specialrewards.club/sweeps/LP2/index.html
54.230.111.95200 OK 2.7 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/index.html
IP 54.230.111.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (334)
Hash 46b80dfc56ed3b3b3b206435909c0af8
1370374b97934fd55daae57d1342183032319199
10098f4d27411129b13efff5b5afcd5da7d3c06970f8495f972da51a850d5a9f
GET /sweeps/LP2/index.html HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 08:54:31 GMT
Last-Modified: Mon, 30 Jan 2023 06:20:33 GMT
ETag: W/"018ee0be7223ec86c6d653043b038edc"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5LMKzcHF9o01v0pOM8IHf88AKvEDIJKuFOfwidiWMd5kSomNcwcsjg==
Age: 11659
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4126
Expires: Tue, 07 Feb 2023 13:17:35 GMT
Date: Tue, 07 Feb 2023 12:08:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6088
Expires: Tue, 07 Feb 2023 13:50:17 GMT
Date: Tue, 07 Feb 2023 12:08:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 11:36:31 GMT
content-type: application/json
age: 1938
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20145
Expires: Tue, 07 Feb 2023 17:44:35 GMT
Date: Tue, 07 Feb 2023 12:08:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AEX4PqUMnwE1PJNo68FWFtv4uYH2dat0lst7OFDbgFgjqzgixyXVUs2YMxkFAOu+8A7/WLG6A1o=
x-amz-request-id: TMBMPPYZPR00Z2X3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 11:45:33 GMT
age: 1397
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
specialrewards.club/sweeps/LP2/js/first.js
54.230.111.95200 OK 437 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/js/first.js
IP 54.230.111.95:0
Hash 5cdb0d8ae3d678a8cd8863a0e2d81b8c
d317a90dc9e8e96903f474559e195cea7830b6d5
864ba9588314cef3f0ab78a1a0335f31517e42bcef1fda9c30e40cd96c6a3f68
GET /sweeps/LP2/js/first.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 04:25:16 GMT
ETag: W/"1a5d2aa945bb0770c4fdb02348cf38cd"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EQSJO4E5ueOZORDIMYi_9kjNwWWDi-lg2dZbeFefR7pHsrPGazu7rA==
Age: 27815
specialrewards.club/sweeps/LP2/js/translate.js
54.230.111.95200 OK 40 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/js/translate.js
IP 54.230.111.95:0
Hash 18e29311a913e6f434ab6c240b1047d2
ac1ec9f6daf72e69f71f62bee04be0d408ee8a4b
a295b182b85fe6a30462b582f72f3342edffa4ac17a9d5958740a9da0c01522a
GET /sweeps/LP2/js/translate.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 06 Feb 2023 12:56:28 GMT
ETag: W/"da23ba8d2c904a391a15be58a2ba0857"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AlSIBQ9iNZO0QVRJxXgYj8AGNwwnotmhFuwu6QIZ9uhhF32cOu1_ZA==
Age: 83543
specialrewards.club/sweeps/LP2/js/index.js
54.230.111.95200 OK 6.4 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/js/index.js
IP 54.230.111.95:0
File type ASCII text, with very long lines (5285)
Hash 397ee73637264f6ace4d8b7b62a22a85
3b5745fb7cab401ade68ea0af6b1a1f24e2f0ecd
debfaad5fa17363f26da5730e82e3de7fe449872573260a3d17e237dbc7398a3
GET /sweeps/LP2/js/index.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 01:47:48 GMT
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
ETag: W/"5fc28305fb4ef5d37252fe07190cb394"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FgB5RWL-4RPrKe4-IhmC67LQ-rz_wCESyNPhB03dt5mddlfDtufMbQ==
Age: 37263
specialrewards.club/sweeps/LP2/js/names.js
54.230.111.95200 OK 38 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/js/names.js
IP 54.230.111.95:0
File type Unicode text, UTF-8 text, with very long lines (468)
Hash 2bcbb1c2b2179a6ad120824c5cf848b3
8d826002c687195c9e0240804d6698024783c49c
04911c727fb9d401d520ce8d62b7373ac4b07a39904caeec14b2e8cb78d8c7e2
GET /sweeps/LP2/js/names.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 07:25:06 GMT
ETag: W/"66bdc7c384c141ba9f775eadb98fe145"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NCMAw4I9ygwzibGU9yLm2AjAbZKmLwNA0sC6VOQlXQ4FBOCSh8-I7g==
Age: 17025
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 12:08:50 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
specialrewards.club/sweeps/LP2/index.css
54.230.111.95200 OK 6.6 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/index.css
IP 54.230.111.95:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 66dda46690de75af9056dcc927ea8d60
6cb7153bed2a15367e13084fe00ffde25f0d794b
ec3e7c282bd1a40c1ce2bbd55165303ab67935d41810062eabe015de0a2169a3
GET /sweeps/LP2/index.css HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:33 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 06 Feb 2023 12:56:28 GMT
ETag: W/"b698b3a31744b7ff9f4a86353eae0fb3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g7QMFIW9WVEbIotD51TbmC19SaXMU1x6rPLR-KPO3nrByyk4M8tRhw==
Age: 83543
specialrewards.club/sweeps/LP2/pushsub.js
54.230.111.95200 OK 493 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/pushsub.js
IP 54.230.111.95:0
Hash 4606d040a35d7dd9e58ee8d9ddf7d37c
7da840b471d5b17b26ffd1dae9ff27c101706fbf
589b95e9687c77a2aa091147a73d88536a4a58a2edebf057f351c5c697cdb4ac
GET /sweeps/LP2/pushsub.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 493
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 07 Feb 2023 04:09:05 GMT
ETag: "4606d040a35d7dd9e58ee8d9ddf7d37c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UubIECFPnZvnOGbAhTyz5aJycMQFBfNExbydCj5IwNVRN10oKqe0zQ==
Age: 28786
specialrewards.club/sweeps/LP2/js/helper.js
54.230.111.95200 OK 866 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/js/helper.js
IP 54.230.111.95:0
Hash e9c32c28a686d98048d117318c5369b6
9d72a353c9ff9524ed290cf83a00c77ed02e9523
521b8d7b727b80e99b87a719610b104d7bc91cfff795702c9ecd16044805f64a
GET /sweeps/LP2/js/helper.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 04:25:16 GMT
ETag: W/"1c1261ec2283b27408211bc7f7a4201c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r0K0H788ICYAkpFdui3E4wNjxLE-JXuQ6Ouf3e4twIZDJl8JWA7wgg==
Age: 27815
rum-static.pingdom.net/pa-6128a4d110d34f0011000026.js
104.22.54.104200 OK 2.7 kB URL HTTP/1.1 rum-static.pingdom.net/pa-6128a4d110d34f0011000026.js
IP 104.22.54.104:0
File type ASCII text, with very long lines (6238)
Hash 78f7f33a20c0ea052e83fc2e256524b5
df71996fd9a262a5599b7724bbdc959f4891d482
a29c838314623e03971195c49844c60a3936e44233b6d92f04f6160229d59c4b
GET /pa-6128a4d110d34f0011000026.js HTTP/1.1
Host: rum-static.pingdom.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 12:08:50 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 06:22:28 GMT
Vary: Accept-Encoding
ETag: W/"63490024-1852"
Expires: Tue, 07 Feb 2023 12:13:50 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 795c0360fbdc0afa-OSL
specialrewards.club/sweeps/LP2/images/wind-ico.png
54.230.111.95200 OK 34 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/wind-ico.png
IP 54.230.111.95:0
File type PNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced\012- data
Hash fef3bbbd31f165cf7d8ab54254fd5d0e
01b41fa4d14f55319e732935605a34e28f9b00fb
dba010035ff47c57a8ff50b3c25075b90685218ee541469b5b86a29a6867bf83
GET /sweeps/LP2/images/wind-ico.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 34194
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 06:20:32 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 07 Feb 2023 01:55:41 GMT
ETag: "fef3bbbd31f165cf7d8ab54254fd5d0e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -tYgnCWoCZgn1jHeWGPgI-5Jk-Gkbv_J8KsBFV58NGJqbjnJLwA4zQ==
Age: 36790
specialrewards.club/sweeps/LP2/trafficback.js
54.230.111.95200 OK 440 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/trafficback.js
IP 54.230.111.95:0
File type ASCII text, with very long lines (303)
Hash a3000b63527f172132f4b3f294725222
7ef8f1301a65077179193e1b3a743ccabb0322be
1efd80772da45ad1c00af0fbdc32ef74a9eb2d2e2b87e921b11ccb0cbbff93a7
GET /sweeps/LP2/trafficback.js HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 440
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:20:34 GMT
ETag: "a3000b63527f172132f4b3f294725222"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: l7D3V_n-dUOYnJezamCWf9D39u3NcLZUf6SiPYC_XGoDdZM86c366g==
specialrewards.club/sweeps/LP2/images//unbox/resize_1.png
54.230.111.95403 Forbidden 255 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/images//unbox/resize_1.png
IP 54.230.111.95:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash a3b5e26cb7dd9ca0a76b49692eb5c320
8cf791d547e9ddf2eed9208f003da97cd400f09a
1e4b7cf1b3b5e77b7c1962f0bc68a422f5e612ae282c285ac6cc14be82419421
GET /sweeps/LP2/images//unbox/resize_1.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:50 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fKyi16uTVYtW4WzSI4QWd8XaS3HjzFkOhdUR6uECxziXGDdUQKAE3g==
beevakum.net/pfe/current/micro.tag.min.js?z=4292314&sw=/sw-check-permissions-2d54d.js
139.45.197.250200 OK 14 kB URL HTTP/1.1 beevakum.net/pfe/current/micro.tag.min.js?z=4292314&sw=/sw-check-permissions-2d54d.js
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (41091), with no line terminators
Hash 595dece22ebdbea9cfc08eb4f7cb95c5
4b370d28fa6b15f5a13471859753a3d9488e8b59
97fe1e39dc030efa6ad6b7571f978539bc4c579e739cd4932a21d20b0c4f4af8
Analyzer Verdict Alert quad9 Sinkholed
GET /pfe/current/micro.tag.min.js?z=4292314&sw=/sw-check-permissions-2d54d.js HTTP/1.1
Host: beevakum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:08:50 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Feb 2023 09:45:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63e21d9c-a083"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
specialrewards.club/sweeps/LP2/images//resize_1.png
54.230.111.95403 Forbidden 255 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/images//resize_1.png
IP 54.230.111.95:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 12279859192426c79c00eec9c46e4543
ba71f895e2d665c8b50a20180c7d192d0cdf4dba
246e7bac126f74cbc82c7abfdd0e9839eea14beb17ab024a7f84590d254961e6
GET /sweeps/LP2/images//resize_1.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:50 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RrT-iWyVRBYO3r_mjLWpuMjY40xzHoNKSX0LXLjuuvHRSLpshw9t4Q==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar2.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar2.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 544f99acca9c589af1e0264e7edbf5ab
5d1c881cdfdaca9097b6b5186a0dced7fd5c1c98
fe8dbb6045efc26b7a2eaa97ca4e2727a33bda47e37d8df3d056c79b6dd5e7e4
GET /sweeps/LP2/images/profiles/en/avatar2.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1110
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "544f99acca9c589af1e0264e7edbf5ab"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7MBRRdULSG8QbaPhPAnThZ75s9BriuxHWQYwNw5K0o7_WsTcVlUDVA==
specialrewards.club/sweeps/LP2/images/box_c.png
54.230.111.95200 OK 3.8 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/box_c.png
IP 54.230.111.95:0
File type PNG image data, 241 x 184, 8-bit colormap, non-interlaced\012- data
Hash 63dfd4d76224e7344467d8964cd36ca2
427956337aeb8de1b2c06c96e0e6e807dfe22227
9b37e645eb3c00667d83544f1ef49d33c9b5ef79e3c08185d6a7b163d413b4c3
GET /sweeps/LP2/images/box_c.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3838
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:15:33 GMT
ETag: "63dfd4d76224e7344467d8964cd36ca2"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J9_b_83ca9hs6e8CluRxfwR2TZxyDBcwtMHXL97UhMtyqVuq3G0xcg==
specialrewards.club/sweeps/LP2/images/profiles/en/flag.png
54.230.111.95200 OK 1.8 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/flag.png
IP 54.230.111.95:0
File type PNG image data, 32 x 32, 16-bit/color RGBA, non-interlaced\012- data
Hash f361271b49e8855aa3fcc2d5d6963d9c
ca5a432d42864744a34dc03f7ad11b66563f1c98
56605e81960530bfd815dafec6480f1927f60613958e25a2300e99b0ba83f124
GET /sweeps/LP2/images/profiles/en/flag.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1766
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "f361271b49e8855aa3fcc2d5d6963d9c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gFVR74KnvqC0oDf4nLfyUL1eXAqTPWZNezL7jMa4K5Wn91UcGMmKfw==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar1.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar1.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash a719d77f19fcf003e9d9fedd4f8441ff
bc8c9a4b9fbdd4486da301d232a9036790126e1c
34482a66e2cd3ce46bda233c155bd739d640ae9c468a14c3184594d957863665
GET /sweeps/LP2/images/profiles/en/avatar1.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1126
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "a719d77f19fcf003e9d9fedd4f8441ff"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LsFjmCgmF-zko3VizNt9c2swV1hk8s4t9VKOc6YpMYUjNwLcLsu9ig==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar3.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar3.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 23f8fda9e1412e247b524b010a2db917
80eef2bca9e59ac5bccaa80f0047364f5e1286bb
132ee74e1832624b99ca2cbb201928eaf7c74f8a931176662e2b612a90ed5c74
GET /sweeps/LP2/images/profiles/en/avatar3.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1126
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "23f8fda9e1412e247b524b010a2db917"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yCLBhlJnD-b0gBsaZkzVQMHFfbYQCtEPY2gr5bPkeD9LwWEMFWgRTg==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 11:14:52 GMT
age: 3238
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 17c1f8f8ec4830392f059eb7c2791ea7
15fa1615846db8148829382fa8a12650c5442929
31c1c0cf7ab8b066d2cfd490e82debbd67ec88a7fee59540ba9894da61d2e072
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "31C1C0CF7AB8B066D2CFD490E82DEBBD67EC88A7FEE59540BA9894DA61D2E072"
Last-Modified: Mon, 06 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4354
Expires: Tue, 07 Feb 2023 13:21:24 GMT
Date: Tue, 07 Feb 2023 12:08:50 GMT
Connection: keep-alive
specialrewards.club/sweeps/LP2/images/profiles/en/avatar4.jpg
54.230.111.95200 OK 1.2 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar4.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 352d3b681d9d2d3eb143b45952067254
c3c2e975ee34fe71ff4f0b24e8e69d0c81317900
8c04717995d8067e9ffb68ef3142b69892acec553d23912a1a2750671fbc2101
GET /sweeps/LP2/images/profiles/en/avatar4.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1230
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "352d3b681d9d2d3eb143b45952067254"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HjCz2LtVr435ymG0WOp1oun0Wc8NRtc4OmGW5ICI--NxwfKcK6SMAA==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar5.jpg
54.230.111.95200 OK 1.2 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar5.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 907252f88980549ae33c5a76b358f8be
5c842105cbc7afdb728a3e8627c3caa1403feb33
93ba8845d311f02dce627ee6bbadacbd6ef9fe639e26587292097d32cd19f0b9
GET /sweeps/LP2/images/profiles/en/avatar5.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1214
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "907252f88980549ae33c5a76b358f8be"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IfWgfv_EEZJoGZ-FXQmifw5O20vnjL9SAddCnt5f923-_1F185k6BQ==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar6.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar6.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash ed4c4751921c0ce13b1749cec2f05528
13aef3e31610ebcee5e600bafdd6a29296534985
5021f907d1fe71f51a4a9a4a5aa5f0c1ce707a2909f0d54cb6ed57849accfc6e
GET /sweeps/LP2/images/profiles/en/avatar6.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1122
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "ed4c4751921c0ce13b1749cec2f05528"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IMvzIn_hVXJHDSKZay4KH5gAnvpQmuH3xd9mSo5Z2lOrTyRMbqwdpw==
beevakum.net/zone?&pub=0&zone_id=4292314&is_mobile=false&domain=specialrewards.club&var=&ymid=&var_3=&dsig=&action=prerequest
139.45.197.250200 OK 0 B URL HTTP/2 beevakum.net/zone?&pub=0&zone_id=4292314&is_mobile=false&domain=specialrewards.club&var=&ymid=&var_3=&dsig=&action=prerequest
IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /zone?&pub=0&zone_id=4292314&is_mobile=false&domain=specialrewards.club&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: beevakum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://specialrewards.club
Connection: keep-alive
Referer: http://specialrewards.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 12:08:50 GMT
content-length: 0
x-trace-id: 45e69a7660b0e0dbfe10c01685641dfe
access-control-allow-origin: http://specialrewards.club
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
specialrewards.club/sweeps/LP2/images//unbox/resize_2.png
54.230.111.95403 Forbidden 243 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/images//unbox/resize_2.png
IP 54.230.111.95:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 0e475c71c5784ef1131df06e3f95afa4
cff2c45553d7aaa4d4f6e7d65896cfac8b638eaf
e86f27acd5b24a82cae30325c9d7d7cc6897f61beb3fb9fee03b7ece886b923e
GET /sweeps/LP2/images//unbox/resize_2.png HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:50 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ARJF3fU5p9NnYcPrXH8YrK4o2HSyiVFthC4UGb4Vs_VvqPEL-6eLAg==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar7.jpg
54.230.111.95200 OK 1.0 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar7.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash c94c282629f351d00208089eb6797bb0
3239698899badbb2a098faa05fb1aea494500144
746b89d2fbd2d81799b9b303094561ab61589c9c76e435a3b68c1611f068c696
GET /sweeps/LP2/images/profiles/en/avatar7.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1028
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "c94c282629f351d00208089eb6797bb0"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wGSUecDnSy1nNcqiLjZUtHZ9hxiw2XUFMQBN7k-ks2dl8h3B_Yndig==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar8.jpg
54.230.111.95200 OK 1.4 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar8.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 6c9355f2bdaf23e584be4fde73484edc
9a90ea615f7a5787e3cba80cdfcd09794ed1aa5a
f765a03026108e6cd23d13d11cc44e40dc170f2f6eb4102a796a7b280f0059cd
GET /sweeps/LP2/images/profiles/en/avatar8.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1413
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "6c9355f2bdaf23e584be4fde73484edc"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9nJ7LtW3nQY_TwhMPw4E96IAvnY7mdFPnRQWdAkm_ZtQMwOvmALpew==
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Tue, 07 Feb 2023 13:02:38 GMT
Date: Tue, 07 Feb 2023 12:08:50 GMT
Connection: keep-alive
specialrewards.club/sweeps/LP2/images/profiles/en/avatar10.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar10.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 51x51, components 1\012- data
Hash e84db7ec8189467789b7d82ae32cb173
6fadd45c2f6d460e9d020d390c4281b28c361883
d75de4fc2fb35c737a424d079bade35cbf754e10a087da271134973c985d4319
GET /sweeps/LP2/images/profiles/en/avatar10.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1115
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "e84db7ec8189467789b7d82ae32cb173"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6ZkdjIqQde9-J1qAIgOU_-lRN9rb1uuylASashHMZCws4JCAlY3qsw==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar9.jpg
54.230.111.95200 OK 1.1 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar9.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 70293828808421a5ca00e0152a7f444d
65ca10497d7c38f0bc7ffdbc884ed4a2ecc06a00
a7b64483028e15cecf8a1973e90be91a64c4d25443bd6c5f424c43135bbd76a8
GET /sweeps/LP2/images/profiles/en/avatar9.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1065
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "70293828808421a5ca00e0152a7f444d"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u4bTASXi6yABnvS1u2yI4n3coNmqzw6MczLzcTMmIy-KURYIXN9DUA==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar11.jpg
54.230.111.95200 OK 931 B URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar11.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 51x39, components 3\012- data
Hash 624c7893137bbc5befaa3e8710a9b046
2e30600fd969bfabc7a93aed49b2e37febc43ba7
4069da3658ff708143cdd3c2d8951fe35a4433ce438680d67e31ac3d47697576
GET /sweeps/LP2/images/profiles/en/avatar11.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 931
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "624c7893137bbc5befaa3e8710a9b046"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 636h3_bVP6pQKXT2EsGE8HBT0lGG0iO6AeZH1OO9Nn4U6XCwOtJotw==
specialrewards.club/sweeps/LP2/images/profiles/en/avatar12.jpg
54.230.111.95200 OK 1.3 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/images/profiles/en/avatar12.jpg
IP 54.230.111.95:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 91158b073c3b4c860781c179250f867c
588ac58bd1eb00b67bf8c00e22d121d63f44538b
41ab819324a46bc084053abf23968a936ada7da098fd982fe2d738defd59b268
GET /sweeps/LP2/images/profiles/en/avatar12.jpg HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1279
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:51 GMT
Last-Modified: Mon, 30 Jan 2023 06:17:56 GMT
ETag: "91158b073c3b4c860781c179250f867c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7mWUluasWjDNVhsqrov7XwlmpECk4z8BWiHl2keDmLwy2wwvEmhlgQ==
push.services.mozilla.com/
52.35.140.96101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.140.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bVkG1J6BUIpEzbolt3isXQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3t/ka34KS0aWOiuKUXJR949PFwc=
rum-collector-2.pingdom.net/img/beacon.gif?id=6128a4d110d34f0011000026&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=7&cE=8&dLE=7&dLS=-6&fS=-6&hS=-1&rE=-1&rS=-1&reS=73&resS=106&resE=106&uEE=-1&uES=-1&dL=314&dI=545&dCLES=572&dCLEE=575&dC=1384&lES=1384&lEE=1387&s=nt&title=Congratulations!&path=http%3A%2F%2Fspecialrewards.club%2Fsweeps%2FLP2%2Findex.html&ref=&sId=fp8gz0ad&sST=1675771780&sIS=1&rV=0&v=1.4.1
54.170.79.218200 OK 0 B URL HTTP/1.1 rum-collector-2.pingdom.net/img/beacon.gif?id=6128a4d110d34f0011000026&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=7&cE=8&dLE=7&dLS=-6&fS=-6&hS=-1&rE=-1&rS=-1&reS=73&resS=106&resE=106&uEE=-1&uES=-1&dL=314&dI=545&dCLES=572&dCLEE=575&dC=1384&lES=1384&lEE=1387&s=nt&title=Congratulations!&path=http%3A%2F%2Fspecialrewards.club%2Fsweeps%2FLP2%2Findex.html&ref=&sId=fp8gz0ad&sST=1675771780&sIS=1&rV=0&v=1.4.1
IP 54.170.79.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/beacon.gif?id=6128a4d110d34f0011000026&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=7&cE=8&dLE=7&dLS=-6&fS=-6&hS=-1&rE=-1&rS=-1&reS=73&resS=106&resE=106&uEE=-1&uES=-1&dL=314&dI=545&dCLES=572&dCLEE=575&dC=1384&lES=1384&lEE=1387&s=nt&title=Congratulations!&path=http%3A%2F%2Fspecialrewards.club%2Fsweeps%2FLP2%2Findex.html&ref=&sId=fp8gz0ad&sST=1675771780&sIS=1&rV=0&v=1.4.1 HTTP/1.1
Host: rum-collector-2.pingdom.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://specialrewards.club
Connection: keep-alive
Referer: http://specialrewards.club/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 07 Feb 2023 12:08:51 GMT
Expires: 0
Pragma: no-cache
Content-Length: 0
Connection: keep-alive
specialrewards.club/sweeps/LP2/favicon.ico
54.230.111.95200 OK 175 kB URL HTTP/1.1 specialrewards.club/sweeps/LP2/favicon.ico
IP 54.230.111.95:0
File type MS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 175 kB (175345 bytes)
Hash bf3c2975443f145e24cfb9d7e0e927de
d25b795a3525010ddb5a67d0ce4f48d5d0a073f7
77c93b99d4c57ea9f2fe78098c71d62bcf77a98a4a20f4c072d74297271ff948
GET /sweeps/LP2/favicon.ico HTTP/1.1
Host: specialrewards.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://specialrewards.club/sweeps/LP2/index.html
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 175345
Connection: keep-alive
Date: Tue, 07 Feb 2023 12:08:52 GMT
Last-Modified: Mon, 30 Jan 2023 06:15:19 GMT
ETag: "bf3c2975443f145e24cfb9d7e0e927de"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4t_FC1h_LUOcDC_sOv8NVzPa99HzrBtF7WPXKrhNjB8X92cgnTAG5g==
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Tue, 07 Feb 2023 13:21:24 GMT
Date: Tue, 07 Feb 2023 12:08:52 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Tue, 07 Feb 2023 13:21:24 GMT
Date: Tue, 07 Feb 2023 12:08:52 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Tue, 07 Feb 2023 13:21:24 GMT
Date: Tue, 07 Feb 2023 12:08:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d057038cd3164c40413a88f9b5c2af92
afbcb6617c7277ea42068c2aa1c8dcba02549873
ae03b42f1a5c3774e3ea569a886707a8a31da05a45bd971b829cf579be0ea6c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6787
x-amzn-requestid: 15924d6a-68a3-414b-9e23-68d37291d4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvyxSEjXIAMFT3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc9808-22daff920f5fe1201328ccee;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 05:13:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AOnXbzTBcVZ3quJx3NoNQC08Gk5_phyp8UiWCm6Dk4GPxl8FCaIC4w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:57:41 GMT
age: 25871
etag: "afbcb6617c7277ea42068c2aa1c8dcba02549873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: 0664e077-13a4-4a97-afc2-3969cee56958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2pu6Fb7oAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df565f-057ee8fa26aa83d21f875d73;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:10:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cAwOWu-_JYTMa0l-1A07FxgOGtG7P59D7XlovXByRA9dQxfsS2An7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:40 GMT
age: 62652
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 17586
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d29e7077f69b88a0108efeb7a2efe7e9
1958f83edeb8c6b68f17cead3fb5714f44e619eb
371f02a5b36ac3e52cc6c4e78f0980107a0f92105e79ee53278089ae5ff6de93
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10788
x-amzn-requestid: 8e1c8026-1eea-4eb0-810e-7ea43ed11f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyymWEsSoAMFykg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddcaf5-20fc23b535fa86f56a34fbae;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:03:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -OEG4deGxPaXCxA16sr4s2uAcDTWyzDoXgCkUdwluUiYL-z55VQKwA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 06:11:48 GMT
age: 21424
etag: "1958f83edeb8c6b68f17cead3fb5714f44e619eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:48:48 GMT
age: 51604
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4dd67c975f1c1f91ca92f37c9e098231
b9096efb56b6e196b13722e767a9d2762737cbb9
39f21e5db4089d6cf94646b76cd9032e9831ed03f7c2f0d980fac09c893a52db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8110
x-amzn-requestid: fdfa4af0-a6e4-4664-a86b-48fd6f374d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77JCFyzoAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17239-205cdd9d70f23cb358c65222;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zHo_IPM2j3t4prd4ZuLR7c-GPrWHxSxqSUprBxrT9n_DG8ySpkpb8g==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:46:30 GMT
age: 51742
etag: "b9096efb56b6e196b13722e767a9d2762737cbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2