GET /win_gold_min?tid=5x1hde037di2me912qlcg80k4,16501417,5,1043&ctrack=1669479414.2795355111&p=1043&pi=mbep&click_id=wo2o98rudj4a1gokid5fiap0&prize=cash-500-usd HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 94.237.93.242
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Sat, 26 Nov 2022 16:17:04 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ilk4RnFPNUVQWExKK0hKRldSQldSZUE9PSIsInZhbHVlIjoiUXNRWWdjWFJKMU9IVlRPYWtGUk9GSm1pT0xWdUJXUlY5dTF4MGRvL1Bid3RDNloyYUdRdEVkYW1hLzlqK1RKdCtTQWwzdWp0SzJUallVS0xrcU5jTStjYm5QM2k2anYva3hsNnUvSjNlWnN3eG90L3RrL1U2czRRdzIwTGE2eEIiLCJtYWMiOiJlYjY4ZGZjYWRiOGEzMjIzODNhZDEyMjdiMTY5MmI2MTQyYTNjMWFhNDA4MGZhNjU0YTQyMjAwZDM3OTYyZTMzIiwidGFnIjoiIn0%3D; expires=Sat, 26-Nov-2022 18:17:04 GMT; Max-Age=7200; path=/
ivr_offers_session=eyJpdiI6Ik1QTzVGTTRqM0xtQmFtUGxiNHhOMWc9PSIsInZhbHVlIjoiYjlGZEJwZTMyY3lWRTg0UzhqWFNMdkcxU0l6VkpXZS93TDl1OWo1NUQ4N2JhNlFEekZ5MWVXR044cTlrVkxzUU1EWVNVendTYkIwSXRtU1UwZGxPby9Zc3RvbmFYSzZOQmo1TFFNYTR4VXZiVW1zQzBPWnBSMzhBMlk2NlFYWkwiLCJtYWMiOiI2MmM0ZjVkZTliMjAxYjBkNDBmNmE1NzMwOTM2ZWJhYzVlZjgwYWJlNDQ5ZDc1NmU0M2Q5ZjVhYmMwNGI4ZDcyIiwidGFnIjoiIn0%3D; expires=Sat, 26-Nov-2022 18:17:04 GMT; Max-Age=7200; path=/; httponly
SESS_TRAF=eyJpdiI6Im84NURCUVQ0bFY5V1k0SCtQYXNmVkE9PSIsInZhbHVlIjoiSUZDWXZhQndPR1ZXUDY3cW5NYVY5ZTBjMXJ6M1NuQVlHcStqVFNkY2lYN3pvNFM3WTU5Njk1Y1dYQTArcU1JdU1Ka0FMaElNZHVnUENBQ3JYemxVNEdwVGh2VFYxQTNDSzFldmJ1eEEvUW9vdkMzV3c4b2xxRHl4SnVudTU5LzA1ai9aWGoxYkpLRzhJYWFUN0xneU0yRk53d25BQmRnSDNNS3V2OHUxUy8vTVVIeElxN3dkdjNTVEdrd1UyeFFMVWh0MmNxL3M4U3NYaDdZVVVqNmtkQmVLc1BRcVFjVU82OVBwb3RGWDhZRGFDVW94ekQwUzRWSTZmK2Z6ZVJXRS90b3RUc0VMN2x2WTJ1TU42OWh2TFVRbjF4ZTFwTVB2YVBGVFhxcWhMTEE9IiwibWFjIjoiYjJhMDgxYjU5ZDk5M2IyMDNiNzg4ZDk4ZDI5MjVkMTlmOWFmZTMzMmE5N2I2NWI5ZjAzYjVlMjAzYzFiMzdiNSIsInRhZyI6IiJ9; path=/; httponly
visit=eyJpdiI6IlI3dE5PZmRNQXFyMitrYlM0U2t5SGc9PSIsInZhbHVlIjoiWTZsN1pqQjBtTkJKWWZDRU1rcS9Sc0dlWnlsV0RBci93KzhHdG9LcG5JbStVOStMeHVBbDBwV09VY21rWEZ6WCIsIm1hYyI6ImJmZjRkNDY3ZWE1NzNhMjU4ODdmZjM1OTk5MTVjMTNmZDQxMzExNGYyNTY1ZTAwZDgzNmNjYTZlMWY1NjFjMGIiLCJ0YWciOiIifQ%3D%3D; expires=Sun, 27-Nov-2022 16:17:04 GMT; Max-Age=86400; path=/; httponly
gjh5vlWAErCKmmKVeEr1EaiFtWznLKJpb00Ox1kP=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; expires=Sat, 26-Nov-2022 18:17:04 GMT; Max-Age=7200; path=/; httponly
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3014
Expires: Sat, 26 Nov 2022 17:07:18 GMT
Date: Sat, 26 Nov 2022 16:17:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5083
Cache-Control: max-age=157127
Date: Sat, 26 Nov 2022 16:17:04 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:55:51 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 15:19:13 GMT
cache-control: public,max-age=3600
age: 3471
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13011
Expires: Sat, 26 Nov 2022 19:53:55 GMT
Date: Sat, 26 Nov 2022 16:17:04 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: YCFzlBdPi2tzWkDcl/iDjiXxU+0KlNVShGa2L6/Mc7mYNhTjHb7SaLwRC7idHe82sIW7keLlb9w=
x-amz-request-id: H2AD2N7Q4R1MSE4G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 15:44:17 GMT
age: 1967
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /css/offers/win_gold_min/app.css?id=b42914e86a05f14d49590f76856d77f3 HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.freakyprizes.com/win_gold_min?tid=5x1hde037di2me912qlcg80k4,16501417,5,1043&ctrack=1669479414.2795355111&p=1043&pi=mbep&click_id=wo2o98rudj4a1gokid5fiap0&prize=cash-500-usd
Cookie: XSRF-TOKEN=eyJpdiI6Ilk4RnFPNUVQWExKK0hKRldSQldSZUE9PSIsInZhbHVlIjoiUXNRWWdjWFJKMU9IVlRPYWtGUk9GSm1pT0xWdUJXUlY5dTF4MGRvL1Bid3RDNloyYUdRdEVkYW1hLzlqK1RKdCtTQWwzdWp0SzJUallVS0xrcU5jTStjYm5QM2k2anYva3hsNnUvSjNlWnN3eG90L3RrL1U2czRRdzIwTGE2eEIiLCJtYWMiOiJlYjY4ZGZjYWRiOGEzMjIzODNhZDEyMjdiMTY5MmI2MTQyYTNjMWFhNDA4MGZhNjU0YTQyMjAwZDM3OTYyZTMzIiwidGFnIjoiIn0%3D; ivr_offers_session=eyJpdiI6Ik1QTzVGTTRqM0xtQmFtUGxiNHhOMWc9PSIsInZhbHVlIjoiYjlGZEJwZTMyY3lWRTg0UzhqWFNMdkcxU0l6VkpXZS93TDl1OWo1NUQ4N2JhNlFEekZ5MWVXR044cTlrVkxzUU1EWVNVendTYkIwSXRtU1UwZGxPby9Zc3RvbmFYSzZOQmo1TFFNYTR4VXZiVW1zQzBPWnBSMzhBMlk2NlFYWkwiLCJtYWMiOiI2MmM0ZjVkZTliMjAxYjBkNDBmNmE1NzMwOTM2ZWJhYzVlZjgwYWJlNDQ5ZDc1NmU0M2Q5ZjVhYmMwNGI4ZDcyIiwidGFnIjoiIn0%3D; SESS_TRAF=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; visit=eyJpdiI6IlI3dE5PZmRNQXFyMitrYlM0U2t5SGc9PSIsInZhbHVlIjoiWTZsN1pqQjBtTkJKWWZDRU1rcS9Sc0dlWnlsV0RBci93KzhHdG9LcG5JbStVOStMeHVBbDBwV09VY21rWEZ6WCIsIm1hYyI6ImJmZjRkNDY3ZWE1NzNhMjU4ODdmZjM1OTk5MTVjMTNmZDQxMzExNGYyNTY1ZTAwZDgzNmNjYTZlMWY1NjFjMGIiLCJ0YWciOiIifQ%3D%3D; gjh5vlWAErCKmmKVeEr1EaiFtWznLKJpb00Ox1kP=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
|
search
94.237.93.242
HTTP/1.1 200 OK
Content-Type: text/css
Date: Sat, 26 Nov 2022 16:17:04 GMT
Last-Modified: Thu, 24 Nov 2022 13:24:09 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
ETag: W/"637f7079-bbb"
Expires: Sun, 26 Nov 2023 16:17:04 GMT
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Sat, 26 Nov 2022 16:17:04 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AF50CCE6D59A7A486F1146866DE45DAE3A6284BA240E7BB4D7AF8A56073C49CE"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=791
Expires: Sat, 26 Nov 2022 16:30:15 GMT
Date: Sat, 26 Nov 2022 16:17:04 GMT
Connection: keep-alive
|
GET /js/app.js?id=29146093c1a43efa640780237ae43b21 HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.freakyprizes.com/win_gold_min?tid=5x1hde037di2me912qlcg80k4,16501417,5,1043&ctrack=1669479414.2795355111&p=1043&pi=mbep&click_id=wo2o98rudj4a1gokid5fiap0&prize=cash-500-usd
Cookie: XSRF-TOKEN=eyJpdiI6Ilk4RnFPNUVQWExKK0hKRldSQldSZUE9PSIsInZhbHVlIjoiUXNRWWdjWFJKMU9IVlRPYWtGUk9GSm1pT0xWdUJXUlY5dTF4MGRvL1Bid3RDNloyYUdRdEVkYW1hLzlqK1RKdCtTQWwzdWp0SzJUallVS0xrcU5jTStjYm5QM2k2anYva3hsNnUvSjNlWnN3eG90L3RrL1U2czRRdzIwTGE2eEIiLCJtYWMiOiJlYjY4ZGZjYWRiOGEzMjIzODNhZDEyMjdiMTY5MmI2MTQyYTNjMWFhNDA4MGZhNjU0YTQyMjAwZDM3OTYyZTMzIiwidGFnIjoiIn0%3D; ivr_offers_session=eyJpdiI6Ik1QTzVGTTRqM0xtQmFtUGxiNHhOMWc9PSIsInZhbHVlIjoiYjlGZEJwZTMyY3lWRTg0UzhqWFNMdkcxU0l6VkpXZS93TDl1OWo1NUQ4N2JhNlFEekZ5MWVXR044cTlrVkxzUU1EWVNVendTYkIwSXRtU1UwZGxPby9Zc3RvbmFYSzZOQmo1TFFNYTR4VXZiVW1zQzBPWnBSMzhBMlk2NlFYWkwiLCJtYWMiOiI2MmM0ZjVkZTliMjAxYjBkNDBmNmE1NzMwOTM2ZWJhYzVlZjgwYWJlNDQ5ZDc1NmU0M2Q5ZjVhYmMwNGI4ZDcyIiwidGFnIjoiIn0%3D; SESS_TRAF=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; visit=eyJpdiI6IlI3dE5PZmRNQXFyMitrYlM0U2t5SGc9PSIsInZhbHVlIjoiWTZsN1pqQjBtTkJKWWZDRU1rcS9Sc0dlWnlsV0RBci93KzhHdG9LcG5JbStVOStMeHVBbDBwV09VY21rWEZ6WCIsIm1hYyI6ImJmZjRkNDY3ZWE1NzNhMjU4ODdmZjM1OTk5MTVjMTNmZDQxMzExNGYyNTY1ZTAwZDgzNmNjYTZlMWY1NjFjMGIiLCJ0YWciOiIifQ%3D%3D; gjh5vlWAErCKmmKVeEr1EaiFtWznLKJpb00Ox1kP=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
|
search
94.237.93.242
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 26 Nov 2022 16:17:04 GMT
Last-Modified: Thu, 24 Nov 2022 13:24:09 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
ETag: W/"637f7079-2e42c"
Expires: Sun, 26 Nov 2023 16:17:04 GMT
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
|
GET /js/offers/win_gold_min/app.js?id=d30d76f1235a2cee079e20aa2b497491 HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.freakyprizes.com/win_gold_min?tid=5x1hde037di2me912qlcg80k4,16501417,5,1043&ctrack=1669479414.2795355111&p=1043&pi=mbep&click_id=wo2o98rudj4a1gokid5fiap0&prize=cash-500-usd
Cookie: XSRF-TOKEN=eyJpdiI6Ilk4RnFPNUVQWExKK0hKRldSQldSZUE9PSIsInZhbHVlIjoiUXNRWWdjWFJKMU9IVlRPYWtGUk9GSm1pT0xWdUJXUlY5dTF4MGRvL1Bid3RDNloyYUdRdEVkYW1hLzlqK1RKdCtTQWwzdWp0SzJUallVS0xrcU5jTStjYm5QM2k2anYva3hsNnUvSjNlWnN3eG90L3RrL1U2czRRdzIwTGE2eEIiLCJtYWMiOiJlYjY4ZGZjYWRiOGEzMjIzODNhZDEyMjdiMTY5MmI2MTQyYTNjMWFhNDA4MGZhNjU0YTQyMjAwZDM3OTYyZTMzIiwidGFnIjoiIn0%3D; ivr_offers_session=eyJpdiI6Ik1QTzVGTTRqM0xtQmFtUGxiNHhOMWc9PSIsInZhbHVlIjoiYjlGZEJwZTMyY3lWRTg0UzhqWFNMdkcxU0l6VkpXZS93TDl1OWo1NUQ4N2JhNlFEekZ5MWVXR044cTlrVkxzUU1EWVNVendTYkIwSXRtU1UwZGxPby9Zc3RvbmFYSzZOQmo1TFFNYTR4VXZiVW1zQzBPWnBSMzhBMlk2NlFYWkwiLCJtYWMiOiI2MmM0ZjVkZTliMjAxYjBkNDBmNmE1NzMwOTM2ZWJhYzVlZjgwYWJlNDQ5ZDc1NmU0M2Q5ZjVhYmMwNGI4ZDcyIiwidGFnIjoiIn0%3D; SESS_TRAF=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; visit=eyJpdiI6IlI3dE5PZmRNQXFyMitrYlM0U2t5SGc9PSIsInZhbHVlIjoiWTZsN1pqQjBtTkJKWWZDRU1rcS9Sc0dlWnlsV0RBci93KzhHdG9LcG5JbStVOStMeHVBbDBwV09VY21rWEZ6WCIsIm1hYyI6ImJmZjRkNDY3ZWE1NzNhMjU4ODdmZjM1OTk5MTVjMTNmZDQxMzExNGYyNTY1ZTAwZDgzNmNjYTZlMWY1NjFjMGIiLCJ0YWciOiIifQ%3D%3D; gjh5vlWAErCKmmKVeEr1EaiFtWznLKJpb00Ox1kP=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
|
search
94.237.93.242
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Date: Sat, 26 Nov 2022 16:17:04 GMT
Last-Modified: Thu, 24 Nov 2022 13:24:09 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
ETag: W/"637f7079-39cc6"
Expires: Sun, 26 Nov 2023 16:17:04 GMT
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
|
GET /img/prizes/cash-500-usd/default/default@0.75x.png HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.freakyprizes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
94.237.93.242
HTTP/2 200 OK
content-type: image/png
date: Sat, 26 Nov 2022 16:17:04 GMT
content-length: 14072
last-modified: Thu, 24 Nov 2022 13:22:47 GMT
etag: "637f7027-36f8"
expires: Sun, 26 Nov 2023 16:17:04 GMT
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /img/offers/win_gold_min/bg.jpg HTTP/1.1
Host: www.freakyprizes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.freakyprizes.com/css/offers/win_gold_min/app.css?id=b42914e86a05f14d49590f76856d77f3
Cookie: XSRF-TOKEN=eyJpdiI6Ilk4RnFPNUVQWExKK0hKRldSQldSZUE9PSIsInZhbHVlIjoiUXNRWWdjWFJKMU9IVlRPYWtGUk9GSm1pT0xWdUJXUlY5dTF4MGRvL1Bid3RDNloyYUdRdEVkYW1hLzlqK1RKdCtTQWwzdWp0SzJUallVS0xrcU5jTStjYm5QM2k2anYva3hsNnUvSjNlWnN3eG90L3RrL1U2czRRdzIwTGE2eEIiLCJtYWMiOiJlYjY4ZGZjYWRiOGEzMjIzODNhZDEyMjdiMTY5MmI2MTQyYTNjMWFhNDA4MGZhNjU0YTQyMjAwZDM3OTYyZTMzIiwidGFnIjoiIn0%3D; ivr_offers_session=eyJpdiI6Ik1QTzVGTTRqM0xtQmFtUGxiNHhOMWc9PSIsInZhbHVlIjoiYjlGZEJwZTMyY3lWRTg0UzhqWFNMdkcxU0l6VkpXZS93TDl1OWo1NUQ4N2JhNlFEekZ5MWVXR044cTlrVkxzUU1EWVNVendTYkIwSXRtU1UwZGxPby9Zc3RvbmFYSzZOQmo1TFFNYTR4VXZiVW1zQzBPWnBSMzhBMlk2NlFYWkwiLCJtYWMiOiI2MmM0ZjVkZTliMjAxYjBkNDBmNmE1NzMwOTM2ZWJhYzVlZjgwYWJlNDQ5ZDc1NmU0M2Q5ZjVhYmMwNGI4ZDcyIiwidGFnIjoiIn0%3D; SESS_TRAF=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; visit=eyJpdiI6IlI3dE5PZmRNQXFyMitrYlM0U2t5SGc9PSIsInZhbHVlIjoiWTZsN1pqQjBtTkJKWWZDRU1rcS9Sc0dlWnlsV0RBci93KzhHdG9LcG5JbStVOStMeHVBbDBwV09VY21rWEZ6WCIsIm1hYyI6ImJmZjRkNDY3ZWE1NzNhMjU4ODdmZjM1OTk5MTVjMTNmZDQxMzExNGYyNTY1ZTAwZDgzNmNjYTZlMWY1NjFjMGIiLCJ0YWciOiIifQ%3D%3D; gjh5vlWAErCKmmKVeEr1EaiFtWznLKJpb00Ox1kP=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
|
search
94.237.93.242
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Sat, 26 Nov 2022 16:17:04 GMT
Content-Length: 31535
Last-Modified: Thu, 24 Nov 2022 13:24:09 GMT
ETag: "637f7079-7b2f"
Expires: Sun, 26 Nov 2023 16:17:04 GMT
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "EF3B7FA0697C9C38686808FBD6595D8627F922779919DDE27A36F810C186F587"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1982
Expires: Sat, 26 Nov 2022 16:50:06 GMT
Date: Sat, 26 Nov 2022 16:17:04 GMT
Connection: keep-alive
|
POST /api/18/envelope/?sentry_key=ccd7567c32f347d999f51c043b0ccde6&sentry_version=7 HTTP/1.1
Host: s3ntry.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.freakyprizes.com/
Content-Type: text/plain;charset=UTF-8
Origin: http://www.freakyprizes.com
Content-Length: 434
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 162.55.168.249
HTTP/1.1 200 OK
Content-Type: application/json
Server: nginx
Date: Sat, 26 Nov 2022 16:17:04 GMT
Content-Length: 2
Connection: close
access-control-allow-origin: http://www.freakyprizes.com
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits
vary: Origin
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 16:08:54 GMT
cache-control: public,max-age=3600
age: 490
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3733
Cache-Control: max-age=150719
Date: Sat, 26 Nov 2022 16:17:05 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:09:04 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ItqlUly2GLE4idiPlZ+bnQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
35.86.38.2
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RXmvZlPOO3+4bA+noJXLYyT35gw=
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5828
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 16:17:06 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5828
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 16:17:06 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5828
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 16:17:06 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
age: 63837
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 66810
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 66642
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 40358
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 32620
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 65881
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /carriers/telia.svg HTTP/1.1
Host: d1u65k3qj4t7ya.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.freakyprizes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.245.69
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 01 Jul 2022 12:26:39 GMT
x-amz-storage-class: REDUCED_REDUNDANCY
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 10:58:04 GMT
etag: W/"c87c4b7324d0c7760e2c3c5ffb645dd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NWDDOZpY19MJfH0wbVBwnBks0TVetfqIq6gLXqSQux0LgxeyWQ9fPA==
age: 19141
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /carriers/telenor.svg HTTP/1.1
Host: d1u65k3qj4t7ya.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.freakyprizes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.245.69
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 01 Jul 2022 12:26:39 GMT
x-amz-storage-class: REDUCED_REDUNDANCY
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 02:15:58 GMT
etag: W/"22ac04ea759d608fe69bc0db24dc915c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bDECh6iR3odR2LKV6cCKUR1gBQtRhOvQtgeuHnUAnzVZQjD8DpDTGA==
age: 50467
X-Firefox-Spdy: h2
--- Additional Info ---
|