Overview

URL galaxys21.amz-promotion34.tk/
IP5.39.219.146
ASNHostkey B.v.
Location Netherlands
Report completed2022-09-28 00:55:22 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 galaxys21.amz-promotion34.tk/ Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/popper.min.js Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/jquery.min.js Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/p.min.js Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/template.min.js Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/bootstrap.min.js Phishing
2022-09-28 2 galaxys21.amz-promotion34.tk/js/box.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (10)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 23:53:35 UTC 143.204.55.115
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 52.43.58.150
mnemonic passive DNS s10.histats.com (1) 15211 2012-05-21 17:14:14 UTC 2022-09-27 22:11:59 UTC 46.105.201.240
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-27 21:28:46 UTC 93.184.220.29
mnemonic passive DNS s4.histats.com (1) 12782 2012-05-21 17:14:14 UTC 2022-09-27 19:23:34 UTC 198.27.80.143
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 13:22:33 UTC 34.120.237.76
mnemonic passive DNS galaxys21.amz-promotion34.tk (32) 0 2022-09-26 16:05:57 UTC 2022-09-27 21:46:46 UTC 5.39.219.146 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:52:25 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 5.39.219.146

Date UQ / IDS / BL URL IP
2022-11-12 18:45:30 +0000
33 - 0 - 0 pwrlotterie5.hopto.org/ 5.39.219.146
2022-11-08 12:59:39 +0000
33 - 0 - 0 amazonpromo8.zapto.org/ 5.39.219.146
2022-11-06 18:33:31 +0000
33 - 0 - 0 amazonpromo4.zapto.org/ 5.39.219.146
2022-11-05 18:51:58 +0000
33 - 0 - 0 amazonpromo1.zapto.org/ 5.39.219.146
2022-11-03 18:04:59 +0000
21 - 0 - 0 skrsorteo4.zapto.org/ 5.39.219.146

Last 5 reports on ASN: Hostkey B.v.

Date UQ / IDS / BL URL IP
2022-11-24 07:58:01 +0000
0 - 0 - 2 103.155.93.152/ 103.155.93.152
2022-11-22 01:37:13 +0000
0 - 0 - 0 146.0.77.39 146.0.77.39
2022-11-16 03:43:00 +0000
0 - 0 - 1 griekse-kanker.online/Win/a1b2c3/ac517c9ef548 (...) 103.155.93.52
2022-11-16 03:42:58 +0000
0 - 0 - 1 griekse-kanker.online/Win/a1b2c3/1737c4e3c5c7 (...) 103.155.93.52
2022-11-16 03:41:27 +0000
0 - 0 - 1 griekse-kanker.online/Win/a1b2c3/7954b45addef (...) 103.155.93.52

Last 1 reports on domain: amz-promotion34.tk

Date UQ / IDS / BL URL IP
2022-09-28 00:55:22 +0000
0 - 0 - 7 galaxys21.amz-promotion34.tk/ 5.39.219.146

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-12 18:45:30 +0000
33 - 0 - 0 pwrlotterie5.hopto.org/ 5.39.219.146
2022-11-08 12:59:39 +0000
33 - 0 - 0 amazonpromo8.zapto.org/ 5.39.219.146
2022-11-06 18:33:31 +0000
33 - 0 - 0 amazonpromo4.zapto.org/ 5.39.219.146
2022-11-05 18:51:58 +0000
33 - 0 - 0 amazonpromo1.zapto.org/ 5.39.219.146
2022-09-16 04:12:13 +0000
0 - 0 - 7 galaxys22.programme-fidelisation8.xyz/ 5.39.219.146


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (54)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Wed, 28 Sep 2022 00:55:10 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "6484-5e99b169cebe6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4796
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (454), with CRLF line terminators
Size:   4796
Md5:    8ffac34987f20e2714dc909273fad5df
Sha1:   fd70139fd44c6f26014985267d38e94b38be2467
Sha256: f1c8a6d554be5b446e18dc8ee0cb51574637d182447788cb71ef8d29c06483bc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 00:15:35 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QPFn0R2gF8fHnE6IcBUR5r9GDBNLcRoimu8Wqvhu5HZHarI1q8IFpA==
Age: 2375


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2569
Expires: Wed, 28 Sep 2022 01:37:59 GMT
Date: Wed, 28 Sep 2022 00:55:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9640
Expires: Wed, 28 Sep 2022 03:35:50 GMT
Date: Wed, 28 Sep 2022 00:55:10 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: yBgr8RINnD6cBCJ0h7zaRTxV0T7ZJk5phHTVgbhsGwRO3wCoqqQ7PqSqNRHOe0BRnA2qaGy++SE=
x-amz-request-id: 1PZZHSR8V87JQBDN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 00:47:09 GMT
age: 481
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /js/popper.min.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:54 GMT
ETag: "52f1-5e99b16b97c7e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7503
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (21060)
Size:   7503
Md5:    1f61c1b15b25ba046056238766ff3a43
Sha1:   2b8db740e4e913e9dc87a6060dea2a6b17ad0ec8
Sha256: fe78a2c604b4757dd5d114e0efb7e74c8f4acfe840bf6b6c01517205744a7648

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:10 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:53 GMT
ETag: "1538f-5e99b16b70794-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30307
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30307
Md5:    fb0e6981c97fba54d76f9b2bca152299
Sha1:   7c26673f6d5dd46220ca13f2197a5f5e70d06335
Sha256: 09b221854d59bd9fb7dcd7042f9fcee8b6b8f958d932096a9ca307e2d63813d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/style.css HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:49 GMT
ETag: "2637-5e99b166f9648-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2669
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2669
Md5:    43b219b002325130314690ef6c16b799
Sha1:   2d71a9d3894034eef226d824378523d630cdd86e
Sha256: a2c5678144c8cb313d294522ec3ec175e17b899e963d54e102d7c0a24e6e7bae
                                        
                                            GET /js/p.min.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:53 GMT
ETag: "d8d-5e99b16b77cc5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1007
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1007
Md5:    7d75136eeb96d4510e490aab33297b19
Sha1:   07bdfa2e09b7e00b1670c171d1897f3bdb4f721b
Sha256: 72656e9a0acf9213f7283dd507c5f4f4bf7433d7d1568e9ed8fcf942d70c5314

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 00:55:10 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /js/survey.min.css HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Content-Length: 196
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:48 GMT
ETag: "2565e-5e99b166a8564-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22973
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   22973
Md5:    a5d5584b3540529a77b585b36d82f5b4
Sha1:   cad6f25941450fb9e50470b640f86f06047a290a
Sha256: 568f398f7aadd5c46a2b8a3a17c8a24aa91abf38aa2ffbbe57285cb881fd2dab
                                        
                                            GET /js/template.min.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:54 GMT
ETag: "357-5e99b16ba2477-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 276
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (855), with no line terminators
Size:   276
Md5:    d51c041e0d1156d64dbbe217dde72e8a
Sha1:   bdc49a3c6e04fc8b752b0f67d0d3d5fbaaf818f8
Sha256: 9f91402cc1f9251737cee980201f49173bb32b8c6b476d5310ef941cfaf5b208

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/bootstrap.min.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:53 GMT
ETag: "d9df-5e99b16b4aa1a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14551
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (55494)
Size:   14551
Md5:    68a4bbaa6686829563511ee6319a608e
Sha1:   6932ddc6ec83a455a571c4d47e2504199878233d
Sha256: 2e8068bb2646a259f8d8a7d9f88eed5d20bafc36f4570125eed88e6113e78a94

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/box.js HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:53 GMT
ETag: "d63-5e99b16b4830a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 816
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   816
Md5:    a21a17a82b3f45344869692ef6d65d04
Sha1:   56ae518a1bfaf4d4ce610bd0ee22177d8f7d6d6c
Sha256: 2f11ec4517872d1ef5d6dcca87705ec451a2a356686a03b85f233af07e28815f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/comments.min.css HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:49 GMT
ETag: "3c8-5e99b166d15a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   352
Md5:    b2dd6d425e85cb76a7b98e8a07beb99f
Sha1:   08cae595e290705346363cfb147f44288265fc1b
Sha256: c6c2cc56588dc157622cd04582b0a8f2a1976b1868d24782abd774db16e49a3e
                                        
                                            GET /img/box-01.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:50 GMT
ETag: "2558-5e99b168210d0"
Accept-Ranges: bytes
Content-Length: 9560
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 258 x 185, 8-bit/color RGBA, non-interlaced\012- data
Size:   9560
Md5:    491df185ddbe6330232499a0390e2dd2
Sha1:   0fb64929b97f3493f2b226ffdca9b9120a922c2a
Sha256: a6b438c406f004a48e6c953a012a38599958352655e5180543fbad97b824c78a
                                        
                                            GET /img/box-02.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:50 GMT
ETag: "251d-5e99b1684acca"
Accept-Ranges: bytes
Content-Length: 9501
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 258 x 185, 8-bit/color RGBA, non-interlaced\012- data
Size:   9501
Md5:    61b17df984b1fb31ce4ba2d2100e0140
Sha1:   a22916da24773de74ce19935b27934281882d508
Sha256: b3e502129f235aa265cac8c3da808f4521a824cb34938b83a3ccb2c1c33d36c9
                                        
                                            GET /img/box-03.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:50 GMT
ETag: "3bc-5e99b1687353c"
Accept-Ranges: bytes
Content-Length: 956
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 258 x 185, 8-bit/color RGBA, non-interlaced\012- data
Size:   956
Md5:    29c85caadd6d84e5fca29abb817d206b
Sha1:   bdb33e05a120afc0413a787aa22289d8b1c79090
Sha256: 3eb5be17af5fac46cd09d485ec5410f390cf55cc3c7c917a9820960c25bacfad
                                        
                                            GET /img/box-04.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:50 GMT
ETag: "25d6-5e99b1689bdae"
Accept-Ranges: bytes
Content-Length: 9686
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 258 x 185, 8-bit/color RGBA, non-interlaced\012- data
Size:   9686
Md5:    3bb7a1ccc3d746f6121aff47dfb9fab3
Sha1:   dc288432c41753b500e4d07814fd5265e0b88c74
Sha256: 3a712048f80123bebaa3b110a1ca82d68ed49473698d354aa6ea505ae8c22c7f
                                        
                                            GET /img/box-00.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:50 GMT
ETag: "3e21-5e99b167f7ca6"
Accept-Ranges: bytes
Content-Length: 15905
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 258 x 185, 8-bit/color RGBA, non-interlaced\012- data
Size:   15905
Md5:    c7a2e3e528b3758ad109c7a7f65666de
Sha1:   1b255a0ae97b0136522d18f17cdbb2d9bb3d4bc1
Sha256: d21001961e2671fd530e2fd494ac1351f5f59e2e78d565e8abfa20a72b5d664b
                                        
                                            GET /img/img-4.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "9ee-5e99b169e4f60"
Accept-Ranges: bytes
Content-Length: 2542
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 60x60, components 3\012- data
Size:   2542
Md5:    32ac4d03af0ed3e0ecae362ee2aa7283
Sha1:   d76aaf7afd7e64b85bf3f6cd92530150ebbd3b62
Sha256: 4ba90609efbf3e11565b8b9005e57d80f53a8837ce693c9023ccb0626461d212
                                        
                                            GET /img/like.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "1bf-5e99b16a5f856"
Accept-Ranges: bytes
Content-Length: 447
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 15 x 14, 8-bit colormap, non-interlaced\012- data
Size:   447
Md5:    d62cd461c6abf3c1593fb181f5ddb23a
Sha1:   9d647ff13d152a49bb44b8d3f4c229ed9061c769
Sha256: fa0d2ffa966912d0fc1b2c6e5cf7671cd5eacbf14ff36379958bf82a3a62bdfc
                                        
                                            GET /img/img-7.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "bb5-5e99b16a35874"
Accept-Ranges: bytes
Content-Length: 2997
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 60x60, components 3\012- data
Size:   2997
Md5:    159416e360a1ce596be4d73ada5f77e9
Sha1:   d86a4c7144208366d5fb501eb92106043b86995c
Sha256: 01ff0a6dfebce308d517e495941065eb38cc8b37a7b2bf67df272aea25f69c40
                                        
                                            GET /img/img-3.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "b4b-5e99b169bb365"
Accept-Ranges: bytes
Content-Length: 2891
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 60x60, components 3\012- data
Size:   2891
Md5:    3bff8ec56932f1b81cc4b04844f06f31
Sha1:   c2393919f9f1900783aaf770bb9535d264f5d408
Sha256: b0c40a3ef77aea7e48c710fa701af1d074224846ebf30cd9d82b7596c15da2c1
                                        
                                            GET /img/img-6.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "907-5e99b16a0d002"
Accept-Ranges: bytes
Content-Length: 2311
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 60x60, components 3\012- data
Size:   2311
Md5:    c6afc531813d61e1178040b639856858
Sha1:   a58979cbfbc2bc90ea53a5830a06d7aa0083cd31
Sha256: 317cab06066c5f60ada75316413d6a0503e9eb90265d94da379657eb9c05aece
                                        
                                            GET /img/img-5.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "69b-5e99b16a11652"
Accept-Ranges: bytes
Content-Length: 1691
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1691
Md5:    0428b5a2aafda85bbb3280c79964889b
Sha1:   52df4811b00444751d8e0a906c55e7b9270941d4
Sha256: fba1dafda080b2bf2c0074fc8eb29203c48f2afa916065df41a0a76e48f63987
                                        
                                            GET /img/img-11.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:51 GMT
ETag: "8cd-5e99b16967b71"
Accept-Ranges: bytes
Content-Length: 2253
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 60x60, components 3\012- data
Size:   2253
Md5:    89c470d2d49d8be956cdd5cad47a8c0b
Sha1:   6690a4f9ebd846ee0a06212c5cb8d3b7ccc12095
Sha256: 28cc4e65e77899cf8807aba5963bf77c8cd464ab72f328157ff6ccf72735ea21
                                        
                                            GET /img/img-10.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:51 GMT
ETag: "50c-5e99b1693cbef"
Accept-Ranges: bytes
Content-Length: 1292
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1292
Md5:    14a7d17c53d16fd6d9d66e3844247750
Sha1:   e8227dbc4382eefa102ebe557e440a0b3895da1a
Sha256: 9b17d1bc53a49edcab5f29c232dde056d8ad18b6c948ad908134b64130eb2606
                                        
                                            GET /img/img-9.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "cd6-5e99b16a5c58e"
Accept-Ranges: bytes
Content-Length: 3286
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 60x60, components 3\012- data
Size:   3286
Md5:    496770fecdcf0a823ea2897217f288e9
Sha1:   c05e944b516786a6df67aa923e0170f7c8e86921
Sha256: 18f551911c68e079ef629648f47ad743c99d47e9d5c0d5a475c7392a1f0ab248
                                        
                                            GET /img/img-8.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "e74-5e99b16a36814"
Accept-Ranges: bytes
Content-Length: 3700
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 60x60, components 3\012- data
Size:   3700
Md5:    9c2fa32775fffdebf00733ec18e3e341
Sha1:   e25e89f113c335ea1c2c4c4586844fd7d1727d28
Sha256: 845a5200eb01a02833e74b09ab84d6ec2aab5ee16211ee1a31b7eb6a4bb61ecc
                                        
                                            GET /img/cart.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:51 GMT
ETag: "840-5e99b168c4df0"
Accept-Ranges: bytes
Content-Length: 2112
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 42 x 35, 8-bit/color RGB, non-interlaced\012- data
Size:   2112
Md5:    0335588776629c37473b8f5957f27333
Sha1:   211aa2623a3c163b2e5eb3de626f1612ca0b2dac
Sha256: 1357d3f2722da0c308722daf746e307a85bf5472544b4891343ed9b0259cc3d4
                                        
                                            GET /img/logo.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:52 GMT
ETag: "13f5-5e99b16a8ea40"
Accept-Ranges: bytes
Content-Length: 5109
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 206 x 70, 8-bit/color RGB, non-interlaced\012- data
Size:   5109
Md5:    a8f5605a8251eae9d4122cefbcae5992
Sha1:   396f8ddd782c8b7152a70083abe7be0762dc9e5c
Sha256: 6f959bc382f22b717f51c52e761a37aa7dc48a5618163c12ee01b12654ac097c
                                        
                                            GET /img/img-12.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:51 GMT
ETag: "36b-5e99b16991f3b"
Accept-Ranges: bytes
Content-Length: 875
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 40x40, components 3\012- data
Size:   875
Md5:    5c6543cc0c9a84d141405bf0dfbc570f
Sha1:   4d43ff3884fa8edcb9adfa053525e912bb1baa2f
Sha256: 73cb358bf47ed149f8fd7e3eada678166cfab77538c313ba72cb6e38d13253fa
                                        
                                            GET /js/survey.min.css HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Content-Length: 196
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            GET /img/s21.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Last-Modified: Mon, 26 Sep 2022 21:19:53 GMT
ETag: "566b6-5e99b16acf56c"
Accept-Ranges: bytes
Content-Length: 353974
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 800 x 700, 8-bit/color RGBA, non-interlaced\012- data
Size:   353974
Md5:    9087580ff5ec628e1e3b1690c685585c
Sha1:   0ff76f0309bab1f772c80cca6ac63490c1219368
Sha256: f4da8f40f1b990c89a01abe13665b70010155dc1280af5734bc42b4360baca04
                                        
                                            GET /favicon.png HTTP/1.1 
Host: galaxys21.amz-promotion34.tk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         5.39.219.146
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
Content-Length: 196
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/

                                         
                                         46.105.201.240
HTTP/1.1 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 00:54:18 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 319881843
etag: W/"-375139978"
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4547
x-iplb-request-id: 5B5A2A9A:5098_2E69C9F0:0050_63339B6F_19ABC4:16BDB
x-iplb-instance: 40743


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11440), with no line terminators
Size:   4547
Md5:    2b153cb2287eac49566b32fce9c385f8
Sha1:   206074b038daff8bc66d86bca0c5ff35f9f72655
Sha256: 7398435bd3f0dae8206173dd66954ae029dc8787962d5f089bcb548f53409869
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 00:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 00:12:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _51eKsqgmVQyE0l4gCn0UvkN7s2pbyeeLB6qMlSwS34ZjXkDmgVl7g==
Age: 2665


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "10724FF231265F6C0DA44EB9ADE0A936362252CAD64CBCEBB1D4414F4985730A"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5343
Expires: Wed, 28 Sep 2022 02:24:14 GMT
Date: Wed, 28 Sep 2022 00:55:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 00:55:11 GMT
Last-Modified: Tue, 27 Sep 2022 23:37:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /stats/0.php?4695379&@f16&@g1&@h1&@i1&@j1664326509045&@k0&@l1&@mLotterie%20-%20Galaxy%20S21&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-83457046&@b3:1664326509&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgalaxys21.amz-promotion34.tk%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galaxys21.amz-promotion34.tk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         198.27.80.143
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 28 Sep 2022 00:55:11 GMT
Content-Length: 49
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   49
Md5:    7814cbd60d8c41348aec5c1ccec083f6
Sha1:   17b9a545e58dc6b0a5ad2af21ed1a39a20589be2
Sha256: a198071d70ae5d79af7fcd3f8c7d8f682c14d20319f96c2eae9dc3b0ef7bfb2e
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LcJtMjB+42Ke3nMAN+XWiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.58.150
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mf1lFHVEHmFWLGN7VWTy+ECMBIo=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 00:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 00:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 00:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 00:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 00:55:13 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 11664
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11314
Md5:    ee83d08d024d127fad5918e1ffacb78b
Sha1:   8ad289a77705358ab660b6123e9d90de991b6c13
Sha256: aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9646ccba-7fc2-470a-b04e-5cef02e234cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13058
x-amzn-requestid: 2ce70ac3-0451-41f4-bd82-596a92582a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EiiIAMFQLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-25deabef6235856b6d9bb19f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: oGmQtgwLy_unp2_L3WP10HsyeCSgao4_37Kf6K8JeeVgz8YXbDvDWQ==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:47 GMT
age: 11306
etag: "7d8b30445dadc44a17e5a26301212fced3aaa2af"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13058
Md5:    e49757d877a437a57f39d458862e8369
Sha1:   7d8b30445dadc44a17e5a26301212fced3aaa2af
Sha256: e8b481bd5fe7ce92aa614cb77c9318ef8b763e71a178126805a4c363e6f91a9b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yW-bGn5vYTa6Z28ELKYgYpy98wQEbYJIl5yxd1qLxz1YjVYKxMH2Wg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:31:02 GMT
age: 62651
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    ea3890e460356d6ecc3ba4e405ac2e9e
Sha1:   b383135e2ebc23fe80eb0d594b198cb8c89327a5
Sha256: 8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9715fa-0606-41f2-b3fa-1c7048f24b48.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9710
x-amzn-requestid: 38e078fa-bad5-4593-b4f7-ffab77c1d3cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDCF9GWeoAMF-5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633116f2-29b4342e3c7700924d65a273;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 03:05:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dA8uT96jM1QIn89Jw-8vMlGaNrr8xjUBjhg1usiZqFMf0SO12IA4Kg==
via: 1.1 ce74b5c96395745bcb8206d6c9ee0962.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 03:17:58 GMT
age: 77835
etag: "5dcf4fbd065e0850c2602a5e8791ba7af1999d9f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9710
Md5:    c761355e3b9bdf64113c92591306b959
Sha1:   5dcf4fbd065e0850c2602a5e8791ba7af1999d9f
Sha256: 03464d30ae3a3199bb3b19e1c730385fc8f68444d41eb0099542bd83108e6ed5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae0951d3-44e9-49d3-9232-f4151ef59735.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6157
x-amzn-requestid: a51846e4-4e25-455f-885b-acf2567f2e1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDlObH7XIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63314f28-4e6a68a74edb1ad850e17dac;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 07:05:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2g98EnyiFhkZTsqis2_ASfjM-YTJmcUJ-Mwcl1dWlruzrWDuojPA0w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:29:45 GMT
age: 62728
etag: "a6b1c3e0d506ac1c66405e061e9910fafb176a7d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6157
Md5:    b255b252ceed088d6f505e7e9acfcb55
Sha1:   a6b1c3e0d506ac1c66405e061e9910fafb176a7d
Sha256: b796a98834c7ecf220d13bfba61e81a9b90d472d2aa725ff66888cbddad731e7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc892aae9-4381-46ed-9dd8-bd581d7389ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8621
x-amzn-requestid: 5a828651-41c2-4aa0-931d-6522098a8438
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASUWEYvIAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffdb5-5ace75523a98a9237fabca8f;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:05:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _r1yeWUGcjSAzmlPcqiZrNgOGrGb29Dxgrz3AOm9oU0-wgHy7axiKw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:40:36 GMT
age: 62077
etag: "883e61d46ef6c09013724aa7b8f560272ee08574"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8621
Md5:    59163c799f3d48e74abdd285ee615119
Sha1:   883e61d46ef6c09013724aa7b8f560272ee08574
Sha256: e1bafc575ff4274b210bee481a8e73c065de5bc14ddf46c269ef91eda0df8d84