca723fe73f6893703c7d1830034182fb1c9c620837313774c62368fa06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10544
x-amzn-requestid: 04bdd2a7-b3dd-434b-833c-7101a1da9da7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDy1E_goAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e678-3468e4a9174280c146f28962;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:39:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BTPEBPH5icsKe4sSjs8d_ILObhQcrFYwZG6VnW33Wv6lQzEp_AzcnQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:37:47 GMT
age: 57297
etag: "a57915c3b8388bc23c3a677ba12cc0525d949c2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0546bef00f303b12de4354291c504cad
2c8e60803dee7d21b198a92aa187b23a4dce2f43
736bad079c239fa69fab918c209ba3b2a8b7b15616a49871e527d5694670df67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8127
x-amzn-requestid: 8111f713-0a7a-4b10-ade5-1c7aa6e06677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvCE_ooAMF7gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e660-2b422a7d2dc4a28b24125d1e;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GFANyQVbYkFcVTnvUq5ELpsTsgAFaYXhZGUPHWVWixXrnsH6jBavrA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:46:52 GMT
etag: "2c8e60803dee7d21b198a92aa187b23a4dce2f43"
content-type: image/jpeg
age: 60352
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 521ff47efe0f2f28549e7a15beedbffb
9b48b3d46f38fbca7f088175235e71e2ea6488ff
040c0dcde21a16871768ca18c4f403da326f437f219a95669c5c81ff2b255787
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "040C0DCDE21A16871768CA18C4F403DA326F437F219A95669C5C81FF2B255787"
Last-Modified: Fri, 06 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12285
Expires: Sun, 08 Jan 2023 17:57:35 GMT
Date: Sun, 08 Jan 2023 14:32:50 GMT
Connection: keep-alive