yig5jp.fervent-goldwasser.com/84ec4bc9-132f-41a4-a062-54bfcace99a1
18.193.209.105302 0 B URL HTTP/1.1 yig5jp.fervent-goldwasser.com/84ec4bc9-132f-41a4-a062-54bfcace99a1
IP 18.193.209.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /84ec4bc9-132f-41a4-a062-54bfcace99a1 HTTP/1.1
Host: yig5jp.fervent-goldwasser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Fri, 31 Mar 2023 21:56:54 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Pragma: no-cache
Set-Cookie: 84ec4bc9-132f-41a4-a062-54bfcace99a1-v4=IHltS944rwwxL7OfjNGLrMpClq25md7AMfQ0woncetI; Max-Age=86400; Expires=Sat, 01-Apr-2023 21:56:54 GMT; Domain=yig5jp.fervent-goldwasser.com; Path=/; HttpOnly
cep-v4=A21T16roEjOyWkl2mSOtnI7hKwJb4X2t_V6fGbKgfCWaPc6vHeHAIGBvQ7KTNpUVxl8BWnLZ9K-cujVy8LrKppL_p6LKfo6P4zYiAsDmDN7XZrDsolTswoeZVs3D6TIUUCapvIgdpyy6Kx22rWh9PEo06WOviSf8hzGrVNArBX6H07Sv4QPHCP33a3Oo4awB2JKjusgmhcenByThyUkaSYZeVrrsK-epbGOgBgsZn-HqcmVXv4kw93nM-EoOWuLTMiXUkr-4qkbPa8lvGMHYPhyBt43rGaMCSuqIvF3zHUmNECymwoltasI-olbzbJeY1vPE6Mu7D8nOmm1Vf9IM62UD3vsFZcnJG8sJJ01dXmk; Max-Age=86400; Expires=Sat, 01-Apr-2023 21:56:54 GMT; Domain=yig5jp.fervent-goldwasser.com; Path=/; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4009
Expires: Fri, 31 Mar 2023 23:03:43 GMT
Date: Fri, 31 Mar 2023 21:56:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18978
Expires: Sat, 01 Apr 2023 03:13:12 GMT
Date: Fri, 31 Mar 2023 21:56:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 21:16:13 GMT
content-type: application/json
age: 2441
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8916
Expires: Sat, 01 Apr 2023 00:25:30 GMT
Date: Fri, 31 Mar 2023 21:56:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: g35MI1YJ/j4RnH0MkoeWlkhlmVdQN/GympKjOQJfFcsuEDLBHKnMSiVJiNPlJcrjcomboEkBxIg=
x-amz-request-id: E18JTD5SFQS2PZ7M
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 21:12:20 GMT
age: 2674
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:56:55 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3865
Expires: Fri, 31 Mar 2023 23:01:20 GMT
Date: Fri, 31 Mar 2023 21:56:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1bfe471b6ef77e74849cfbeb7cad26a3
4245f4091810474f3abb9eac3aff3c1ecae58e20
28ff95dff2e7d1d7ea724f33d939e7de89cebff613f681aad3ba1a1c59745892
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28FF95DFF2E7D1D7EA724F33D939E7DE89CEBFF613F681AAD3BA1A1C59745892"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5636
Expires: Fri, 31 Mar 2023 23:30:51 GMT
Date: Fri, 31 Mar 2023 21:56:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 21:17:26 GMT
age: 2369
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
35.212.33.31200 OK 3.5 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
IP 35.212.33.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (308)
Hash 235f7cada2b2ae83a733591cd7f3270e
5b8cd279d129c05b0471544e10ae2882224964c3
e2b293922032572a53182568c8edd36660509cb9c647ab8251decf36c30e81fd
GET /aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6 HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q0QNEV4HlFZBAmw9QCd2YA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9Pk0yeFZtfFtgr4lN10LGsmf/c0=
Date: Fri, 31 Mar 2023 21:56:55 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6473ce6830c3db273ab68dd7a6c10bc6
f5f0ec84daf9ace0add0568ec4151e4f3424e676
ea8fdf7f5c5c414578b5f563c3c6e8bc68eabb0ba469aa674ba9524065aec6ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA8FDF7F5C5C414578B5F563C3C6E8BC68EABB0BA469AA674BA9524065AEC6EC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3225
Expires: Fri, 31 Mar 2023 22:50:40 GMT
Date: Fri, 31 Mar 2023 21:56:55 GMT
Connection: keep-alive
my.rtmark.net/p.js?f=sync&lr=1&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041
IP 139.45.195.8:0
Hash 30995f0d5c796614af27878126703f6f
5ee7fa83858f7f13e4563dc958748841bd7ac3fa
f7a72bbf66d1b63947ae89df183d43d8b029236d943a0fb04208768c29318da5
GET /p.js?f=sync&lr=1&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:56:55 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
luck.insta-luck.net/aldi_BEFR_fr_push/css/foundation-custom.css
35.212.33.31200 OK 64 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/css/foundation-custom.css
IP 35.212.33.31:0
File type Unicode text, UTF-8 text, with very long lines (63802), with no line terminators
Hash f233b38a710d15d3dd1f013038ac2811
e7718af124ff8f43cfe0d0238d493b0ff9f5d17c
8a924d7f2a1eafc3f7e535154e30b0f49ec294c016a1effb178aef5187cbb1ec
GET /aldi_BEFR_fr_push/css/foundation-custom.css HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/css
Content-Length: 63804
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-f93c"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/css/carrefour-mono.css
35.212.33.31200 OK 1.6 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/css/carrefour-mono.css
IP 35.212.33.31:0
Hash 39987eca9f9f3827dea4fd98c4224328
102aff0f265be10c629718eea57f298a748d8368
483df48fa1f4bf63b37ac1eaa21dc2a559dab13f628ef8b0ce6bd49d7e36713b
GET /aldi_BEFR_fr_push/css/carrefour-mono.css HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/css
Content-Length: 1643
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-66b"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/css/main.css
35.212.33.31200 OK 869 B URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/css/main.css
IP 35.212.33.31:0
Hash c19d146a1591df5dd9ee89f347bff6a7
06eaa925fa6daa2bd4c0cf3276cc850e9fc8d76d
104f822fb842f17a099475e8d2ce7c38153eee05d227bca1fa06fa4f2ebe305b
GET /aldi_BEFR_fr_push/css/main.css HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/css
Content-Length: 869
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-365"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/js/script.js
35.212.33.31200 OK 1.8 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/js/script.js
IP 35.212.33.31:0
Hash b7e219fc6058a92594be740013b5ea1a
0cdef14dbf9683cb59bdfedd3fa5df32b76fde68
c6aea250c3b9fd04894b453f19adc34a19198bda3b6d33b8249d2e8870aebd6d
GET /aldi_BEFR_fr_push/js/script.js HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: application/javascript
Content-Length: 1780
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-6f4"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/css/font-awesome.min.css
35.212.33.31200 OK 31 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/css/font-awesome.min.css
IP 35.212.33.31:0
File type ASCII text, with very long lines (30852)
Hash 0229c9159e3f0af07fe4bbadf050c0fa
e9dd5983c2267347a032e98c60daab2982063faf
3f75f8a7ed4215ae94bcca15c94f2abb34c25bd659d13f72d664e476de038294
GET /aldi_BEFR_fr_push/css/font-awesome.min.css HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/css
Content-Length: 31015
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-7927"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/css/roboto.css
35.212.33.31200 OK 2.8 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/css/roboto.css
IP 35.212.33.31:0
File type ASCII text, with very long lines (2821), with no line terminators
Hash a7c6ca822fae7404c30f7a59b0e33fab
f863c0c4f8b07f4113622d1fbc03682a254d14eb
d52595134dde9d37828cbff97030e751bda33c4ceef921a8e31d2d75f3875c58
GET /aldi_BEFR_fr_push/css/roboto.css HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/css/carrefour-mono.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: text/css
Content-Length: 2821
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-b05"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/js/mootools-core-1.6.0-compressed.js
35.212.33.31200 OK 90 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/js/mootools-core-1.6.0-compressed.js
IP 35.212.33.31:0
File type ASCII text, with very long lines (32043)
Hash fcb1c635899fd1e781349468b8e5bb84
b9aa7889137b9f895effaf70bbf830346f205738
be0e66141e099739e90785e74a75e7aba4a5a3aa36c414e867c41f0ced9b0a36
GET /aldi_BEFR_fr_push/js/mootools-core-1.6.0-compressed.js HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:55 GMT
Content-Type: application/javascript
Content-Length: 89700
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-15e64"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/png/imgmono-aldi-be.png
35.212.33.31200 OK 84 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/png/imgmono-aldi-be.png
IP 35.212.33.31:0
File type PNG image data, 680 x 547, 8-bit colormap, non-interlaced\012- data
Hash 60cf1f1b9651516aada5ffe2764a0190
b6ee9a9930c6541220078daec40386dc77e9051e
91e43b7e79024ab3eb76309d662b91c9768842aff7f71bc56577875b696f1877
GET /aldi_BEFR_fr_push/png/imgmono-aldi-be.png HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:56 GMT
Content-Type: image/png
Content-Length: 83524
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-14644"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/aldi_BEFR_fr_push/woff2/roboto-bold.woff2
35.212.33.31200 OK 66 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/woff2/roboto-bold.woff2
IP 35.212.33.31:0
File type Web Open Font Format (Version 2), TrueType, length 65972, version 1.0\012- data
Hash f3a02e2578bee50e620e515912278bc9
168e9a9e4690ec3437a6a3087dd2f76fadc47888
4d7dd6e02d849e181e51db84d9d230d369b8ce7412dbcee9d7d1d19ad8a16741
GET /aldi_BEFR_fr_push/woff2/roboto-bold.woff2 HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/css/roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:56 GMT
Content-Type: application/octet-stream
Content-Length: 65972
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-101b4"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb338d9f3793bfd065978ae8c03d62e5
fb31f3349733e3103d8719e3d3ffbf86e431715f
2dad5749e2020ac558f665a4237875ecce062a378daf94d620ce7bdd5596906c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DAD5749E2020AC558F665A4237875ECCE062A378DAF94D620CE7BDD5596906C"
Last-Modified: Thu, 30 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10530
Expires: Sat, 01 Apr 2023 00:52:26 GMT
Date: Fri, 31 Mar 2023 21:56:56 GMT
Connection: keep-alive
luck.insta-luck.net/aldi_BEFR_fr_push/woff2/roboto-regular.woff2
35.212.33.31200 OK 66 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/woff2/roboto-regular.woff2
IP 35.212.33.31:0
File type Web Open Font Format (Version 2), TrueType, length 65916, version 1.0\012- data
Hash 9feb0110b6dff9ee2b9ebd17f7a1aee6
90bbe308a02d7cda492e3beb1a6091809b8f35c8
8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920
GET /aldi_BEFR_fr_push/woff2/roboto-regular.woff2 HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/css/roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:56 GMT
Content-Type: application/octet-stream
Content-Length: 65916
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-1017c"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
oungimuk.net/zone?&pub=0&zone_id=5290939&is_mobile=false&domain=luck.insta-luck.net&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL HTTP/2 oungimuk.net/zone?&pub=0&zone_id=5290939&is_mobile=false&domain=luck.insta-luck.net&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5290939&is_mobile=false&domain=luck.insta-luck.net&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: oungimuk.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luck.insta-luck.net
Connection: keep-alive
Referer: https://luck.insta-luck.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:56:56 GMT
content-length: 0
x-trace-id: ffbf3498ab748c1fd9e3e7ac9db84540
access-control-allow-origin: https://luck.insta-luck.net
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
luck.insta-luck.net/aldi_BEFR_fr_push/woff2/fontawesome-webfont3e6e.woff2?v=4.7.0
35.212.33.31200 OK 77 kB URL HTTP/1.1 luck.insta-luck.net/aldi_BEFR_fr_push/woff2/fontawesome-webfont3e6e.woff2?v=4.7.0
IP 35.212.33.31:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /aldi_BEFR_fr_push/woff2/fontawesome-webfont3e6e.woff2?v=4.7.0 HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 21:56:56 GMT
Content-Type: application/octet-stream
Content-Length: 77160
Last-Modified: Thu, 24 Nov 2022 15:16:50 GMT
Connection: keep-alive
ETag: "637f8ae2-12d68"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
luck.insta-luck.net/favicon.ico
35.212.33.31404 Not Found 125 B URL HTTP/1.1 luck.insta-luck.net/favicon.ico
IP 35.212.33.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 239540730a71a3ab34f1c0f1f87ae03e
4fd8d8975e2d3404e8ac5e2721c1b647ae65d59c
36d5cec09fddadf8132407e8f8c56956c85367dc3d598a1531214a55cca6b368
GET /favicon.ico HTTP/1.1
Host: luck.insta-luck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/aldi_BEFR_fr_push/index.php?cep=qxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE&lptoken=160680e23003161414a6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 31 Mar 2023 21:56:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
my.rtmark.net/img.gif?f=sync&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041&ttl=&rurl=https%3A%2F%2Fluck.insta-luck.net%2Faldi_BEFR_fr_push%2Findex.php%3Fcep%3DqxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE%26lptoken%3D160680e23003161414a6%23
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041&ttl=&rurl=https%3A%2F%2Fluck.insta-luck.net%2Faldi_BEFR_fr_push%2Findex.php%3Fcep%3DqxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE%26lptoken%3D160680e23003161414a6%23
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=c41ca476b164cfd4d763e6e106b676d375b01691afdc56557693f68711ebb041&ttl=&rurl=https%3A%2F%2Fluck.insta-luck.net%2Faldi_BEFR_fr_push%2Findex.php%3Fcep%3DqxCvZejDcXTlj7M2DJX6qdnrPaANfv3JJZFzydsbjIioc3H9p40_4BUSQvwmbFW5wIs108tR6XZK3l0OtRxfXOEvLaa7MD4CrM9sur7zegj_4e7lpRkNud1D-5JOG6ydeoZCgDceW_jy_bCmwZ-o7wjhQ4xZOoLJcryBrniAwj8UOthhlIE5tx0nIyvEBkOTC_0oD8CkGcjBkpBBgpIY2zCQamCqhZ6oWhZdsZZN_xt8Zl1-fDXkGyFTLdd2srEpg2t0MWkuM85TWBFP4lUZTLGz1I-0PFURtgLwDfdkjGxBdj80abP3Wmqfj9oz6IwUyzPvWZqYITFqpl0cuecnY4Mwq62CIoraOJwITGfnqhE%26lptoken%3D160680e23003161414a6%23 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:56:56 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d4e3328b17d04aa8946d171af8746484; expires=Sat, 30 Mar 2024 21:56:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11109
Expires: Sat, 01 Apr 2023 01:02:06 GMT
Date: Fri, 31 Mar 2023 21:56:57 GMT
Connection: keep-alive
oungimuk.net/pfe/current/micro.tag.min.js?z=5290939&sw=/sw-check-permissions-dbc0d.js
139.45.197.251200 OK 15 kB URL HTTP/2 oungimuk.net/pfe/current/micro.tag.min.js?z=5290939&sw=/sw-check-permissions-dbc0d.js
IP 139.45.197.251:0
Hash 91422f9c49b3b2f4ebcc08e02829cc1f
906b077bdcc962649bf19145f89dd06b5de32f2b
1b88a76655d094daedb8873b63610c2ef979cfd569d18a8178cfb70eea2ae136
GET /pfe/current/micro.tag.min.js?z=5290939&sw=/sw-check-permissions-dbc0d.js HTTP/1.1
Host: oungimuk.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luck.insta-luck.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:56:56 GMT
content-type: application/javascript
last-modified: Fri, 31 Mar 2023 12:18:44 GMT
etag: W/"6426cfa4-a164"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11109
Expires: Sat, 01 Apr 2023 01:02:06 GMT
Date: Fri, 31 Mar 2023 21:56:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11109
Expires: Sat, 01 Apr 2023 01:02:06 GMT
Date: Fri, 31 Mar 2023 21:56:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11109
Expires: Sat, 01 Apr 2023 01:02:06 GMT
Date: Fri, 31 Mar 2023 21:56:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:49:10 GMT
age: 467
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: dPs43FNnkyvbHYpvItSVgw6z2ebM5aOMjb_flfGjsBmrCF-OjhFQxQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:46:35 GMT
age: 622
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 00:11:32 GMT
age: 78325
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:24 GMT
age: 573
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: WNL7Cf83AgDngpHfjV3CApgud_mzV7cdJ2QMzd6TdidQ8uDtauDW1A==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:44:52 GMT
age: 725
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jl5cQc_Zqq5xNDMcs5jRHb3HBIjuucl-JHF126hInXrOfv_CG-UqSg==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:54:35 GMT
age: 142
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2