qzwex.luckywiinner.com/?utm_source=1f0a2cb367c37dee&s1=78850&s2=1755709&j1=1&click_id=e5de9523vuog53yd8d
63.32.216.166200 OK 7.1 kB URL HTTP/1.1 qzwex.luckywiinner.com/?utm_source=1f0a2cb367c37dee&s1=78850&s2=1755709&j1=1&click_id=e5de9523vuog53yd8d
IP 63.32.216.166:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7649)
Hash fb419dbc025361039487ce4093ac91f6
95c5bc7f2092112e77363ef7dee64a9017cf11fe
634d584b6e517c097ec18872339b6a9da9e1fe641e044fc7055e49b51a2d9e33
GET /?utm_source=1f0a2cb367c37dee&s1=78850&s2=1755709&j1=1&click_id=e5de9523vuog53yd8d HTTP/1.1
Host: qzwex.luckywiinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:54:59 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=63d24df30008d67c; Path=/; Expires=Mon, 27 Mar 2023 09:54:59 GMT
unique_id2=63d24df3000b8a81; Path=/; Expires=Wed, 26 Apr 2023 09:54:59 GMT
63d24df3000b8a81_c=1; Path=/; Expires=Wed, 26 Apr 2023 09:54:59 GMT
ref_token=78850; Path=/; Expires=Sat, 25 Feb 2023 09:54:59 GMT
impression=; Path=/; Expires=Thu, 26 Jan 2023 09:54:59 GMT
63d24df3000b8a81_sl=[271041]; Path=/; Expires=Thu, 09 Feb 2023 09:54:59 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4188
Expires: Thu, 26 Jan 2023 11:04:47 GMT
Date: Thu, 26 Jan 2023 09:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4997
Expires: Thu, 26 Jan 2023 11:18:16 GMT
Date: Thu, 26 Jan 2023 09:54:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 09:42:53 GMT
content-type: application/json
age: 726
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19182
Expires: Thu, 26 Jan 2023 15:14:41 GMT
Date: Thu, 26 Jan 2023 09:54:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sEf83jNXApjZNVdqI5+UriKpGHwPwTKjQWw9Xd8k2O3IiFk+oCCqJ3oll7G9bbz6Z5ONyXOhk4E=
x-amz-request-id: H61Y525ACH0NY6D1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 09:48:55 GMT
age: 364
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:54:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/271041/1646145967/css/css.css?1646145968
184.31.15.67200 OK 736 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/css.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
Hash b8470cd6daf04367359b8d708f285459
6719f0064debd7b352ca96e6c88d1da2b1a2376d
9d40e7190da5e3d458cea8fb856f9f090f693173728a6400abdb10fcf7a09383
GET /landings/271041/1646145967/css/css.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: oKdah+gy5awE1YjekiLDaql3R9M8oqARSMzjpwK+PBgqjV4CV6QYnheWXv/NRbm3S0cCdZVycPg=
x-amz-request-id: TC1A4W5WJPB4VW7K
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "b8470cd6daf04367359b8d708f285459"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 736
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/all.css?1646145968
184.31.15.67200 OK 12 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/all.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (55009)
Hash be5e87d93911d3ae6b79cb30b2498e1c
c72195b4bcb340187b50eadf9fddb3ecc7c2c700
78952de8595364581df3a98ce6fb18be0aa3ba9fa4375206b1b22de286acc4bc
GET /landings/271041/1646145967/css/all.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dwzg3gxt4fLzbWsTeDjhFa/xNf5pPS5yKBvmsPZ8XOqiR5IvlLYJ58StqQfUdIBdb3NosQlhi5E=
x-amz-request-id: 1KCF5BBNM8M03M6F
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "577194cc6aae2b124f54b5941e960fb3"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 12083
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/wed9uzeob5.css?1646145968
184.31.15.67200 OK 1.5 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/wed9uzeob5.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4639), with no line terminators
Hash 72396dab1908e8b13249b8bce2f83342
4fca37aa25ca670898e1d9c9df833630b668afda
bf77db0ddab5b81294ad60b996c13ce0e26c36aff3e42766aa92f7951f4344e2
GET /landings/271041/1646145967/css/wed9uzeob5.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qdxdA5/ENfJYS7ydy0P9ZjZX7jivIvB5Y7sHRA7g2cpbeyoKi1trgFLjBLzJVAFhFiySYelqiqo=
x-amz-request-id: M4NXYPYZH3RDD0XY
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "6830d34ae148ea4c80c14cc0c86c9c4c"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 1466
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/f04v9d8952.css?1646145968
184.31.15.67200 OK 701 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/f04v9d8952.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1663), with no line terminators
Hash 390f7c517e11f6206022e27b031fc4d7
7a2312d64e687daadf387601af52c7e9a2f10b6c
66d2c25d6f7010606e9c669c29694557e31a6d97bd525609aaf85d0099ce6b6c
GET /landings/271041/1646145967/css/f04v9d8952.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: aF8c9sAnbtmwOadCqrC/nlq/grfaK2xMckBaJo+7p4+C5SfC2/ZyPfBryWBa+aZFUsdLTb99YgI=
x-amz-request-id: BAGVZDYC5VE01ZBJ
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "fa5cd65556f4f3decc803008439a7a4b"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 701
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/css2.css?1646145968
184.31.15.67200 OK 434 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/css2.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
Hash f0723c702b9cd59bd3f595c208673f81
569b787a0dc40708ec19bbc29b25c82503c03441
9e8b2cbe8214e9eecc67decb5c8b37153a54e18cbb948312be7003815cbb9fa7
GET /landings/271041/1646145967/css/css2.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7zZ8oDEPju2GbJKrrbICeTab9ZUxRSSOIzHJqgLIAjLjKozsauEyaWF8o8c+rs9vX6ZpMCHTXrw=
x-amz-request-id: WZN5C5VJJKQHJECM
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "f0723c702b9cd59bd3f595c208673f81"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 434
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/bootstrap.min.css?1646145968
184.31.15.67200 OK 23 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/bootstrap.min.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65324)
Hash 01efdc2b02942a1ca25eb754ae33c645
75136389db9a6918f1fdf7319c8341fe2c77f9b3
9a6de8588795cf32c6be296d7038cf60c078804f99b4174c3e5d7efadcd2b24b
GET /landings/271041/1646145967/css/bootstrap.min.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lyExlFJu+/MjW7L4g/eLc8Ev4NkKV871oO460jJVm1lqvXcPD3eWFHevKpxsnoKvzOowPEu/+m8=
x-amz-request-id: 1KCE7XKW60T339QM
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "849017c4fff7312d997a1424c8258c42"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 23239
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/chat.css?1646145968
184.31.15.67200 OK 1.8 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/chat.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash a0d8b1da24f7a549e308d2a0d1b0cfd7
562795eb56185deec81d53f1629f25be3ed398fd
b7e6a41978694eddd8460daef41fa9e073e0df7450681a0e8245e5cdb87e31a1
GET /landings/271041/1646145967/css/chat.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: TVDqUuZ+wvo4XUQ2bJ0kI9KdGSI/nv15VMHzPsvPM/PEo4vWLlxQYEYISeoL4Gyz1tt2LsDIec4=
x-amz-request-id: M4NMGBRRDRW5F7HB
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "b4c0bcf87a8e0cdaf24bee9b5bdb81cd"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 1834
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/3w4650yn2l.css?1646145968
184.31.15.67200 OK 362 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/3w4650yn2l.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1038), with no line terminators
Hash bf124b4c50e1aeb3bfeb3b0a5e216a1b
080e586d5717f637e58e128e3a1f06e6d63f6c38
c66dc9f7e2f1b1968a057ef65d09d7b5e879e90de6efc61278aad4cc8bf0546f
GET /landings/271041/1646145967/css/3w4650yn2l.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4Y3Wwz4vrMVj+BJzlE71/BugAdLYfBIiuyP2d3aGcPCvwD5254e6i799YV3IwPTNT49z4H/jQnY=
x-amz-request-id: TC1CA9NYC27ZEF92
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "3471b1c397b0e3c7e0260710d5a8f381"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 362
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/css/zj618f6ab5.css?1646145968
184.31.15.67200 OK 766 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/css/zj618f6ab5.css?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2603), with no line terminators
Hash ec20464d1b97c4b0d5744321fb14be07
83d7f3faa0f8985562b3488bf59c197d3bdc3d0b
24496ca3809a5f1e86ae2fd89be5d236fa2e2d7acc15cfc70dddaaa776e2ab6b
GET /landings/271041/1646145967/css/zj618f6ab5.css?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ms3BEQJLI17c5HiLyjIZOs9chox5ywinQdmou8eV4wvMwfSr4CzSOWjbioehx5+yZvfIZw1eJxw=
x-amz-request-id: 1KC1RCA038G4XMQ3
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "71444c2f408d7a76494d97e0ce2f6721"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 766
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/js/ik525f57w4.js?1646145968
184.31.15.67200 OK 5.2 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/js/ik525f57w4.js?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (19141), with no line terminators
Hash b22cce92cd1cd77c2174a8bf64cab1a9
2edad0b28b7f4002c7c87713126c1756397fb83b
bba6faa585cab79ae5fe7687c99feba7ba3041ce8a730fb32e5495c58ca16abb
GET /landings/271041/1646145967/js/ik525f57w4.js?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pgLDFPbE/cDQYc51cwpm5M/xXy+O6Nhw9KBWwpzKcW5OjRD6d0dUlqeKewAzxVO8TFe0Nn08tUw=
x-amz-request-id: 94X8JZ0793A13JAQ
Last-Modified: Tue, 01 Mar 2022 15:40:25 GMT
ETag: "c826e7ddb9e2d659c9ee5bbe8b005aa0"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 5175
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/js/bootstrap.bundle.min.js?1646145968
184.31.15.67200 OK 22 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/js/bootstrap.bundle.min.js?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65297)
Hash 26a35e8554f5379012cdb3541c056614
6c2ab99fdae64b45ee5de6bd20306ccf74010b31
f3d0c6f375c1a8df7151872a097a80894059ea0f8e875f7b1e3d69848e39b331
GET /landings/271041/1646145967/js/bootstrap.bundle.min.js?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: DRQkYBgYvP75/oBqXyojQkVfHVCP920j0aE8XZElkU7elLXN5gKRQtXUgUlq49EUbjgSuC6bOsE=
x-amz-request-id: 7CB97M6CHMWHHDKD
Last-Modified: Tue, 01 Mar 2022 15:40:24 GMT
ETag: "a454220fc07088bf1fdd19313b6bfd50"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 22291
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/js/jquery.min.js?1646145968
184.31.15.67200 OK 30 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/js/jquery.min.js?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65451)
Hash a6b22944e852281bd6098509b0bea251
ae0671465ee9bc7354942a48a87d0e0397799bf4
042d48a6103607bdc54170ab6e118859980c1bdf47ca857cfed44af87593827a
GET /landings/271041/1646145967/js/jquery.min.js?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Hjt2FDgYWUg+usyZc2hzwPOBkyLbxf5F4qQNp+FUcsxmh4YwLBzC22QMiev73SpcRcayNhLoaZE=
x-amz-request-id: TC1CTQCADTC9FJP9
Last-Modified: Tue, 01 Mar 2022 15:40:25 GMT
ETag: "a09e13ee94d51c524b7e2a728c7d4039"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 30351
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/js/trls.js?1646145968
184.31.15.67200 OK 12 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/js/trls.js?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
Hash bd529c08d3c4b61ab31cd3fc66220205
d28c51b9c049db308689e73d495a4e88b424fa64
b74134904b503165a7b1ba651c8b0684d034316f79f6b0352a5598c001e2605a
GET /landings/271041/1646145967/js/trls.js?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iBWV6hjgdeC+8RE7Gsl0pmVEfaiRK91iaox6jdW5fpJymLXYgG3mosxD4CKw7pYgSD9GJNIYCAU=
x-amz-request-id: 5X2D2M5NT321XJ88
Last-Modified: Tue, 01 Mar 2022 15:40:25 GMT
ETag: "a60ad5f5ed8470ad81b1f5455cfc46ac"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 11496
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/js/messages.js?1646145968
184.31.15.67200 OK 33 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/js/messages.js?1646145968
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (6738), with CRLF line terminators
Hash 9c2ffffd916b476664544aa9fe188d83
80cbf0c9f0600951ea5d7eb5e2f65da50cfd053e
efd2c5cce4b0b42c788a526a64852742e1d7a977d21b2020cafb768900d50ad4
GET /landings/271041/1646145967/js/messages.js?1646145968 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5/yNUcrr9Rfl1GQ3LFb9+lZDSh9urI36tS0NQ2tyVkIFtxRC7JGjLr4ySReLbXwlOVp49FpQvIM=
x-amz-request-id: J957KTM4VZN8WMMH
Last-Modified: Tue, 01 Mar 2022 15:40:25 GMT
ETag: "4120ab1d996ca7c64162c9f0eb0928e8"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Length: 32691
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr5.png
184.31.15.67200 OK 6.9 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr5.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 08128deb38fdcba35c08f8832e6821de
5d6a99547bcea7c4943d8b1157a4e3dd184d7226
2cf4425b532db6c469ae06c6cf80b4e3ffd527bb5e0678e52079710142899c65
GET /landings/271041/1646145967/images/vbr5.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 2kBHi129sFRm9G2aCw0DFF8AGNU3txI0knyoemtZLwP65Y3M5v4s+zwLzxfdnESUKZTqIChyJvw=
x-amz-request-id: GA7BPCA4V4MB1DQ3
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "08128deb38fdcba35c08f8832e6821de"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6854
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr4.png
184.31.15.67200 OK 11 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr4.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b062aa28af406624f7897a949e6e294
8d14bc714d6da07744e79f794133302afe21905d
a6dbf654779db5d36ec3a9f119613f25149dcc8867530980c1e058e56afff212
GET /landings/271041/1646145967/images/vbr4.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: R+7PY2uzkBvTIzrk5IURWuj8zHZgFvMQUDQZKPF1j9j3Lt4fEPrgDOSs7e6s6fE0wkN09FOG1Io=
x-amz-request-id: 9SSZ077J568ENKM8
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "8b062aa28af406624f7897a949e6e294"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10810
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr3.png
184.31.15.67200 OK 9.8 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr3.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 38fa3ddc1b2536ca8e7b4787bd2015d9
b58f7f6c4f73b34a717b875bfaf97a9e31123b31
e574c17da956654f75acfef6ba2e091923c407d01b06e32530d35183754c9c9a
GET /landings/271041/1646145967/images/vbr3.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fwYlLabZKkcew88Rx0mwgbP1z9tZDdoxngu/shJxET+v2T6ZCLMo1eTv/fuHoNq430cX0OVqGq8=
x-amz-request-id: GA749Y2G3G9N6ZNN
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "38fa3ddc1b2536ca8e7b4787bd2015d9"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9803
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr6.png
184.31.15.67200 OK 8.2 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr6.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e855daacc0ef47d69ba673ac4d354cb3
f61c8e875fba2c0df10b12d92e3404848d935ba8
e7bb7bd09dc4637d3d1994087160147681f648fd28bb55681ee202ee8debf91d
GET /landings/271041/1646145967/images/vbr6.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KG7fSWzJegBM/gqjWzBjHBTGVSp9mfyyAFIxGO93xJb+f+kdIziNUohVmO/6458MXCg+sZltZVc=
x-amz-request-id: 9SSRF26YPV1NKKXM
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "e855daacc0ef47d69ba673ac4d354cb3"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8198
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr7.png
184.31.15.67200 OK 9.0 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr7.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c17ba6dae5bd989d82d1ccddc6fa676
75751a4642acf9efbb48dac129de797c78eb800c
cf2d16ecdf0baf7bf6d53d35f96f3c3a35f40b60107148ea07899cebe74b4f61
GET /landings/271041/1646145967/images/vbr7.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0c7A8cqF8CSO+8zPv30bmdKkX9VvHMZ/r5iFGzXDzp/7uHqCSgSfWGB2NNf6sGLEtkh2T/NdfnA=
x-amz-request-id: Y4F9NZW9K4Z14AKP
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "0c17ba6dae5bd989d82d1ccddc6fa676"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8995
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr9.png
184.31.15.67200 OK 11 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr9.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f329720061de90177bcf2ed497717925
b12b9c59cee1bbfcfac81ea788e1cc0ef358fba6
c82685c3521800dcacb9d86fcc80e60e750b6429f4c96c35e06572a9504eb39b
GET /landings/271041/1646145967/images/vbr9.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ZgcfLCqMLpdsOP3rfUkbiUsvahVyJEdj3dk7RVDRtnN8W+esn73QB8kYC5wfR7IsHh5Zu4fr7pg=
x-amz-request-id: TCYSMW6FA1M4QAKG
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "f329720061de90177bcf2ed497717925"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10714
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr13.png
184.31.15.67200 OK 8.0 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr13.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash f40364fbfd15d3e4c6ea54bea5bd42b1
e7738f8a0cf9f19f3daf35e6387b28949b107b6b
cb47809183575d9fe3a2c325b7ec60c8021441fdcf5400f4c6fb3cc02e399477
GET /landings/271041/1646145967/images/vbr13.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: b82/unK2VB2Tb+/D6i/3P4AwG5Z9RNAqLU1hLh7htnSBqAxXUk/Outwfi7TN6pL3+XMxBDK0X98=
x-amz-request-id: ABJQT68HRSVFR4F5
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "f40364fbfd15d3e4c6ea54bea5bd42b1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8033
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr16.jpg
184.31.15.67200 OK 15 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr16.jpg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Macintosh), datetime=2020:01:23 16:20:54], progressive, precision 8, 300x300, components 3\012- data
Hash 08b8eeef39d1fc20a7af5d0cae11fbb1
2cb28c1ed46ecb0445e0ca69c42248861f243472
1c28e3ddeeb7b8a3ad3e52ef121b1efbc5836fc089af6d657c07bf1918438934
GET /landings/271041/1646145967/images/vbr16.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YdApCY4+OpkmWk8I6H63ArstXZvOq6J5BCRXHtJYCQoJawP4x1pRkI8zUFnsGuO00XOSHGUhGGA=
x-amz-request-id: 8NHN43ZFHQ4Z9EP7
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "08b8eeef39d1fc20a7af5d0cae11fbb1"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 14986
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/ro6k5cxvw4.png
184.31.15.67200 OK 11 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/ro6k5cxvw4.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 258 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 42646054d74c52311ddac5b117bffa1f
6da910b65620678d3ff00281a7c9ce008ca7a853
2e5559d271dcf79baf9d20af3c4fb33c072a6947b5927ce807b364ab90b79455
GET /landings/271041/1646145967/images/ro6k5cxvw4.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8/F4XtXZT7Nlr5Mnjsq4NV+HjrqJGfzGxyDOmVKYL44BZKW3cWI26hnXeNHjNuDC1h8bvbBTKjo=
x-amz-request-id: 3V1TJQ0FHWZVR4SJ
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "42646054d74c52311ddac5b117bffa1f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11048
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/3twz2fc8eb.png
184.31.15.67200 OK 615 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/3twz2fc8eb.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 258 x 184, 8-bit colormap, non-interlaced\012- data
Hash 486830ae8c419d37c8a275e62ad18f4d
e0d4db697660aad97be4074f32e51c3846fcc3ce
bf7323d6955dacfc17037128471a98c15686a29a0d5d608cd4d6f9959d12345a
GET /landings/271041/1646145967/images/3twz2fc8eb.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: B1qnrQXTYh+wK4maMlI1i9GcIOfOV1jOdwYwt6gg9mc44px56eBxe1/w7J6/ZZTHGd1ksAQTYoo=
x-amz-request-id: 2K2S34FWB99G5GGR
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "486830ae8c419d37c8a275e62ad18f4d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 615
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/k5081qtnr2.png
184.31.15.67200 OK 22 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/k5081qtnr2.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bf4ac2afd7544836eaf7fb4d7892460
9d63c6e5ffa207c341ebd26eb7137a85e032250f
fad9142525e23abff15a703bd082856a1b04ddbd348ab830228ad051d7672095
GET /landings/271041/1646145967/images/k5081qtnr2.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ejJbiGLR82/bmn+xUbPlPw4dtygXE/bgF4eKJYnakxp8B2ZI5WUNoIW8InWxghBMaZLabfnHbMQ=
x-amz-request-id: Y4S52WG6EM5KKA6S
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "3bf4ac2afd7544836eaf7fb4d7892460"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 22058
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/w68de5eecb.png
184.31.15.67200 OK 34 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/w68de5eecb.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 258 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash a9de28a6d8f2ea709e6a60049efeef85
1903dcc8c2386800249993557978c904386d4d73
36e7344e6afb945bd68273e12895449fc94e9f50e7ccb601ef44802cebc0b144
GET /landings/271041/1646145967/images/w68de5eecb.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BJgUH5jbVfLHglFzc64GKUAD/855uAV16Z96bSqv8XXppk+P2b2GdaUceXkWGOU0saVOd33byqs=
x-amz-request-id: VSE6VFVKS0Y82JS5
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "a9de28a6d8f2ea709e6a60049efeef85"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 33743
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/xodkb5yc0i.png
184.31.15.67200 OK 112 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/xodkb5yc0i.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 480 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 112 kB (111632 bytes)
Hash bfdd07ace5a695c2cdb31785120bfdfe
acb22e865c63846299b84db9a5faec83b349739b
2623e3426b57264141ecc8ba6e70f661c73a4d9e57821ba35241dfcf81de40fa
GET /landings/271041/1646145967/images/xodkb5yc0i.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: A1uoCaop4lwd1GP2VFXjjaZZDzo3zDlZh9hNf+95HwiS09a2kKmcCMlZunJiMLD8w3rOLY0r6Lg=
x-amz-request-id: W4QYJ4D83Y361JHH
Last-Modified: Tue, 01 Mar 2022 15:40:23 GMT
ETag: "bfdd07ace5a695c2cdb31785120bfdfe"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 111632
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/tcuifv56o2.png
184.31.15.67200 OK 36 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/tcuifv56o2.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash ed917c274514e9c16c0220c28de3ece2
c375ea750036313b33fac94077f7ffb90327d1e6
1c22d3ca6f07703e8583699d2c1ca3f054d58ffc802c9936eeaae8538575564e
GET /landings/271041/1646145967/images/tcuifv56o2.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: mymAe+cUG2zZFBsH1F/+GFWGtSsWNILeSwgGjrn5VNDr1hSLDpGnzMclgHfF3KgkM9/+tyRP3NQ=
x-amz-request-id: GA798ZHR43NNBBJP
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "ed917c274514e9c16c0220c28de3ece2"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 36203
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr12.png
184.31.15.67200 OK 2.9 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr12.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 62057008db37712df22db15107c3e6a0
08ee38679477be4eb2db1c45e216e99ac7fda385
de7e8419d508e41cf3cc24d90a64d626f61aaffb6d25330f4f2f3713db6d5707
GET /landings/271041/1646145967/images/vbr12.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +P+aBLq9rPpB346ozfNwHl1gct7C4z7PuCSvorJArSAi6vR2kL9zRI1gC4il9/7fj2Rt+tGjQMg=
x-amz-request-id: QCPT6RVR1R0JHA0J
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "62057008db37712df22db15107c3e6a0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2906
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr11.png
184.31.15.67200 OK 3.6 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr11.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c277e35dcda7974e3246cb713624f42f
b8fb7acf2dda958f30e038366c901ebafe16693e
b8cfea6cfd55b98d75ae29391e7044a1480714d57913a40171d7cfcd3b07c5cb
GET /landings/271041/1646145967/images/vbr11.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: J4XuKAxSCgWhHANlD/soRt/ZuVVzH7mfJuuMqmYxrmgBayuQYGa8OBDhqEXnazL7t4JD+Nq6QoI=
x-amz-request-id: 1QMYY4M7WJG7N5DW
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "c277e35dcda7974e3246cb713624f42f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3607
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr10.png
184.31.15.67200 OK 3.2 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr10.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c44241d99a45eafa30e639b04edc430
a8e378cd7fe9a1f002084b7daac07ffc4416c5a6
5bf5da2847ebfe7871ff5361fb81919ce366a19e3d72e2d871fb72e95414f3ed
GET /landings/271041/1646145967/images/vbr10.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rLYZ/w9eEoq/ioL6ZtSaBk/hKiQeneKd14sEtCAZpNQtgx1VYlzVS3l8hb/vrh/iPjeEqMjhajQ=
x-amz-request-id: ZNM99V0S29BC1GDC
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "2c44241d99a45eafa30e639b04edc430"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3247
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr2.png
184.31.15.67200 OK 11 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr2.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b0d3fe3b463a929cf39367a3c0d3d6dc
549c708dce6db645280488dbae676713d7a71bc6
38998ecf20cd0395033f51b529827017e4f9ad6bef3379328a4f53210eb84f14
GET /landings/271041/1646145967/images/vbr2.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5r10KMQ4omlxdb7Yuj1Emgi7Mlnr4byjr5Fmylf5oh0y12PG/+mQIrhZEZyUkA7X3iEw86TaJJQ=
x-amz-request-id: 3V1YMJNXQBP9GM11
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "b0d3fe3b463a929cf39367a3c0d3d6dc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10632
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/scroll.png
184.31.15.67200 OK 5.9 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/scroll.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e513cf2d7b3b5c6d2128197792e9ddfd
1c354cc3c4f30524f84264b03ff80b72aea21fb8
f149d68673115169f2b0a2858cdf47125421199f5a9a08626d52e949d7f7a368
GET /landings/271041/1646145967/images/scroll.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: AlOsIar6fTxOykLGjIPkZVnayeVC6+yNqIg5jFuvIJbVlocZF/Anp/TJVLKtGw9tXejkJrG935A=
x-amz-request-id: M7RT13XSDP3QF1DM
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "e513cf2d7b3b5c6d2128197792e9ddfd"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5856
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr1.png
184.31.15.67200 OK 10 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr1.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b130732af504d36ba044f28a6725ca0c
1f2984aae95b4c9ba3b7d795a679e3c811b8c272
a1f4628382a73aaa30bffd2155e07a7ad3c6af29a628b8ad6863ccf97e8e89f9
GET /landings/271041/1646145967/images/vbr1.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: WkWbY7mkiGSCOep2LWmtXBjsyLfPteX72RAL+Xcwza6L0NKAKWxOepK97Vd4K33hlHDSZMwK6jU=
x-amz-request-id: 1QMGPRHAB2J9DGWH
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "b130732af504d36ba044f28a6725ca0c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10325
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/header-background.png
184.31.15.67200 OK 54 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/header-background.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 960 x 147, 8-bit/color RGB, non-interlaced\012- data
Hash af8dd4a07b82d6756e38a3e92f6b9160
aad27c4779dedc92d2ea32190318cf5b9303945e
f4b96ac229d605c688e3a4d6d2f4659c5414380cb71c26bfdda8d0d9f147358a
GET /landings/271041/1646145967/images/header-background.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/271041/1646145967/css/f04v9d8952.css?1646145968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: L4x53bF/vR29TulgMLxFk0IO4R9pfLAkuetJi2v5QuOewV0E6OgZUzk69JeyJTUi5ylbqPhhhGM=
x-amz-request-id: W4QYXP3TZZ3AAGR0
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "af8dd4a07b82d6756e38a3e92f6b9160"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 54391
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr14.jpg
184.31.15.67200 OK 34 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr14.jpg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=999, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=550], progressive, precision 8, 550x999, components 3\012- data
Hash 730625f3d4940a639e6d284467270c2a
828d4d9e020c0e8bdfe07cc263233d6984745849
460fbd8de9a67a1f16f3cddae613a71490cfffc5b0857a9b095096393d379538
GET /landings/271041/1646145967/images/vbr14.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/271041/1646145967/css/chat.css?1646145968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: xiuOptvus9Gu25xZL0J712sQyedct/YvVd+q2tZOKOqoLKwkK1orRGJvCG1gVc8/YGk0Yk+XXCE=
x-amz-request-id: VJ3BKGYAKNZCX0ET
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "730625f3d4940a639e6d284467270c2a"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 33667
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/fa-regular-400.woff
184.31.15.67200 OK 17 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/fa-regular-400.woff
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 16804, version 329.-17761\012- data
Hash 427d721b86fc9c68b2e85ad42b69238c
b0b4432c6571662650dc3cbe63fd5ef1eb920b73
2835b63ffc892d01aac2cc346969b501c845d9184f738589779ec176937e1f33
GET /landings/271041/1646145967/images/fa-regular-400.woff HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: QiNamJHQ13j7E9mW49iqYtXJNFIlD4DqWniJfucfsWRWUG2MvNJuU5+9rOcgNHrvxKeUeUOIJ9U=
x-amz-request-id: VS3P8RJHTE4FC9QW
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "427d721b86fc9c68b2e85ad42b69238c"
Accept-Ranges: bytes
Content-Type: application/x-font-woff
Server: AmazonS3
Content-Length: 16804
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
qzwex.luckywiinner.com/js/pushjs/1.0.0/subscriber.js
63.32.216.166200 OK 3.3 kB URL HTTP/1.1 qzwex.luckywiinner.com/js/pushjs/1.0.0/subscriber.js
IP 63.32.216.166:0
File type C source, ASCII text, with very long lines (9389)
Hash 3fc959642390ff4dc8b17be4e706c3fc
107f4500b048c2060c53260ef3c5a0c2286499a8
740aacdd2752459683dc7986658f1ac667048404bc12ce6dd233813d68aa4131
Analyzer Verdict Alert fortinet Phishing
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: qzwex.luckywiinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/?s1=78850&s2=1755709&s3=&s5=backuser&click_id=e5de9523vuog53yd8d&iexpp=1&j1=1&utm_source=1f0a2cb367c37dee
Cookie: unique_id=63d24df30008d67c; unique_id2=63d24df3000b8a81; 63d24df3000b8a81_c=1; ref_token=78850; impression=; 63d24df3000b8a81_sl=[271041]
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 02 Feb 2023 09:55:00 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
cdn-dimi.akamaized.net/landings/271041/1646145967/images/fa-regular-400.ttf
184.31.15.67200 OK 34 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/fa-regular-400.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Hash 65b9977aa23185e8964b36eddbce7a20
88a545352247dfbb90281dda98110a8daec8d85e
112491dccca97bf50ec7adff8d430dcba6d0b71e0a0b20386f814f3bf5bb94b5
GET /landings/271041/1646145967/images/fa-regular-400.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YPewkvRl4QICbfVga2alvQ+7Jz4vJ8aP60i1ArVVgAKY1A3J2DnGhhxSabpNk4r9vt2Yt9oNGrI=
x-amz-request-id: 6BVCAWH0DFH9J46D
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "65b9977aa23185e8964b36eddbce7a20"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 34092
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf
184.31.15.67200 OK 132 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt\012- data
Size 132 kB (131916 bytes)
Hash 0d984acaec916c225c012f27d0c56a91
0a12b8eecf92432c96ca8c0a987018d080fe13ba
d4d8d7f2ba61c44496fc78b6d596a0cbe111bf6c906687b8ab8d602fe2770a21
GET /landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: bdKbQRx2WG2/EfTYh5o8wYmyeFbcuR9S1+5k8TOwAZjRBKa3xz54NPNoYwqfXVlsydKiV1B12Y8=
x-amz-request-id: TTPGGGBD11A7Y123
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 131916
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf
184.31.15.67200 OK 131 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size 131 kB (131008 bytes)
Hash 74bc6165dc68714ccaa88f5c64656b1c
029198e6d5a968b80a54ed385c58530cb3bc4b10
613580056e09e71b9418c974eaf2734fc9101534106f7696a3b9912e768d99f3
GET /landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Pv0wTSk/cdU0jm29fi+oTVFJId3pAoDJ/P9NSCmwLtVEcbLUuuZpzojrTxSr4Fi2POBB/QogNAI=
x-amz-request-id: 8H3B653NYZTSTADR
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "74bc6165dc68714ccaa88f5c64656b1c"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 131008
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
qzwex.luckywiinner.com/js/pushjs/1.0.0/utils.js
63.32.216.166200 OK 3.4 kB URL HTTP/1.1 qzwex.luckywiinner.com/js/pushjs/1.0.0/utils.js
IP 63.32.216.166:0
File type C source, ASCII text, with very long lines (7071), with no line terminators
Hash be3b25b851473bc70a884cb177fd7076
51db0baf5c4fd8a8b09ca7ffde3ffa987635cbd0
1b0a79f9e94716392c53169b6f43442b5228c54c3043be131d72b3bf60ca972a
Analyzer Verdict Alert fortinet Phishing
GET /js/pushjs/1.0.0/utils.js HTTP/1.1
Host: qzwex.luckywiinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/?s1=78850&s2=1755709&s3=&s5=backuser&click_id=e5de9523vuog53yd8d&iexpp=1&j1=1&utm_source=1f0a2cb367c37dee
Cookie: unique_id=63d24df30008d67c; unique_id2=63d24df3000b8a81; 63d24df3000b8a81_c=1; ref_token=78850; impression=; 63d24df3000b8a81_sl=[271041]
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:55:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 02 Feb 2023 09:55:00 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
cdn-dimi.akamaized.net/images/favicon.ico
184.31.15.67200 OK 4.1 kB URL HTTP/1.1 cdn-dimi.akamaized.net/images/favicon.ico
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0
GET /images/favicon.ico HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3PLd1JbxzMUZnvLfJ08LlqJVa0X1bm3g8lDKKuDaPcpHRGpUOyvL763tb+Zgy/zeSb8kMvb/P10=
x-amz-request-id: 2XWP9N688THY1C8H
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 4103
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:55:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:55:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/5.0.2/firebase-app.js
142.250.74.35200 OK 8.6 kB URL HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-app.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (25088)
Hash 73069e532b7039778d3a7128c997c61a
c523bbf1ac7f4e612c8ade75434c42fbca885adc
b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:15:00 GMT
expires: Thu, 25 Jan 2024 10:15:00 GMT
cache-control: public, max-age=31536000
age: 85200
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/271041/1646145967/images/6-eu.jpg
184.31.15.67200 OK 3.3 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/6-eu.jpg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Hash 9a6870069cb979e16b239f9ed485fb3c
c1dc7f3620c8cc391648c550f91b269b04d3c612
3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818
GET /landings/271041/1646145967/images/6-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: u1QjxtoZCG3JhxJmQ7qNbG3m8Ci2058h4zr/ndHBLyC8x38x/FtYhZ1O1jfm9wWH27B80y2jMW4=
x-amz-request-id: 76C5ZXM5Y7B7RQDD
Last-Modified: Tue, 01 Mar 2022 15:40:23 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3256
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js
142.250.74.35200 OK 10 kB URL HTTP/2 www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (35547)
Hash fa9987a23f5a9d865766e952511baa30
f2e620b99ee61a01671ba6a9e22ca75d58a1b52d
655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 18:04:42 GMT
expires: Wed, 24 Jan 2024 18:04:42 GMT
cache-control: public, max-age=31536000
age: 143418
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 09:41:40 GMT
age: 800
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Thu, 26 Jan 2023 11:07:32 GMT
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 09:55:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.39.176.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.176.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XWDWkGZehsJhn7peSLPKyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9ILRH4Mof6Yy3TpsHHJeRNRrf/o=
cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf
184.31.15.67206 Partial Content 844 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
Hash dfe5246ff892aecae6db838ec711323d
d707cada23bfb6c1b824002b8fe2c11e97621a80
7fc08504a8e782a21368f34c468342b9f3fa7bf1c5f5bd9e24ffac8928686b28
GET /landings/271041/1646145967/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Range: bytes=131072-
If-Range: "0d984acaec916c225c012f27d0c56a91"
HTTP/1.1 206 Partial Content
x-amz-id-2: bdKbQRx2WG2/EfTYh5o8wYmyeFbcuR9S1+5k8TOwAZjRBKa3xz54NPNoYwqfXVlsydKiV1B12Y8=
x-amz-request-id: TTPGGGBD11A7Y123
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Date: Thu, 26 Jan 2023 09:55:01 GMT
Content-Range: bytes 131072-131915/131916
Content-Length: 844
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf
184.31.15.67206 Partial Content 75 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
Hash 0faef9f6babb572a3bed31de81e003a5
b072e39762c9d5b13d6359afbe08ba6eaa04d3ce
dc2e7b19a439709cb804387f28c10bed0b8d35617cb16d52ca402034df1c0118
GET /landings/271041/1646145967/images/KFOlCnqEu92Fr1MmWUlvAw.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Range: bytes=55784-
If-Range: "74bc6165dc68714ccaa88f5c64656b1c"
HTTP/1.1 206 Partial Content
x-amz-id-2: Pv0wTSk/cdU0jm29fi+oTVFJId3pAoDJ/P9NSCmwLtVEcbLUuuZpzojrTxSr4Fi2POBB/QogNAI=
x-amz-request-id: 8H3B653NYZTSTADR
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "74bc6165dc68714ccaa88f5c64656b1c"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Date: Thu, 26 Jan 2023 09:55:01 GMT
Content-Range: bytes 55784-131007/131008
Content-Length: 75224
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN7rgOVuhs.ttf
184.31.15.67200 OK 41 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN7rgOVuhs.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Hash 958de641c844c57d01ae8b416a0dc5e0
09c14ef792ad60f00c19ba939fbe9776264b1d0c
106552f3e16075da9749a8143218f599831234f25838ef6940036ac942c01ab5
GET /landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN7rgOVuhs.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rQ6Dy038xnvVPDytxWLhia+5bCJVcRxyCDdLxNy8i4kvZ6z2lDP4E54xkAnHkCGyoaMX04ZECuE=
x-amz-request-id: Q0AK5FAR55T3RJW0
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "958de641c844c57d01ae8b416a0dc5e0"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 40880
Date: Thu, 26 Jan 2023 09:55:01 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN_r8OVuhs.ttf
184.31.15.67200 OK 40 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN_r8OVuhs.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open Sans LightRegular1.10;1ASC;Open\012- data
Hash 10d20acef4dc589978b418c57b0f8d96
e219a131671747ef691ea3383ef23eb700d5812f
4cb572ea210a9e3669c7c5962605d4fc50b461ffcf8b847db51f27e43dd2292d
GET /landings/271041/1646145967/images/mem5YaGs126MiZpBA-UN_r8OVuhs.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +Clt0oTOFz5XKYrIjg4TqujrxpjcKhIhXdPiUgw1G3KKyAVB2o+DLuOdPU2u8njvozHIMy7Bg0I=
x-amz-request-id: 62XC64BRPQGMQQC7
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "10d20acef4dc589978b418c57b0f8d96"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 40168
Date: Thu, 26 Jan 2023 09:55:01 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem8YaGs126MiZpBA-UFUZ0e.ttf
184.31.15.67200 OK 39 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/mem8YaGs126MiZpBA-UFUZ0e.ttf
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash f37a639be63b35262c47fb3a959a1c62
020d6fa7501c07da2eb46106a39a2e1652e779d0
3db48e38175d6a864d9aca85f48d9d435949445331129f227ffed0910b9cc6f4
GET /landings/271041/1646145967/images/mem8YaGs126MiZpBA-UFUZ0e.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://qzwex.luckywiinner.com
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: D0lShTh3hmjmwK3l7TBEMyPHXGX3PdJzrTZMp6u2YbBlDh/vSmzdufBoNsrSIZJ5EcknAO/59Sc=
x-amz-request-id: 62XCY99FEB9VCDQQ
Last-Modified: Tue, 01 Mar 2022 15:40:21 GMT
ETag: "f37a639be63b35262c47fb3a959a1c62"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 38564
Date: Thu, 26 Jan 2023 09:55:01 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13263
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 09:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13263
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 09:55:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hUp-Y119Uly8FlGe1Wr8b-_pNoyg_iV-KaNaC7Fo44iN_sDU3BnCbA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:35:29 GMT
age: 8373
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 43580
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 17:10:40 GMT
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
age: 60262
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c331b0423afe4c6888533296b5f275bc
766aba1f8bb596a068f4e611161fa54616f506ed
0551882e8ba5962ca2c3a8634574e75f11321d46f9c901430614a9c73eaeae12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 1c0f08ae-9b11-4c41-a6e9-819343332f34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF-fElWIAMFg8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf838f-6cf92e9d28ec0c9727e7419a;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A9cyJReV84QegjGfuOcBlZ-T6uefiGXXKnIBXIcn3a1x0kRYQ6XI3A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:13:57 GMT
age: 9665
etag: "766aba1f8bb596a068f4e611161fa54616f506ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfe699b31f96add9f1439af1ff1191eb
f77a833a69b69eef4a39e404c102f624e96b52c0
44312979ac13221e5c3328ad590f0f3dc7da00380c07c433382cd81c47b717f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: e7d931f7-d086-42b9-a1f3-c8253b82eba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_OHw7IAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52e-4fd95c5f5a64861720a1ee60;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2yzeIjHl8sUO9s5n2sZfN6DSWOVDVQl-xdSrNmHu-yWXj_7VJJk5qA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:39:30 GMT
age: 8132
etag: "f77a833a69b69eef4a39e404c102f624e96b52c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8dcb846958865d2b14b540f26c963847
90c1569a936c7922880a04a5882683b1ac85b86f
253e15cc191946fe8c499b0633e95523689bdee6c06579c2953c640168abd7a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47770e9d-2bfd-4b8d-8653-017d569d133f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8897
x-amzn-requestid: ce231e55-4131-43b5-bec6-f4861a952163
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_DF03oAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52c-611bceff093006444f7955cb;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7nDjP6udEKuZ9WC-XUCtTWcnO_G1uIfv-4cPlO2fzxa6wz2DDO0faQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:37:31 GMT
age: 8251
etag: "90c1569a936c7922880a04a5882683b1ac85b86f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn-dimi.akamaized.net/landings/271041/1646145967/images/5-eu.jpg
184.31.15.67200 OK 2.9 kB URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/5-eu.jpg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Hash 27109a247208262e6293950ca8f5450d
cea89616d15ad45a0f2b04082dff608abd96b800
86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96
GET /landings/271041/1646145967/images/5-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: j8mNk1l9a4/ASwPfmSI2LDMZk2vgq8Jgq4IHBaJWgSIS4+4P/CqzdYmm25w2h5ExsEvYfIgmZDE=
x-amz-request-id: 0RAD6ZEHKSS9Y8DD
Last-Modified: Tue, 01 Mar 2022 15:40:23 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2879
Date: Thu, 26 Jan 2023 09:55:07 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr8.png
184.31.15.67200 OK 0 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/vbr8.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
GET /landings/271041/1646145967/images/vbr8.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: xjUmSRDNW+aUDy/QfiydiSAF7suUK5q+YhSxKhzyaXJaorKqboc3TvfW6WuZisFRlhm9FnDkjHY=
x-amz-request-id: TCYHFCBEX6KTWQXY
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "b84b39247a870698f549af91f8587e04"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9703
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/ok.png
184.31.15.67200 OK 0 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/ok.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
GET /landings/271041/1646145967/images/ok.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: vGffofiv7SruMZtl8OYUKOk4HprimQhCYUVgE0VHtZTed0WjuF0RDs1PiKgvFQrLgK4+qv3MNGM=
x-amz-request-id: BCY3T9D3K5YD6Y6C
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "cb8e3584d0b825508c587ff6133cb68e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 384430
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-dimi.akamaized.net/landings/271041/1646145967/images/oc08i5d7u1.png
184.31.15.67200 OK 0 B URL HTTP/1.1 cdn-dimi.akamaized.net/landings/271041/1646145967/images/oc08i5d7u1.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
GET /landings/271041/1646145967/images/oc08i5d7u1.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://qzwex.luckywiinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: xZGgbYJ1Dtd9N5wrDia0Vh7OWKssbvPs6BwnPkggAtvaA9buAa/bVMOJhskASxtv+tvTBnAuFyA=
x-amz-request-id: 0ED9NFKTH9X5FYP9
Last-Modified: Tue, 01 Mar 2022 15:40:22 GMT
ETag: "30058824bbab47942439aee2cb686f41"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 123685
Date: Thu, 26 Jan 2023 09:55:00 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"