ocsp.r2m01.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 01d89070473b31c11b15a948062e40a9
67138a9f5a40c68162320c47b175f4b26d12c088
4240da68d662e1a80b6d24a2f9c24916d28d4cd8259a7fd66536e0562de6e6f0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=7200'
Date: Thu, 18 May 2023 04:01:53 GMT
Server: ECAcc (dcb/7F5A)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iqlnlqUG-Dwwv6c5aJrnx4SjjcR_-CsQ4rNb3aLic2wwWIizOoytRg==
smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
52.2.18.249200 OK 5.0 kB URL User Request GET HTTP/2 smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
IP 52.2.18.249:443
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (699)
Hash 8ff6f043176f883e15f91a2fb2cda021
b185e8dc7fff2b8e3dd79a0e8f0cb500be907e43
013b5e1f73ad7abe66285a671ff1e7134617ff159aa6658f6fbbb35cefe8dc3d
Analyzer Verdict Alert fortinet Phishing
GET /go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333 HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: text/html; charset=UTF-8
content-length: 4971
server: Apache/2.4.41 (Ubuntu)
set-cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9; path=/; HttpOnly; SameSite=Lax
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, no-store, max-age=0, no-cache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.3/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.3/umd/popper.min.js
IP 104.17.25.14:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (19063)
Hash aad2475f1e2615224fa9716b53954be2
4f08d328c845410583e0a05c8d5a5bc61c23db47
8e95b881702116fa860c3e41ef7ebaac83c3ecf0db026aaae023b46671db74ce
GET /ajax/libs/popper.js/1.12.3/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 6174
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4b24"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3015972
expires: Tue, 07 May 2024 04:01:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=23uwNQ1KKheyXoB0Os0RLi3LyoWTCf%2Byjy4K21uRf3J%2FeqH%2FL0R2dunZMghcSRYdEEwT9tbOMQRMk%2FUuPohIaC4Y2NBdsUkVAzyCwLdRTy%2FBS1jqeOE%2BMKEVSrKbc75f0WxIAawE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c9133981ad30b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e09e14662938232c5b5629268ba03419
03cb43e33d72687ee9fb31557242423f0f7704bc
60f34c592e989b208140da015a833da30415d0810ce7aa753073f8452a320644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c699ce1e772308ecf6366febe5960a8a
537ebf215a921d1d955fbb71bd1f5de8d6073653
37750111f787a4da6a50b19a9fbf5b23a2f8d8e0220dfad4d166b5a07ce450f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
smoothreward.com/assets/js/jquery.email-autocomplete.min.js
52.2.18.249200 OK 1.3 kB URL GET HTTP/2 smoothreward.com/assets/js/jquery.email-autocomplete.min.js
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (2986)
Hash e52c1b9d782a5f900404c7d6b19913b3
92a6f34824da998a181a36ede877ffb611a194aa
369f3c1ba5e42e3b55ca10f6cf763f5e6811af0f44e0b61b84852aa19081de3e
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.email-autocomplete.min.js HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: application/javascript
content-length: 1279
server: Apache/2.4.41 (Ubuntu)
last-modified: Mon, 26 Jul 2021 18:17:10 GMT
etag: "c5e-5c80ac301ea00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
smoothreward.com/assets/js/plugins/email.verify.1.1.js
52.2.18.249200 OK 1.5 kB URL GET HTTP/2 smoothreward.com/assets/js/plugins/email.verify.1.1.js
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (947)
Hash 172c7088f34c1c375ae260a028a9f0cf
150684d6ffcd2e12727954790e17685b3410ff95
d3c8d6a7d5f212160de2ead76c91e553cd29e8f2271536586ccb41d401fab4ad
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/plugins/email.verify.1.1.js HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: application/javascript
content-length: 1470
server: Apache/2.4.41 (Ubuntu)
last-modified: Mon, 26 Jul 2021 18:17:14 GMT
etag: "14c2-5c80ac33e27e0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
smoothreward.com/assets/js/pop_window.js
52.2.18.249200 OK 752 B URL GET HTTP/2 smoothreward.com/assets/js/pop_window.js
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
Hash 5ab611ffa62c4d2208e8b06c984337ec
7b1f19e115be9f0b90d7791ce2ca85e5ee536b82
c878606d2efe52e77a736f5bca231a2a62281697138d10416088282fd8a090ee
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/pop_window.js HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: application/javascript
content-length: 752
server: Apache/2.4.41 (Ubuntu)
last-modified: Mon, 26 Jul 2021 18:17:14 GMT
etag: "1085-5c80ac33e7600-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
smoothreward.com/assets/img/footer_satisfaction.png
52.2.18.249200 OK 6.7 kB URL GET HTTP/2 smoothreward.com/assets/img/footer_satisfaction.png
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type PNG image data, 95 x 95, 8-bit colormap, non-interlaced\012- data
Hash 34e8e980148b64284092e4198408c752
e7a54183d915fc8790a91f3c27f1c868e1f21156
9e79cb2435516522ff45c5285b6b57f21ac9fbba158ca92d98b20d39db6b0503
GET /assets/img/footer_satisfaction.png HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: image/png
content-length: 6736
server: Apache/2.4.41 (Ubuntu)
last-modified: Fri, 20 Oct 2017 13:05:36 GMT
etag: "1a50-55bfa20ee6800"
accept-ranges: bytes
X-Firefox-Spdy: h2
smoothreward.com/assets/js/templ_standard_js.min.js
52.2.18.249200 OK 981 B URL GET HTTP/2 smoothreward.com/assets/js/templ_standard_js.min.js
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (937)
Hash 36eb8ad9bbfc0fb3de0c0724e98056e4
0d26daccbee4cd7fbc3b0d1c154c9d30d3449e45
aa7506c4bb3cd1be57d7e487d908bc0a299beef8ee09950189dcd39d691566d9
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/templ_standard_js.min.js HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: application/javascript
content-length: 981
server: Apache/2.4.41 (Ubuntu)
last-modified: Thu, 11 Nov 2021 17:25:09 GMT
etag: "987-5d0869fd7fe28-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
142.250.74.42200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 142.250.74.42:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 00:16:36 GMT
expires: Thu, 16 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 99918
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c699ce1e772308ecf6366febe5960a8a
537ebf215a921d1d955fbb71bd1f5de8d6073653
37750111f787a4da6a50b19a9fbf5b23a2f8d8e0220dfad4d166b5a07ce450f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e09e14662938232c5b5629268ba03419
03cb43e33d72687ee9fb31557242423f0f7704bc
60f34c592e989b208140da015a833da30415d0810ce7aa753073f8452a320644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
smoothreward.com/assets/js/jquery.email-autocomplete.min.js
52.2.18.249200 OK 1.3 kB URL GET HTTP/2 smoothreward.com/assets/js/jquery.email-autocomplete.min.js
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (2986)
Hash e52c1b9d782a5f900404c7d6b19913b3
92a6f34824da998a181a36ede877ffb611a194aa
369f3c1ba5e42e3b55ca10f6cf763f5e6811af0f44e0b61b84852aa19081de3e
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.email-autocomplete.min.js HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: application/javascript
content-length: 1279
server: Apache/2.4.41 (Ubuntu)
last-modified: Mon, 26 Jul 2021 18:17:10 GMT
etag: "c5e-5c80ac301ea00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 5d7428ecf442c44c5aa8470b02b92a6c
c6ba2e9add1b02059f0091998397f7063a928bf0
b1e65e42bbc45457fd8219b7fa671101ee0887722bba9b729968c0c8e1d4817a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playball/v17/TK3gWksYAxQ7jbsKcg8Eneo.woff2
216.58.207.227200 OK 32 kB URL GET HTTP/2 fonts.gstatic.com/s/playball/v17/TK3gWksYAxQ7jbsKcg8Eneo.woff2
IP 216.58.207.227:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 31564, version 1.0\012- data
Hash 34b8d410c61dcbac31c06d4e72e17e22
f8edc32d045953f1190f2503da2bd590048f5fc6
21a5a1944ae56ff8b3142b32a4e54eab52dd4a630d2161179b8b98a5cbe8b80d
GET /s/playball/v17/TK3gWksYAxQ7jbsKcg8Eneo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 00:14:38 GMT
expires: Thu, 16 May 2024 00:14:38 GMT
cache-control: public, max-age=31536000
age: 100036
last-modified: Tue, 02 May 2023 16:04:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 5d7428ecf442c44c5aa8470b02b92a6c
c6ba2e9add1b02059f0091998397f7063a928bf0
b1e65e42bbc45457fd8219b7fa671101ee0887722bba9b729968c0c8e1d4817a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 18 May 2023 04:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
netdna.bootstrapcdn.com/twitter-bootstrap/2.3.2/css/bootstrap-combined.no-icons.min.css
104.18.11.207200 OK 20 kB URL GET HTTP/2 netdna.bootstrapcdn.com/twitter-bootstrap/2.3.2/css/bootstrap-combined.no-icons.min.css
IP 104.18.11.207:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (1463)
Hash 3f13279317ad7da1178553ff245ab56d
8a0ba39740d2c05b52bb0ed6eafc7a0c4f32912e
75a721f6f467fcda98080593f318b78ff31558e822d283d473cabd3ad0d49b24
GET /twitter-bootstrap/2.3.2/css/bootstrap-combined.no-icons.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:05:01 GMT
cdn-cachedat: 08/03/2021 13:26:07
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: b6ea5ef779bb3c6d58c6f87bad8a05ce
cdn-cache: HIT
cf-cache-status: HIT
age: 29828627
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c9133987cc1fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
smoothreward.com/assets/img/campaign/1033_bg.jpg
52.2.18.249200 OK 161 kB URL GET HTTP/2 smoothreward.com/assets/img/campaign/1033_bg.jpg
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 161 kB (160591 bytes)
Hash d332de851c513976f55f528cf741dd7b
673e967dfe6ed0807a755a3ec987e66d229cdb21
e305d3f4193062ba4a48bb7dd59daad8608ab3a5c8bac190193e446c27829ee1
GET /assets/img/campaign/1033_bg.jpg HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: image/jpeg
content-length: 160591
server: Apache/2.4.41 (Ubuntu)
last-modified: Thu, 10 Feb 2022 20:30:59 GMT
etag: "2734f-5d7afd4004770"
accept-ranges: bytes
X-Firefox-Spdy: h2
smoothreward.com/assets/img/campaign/1033_welcome.png
52.2.18.249200 OK 108 kB URL GET HTTP/2 smoothreward.com/assets/img/campaign/1033_welcome.png
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type PNG image data, 880 x 765, 8-bit colormap, non-interlaced\012- data
Size 108 kB (108252 bytes)
Hash 14bd90e6a86007715288e799b4e2dde3
1a50158698b147ab78d69c7f872c68a4cc500eb4
1716a3d17e24e8bd21f9b8d12529f56cbfb644a0a555f2b76bd2c04d6911724e
GET /assets/img/campaign/1033_welcome.png HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: image/png
content-length: 108252
server: Apache/2.4.41 (Ubuntu)
last-modified: Thu, 10 Feb 2022 20:30:59 GMT
etag: "1a6dc-5d7afd40233a0"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 22885e33631d649226be6dbc8ceb9e87
bfebf3a4acc5939de7981856b9cfecdd225c6c6e
59205f7207620019b44356a67fd9bfdf3e81bd1f7408198ef409f9a461891d1f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Thu, 18 May 2023 04:01:54 GMT
Last-Modified: Thu, 18 May 2023 03:53:35 GMT
Server: ECAcc (nya/78E9)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z5wPfDrCpzVIbNexEobn0J0d_LhzS6xfMToURH-Fx4_vNSek-MM1Yw==
Age: 499
api.trustedform.com/trustedform.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false
54.162.252.228301 Moved Permanently 134 B URL GET HTTP/2 api.trustedform.com/trustedform.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false
IP 54.162.252.228:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.trustedform.com
FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01
ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /trustedform.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Thu, 18 May 2023 04:01:54 GMT
content-type: text/html
content-length: 134
location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome-ie7.min.css
104.18.11.207200 OK 5.5 kB URL GET HTTP/2 netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome-ie7.min.css
IP 104.18.11.207:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
Hash 4efc20143a3957f447ceeaa53695ceb6
d66b7374b5dd6259dfd5c4eb682925305f6716d4
a7708968e861410bc255dd2a9c9d04b82303bd6a7e4e1f4d2acbb0488cf318d0
GET /font-awesome/3.2.1/css/font-awesome-ie7.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4efc20143a3957f447ceeaa53695ceb6"
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 01/13/2023 02:30:37
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 05635be0def1161d8a441b8721c5c921
cdn-cache: HIT
cf-cache-status: HIT
age: 759396
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c9133986cb9fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash dc6979366fc25fd4497575a2993255d1
4c3259ed20372dae65e2475379090eb05e190c75
14613133de886816f1b67842fb1c94bb8303ae1b61b2a9f408425b54ebca5cbf
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=7200'
Date: Thu, 18 May 2023 04:01:55 GMT
Etag: "6464f4b8-1d7"
Server: ECAcc (dcb/7E9A)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AuyLhVY2zF7Nge1g4HC8Tu76ip6vDSBqlM9FkWOfDrCgv6dfioL9Ng==
ocsp.r2m02.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash f008b069a0860128c32a6b998640847c
68d4364633e8135374f36acca6da4e68b13bd168
73670aea7cdf825db4d3a13e920db9cb1555e5496595f1ef6792c633eda5313a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Thu, 18 May 2023 04:01:55 GMT
Last-Modified: Thu, 18 May 2023 02:23:17 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GnQqH3rN6EOBxWkdONKEOEv2RC45et8ezZhwyzQil2AcifQoVUiA4Q==
Age: 5918
ocsp.r2m01.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 8458bad64ef29c9782c140cbfa78f184
f33b79401be92cbbaca1cadb0d0e315d2df1fdce
78e99c7d73a0ff6bddec52db7aa982a69de981e8fffd006c4be6ba15e01ae4f6
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 18 May 2023 04:01:55 GMT
Etag: "646489b8-1d7"
Expires: Thu, 18 May 2023 06:01:55 GMT
Last-Modified: Wed, 17 May 2023 08:00:56 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zjvlOZ2oa3rW9IyedR9Seg_KeJqZXuOjLcDcRg4-eA4raHCKMrYqyw==
Age: 153
s3.amazonaws.com/trackpush/trackpush.min.js
52.217.111.230200 OK 13 kB URL GET HTTP/1.1 s3.amazonaws.com/trackpush/trackpush.min.js
IP 52.217.111.230:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint94:B9:7C:21:8C:A0:94:8C:1A:34:F7:CB:48:59:A4:A2:B4:E5:81:03
ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 20 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (47625), with no line terminators
Hash d470356148c00da67db3c9bdaecc90f9
d12a4df31633cf9a982bd6e8c3ffbc2449b1753f
5ea9947b55246bd7e281b10027a5ed301039077b0589afff470b73c561a93054
GET /trackpush/trackpush.min.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: /59vHMsW95/9fKXiLH+oOsz8WtAW9sYbGMlswsdWV5HU+PAUKUPvUgIdCx0HZz8MOwoozj7jBPU=
x-amz-request-id: ZCDF1P4BQP79JDXA
Date: Thu, 18 May 2023 04:01:56 GMT
Last-Modified: Thu, 03 Nov 2022 18:51:50 GMT
ETag: "cbd14612441d2cca730df2e3c9f185c1"
Cache-Control: max-age=86400
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 13264
smoothreward.com/favicon.ico
52.2.18.249200 OK 5.4 kB URL GET HTTP/2 smoothreward.com/favicon.ico
IP 52.2.18.249:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash b0a102991e7332643ae57365023c00c8
4ea4c55c982e08bda104d2e8e981594c067cef24
1dfc58ffbcb07c761f79eb6b46f50b3789bd21e41a0b4cb1aca82b1dd8020fcc
GET /favicon.ico HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Cookie: ci_session=vg1j9f5hikcjm5onp8neslms84hq5gk9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: image/vnd.microsoft.icon
content-length: 5430
server: Apache/2.4.41 (Ubuntu)
last-modified: Mon, 26 Jul 2021 18:17:08 GMT
etag: "1536-5c80ac2e78fe8"
accept-ranges: bytes
X-Firefox-Spdy: h2
signals.aimtell.com/pageview?id_site=12415&v=3.974&support=0&state=default&wl=1
104.18.30.151200 OK 43 B URL POST HTTP/2 signals.aimtell.com/pageview?id_site=12415&v=3.974&support=0&state=default&wl=1
IP 104.18.30.151:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectaimtell.com
Fingerprint1C:CD:DA:C4:62:7E:59:6E:A3:E5:F3:89:A3:BD:88:CA:D9:F0:F7:3D
ValiditySat, 08 Apr 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /pageview?id_site=12415&v=3.974&support=0&state=default&wl=1 HTTP/1.1
Host: signals.aimtell.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: https://smoothreward.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-expose-headers: Aimtell-Hash-Exists, Aimtell-Traverse, Aimtell-Signal
aimtell-hash-exists: 0
aimtell-signal: 0
aimtell-traverse: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c9133a3d988b523-OSL
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
143.204.42.209200 OK 1.4 kB URL GET HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
IP 143.204.42.209:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f383924b4df21ad2fe7e8882c61bd5ce
465f78b89eaf1a5aaea70d27ddef8bd19b72fee5
e3ad82a69faf9ec1b298a080ce5974322a33cc501e1455071cf8db58c7f2462f
GET /iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4 HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 18 Apr 2023 16:14:44 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
Date: Wed, 17 May 2023 22:23:13 GMT
ETag: W/"643ec1f4-dbb"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MseGTBd0iNvoe0Gd3ei8PJwgs4DWpJb4nam8QoCApb3uAxVjVfgizw==
Age: 20340
api.trustedform.com/certs
54.162.252.228201 Created 475 B URL POST HTTP/2 api.trustedform.com/certs
IP 54.162.252.228:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.trustedform.com
FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01
ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (475), with no line terminators
Hash 7c32cade333eb243fc85fa3f6202c4c7
820aff98c965a889927a47b879089b29ba8d21d1
9885370f34e78141d79742fcae004bce69253d640c90d7e022ee3a1ca7fcde2f
POST /certs HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 637
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 201 Created
date: Thu, 18 May 2023 04:01:56 GMT
content-type: application/json; charset=utf-8
content-length: 475
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/snapshot
54.162.252.228204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/snapshot
IP 54.162.252.228:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.trustedform.com
FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01
ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/d8721628df22c3f599fe027314ca897f113c0f76/snapshot HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6779
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 18 May 2023 04:01:56 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/fingerprints
54.162.252.228204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/fingerprints
IP 54.162.252.228:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.trustedform.com
FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01
ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/d8721628df22c3f599fe027314ca897f113c0f76/fingerprints HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 176
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 18 May 2023 04:01:56 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 2556e2c244791404e07d89d894afc213
7dffac707e69beb43344a256f20a1b9b192aebfc
ce2b494f41c34de0c76f5060159039c2fe352bbc18a3a216571022399b267c58
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 18 May 2023 04:01:56 GMT
Etag: "6464ffea-1d7"
Expires: Thu, 18 May 2023 06:01:56 GMT
Last-Modified: Wed, 17 May 2023 16:25:14 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GW4IqDLd0RHTFf0pK-Ceo0a94oMIb3qHR4-DwQPfwCy4qi9KppUdSA==
Age: 3562
api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/events
54.162.252.228204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/d8721628df22c3f599fe027314ca897f113c0f76/events
IP 54.162.252.228:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subject*.trustedform.com
FingerprintF4:48:7E:31:35:27:13:EC:49:9C:69:FF:E9:38:DF:3E:B3:A9:C9:01
ValidityWed, 22 Feb 2023 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/d8721628df22c3f599fe027314ca897f113c0f76/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 250
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 18 May 2023 04:01:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 01d89070473b31c11b15a948062e40a9
67138a9f5a40c68162320c47b175f4b26d12c088
4240da68d662e1a80b6d24a2f9c24916d28d4cd8259a7fd66536e0562de6e6f0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=7200'
Date: Thu, 18 May 2023 04:02:08 GMT
Etag: "64634bdb-1d7"
Server: ECAcc (dcb/7F47)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ib5-Z1GfPw0Tg5Wb5mcCRX7KI7Fg_Ca5CV9PTuXEwczCHJCF9fqo_g==
smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
107.21.226.142200 OK 5.0 kB URL User Request GET HTTP/2 smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
IP 107.21.226.142:443
Certificate IssuerAmazon
Subjectrocketprizesonline.com
Fingerprint99:F6:6A:CD:20:5C:A8:80:81:E8:F7:2D:A6:27:48:DB:38:42:AB:B1
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 23 Aug 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (699)
Hash 8ff6f043176f883e15f91a2fb2cda021
b185e8dc7fff2b8e3dd79a0e8f0cb500be907e43
013b5e1f73ad7abe66285a671ff1e7134617ff159aa6658f6fbbb35cefe8dc3d
Analyzer Verdict Alert fortinet Phishing
GET /go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333 HTTP/1.1
Host: smoothreward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:02:08 GMT
content-type: text/html; charset=UTF-8
content-length: 4971
server: Apache/2.4.41 (Ubuntu)
set-cookie: ci_session=g7tda0mi78l0vcsnc88pfh99lt9oladl; path=/; HttpOnly; SameSite=Lax
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, no-store, max-age=0, no-cache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false
143.204.55.123200 OK 7.5 kB URL GET HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false
IP 143.204.55.123:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcdn.trustedform.com
Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99
ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7726), with no line terminators
Hash 9922363fd118cee80f733b7f8cf45e5c
c58005d21a1da4c611549651099127ff0f2ab9f6
1c01e146dfe11b2f712393fa866f782d0ea7d52ba076fb66739de8bbcd712565
GET /bootstrap.js?provide_referrer=false&field=trusted_form&l=16843825121140.6746149235026236&invert_field_sensitivity=false HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smoothreward.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 18 May 2023 04:01:56 GMT
last-modified: Fri, 12 May 2023 16:55:50 GMT
x-amz-version-id: 3_b23spJZawDo2DonqGySoPkWa3Umuag
etag: W/"88ddf717f635b54023edd7480431e1d1"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 41C9KeEChA8ri4hMebZOFbOVKuHYJuheOscmbPmIsmycNhoNps5mfA==
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDom?msn=2&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161501
3.228.135.28200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161501
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/SaveDom?msn=2&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161501 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 496
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguserid=c10e8b6e-cc02-4788-aff7-8ce8d6552ba5; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.min.css
104.18.11.207200 OK 22 kB URL GET HTTP/2 netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.min.css
IP 104.18.11.207:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (668)
Hash 7fbe76cdac6093784895bb4989203e5a
68e2602c02181b61eebc9e1dccb0a38377fa5df7
326b994ec59c7334f52211fbd5aa909a36b98d1717cb798bfcd3af8d4cbdb6ca
GET /font-awesome/3.2.1/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 08/03/2021 16:46:11
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 0a8c57b841d86b22613591e267b8dfd1
cdn-cache: HIT
cf-cache-status: HIT
age: 29828835
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c9133987cc2fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/GenerateToken?msn=1&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&_=684161500
3.228.135.28200 OK 36 B URL POST HTTP/2 create.leadid.com/2.11.9/GenerateToken?msn=1&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&_=684161500
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash b2927933e1623f672886ddb35f81a6cd
01ef3e89c6528d24cefc19d417b7c3a035805ea1
171b391ee7561a9f7d85dfef2d6a8834be43ae4f93c2b5330bfe488ab7769611
POST /2.11.9/GenerateToken?msn=1&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&_=684161500 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 252
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguserid=85d1cb76-704d-4d76-8bad-3ec60d20d662; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
pushpros.tech/GetPushScript?key=2Xa3N8H4tIMDq5DaLOjgimHq4HG8UhWO&domain=smoothreward.com
108.157.214.55200 OK 2.2 kB URL GET HTTP/2 pushpros.tech/GetPushScript?key=2Xa3N8H4tIMDq5DaLOjgimHq4HG8UhWO&domain=smoothreward.com
IP 108.157.214.55:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectpushpros.tech
FingerprintF1:27:D4:0A:37:DD:69:2C:97:CF:48:D1:1A:24:56:E0:17:C8:BB:F9
ValidityThu, 04 May 2023 00:00:00 GMT - Sat, 01 Jun 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2188), with no line terminators
Hash 3809b02376deed4d0626f66905a340d9
62e2df7938f8d0832d448221406484aa9021f4f7
4bbdbc34671b87ddfeffd3d0c6c40f313b038516f588a042c2b170a4fa66088b
GET /GetPushScript?key=2Xa3N8H4tIMDq5DaLOjgimHq4HG8UhWO&domain=smoothreward.com HTTP/1.1
Host: pushpros.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smoothreward.com/
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 2182
date: Thu, 18 May 2023 04:01:55 GMT
x-amzn-requestid: 58e03d53-6779-4754-a405-f8bcf143e824
access-control-allow-origin: *
x-amz-apigw-id: FGZwBHhloAMFd2A=
x-amzn-trace-id: Root=1-6465a333-3ffa6ae619621b674dbfb889;Sampled=0;lineage=ce85cba6:0
x-cache: Miss from cloudfront
via: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: a8dlPSRye77D-PFfoIlXL_jLKLJ5otEjf90QtXj7IAApAyPZ-578oA==
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playball
142.250.74.106200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Playball
IP 142.250.74.106:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (1143), with no line terminators
Hash 4558881dd58a60ba1cae859ea09e699d
282d99ee31a0b503f55554e277569e26b4affcea
a65f048c56dc98c4be21a9774c54e264bd1baea587d2a7f775e193cb1e6b9561
GET /css?family=Playball HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 May 2023 04:01:54 GMT
date: Thu, 18 May 2023 04:01:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161502
3.228.135.28200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161502
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/InitFormData?msn=3&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161502 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1253
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguserid=8f093cb1-f894-4e72-ad70-f932ed2a18f1; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta.2/js/bootstrap.min.js
104.18.11.207200 OK 51 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta.2/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (50277)
Hash 46b549bdc90920f18a911f186b9dd75c
3c639c4af5c036a6ee364215bd12c0b12937827d
1886bc561dec7c44a7541d82377ad81a40ff32496f32ad259884f0790c44d6a5
GET /bootstrap/4.0.0-beta.2/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:54 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:03 GMT
cdn-cachedat: 2021-04-23 06:28:09
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: a9ac53c2137aaf1cc3a74aff1812514f
cdn-cache: HIT
cf-cache-status: HIT
age: 956436
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c9133987cc3fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/3cced9a6-4a67-d637-acdc-ccf79b4a5210.js?snippet_version=2
104.22.39.182200 OK 126 kB URL GET HTTP/2 create.lidstatic.com/campaign/3cced9a6-4a67-d637-acdc-ccf79b4a5210.js?snippet_version=2
IP 104.22.39.182:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerCloudflare, Inc.
Subjectlidstatic.com
FingerprintF7:D5:3C:A9:3E:B6:D5:BF:11:CB:69:9F:0B:34:88:4F:18:79:BC:88
ValidityTue, 28 Feb 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
Size 126 kB (126350 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /campaign/3cced9a6-4a67-d637-acdc-ccf79b4a5210.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:55 GMT
content-type: text/javascript
x-amz-id-2: beFbwYlk+A3KI/5xaLQFAbaHyJimyIJm5uJdk+Y+7RWhd17VIQt/J4LQfVGqruDFb6HBLeTnUu0=
x-amz-request-id: Y2K7PMQ2VVVT9R4R
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 00:55:16 GMT
etag: W/"97495a102c98049f30e62264b1eb50f5"
cache-control: max-age=1800
x-amz-version-id: StKcIVmHluaEF1AzrOc3qrEmwMpZOgwG
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c91339bd9582e03-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/Snap?msn=5&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161504
3.228.135.28200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/Snap?msn=5&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161504
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/Snap?msn=5&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161504 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 123809
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:57 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rguserid=42976f14-db45-47ec-95c7-9c488200bfe9; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/Snap?msn=6&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161505
3.228.135.28200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/Snap?msn=6&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161505
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/Snap?msn=6&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161505 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 44545
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:57 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rguserid=a92be3f7-f4f1-40bd-b5ef-9621b83a70d7; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:57 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.trustedform.com/trustedform-1.8.39.js
143.204.55.123200 OK 105 kB URL GET HTTP/2 cdn.trustedform.com/trustedform-1.8.39.js
IP 143.204.55.123:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcdn.trustedform.com
Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99
ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 105 kB (104691 bytes)
Hash 9c2830f2c2e5b9cb27e0e7f151317cbe
7e0b45f1cf0f826b0aaaf792e20bdd77d27c6b3a
fe63c3d6c4d4486e0a2323e205377a04c96e054f37f4d87a7b8bab0091c19c14
GET /trustedform-1.8.39.js HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 12 May 2023 16:55:50 GMT
x-amz-version-id: OadgesbszW_FbzYEqgjtb7SPpT8rHyZy
server: AmazonS3
content-encoding: gzip
date: Thu, 18 May 2023 04:01:56 GMT
etag: W/"9c2830f2c2e5b9cb27e0e7f151317cbe"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cqZCO38QQPbY_zbRd2pUoB-tipdi_5aEGqQv-x66M8mEiYr5lFahTA==
age: 25
X-Firefox-Spdy: h2
deviceid.trueleadid.com/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
3.220.50.246200 OK 4.2 kB URL GET HTTP/2 deviceid.trueleadid.com/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
IP 3.220.50.246:443
Requested by https://d2m2wsoho8qq12.cloudfront.net/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
Certificate IssuerAmazon
Subjectdeviceid.trueleadid.com
FingerprintD8:8B:86:53:4A:F3:E9:53:1D:C4:CD:CB:91:CD:50:50:B0:84:BA:DB
ValidityFri, 24 Feb 2023 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4323), with no line terminators
Hash 27a57862137bf0b580930f288703c507
20114057bbb1f8a2ca6f1b6a2d81fe7f2b75c64a
b0019d4447d91be93f68b8fb233b8fcccc542e3dffc16d4dc9c9f71bc9704550
GET /iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4 HTTP/1.1
Host: deviceid.trueleadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d2m2wsoho8qq12.cloudfront.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:56 GMT
content-type: text/html
server: nginx
last-modified: Thu, 30 Mar 2023 19:50:33 GMT
etag: W/"6425e809-1049"
expires: Fri, 19 May 2023 04:01:56 GMT
p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
cache-control: max-age=86400, public
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=4&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161503
3.228.135.28200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=4&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161503
IP 3.228.135.28:443
Requested by https://smoothreward.com/go/to/5g232f/key/5bb0c28fe27422633a0afd37f45adc6b/aid/10899/s1/416333
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/InitFormData?msn=4&pid=01d8301c-9793-4810-a7b7-b6f3960bbeeb&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&_=684161503 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1060
Origin: https://smoothreward.com
DNT: 1
Connection: keep-alive
Referer: https://smoothreward.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:56 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rguserid=6baba9f7-cab0-456d-8f02-dae55d944150; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDeviceId.js?lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&methods=48&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&uuid=3151839f3e5c4d83bf4b4223a97c4f3b
3.228.135.28200 OK 0 B URL GET HTTP/2 create.leadid.com/2.11.9/SaveDeviceId.js?lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&methods=48&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&uuid=3151839f3e5c4d83bf4b4223a97c4f3b
IP 3.228.135.28:443
Requested by https://deviceid.trueleadid.com/iframe.html?token=614029AC-699A-F0AE-8B27-83FDE8DC8927&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2.11.9/SaveDeviceId.js?lac=FCB958C1-1AC9-561E-1E7C-7EB79158EEC4&lck=3CCED9A6-4A67-D637-ACDC-CCF79B4A5210&methods=48&token=614029AC-699A-F0AE-8B27-83FDE8DC8927&uuid=3151839f3e5c4d83bf4b4223a97c4f3b HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deviceid.trueleadid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 04:01:56 GMT
content-type: text/javascript;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rguserid=8563ce9a-43e0-4a5e-bd05-36f15f7d94e8; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Sat, 17-Jun-2023 04:01:56 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2