GET /go/79f13ba6-6690-46ad-b3be-7f436030d49d HTTP/1.1
Host: continuetosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 3.70.16.242
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Server: openresty
Date: Thu, 08 Dec 2022 22:21:26 GMT
Content-Length: 470
Connection: keep-alive
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
Access-Control-Allow-Origin: *
Location: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Set-Cookie: bemob-uniq-visit:79f13ba6-6690-46ad-b3be-7f436030d49d=1; Domain=continuetosite.com; Path=/; Expires=Fri, 09 Dec 2022 22:21:26 GMT; HttpOnly
bemob-rotation:79f13ba6-6690-46ad-b3be-7f436030d49d:random:ca5cbbbd92dd6713911d4fca3b88c62f=0-0-0; Domain=continuetosite.com; Path=/; Expires=Fri, 09 Dec 2022 22:21:26 GMT; HttpOnly
bemob-track-url=https%3A%2F%2Fofficialwinner.xyz%2F1%2Fprizewheel%2Fiphone13%2Far-tn%2Findex.html%3Fdomain%3Dcontinuetosite.com%26brand%3D%26bemobdata%3Dc%253D79f13ba6-6690-46ad-b3be-7f436030d49d..l%253Db382e87f-e469-4514-a3d5-af16039eb6e2..a%253D0..b%253D0; Domain=continuetosite.com; Path=/; Expires=Fri, 09 Dec 2022 22:21:26 GMT; HttpOnly
Vary: Accept
X-Response-Time: 8.838ms
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12986
Expires: Fri, 09 Dec 2022 01:57:53 GMT
Date: Thu, 08 Dec 2022 22:21:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11060
Expires: Fri, 09 Dec 2022 01:25:47 GMT
Date: Thu, 08 Dec 2022 22:21:27 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 22:08:14 GMT
age: 793
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5226
Expires: Thu, 08 Dec 2022 23:48:33 GMT
Date: Thu, 08 Dec 2022 22:21:27 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 4g6IQCWliryShscOpVG02UEqMzF6H0azP4OnuoAM+HdkHImrx8ZWOraLlLA7KVxSYDAv3x2kQCI=
x-amz-request-id: TTPJCVP4HQTZFY4P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 21:48:04 GMT
age: 2003
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 08 Dec 2022 22:21:27 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 22:07:58 GMT
age: 809
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3549
Cache-Control: 'max-age=158059'
Date: Thu, 08 Dec 2022 22:21:27 GMT
Last-Modified: Thu, 08 Dec 2022 21:22:18 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.80.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110734
Date: Thu, 08 Dec 2022 22:21:27 GMT
Etag: "639170f5-1d7"
Expires: Sat, 10 Dec 2022 05:07:01 GMT
Last-Modified: Thu, 08 Dec 2022 05:07:01 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UQsR0rEjZCDtxnegcCVdRh2BNJ4BtrqmqDS4NaP4oISe_lt1sXj1Mg==
|
GET /1/prizewheel/iphone13/ar-tn/img/landers/prizewheel-fb/loader.gif HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: image/gif
content-length: 5083
date: Thu, 08 Dec 2022 09:29:43 GMT
last-modified: Wed, 16 Nov 2022 08:56:14 GMT
etag: "ed786659a534e0d183c09a90c50abc9d"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hgmZwCggz_MegxZ2kW7HfcKq1uPf0g_koUmxG-AP-aDCgH8b2Fynsw==
age: 46306
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/landers/prizewheel-fb/prizewheel_spinner.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32496
last-modified: Wed, 16 Nov 2022 08:56:15 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 15:18:46 GMT
etag: "d4655cba21d806e849eed4e4119fbe1a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GSkyorHHXeh-QhoMedcimYr5rUtXnvn0pzwmCe8y92dxZY65BWzdjg==
age: 25362
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/js/app%EF%B9%96id=15b1bae461854d516179.js HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: application/javascript
content-length: 977
last-modified: Wed, 16 Nov 2022 08:56:15 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 14:35:29 GMT
etag: "15b1bae461854d516179a34a8c9b5f08"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xGpf2J3KjQy0C0rNtJVpzP3QzuJdTsxV2gNxQDmcpw08MXxN-sJRgw==
age: 27960
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/css/app%EF%B9%96id=c588c17324f2be0e0ec9.css HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: text/css
content-length: 33
last-modified: Wed, 16 Nov 2022 08:56:14 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 15:18:39 GMT
etag: "c588c17324f2be0e0ec90a18f39e7d7c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yspy7C4194zGZmNPkVLpawH0Wnbj77DbItN7Mmx6ht58CwgPuaYUYQ==
age: 25370
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/prizes/iphone-12-pro-max/default@0.5x.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: image/png
content-length: 32266
last-modified: Wed, 16 Nov 2022 08:56:15 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 15:18:41 GMT
etag: "c562f63263ffff2688791c38014b36bc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jUTTTICnB5hGFESgzfRq7OSpN_4K3-6_ZltfSveF7mwvQSikB8Sb0Q==
age: 25368
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/landers/prizewheel-fb/notification.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: image/png
content-length: 449
last-modified: Wed, 16 Nov 2022 08:56:14 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 15:18:41 GMT
etag: "bd5203f2cc9e7a9125e4575e029541b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RS-TLIxcXGii-JelC-mPLT2tFHOflmKbOvy_eONWatVsyVuiDqdwBw==
age: 25368
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ELbGz0I6OjaWN/Cj1NfRqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
44.237.93.5
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jDpuehTN+ccTp9lTT0XOv6Mxpgw=
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "51742B7CBEDC79E5F46198EB3CC0F7865946FDE2A7D8C7D665B2FDDCF96B41C3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7973
Expires: Fri, 09 Dec 2022 00:34:21 GMT
Date: Thu, 08 Dec 2022 22:21:28 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9330
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 22:21:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9330
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 22:21:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9330
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 22:21:29 GMT
Connection: keep-alive
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/female/5@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WxDz6Bh64vV9iFnlF4Wa6NXUjbRYcj0UYoh4i8D3Bka_35uVbSIGfg==
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/female/1@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: apWhW0rWHcQ3PqlnQmDYcvOSrY0y2N9jtxJmT1rvGccZyuQklidVNQ==
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/male/2@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:27 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ody1Y6Wo2YvVkTu2Y1rFOAQtPs6hUPCAbiWj-Rc0gPil4k9KYvEZDQ==
X-Firefox-Spdy: h2
|
GET /pfe/current/micro.tag.min.js?z=5378963&sw=/sw-check-permissions-f40a4.js HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
139.45.197.250
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 08 Dec 2022 22:21:28 GMT
last-modified: Thu, 01 Dec 2022 15:42:46 GMT
etag: W/"6388cb76-9a87"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f3c5738-c186-4a1f-a431-33143797bcd5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8345
x-amzn-requestid: b1cf2094-2cf5-4e19-9ed7-4d7e220c93cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czUoREPoIAMF4hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391349b-1b78fe0a155179643ae2aeed;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 00:49:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: YMFI6I2o0A4rGZTluooPsDLGNRRY9kSAfDAFrwzXhIG4HC_W-hFIoQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 11:31:33 GMT
age: 38996
etag: "4792b0893827924e84cc51450012407717da4d2b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/male/10@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ht5qD_PhkdnY_WSAafYIgzfwEjml802ZARgn6KryuT8reZQJNzMrzA==
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/male/9@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RJ6-Nz1GSW80G6aUfBUWqlE5lLhgN4v2J64FvPxxNGjTbpECETj8Bw==
X-Firefox-Spdy: h2
|
POST /zone?&pub=0&zone_id=5378963&is_mobile=false&domain=officialwinner.xyz&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://officialwinner.xyz
Connection: keep-alive
Referer: https://officialwinner.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
|
search
139.45.197.250
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 22:21:36 GMT
content-length: 0
x-trace-id: c42a06956f50674fce58e9572b292a11
access-control-allow-origin: https://officialwinner.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /1/prizewheel/iphone13/ar-tn/img/prizes/iphone-12-pro-max/proof.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:27 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mnaqIfcxJyYuDRFaHS9jEIGvDQ_ID_oSMyawd8ycorwGL9zKwPWw1w==
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/male/3@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _IlDy8ckyv9UmRZdVO4029fLFpebAM7QDGN9Htgkw9aKPGKruTNINg==
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0 HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
54.230.111.99
HTTP/2 200 OK
content-type: text/html
date: Thu, 08 Dec 2022 15:37:52 GMT
last-modified: Wed, 16 Nov 2022 08:56:15 GMT
etag: W/"0336ab3981a87eb98b31eecf78d6195f"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n6I6K2cOl5Yn4f8nBVSKtURWzky6wcKjekHyzATYYjq0N1CpEty-GQ==
age: 24216
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/css/landers/prizewheel-fb/app%EF%B9%96id=cd41123a11e97e0f2444.css HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 16 Nov 2022 08:56:14 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Dec 2022 19:41:40 GMT
etag: W/"cd41123a11e97e0f2444b57d180631a0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1FORMCegrWjV8Kdl2zNkYlCsGRBNClBxfCAG5W8qzVRhhGWIGweNOw==
age: 9589
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/female/3@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wS6XX1ISuVYqNvLGVFTc2tw7rnvc3sbtTebwidedOHSzYTzCs_MIeQ==
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/js/landers/prizewheel-fb/app%EF%B9%96id=c3c399d8b44b50eee3e6.js HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 08:56:15 GMT
server: AmazonS3
content-encoding: br
date: Thu, 08 Dec 2022 03:35:52 GMT
etag: W/"cdf97653c213f02233f50a1ec975633c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zWgmd588MWvLCLs-xW2-HUXb0Gl08_fmowArAcvf4HQnWBHv9ZpbUw==
age: 67537
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /1/prizewheel/iphone13/ar-tn/img/profiles/mena/female/6@0.25x.jpg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VV8SjrJarXlKQLBPl70TKnlBfpOyCLhhMqOD5Saw8mPBV90IDw2uCA==
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /1/prizewheel/iphone13/ar-tn/img/fb-like.svg HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PFAzG30E708gdHSQTLxEvOttVcwd1IB1J2Qi6IYWyBL9MMrzRSjMTQ==
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /1/prizewheel/iphone13/ar-tn/img/landers/prizewheel-fb/prizewheel_static.png HTTP/1.1
Host: officialwinner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://officialwinner.xyz/1/prizewheel/iphone13/ar-tn/index.html?domain=continuetosite.com&brand=&bemobdata=c%3D79f13ba6-6690-46ad-b3be-7f436030d49d..l%3Db382e87f-e469-4514-a3d5-af16039eb6e2..a%3D0..b%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.99
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 08 Dec 2022 22:21:28 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kzqWiX6dBc3d3a_0V5QO-IEqXh9YOJ4cEU6ljaTz8ZDDE_bQSLnVlA==
X-Firefox-Spdy: h2
--- Additional Info ---
|