exl-redircd.com/?a=124174&browser=&browserversion=&c=0&campaignid=&co=170192&connection_type=&device=&isp=&mt=21&o=106948&os=&osversion=®ion=&s2=exzow63d9f39400033229&zoneid=
45.91.67.98302 Found 757 B URL HTTP/1.1 exl-redircd.com/?a=124174&browser=&browserversion=&c=0&campaignid=&co=170192&connection_type=&device=&isp=&mt=21&o=106948&os=&osversion=®ion=&s2=exzow63d9f39400033229&zoneid=
IP 45.91.67.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (654), with CRLF line terminators
Hash 2ee5dec664c55cd9afb338961226d985
d632ed0807ce765a23eec488eabaa7194ce1bb0f
7e311222b501cd39b8e65f10f909a4bf019792f063d1d3e085bb03a41e3671f7
GET /?a=124174&browser=&browserversion=&c=0&campaignid=&co=170192&connection_type=&device=&isp=&mt=21&o=106948&os=&osversion=®ion=&s2=exzow63d9f39400033229&zoneid= HTTP/1.1
Host: exl-redircd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 05:07:48 GMT
Content-Type: text/html;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://exl-redircd.com?a=124174&c=259927&oc=139768&sr=t&so=106948&sc=11360026&rc=24_150660&rca=24_150660x24_139940x24_139770&s2=exzow63d9f39400033229&vt=1675228068788&h=e7964ed3f4c1c71e776268cc75db48e938b4a74c&req=http%3A%2F%2Fexl-redircd.com%2F%3Fa%3D124174%26browser%3D%26browserversion%3D%26c%3D0%26campaignid%3D%26co%3D170192%26connection_type%3D%26device%3D%26isp%3D%26mt%3D21%26o%3D106948%26os%3D%26osversion%3D%26region%3D%26s2%3Dexzow63d9f39400033229%26zoneid%3D&co=170192&mt=21&sip=91.90.42.154&sh=bd87589a29c90aab918698fb52f32146a08d4c87
Content-Language: en-US
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6758
Expires: Wed, 01 Feb 2023 07:00:26 GMT
Date: Wed, 01 Feb 2023 05:07:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15095
Expires: Wed, 01 Feb 2023 09:19:23 GMT
Date: Wed, 01 Feb 2023 05:07:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5081
Expires: Wed, 01 Feb 2023 06:32:30 GMT
Date: Wed, 01 Feb 2023 05:07:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 04:35:57 GMT
content-type: application/json
age: 1912
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QpUt+eIEAl6aX1GZB7/kwwdfpy2wHkA8/dZGC/IiA1F7kAa1kBl/Job8bd7aCyiIAZ/OvjlZqHs=
x-amz-request-id: WP320BH1TPQSCFSH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 04:22:30 GMT
age: 2719
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 05:07:49 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
exl-redircd.com/?a=124174&c=259927&oc=139768&sr=t&so=106948&sc=11360026&rc=24_150660&rca=24_150660x24_139940x24_139770&s2=exzow63d9f39400033229&vt=1675228068788&h=e7964ed3f4c1c71e776268cc75db48e938b4a74c&req=http%3A%2F%2Fexl-redircd.com%2F%3Fa%3D124174%26browser%3D%26browserversion%3D%26c%3D0%26campaignid%3D%26co%3D170192%26connection_type%3D%26device%3D%26isp%3D%26mt%3D21%26o%3D106948%26os%3D%26osversion%3D%26region%3D%26s2%3Dexzow63d9f39400033229%26zoneid%3D&co=170192&mt=21&sip=91.90.42.154&sh=bd87589a29c90aab918698fb52f32146a08d4c87
45.91.67.98200 OK 1.0 kB URL HTTP/1.1 exl-redircd.com/?a=124174&c=259927&oc=139768&sr=t&so=106948&sc=11360026&rc=24_150660&rca=24_150660x24_139940x24_139770&s2=exzow63d9f39400033229&vt=1675228068788&h=e7964ed3f4c1c71e776268cc75db48e938b4a74c&req=http%3A%2F%2Fexl-redircd.com%2F%3Fa%3D124174%26browser%3D%26browserversion%3D%26c%3D0%26campaignid%3D%26co%3D170192%26connection_type%3D%26device%3D%26isp%3D%26mt%3D21%26o%3D106948%26os%3D%26osversion%3D%26region%3D%26s2%3Dexzow63d9f39400033229%26zoneid%3D&co=170192&mt=21&sip=91.90.42.154&sh=bd87589a29c90aab918698fb52f32146a08d4c87
IP 45.91.67.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 045eb41e3685cc5c6a7891b9f195e090
019e128bed7fd269ab612b1e33c7aa38d475c937
84c80a87d07196cae07414ba991b9e4fc75c5989a381dc937afedaf49d4eca65
GET /?a=124174&c=259927&oc=139768&sr=t&so=106948&sc=11360026&rc=24_150660&rca=24_150660x24_139940x24_139770&s2=exzow63d9f39400033229&vt=1675228068788&h=e7964ed3f4c1c71e776268cc75db48e938b4a74c&req=http%3A%2F%2Fexl-redircd.com%2F%3Fa%3D124174%26browser%3D%26browserversion%3D%26c%3D0%26campaignid%3D%26co%3D170192%26connection_type%3D%26device%3D%26isp%3D%26mt%3D21%26o%3D106948%26os%3D%26osversion%3D%26region%3D%26s2%3Dexzow63d9f39400033229%26zoneid%3D&co=170192&mt=21&sip=91.90.42.154&sh=bd87589a29c90aab918698fb52f32146a08d4c87 HTTP/1.1
Host: exl-redircd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:49 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Set-Cookie: gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/; Secure; SameSite=None
gdm_click_freq_v2_1_001=Hc/zPPeBQyCM4vcC7V2nra5TC6uY16Ze/dH22lkn6CIrwkMjXEJdbSCsCHywdDY8; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/; Secure; SameSite=None
gdm_click_adv_freq_v2_1_001=kHo+ZQ9RQEgxyWwunNVci13xm0yKctXXfSsKokLtFE0Z3WNedBqhwOxd6A0RO32U; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/; Secure; SameSite=None
gdm_click_adv_freq_v1_1_001=kHo+ZQ9RQEgxyWwunNVci13xm0yKctXXfSsKokLtFE0Z3WNedBqhwOxd6A0RO32U; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/
gdm_uid_v2_1_001=UdE5Y9ItX/8FKRgvtSvdQ3QjTcHW/DRGoXB4RYf183T+rkH1o8jmHQcd1wQS8XKR; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/; Secure; SameSite=None
gdm_uid_v1_1_001=UdE5Y9ItX/8FKRgvtSvdQ3QjTcHW/DRGoXB4RYf183T+rkH1o8jmHQcd1wQS8XKR; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/
gdm_click_freq_v1_1_001=Hc/zPPeBQyCM4vcC7V2nra5TC6uY16Ze/dH22lkn6CIrwkMjXEJdbSCsCHywdDY8; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/
gdm_sid_v2_3_001=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; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/; Secure; SameSite=None
gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/
gdm_sid_v1_3_001=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; Domain=.exl-redircd.com; Expires=Tue, 02-May-2023 05:07:49 GMT; Path=/
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Expires: Sat, 1 May 2020 12:00:00 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
Content-Encoding: gzip
exl-redircd.com/favicon.ico
45.91.67.98200 OK 43 B URL HTTP/1.1 exl-redircd.com/favicon.ico
IP 45.91.67.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /favicon.ico HTTP/1.1
Host: exl-redircd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://exl-redircd.com/?a=124174&c=259927&oc=139768&sr=t&so=106948&sc=11360026&rc=24_150660&rca=24_150660x24_139940x24_139770&s2=exzow63d9f39400033229&vt=1675228068788&h=e7964ed3f4c1c71e776268cc75db48e938b4a74c&req=http%3A%2F%2Fexl-redircd.com%2F%3Fa%3D124174%26browser%3D%26browserversion%3D%26c%3D0%26campaignid%3D%26co%3D170192%26connection_type%3D%26device%3D%26isp%3D%26mt%3D21%26o%3D106948%26os%3D%26osversion%3D%26region%3D%26s2%3Dexzow63d9f39400033229%26zoneid%3D&co=170192&mt=21&sip=91.90.42.154&sh=bd87589a29c90aab918698fb52f32146a08d4c87
Cookie: gdm_click_adv_freq_v1_1_001=kHo+ZQ9RQEgxyWwunNVci13xm0yKctXXfSsKokLtFE0Z3WNedBqhwOxd6A0RO32U; gdm_uid_v1_1_001=UdE5Y9ItX/8FKRgvtSvdQ3QjTcHW/DRGoXB4RYf183T+rkH1o8jmHQcd1wQS8XKR; gdm_click_freq_v1_1_001=Hc/zPPeBQyCM4vcC7V2nra5TC6uY16Ze/dH22lkn6CIrwkMjXEJdbSCsCHywdDY8; gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; gdm_sid_v1_3_001=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
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 04:41:42 GMT
age: 1567
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8723
Expires: Wed, 01 Feb 2023 07:33:12 GMT
Date: Wed, 01 Feb 2023 05:07:49 GMT
Connection: keep-alive
push.services.mozilla.com/
52.43.230.196101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.230.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rBpxOzCiLEDFFd8tJZxV6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nYWXFAc6qoxUSwgWqtyvuljqouI=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20767
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 05:07:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20767
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 05:07:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20767
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 05:07:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20767
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 05:07:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fec00239dceb510f051645ae93dac5f2
6524837e65b070341f9c8f4589492876ae293f17
d00272557742c57d084ab7e46b9b1722b28b869ae9c63e2169e7124e5107c009
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: f37b4455-c9fb-46e4-a287-f40c1138a77a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflQWGqCIAMFvjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c02-01d34b0d3a9a0101555081f5;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:10:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KTfQ_pc9OU0WnnQlmhjYlFAInn2Cwz6xNGtjL3FtP5XJX8vHTidkoA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:37:27 GMT
age: 77424
etag: "6524837e65b070341f9c8f4589492876ae293f17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d09523ece9b6da85a1a007c7e2abcb6
a637b08e2fbba31ef60103b2d9fd3c6f96d84b27
811bbd2e85b83dcaa8743a1d7e513fd76b81d4ced2b8aa99c62f9590f20e85a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8812
x-amzn-requestid: 8c568658-2708-4031-93ff-1654cc17a311
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foeeZGjKIAMFyUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9aac2-4587a6e43c1430ed03d0e69b;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:56:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SN1t3ynbcYOqHlv7bgBwzUTdZLjPAEq8bmRuIJaKHGA-4AkcMyBJkg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 00:16:28 GMT
age: 17483
etag: "a637b08e2fbba31ef60103b2d9fd3c6f96d84b27"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eeee3f44ebd0980444f962d3936c6ec6
27f6fc214176af3a237e45022d7240123ab36f8c
255c54650fdef5af9d4f3f8ee5d25f8cf3b3b6e755f41cf5f7758e3ef96b7bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6189
x-amzn-requestid: 6901e757-7950-4e70-92a9-212e91dda392
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflm0EO1IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c91-52ad7e6b3563cc46184f1a54;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:13:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: c24ZZ4IMp1Sj8mi1dOP5055neiJh4aShggwtjujZoP-TfwP_4oy7lQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:26:25 GMT
age: 78086
etag: "27f6fc214176af3a237e45022d7240123ab36f8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:57:42 GMT
age: 25809
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif
34.120.237.76200 OK 45 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash 54d9e8efcff3cc7fa309dc41e89c2a26
fa1cd58cf243d18f360e4394a02bee994e738c0a
4dd37eec5c27d911c3193c7ba08c10a8ec2526eac48c9b6a2a4ec49502cf189a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 44860
x-amzn-requestid: 318e5c01-c024-4c5e-8422-e6cba20b8dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaTEeBoAMFesA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-4b775cdc759aac341f2aff9a;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vmPt8MLY6RsliPiMKcbnJ6jGjfuc8LXspyaqEIQiExnxnPOXIWDhqA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:26 GMT
age: 26185
etag: "fa1cd58cf243d18f360e4394a02bee994e738c0a"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:52:17 GMT
age: 76534
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 180184055c98e3f7ff88ba73158f4692
9fdb882822eed02fce26134f94cee47e05da452f
e54b7f5fee2205a130c3cff151bb250bbcff553cf18c7ec36cd6669597f236fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E54B7F5FEE2205A130C3CFF151BB250BBCFF553CF18C7EC36CD6669597F236FA"
Last-Modified: Mon, 30 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Wed, 01 Feb 2023 11:07:49 GMT
Date: Wed, 01 Feb 2023 05:07:52 GMT
Connection: keep-alive
mstrkcng.net/click.php?project_id=469ffb7d06&affiliate_id=5vn&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom4=&custom5=NETWORK
185.142.239.85302 Found 20 B URL HTTP/1.1 mstrkcng.net/click.php?project_id=469ffb7d06&affiliate_id=5vn&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom4=&custom5=NETWORK
IP 185.142.239.85:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /click.php?project_id=469ffb7d06&affiliate_id=5vn&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom4=&custom5=NETWORK HTTP/1.1
Host: mstrkcng.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://exl-redircd.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 05:07:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5; expires=Wed, 08-Feb-2023 05:07:52 GMT; Max-Age=604800; path=/; samesite=None; secure
leadID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5; expires=Wed, 08-Feb-2023 05:07:52 GMT; Max-Age=604800; path=/; samesite=None; secure
Location: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: faucibus
PX-X-Request-Id: 63a324bb27b66b7ca51122c93fb9e10b
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6651e9cf90a2d0bc3049763bc9073cf4
ad8936d23c46ece44cc8180ec5683735ab3d0ee9
35ba595f387cf3733ee24713ff2f9e686495c39da16ac29a4ea6cae02916c421
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BA595F387CF3733EE24713FF2F9E686495C39DA16AC29A4EA6CAE02916C421"
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1477
Expires: Wed, 01 Feb 2023 05:32:30 GMT
Date: Wed, 01 Feb 2023 05:07:53 GMT
Connection: keep-alive
smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
193.34.167.134200 OK 14 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
IP 193.34.167.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (325)
Hash 71fdd24762a1209057300173976b9804
bc466bda1491abad081109593856cf96ee329e9a
a1710f0998a95e412a0653aeb7d2caf72c2f9f33dd85b389d6fe5c0f0b8dda2f
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://exl-redircd.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Upstream: evlampi-***ko
Content-Encoding: gzip
X-Server: eleifend
PX-X-Request-Id: 6f3e435aa6f5448996bc5d9115c8fbab
smartmoneydealdaily.com/thebrexitmillionaire1/css/css2.css
193.34.167.134200 OK 765 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/css2.css
IP 193.34.167.134:0
Hash 119ec875d0e142b33b757c2156872daf
6dde78d8fc625ea8d4cf31957ad529b924e00726
bb97514515287e58a1a7b377ca8662b2119655a54a4db53b050e83a3492001e6
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/css/css2.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-2e10"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a200338a27aea099f24cf0d08bbf9c32
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/css/all.min.css
104.17.25.14200 OK 9.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/css/all.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (55782)
Hash 9deb21ef6e0dbe67a9cf6c3e2a7ff70f
316b23ed5bc104f7ca1877975d01536d9ff8da91
45e1be9cb5efade345937e4656f68478d149d8624ad7eb88c69b5a0e8ecec081
GET /ajax/libs/font-awesome/5.9.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 05:07:53 GMT
content-type: text/css; charset=utf-8
content-length: 9939
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-da9f"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4100776
expires: Mon, 22 Jan 2024 05:07:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HoOBIm4rNjAZqW8vRX%2Bju7iqAv5Q3gZ2dhpBe6WGv56W08kmJk%2BldVBlhvZgVBkKv2w%2B%2BKjXiTCzFjEEWE89I3Wr6IDeKNRNhsZ8nUapjeWsNNAQ1k9dg7trh%2FeDNcgEsgkCaOoz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79282a82e9131c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
smartmoneydealdaily.com/thebrexitmillionaire1/css/font-awesome.min.css
193.34.167.134200 OK 6.9 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/font-awesome.min.css
IP 193.34.167.134:0
File type ASCII text, with very long lines (30837)
Hash 904652f8e8e016281dca68e5b9abc8fc
13e1893d05d63ce16c15cff638fa706bd79ae2e7
4f6c01c6da54e17e88c9cc29eb4e88e35f73ae6d356c05f3558693a1b2681adf
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/css/font-awesome.min.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-7918"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 1de68caa024d7ded09fc687dc761cbf8
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
193.34.167.134200 OK 4.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
IP 193.34.167.134:0
File type CSV text\012- , ASCII text
Hash 2a37c91fcd4c88858280b2b2b6f6001e
ee2a4e1470ae11bf651de29cf6b58a1e1e82290f
6b4dbbb01b75b9085bf423f5cd6f3e9727797cf573ac9081d048e08a059e2232
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/css/style.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-6dda"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 7b026bcd620cfb9e891c2bed9a105a75
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/css/calculator.css?v=1
193.34.167.134200 OK 2.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/calculator.css?v=1
IP 193.34.167.134:0
Hash 288a247952932f68572b087ce796d66a
8e08ba36a7f58f49d30db0b3d16a1fdeb0b18a65
149a7699fbc73492abc8c5716b696af8f91334190929028bdd8646400ba91086
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/css/calculator.css?v=1 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-350c"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 203c2ee346ff351e33812f5f5e33fc07
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/css/custom.css
193.34.167.134200 OK 762 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/custom.css
IP 193.34.167.134:0
Hash fe797e03f2218fc904eb4bec16be6eed
aee01918ec4c7e805ca54a9b36c972e1e1875ed7
e3315d24e9a16021355e71cc37bd3707342fc46cc5a85b4dfb62fd0e8a842d24
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/css/custom.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-78a"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: fd4171800a741afdc14bc48a74c52707
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/videojs/video-js.css
193.34.167.134200 OK 10 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/videojs/video-js.css
IP 193.34.167.134:0
File type ASCII text, with very long lines (5636)
Hash 2e9194db7b65da701663fd1550133a11
7bf10315530baed441c2ee0b991b31cb6bf80dd9
56c5f03204b6696a155965ca54b64f190413e020a36841c11bdc8ebf5f17ffde
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/js/videojs/video-js.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-9ed4"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: bf60604668777026bbe4344c7be395d7
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/css/bootstrap.min.css
193.34.167.134200 OK 20 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/bootstrap.min.css
IP 193.34.167.134:0
File type ASCII text, with very long lines (65325)
Hash 11b219a8a6ba2cb69dd876d7f113eef1
5cc354841eb61dda99ed5d972fcd6ef4eec959d2
78bf651074bbb560bc849120cd32929e0322d0b89db89d3372d1264c4c674145
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/css/bootstrap.min.css HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-235ed"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 41414c338d097bed59d2ca349e6fc553
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/videojs/video.js
193.34.167.134200 OK 335 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/videojs/video.js
IP 193.34.167.134:0
File type ASCII text, with very long lines (491)
Size 335 kB (335015 bytes)
Hash f20c3ec01ad7639d73154c9dee322a28
d0d30875dd51f800fa4ec2f6f26950c446541784
5b66dfe285931127decd3ab1c38da42a6975a05f513ad9b2de126018ec73f7b0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/js/videojs/video.js HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-173a79"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a6f007044e701b2e4ad658bcf5ce369c
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/css/intgrtn.css?v=1
193.34.167.134200 OK 2.0 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/css/intgrtn.css?v=1
IP 193.34.167.134:0
File type Unicode text, UTF-8 text, with very long lines (394)
Hash 82ad0f4f8e0f82d310cfb2853647d185
34bfe892bd96409b6d520c474cc10f6d25d1647e
15f8892855d7cadd02964be2fb4a69837337333785cd3719dea208ca98a417cb
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/css/intgrtn.css?v=1 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-35a6"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 00deecbca575dba26a641294f42507a2
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/calculator.min.js
193.34.167.134200 OK 723 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/calculator.min.js
IP 193.34.167.134:0
Hash 22f58e8cadc0bc1f7bc8142cc8035342
ceafa52f4b38d2ce34ece639815ace1a8fbae303
303ea1112d06471a12ff2f332063ae2a4c814a4c7d333713120388124b5b2076
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/js/calculator.min.js HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-715"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: cb5a64fc78649caec12dc8a4ac4198ad
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/jquery.min.js
193.34.167.134200 OK 31 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/jquery.min.js
IP 193.34.167.134:0
File type ASCII text, with very long lines (65451)
Hash 3700d0b271343804b9b9aa1c13efa521
3d6b03dbd74872ca3dfbb0529f6c80943788f918
fda7541f8e4cf921d20bcd0dc1d0efe69644c79bd18a0be4ce2f34246c83603e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/js/jquery.min.js HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-15d84"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: f33459b80d46e300cc6d5b9e915d50f7
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/custom.js
193.34.167.134200 OK 2.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/custom.js
IP 193.34.167.134:0
Hash a2cfe555b9e981392072651379d76a38
a2f56812e3c456a08243d6db63b9a8c0265ba43b
dcd2170a76a08a206c55c6a95772f07af603bbb46920937bd4b0bed895dda56f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/js/custom.js HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-216a"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: bf9bae51c988d28735c2a0c2d5f78493
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/top-logo.png
193.34.167.134200 OK 3.5 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/top-logo.png
IP 193.34.167.134:0
File type PNG image data, 290 x 30, 8-bit colormap, non-interlaced\012- data
Hash 659ce77da9920db62ffd8e3ba5cdb269
59b96028ea11fc23d09b1fa0ac87121cae45fbc8
47c9a93d4230db93494b0acec07f8685f360d17347b2d17dd7a3311826ebfe1e
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/top-logo.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-d6a"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 329935d0d438a05f2498454bd6510c72
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/bm-icon.png
193.34.167.134200 OK 5.2 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/bm-icon.png
IP 193.34.167.134:0
File type PNG image data, 62 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash a011f2c1ab47f360d6fa86f72a428f23
9289a7a5720cbda0e05b593ee03d442734d3ce61
cc318ce36de38a2369ac25359d1c1894d406e8316787198f34e8dc375f44b592
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/bm-icon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-16dd"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 766fb59132f44ac9b5aa59370649426d
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/handshake.png
193.34.167.134200 OK 805 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/handshake.png
IP 193.34.167.134:0
File type PNG image data, 24 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash c2cc33e75f9323d90b4d085aca99bea8
a22daa9bb707435a1434e228c72343b5003da10f
d8ce2565c17c77e9ae6da5d38ff4c5da409c78dec586fcb641db4ab8d0804f53
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/handshake.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-311"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: bdc03c7f50f1f71a4606be17ba51e5e6
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/money-growth.png
193.34.167.134200 OK 639 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/money-growth.png
IP 193.34.167.134:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f50985935c59d7dd419184ed3e6ad65
95321c74c6e849bb7dd3e99278897973fb607d29
5b894e167888610d8805b5da276e0da7375b79c2c19e077875234f589a6925d9
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/money-growth.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-277"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 8502edc5803f19530f1136d1ab6045af
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/js/range-slider.js
193.34.167.134200 OK 1.3 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/js/range-slider.js
IP 193.34.167.134:0
File type ASCII text, with very long lines (352)
Hash b2902bcc866b98249c701a1d90431f81
985cba9368b58779a0b521d1b8a5a877f40cc422
54ed7df84aa1a6d18df8611a241cd88fc5590e8693558735384906a1e911b38d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/js/range-slider.js HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-120f"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a5937a04cf3f643c541ad3479486ba04
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-1-copy.png
193.34.167.134200 OK 2.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-1-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b0a4259121e928c4cbfc2013486bd997
1f5e5dfec52a67d94584b42aa1bb9bc212fd3447
e1bbf14309f690a7b49565c11ae6e27b98669b7f9e44673c99a9430a23663926
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-1-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-a51"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 73b6c6104882ca42ba81bce6f75793f1
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 1a4bcb3ec9c508d478d4dbf6b56f6208
bd2de9c020d1fb0461cedf4e8e1d4d6834426d15
24f7e397faec79e62c37ff2f00b170f6dc1557fb46ac169f9f1897a9d641dd03
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:05:49 GMT
expires: Sat, 27 Jan 2024 10:05:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:17 GMT
content-type: font/woff2
age: 414125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16064, version 1.0\012- data
Hash ede18477b85a5d781cd2f4001ecc5e67
ff430aa2f0d009a154dddbe06e58f3cce299bde6
f3d7092e6eb6f3aa0c572e52e061a59cc88a3e9eff581c95c4bd7456800904d0
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 05:46:36 GMT
expires: Tue, 30 Jan 2024 05:46:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:09:56 GMT
content-type: font/woff2
age: 170478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15324, version 1.0\012- data
Hash d8eab344801820b04142708a330623fc
ece1830502a2eaf7022a94e4bc9e61beea39df07
4ba0f48573cc9e7e9c073582fa327ed9682680e5e00a667c138881cc5709739d
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:02:46 GMT
expires: Mon, 29 Jan 2024 10:02:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:40 GMT
content-type: font/woff2
age: 241508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-2-copy.png
193.34.167.134200 OK 2.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-2-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash a8beff5730ddec3ecdd89e61b42d3597
1e9ae8527088160fcb89a4d177ff9c9b1040bcb4
2b1700883806e9a3de4f7faaf5a45ccc3aa116b2f139ecd1140d7f8cb833e9a6
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-2-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-a4e"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 852957d4fe64597591665dbe8c19c288
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-3-copy.png
193.34.167.134200 OK 2.3 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-3-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 19f4b04626f41b462c2874be76240e9d
e1ddfad2e3bf825981045bc1a9474b5f2811dde5
162d2a4f90665280978d23b95c366a095e68948adf50621c1440054d2f598a51
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-3-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-8b2"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: e40512d4948b5b2ed28f183fcefdc57e
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-4-copy.png
193.34.167.134200 OK 2.3 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-4-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ab6a7bffd6121b3ae8334b3bc0a714d
a5aa19da94729cbe4e5053793ad0878e4b762f7b
8f388c52259ec6bdb69a0a5614244677af55a7137cb0cf5ded6c901903f71e6f
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-4-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-8b9"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 687886fa052695adabe359a36218d799
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/top-logo.svg
193.34.167.134200 OK 5.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/top-logo.svg
IP 193.34.167.134:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4910)
Hash 2379674bc2864bf336b6425f4aacc435
ab2108dd335215c5163c4aee85b32565d380740e
4651357f05e23fba6e704af078152795307ad9f85b729b218f1647a799a49e24
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/img/top-logo.svg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/svg+xml
Content-Length: 5115
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: "636b64a9-13fb"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 03aafaacdba3566ed6b134c4a394d6a6
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15948, version 1.0\012- data
Hash c85615b296302af51e683eecb5e371d4
ff7c20b0947804c607759aa46eab666d94cf12ea
efb3cdc5e4582fd67dffab6fc6e5062074ce3f8c51747346af944e97749dc309
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 04:00:37 GMT
expires: Sun, 28 Jan 2024 04:00:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:32 GMT
content-type: font/woff2
age: 349637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16112, version 1.0\012- data
Hash 899c8f78ce650d4009d42443897aa723
d2e2faa9780b7fca5a5cb20a853dd7df55b3101e
a9950fa5ca9cf47072770900d259bcf6778aa1119652d2e706d5eb92df254199
GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:56:43 GMT
expires: Sat, 27 Jan 2024 18:56:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:09 GMT
content-type: font/woff2
age: 382271
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
smartmoneydealdaily.com/thebrexitmillionaire1/img/ribbon-top.svg
193.34.167.134200 OK 30 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ribbon-top.svg
IP 193.34.167.134:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (29283)
Hash 637287515b1460753d34aa7229f22688
a97e64f0ff1c87f4367f48e83a86fd26b3db7cf7
af2a1af1f8bdd321f9b7c38c43b2985d84bcaeaaf770128538a97a50862738f6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/img/ribbon-top.svg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/svg+xml
Content-Length: 29492
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: "636b64a9-7334"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: ba4277d4c97ebd460d3536e9224d640f
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 05:07:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
smartmoneydealdaily.com/thebrexitmillionaire1/img/3.jpg
193.34.167.134200 OK 6.0 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/3.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash c436e04647467b48487dfac302e8e869
f50de4a155db92ec1138774babaac8318d1f1f8e
cace7a70b7d3799eeb94dd04923a0511b5dae1fd41b6f1b7460fdd3780262931
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/3.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-18b2"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: f8c94a81e26d3f9ef63f4b2f04efa6b1
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/pin.png
193.34.167.134200 OK 1.6 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/pin.png
IP 193.34.167.134:0
File type PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e88d91f073306fe732d878ee345dda4
5a9192d302860e3ac844522e24ffa134a209fba3
f389b70d5109fcb28b646f7c2e5a0af483145bf7ad2784ba59585de39994b854
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/pin.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-729"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 7f09d08fdac3d7c4d0ea6b986500d456
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/member-3.png
193.34.167.134200 OK 47 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/member-3.png
IP 193.34.167.134:0
File type PNG image data, 340 x 233, 8-bit colormap, non-interlaced\012- data
Hash 408fdf5257ff6c8391d50c3313168ac2
40705b12849a0db0215e0bf4b4a4b9007a197d1f
9d1d58fb2acbd83dd2315409a249b3cfdc704c94bfb1f8b8b5bd54ab956a2bff
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/member-3.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-b93b"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 401380cfeccba83306b6cb29ca30d665
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/member-1.png
193.34.167.134200 OK 47 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/member-1.png
IP 193.34.167.134:0
File type PNG image data, 340 x 233, 8-bit colormap, non-interlaced\012- data
Hash a8dd0ab980e7da52b6e64fda2b97a3cb
ec6012febf13cebb8e0c97d128506d63a3930701
eda0d58d1c3ccd3c8df483265d9db83f69a44f4061968c5c4e403b0f68314693
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/member-1.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-b6c8"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: e882da26d32d82fc846a20d3ffc09546
Content-Encoding: gzip
smartmoneydealdaily.com/intgrtn/api/v1/integration/sdk.js?v=120231151
193.34.167.134200 OK 47 kB URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/integration/sdk.js?v=120231151
IP 193.34.167.134:0
Hash e0a5efe9b83423afdd2ad3b1d1ec4468
0e46b175ec31cd294f62084c0e02663d2ca5ec99
2d36724568bfd61e86bc7ba5dcca8b3bb1df80a3624b674ab432247289314811
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /intgrtn/api/v1/integration/sdk.js?v=120231151 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 15:00:15 GMT
Vary: Accept-Encoding
ETag: W/"63d92cff-6e943"
Expires: Thu, 01 Feb 2024 05:07:54 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: eleifend
PX-X-Request-Id: ca96f520e343f4bd33456b5098097062
PX-Cache-Status: MISS
smartmoneydealdaily.com/thebrexitmillionaire1/img/91.jpg
193.34.167.134200 OK 4.6 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/91.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 16ffc6486181967f426ecf40ac803b86
96572e178bd2e575abee2f8e6b600726ea511823
29121f863aac54e3c366829e7777dbe03a39f72fb0423a56afcca72f85000224
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/91.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-12fb"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 28fdffe40d4b83edf5cdc002f8fd0fa8
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/27.jpg
193.34.167.134200 OK 3.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/27.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash a07c723e5d4436285f9886e033f7e607
a40bd0d84963a9ddf60000bcf6f4e799daacd813
617c68a12ed850c551dc4593a0d784d2046c00933f866478b31b3c25e8be0d03
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/27.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-fd3"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 79599fee15944cec9b82b7c08ada194c
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/47.jpg
193.34.167.134200 OK 4.4 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/47.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 8d9ef2357b2f57745db096d406da98bb
a038be643aa0dfa1bb73a1f699f29ad5f5f20101
880c03bac0536c5eb4903a1dc1f5e14f25b302b89ac07711a088ff15ceb475d2
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/47.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1166"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 5bdffaa750ab410bd0665b8cc98772fd
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/member-2.png
193.34.167.134200 OK 41 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/member-2.png
IP 193.34.167.134:0
File type PNG image data, 340 x 233, 8-bit colormap, non-interlaced\012- data
Hash 4fd3f3c2114a542e0734a195f3e97d7c
770d754eec993b5b5f4c82344c6dbe68aa1215bb
627a93818fafe6f5071893858f11b467f3420b647a9f7e2b67f2cc00895678d5
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/member-2.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-9ead"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 5f0b289f23e0450d8b2e21f960bf7615
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-b@2x.png
193.34.167.134200 OK 696 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-b@2x.png
IP 193.34.167.134:0
File type PNG image data, 3840 x 1460, 8-bit/color RGBA, non-interlaced\012- data
Size 696 kB (695496 bytes)
Hash b9dca508cfd1bd37b35812d53466ee61
90e36348d5af95e39317b31bc3770b30d36bec4e
f86d920d01e27b74ff50053814e813a582c3531c25e8e5766c6d3c10a1eb0a0a
GET /thebrexitmillionaire1/img/bg-b@2x.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:54 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-b28c5"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: d5623bbb61d7258578c4da9f2bd02ac8
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/member-4.png
193.34.167.134200 OK 48 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/member-4.png
IP 193.34.167.134:0
File type PNG image data, 340 x 233, 8-bit colormap, non-interlaced\012- data
Hash 9f81b2474380deb7aad36def7d81e14b
aae40215a362818d38dbc6940d40e8bce5696817
ed8a2b0ebe05c14ef4d00c7ef452dda054d95c39cb57bee21918cbe3b9b9dddc
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/member-4.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-bc33"
X-Upstream: stavri-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 347fa28f243cb6f2a59f179e55199efc
Content-Encoding: gzip
smartmoneydealdaily.com/intgrtn/api/v1/integration/sdk.css?v=2.65.3
193.34.167.134200 OK 8.4 kB URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/integration/sdk.css?v=2.65.3
IP 193.34.167.134:0
Hash 124d518934e6c901902b305add047190
d60b00c9605eda98bb91f506d94c89066817f3f4
82e3301bbbfc5283de42c21b2587403f9aabbe08baafdd8784694b9c54fe7656
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /intgrtn/api/v1/integration/sdk.css?v=2.65.3 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:54:46 GMT
Vary: Accept-Encoding
ETag: W/"63c7ec16-141c8"
Expires: Thu, 18 Jan 2024 13:00:09 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: eleifend
PX-X-Request-Id: 1451320edd3bba2e0da687dfef0e050d
PX-Cache-Status: HIT
smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-1.png
193.34.167.134200 OK 8.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-1.png
IP 193.34.167.134:0
File type PNG image data, 255 x 261, 8-bit colormap, non-interlaced\012- data
Hash 884a3671b6abc581dc7d89c98a7b68ec
ec64b4361350e0f13986584adcbd23ef49932bc9
718fbe89e6114b0ab17e465eb0bd9c035547b7845ad8f8c84a3d4f33b534c173
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/crc-1.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-2217"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: f4e46d030ef43eee3e6d6f2c5ce6d59c
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/risc-free-icon.png
193.34.167.134200 OK 871 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/risc-free-icon.png
IP 193.34.167.134:0
File type PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 405b2dd3d01e3879201e15c7f39e6617
ca813e1b571731df3fe2620cee24eeff3b576243
338656c5d7431a1f973fc327ee485cf3a13d6611ec0e7a08447107a2dd0ac29c
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/risc-free-icon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-353"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 95391ace4139c2731341ba3c43e9e5c4
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-2.png
193.34.167.134200 OK 9.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-2.png
IP 193.34.167.134:0
File type PNG image data, 261 x 267, 8-bit colormap, non-interlaced\012- data
Hash 5c0b8aa0c7893f4fe5ea2749268d2731
5b3f4b1e82020af2f844251ce85f2b231079af4e
3ce1e417a32ea2b080734f6401beedaa377d59a4642f35883956c53b0f5a5b28
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/crc-2.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-234b"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 8daf1031d328464494cb609c617f2e59
Content-Encoding: gzip
smartmoneydealdaily.com/intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5
193.34.167.134200 OK 1.8 kB URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5
IP 193.34.167.134:0
File type JSON data\012- , ASCII text, with very long lines (4237), with no line terminators
Hash 920ba3e11d6553dc7ff93f4f9cf5766f
bce047c318ef70be1480fdd4cd0bd0bc9795735e
786536ae6c5b7469765152425d03e06a24a75a64f64f71618a0ac47cac39e03c
Analyzer Verdict Alert quad9 Sinkholed
GET /intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Type: application/json
Intgrtn-Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: eleifend
PX-X-Request-Id: a8f1c10af157de0d14bc57cfe0affad1
smartmoneydealdaily.com/thebrexitmillionaire1/img/videothumbnail.jpg
193.34.167.134200 OK 126 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/videothumbnail.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 126 kB (125886 bytes)
Hash 177a633449fee569ee50af5d49be6cc7
15ec02a805b73d8e5381caebe60ceffd1564efa2
06dbaa9d57d6f56c436150432e09e2c87029792f3573abb383055be8edae3526
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/videothumbnail.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-1f35b"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 239be3754113e083cf22c5cccbc935b4
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-4.png
193.34.167.134200 OK 8.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-4.png
IP 193.34.167.134:0
File type PNG image data, 259 x 267, 8-bit colormap, non-interlaced\012- data
Hash 9d0907d893a17877226e71869bf5efbd
c9755363006456cffe8b4e584fd7cba98de713c1
5b8ee232a18b4177c3af91126c554f53261ffd98e6e6696485b39e2ff0bc63b9
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/crc-4.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-2237"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 13d61f06b4d0e190256d1fa8e42165c4
Content-Encoding: gzip
smartmoneydealdaily.com/intgrtn/api/v1/projects/details.php?&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom5=NETWORK
193.34.167.134200 OK 6.5 kB URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/projects/details.php?&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom5=NETWORK
IP 193.34.167.134:0
File type JSON data\012- , ASCII text, with very long lines (44846), with no line terminators
Hash 1e4bce866026e149034cdcae7610f255
20037fbfd44978f04129d4f5466365093b92fa08
62b6faa8054b55941b58115ba481b8d82172ab563c1aa15ffd9f0e785d224f2f
Analyzer Verdict Alert quad9 Sinkholed
GET /intgrtn/api/v1/projects/details.php?&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&custom1=4a448fe7d08241f192d0c0d865715e571871e&custom3=124174&custom5=NETWORK HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Type: application/json
Intgrtn-Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: eleifend
PX-X-Request-Id: 299162e812f46ef39c1d463bdc29378d
smartmoneydealdaily.com/thebrexitmillionaire1/img/secure-mrk.png
193.34.167.134200 OK 3.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/secure-mrk.png
IP 193.34.167.134:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash e257abd98b69c1479cac753232925082
1d19871449fdd98971cf22e65540bb13fd428ab9
25cc4592ff19924b324bbc5fa4bd63ef28bfcc5f0b5dc2b19b3efe771c6a425c
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/secure-mrk.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-e5e"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 62007bbcd9af6bddccea97c93bda47ea
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/handshake-icon.png
193.34.167.134200 OK 1.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/handshake-icon.png
IP 193.34.167.134:0
File type PNG image data, 20 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 10bf229cc9aec8461e78bedbb55249d1
edffdfaa9da01502ef51c0030c63d2fa9ba9152d
286506826c4e4c772ee4035dc830891edb6e3a5346ec93f82efe8a136f444795
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/handshake-icon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-40b"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a8044c67ee827c4fa778e1613fa5d3c8
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/secure-icon.png
193.34.167.134200 OK 765 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/secure-icon.png
IP 193.34.167.134:0
File type PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash dd2ce9afd69f1cce305ad295291b8594
4400034714764d5cc82dc7c20b8b86a27e12f0e3
bd82bf81de47d18008f58d9017080bb2d9fc6330ca07bdc550fc3fd9455b8f73
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/secure-icon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-2f2"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a758b9eb858e094d02da4bde54f3e6b7
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-3.png
193.34.167.134200 OK 9.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/crc-3.png
IP 193.34.167.134:0
File type PNG image data, 259 x 267, 8-bit colormap, non-interlaced\012- data
Hash e084b3f77312f3aec9dc840b2be5111d
3f345a0f72a2360da60504151e8d5569a829d58f
25f8c63de2ef02bf16fcc107203bf38dafe374e59d5ba7361e54666da4a92a43
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/crc-3.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-2368"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 85ff964fcfd897cd86d363545e59576e
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/cog-icon.png
193.34.167.134200 OK 1.2 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/cog-icon.png
IP 193.34.167.134:0
File type PNG image data, 18 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 86df10c1d4bfc79d14563e1409df2258
959c3386e0fcccf58a1afccf567c1c08a6d2144a
2e096a72628100d0873b90cc6263fe2930415f0eb97a46476f14a731d2cc4e24
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/cog-icon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-46c"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 110adae567c7758d11b004171d610ffe
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/cog-mrk.png
193.34.167.134200 OK 4.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/cog-mrk.png
IP 193.34.167.134:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash e22a2a6ace1ce62e0c4c76ee5979332b
4e322d0533365a2c229a61a1a5ebebbd6f9fe71e
9b02ab8635aa66e795df92f361df43f44cba6e54de13da8492525ba73100935f
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/cog-mrk.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-fe5"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 2031b32673a49525cf1db17d73e96c81
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-5-copy.png
193.34.167.134200 OK 2.5 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-5-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 009f44328d887f7e60ebbb5e8965a84c
442b1b8621ed54486b9012f9092b8c07b33d963d
ce6e1955ae81ded6082c4a686b6865b388bdecbec44d700d8aa4f96560a7e8f8
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-5-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-999"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: c3be768aaa645f807793c3217f7d4b5b
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ribbon-b-2.png
193.34.167.134200 OK 15 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ribbon-b-2.png
IP 193.34.167.134:0
File type PNG image data, 592 x 165, 8-bit colormap, non-interlaced\012- data
Hash 4434d44d09690988da900b682425add4
f7b14e06209bee25df45821f18e8ead5648b360e
89d6d28bf276dd0a5179250704229cea8c480c3045ee93b85587d50ecd865b3a
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ribbon-b-2.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-3b47"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: c520a49b92c3830c0362a535898d4ce1
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/payout-icon2.svg
193.34.167.134200 OK 909 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/payout-icon2.svg
IP 193.34.167.134:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ec1f647672cdf2d976ef6b8b32b01a7f
f1c7ccbf99d20e148aa01fb43ecb9c66c57d020c
81fe345e8f3509243ca71dcf5d01a174deadcdd01aabbba6f58f34d9a5a8faaa
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /thebrexitmillionaire1/img/payout-icon2.svg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/svg+xml
Content-Length: 909
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: "636b64a9-38d"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 6274d37a2e220750c6fe1900e5835688
Accept-Ranges: bytes
smartmoneydealdaily.com/thebrexitmillionaire1/img/devices-3.png
193.34.167.134200 OK 73 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/devices-3.png
IP 193.34.167.134:0
File type PNG image data, 460 x 477, 8-bit colormap, non-interlaced\012- data
Hash 888608d55a899a5b42ea248e155292ea
3dfcc752fcc0bcab57030272e465435e6f96e2b0
b3438d8dd2f87498a2d185612370205408b7ac08d4bc66c7566d62004e344488
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/devices-3.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-11cc7"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 229bed1585469a9673a9f2fd7cee52bb
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-6-copy.png
193.34.167.134200 OK 1.9 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/ic-trust-6-copy.png
IP 193.34.167.134:0
File type PNG image data, 220 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 84fb50e29d1b1243b9c443a32e643462
ae750f3e62f787ad05a3ebe6d04e4d2dd7646937
e37f62c97d8677d50c7b9151a739e5438adabc4898f8dd4ffa8b0ed565f25f91
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/ic-trust-6-copy.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-762"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 06f7b66ebd1d200598712fbdd1e7669b
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/72.jpg
193.34.167.134200 OK 5.2 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/72.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash a1a46ab421c780bd80542845d54106b4
35af1ef64c1b6d544bdcae153058685dcc9bb466
0361013299f62e7daae8b95b5e26e09e8d34fe93c41ef1a6aa50e10d160e0693
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/72.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1460"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: abfe8a574cb5a9c6f63ce5738c3ff904
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/59.jpg
193.34.167.134200 OK 4.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/59.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 6a787cb1a0f87804fbfac325e9376455
8488953f3af664396a583273fa69cc98cb91090a
6bc40587b64e7083a99116c9c56d665ff00f1eef1ec34426a9500dcc2982e28a
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/59.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1140"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: c78672965ef1fd2b573d36115b6a915a
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/51.jpg
193.34.167.134200 OK 5.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/51.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash a5ed5e797a44de8ec39370b4e0ce8df6
9845d907f54a9e3199ea717aa9ceef7ee77f1f25
fb42cab502d3a9e9a50861aa74c3307c80a6112108fe24f121ccff49cbceba09
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/51.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-14ff"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 82113cd14b033fc6b7d9820cff565eef
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/4.jpg
193.34.167.134200 OK 6.0 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/4.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 1ce30e26a260c0d9e6fe6c997e5ba28b
e5230dd6ad4a275699c1d49384d90897853d0855
719cf9a6fad5abf49da73e4fda611ced935ad775e2cd2eabcd250293fb43c870
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/4.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-18c0"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: d38966cced5d01fd4029731f81a37a98
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/map.png
193.34.167.134200 OK 777 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/map.png
IP 193.34.167.134:0
File type PNG image data, 1180 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 777 kB (776620 bytes)
Hash 60f0255ce11523dbc9fddb7013c86597
18b2cc4c75bc804ae21cc494c362012b622c7628
c8428870a256eb4a544963868224952a8287c8d9d5050878ef46bb415f7e8737
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/map.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-bda41"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 77513a3c5068e7749d1e25e42c452b24
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/20.jpg
193.34.167.134200 OK 4.4 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/20.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 14563995c7b59c48c2c44947447a782d
bc1dcf01dc8fc7bb4a3cede7635d42aabb8c1a63
dcbe345f83975b284d236c071752b2aee73765e1fa92f94d3b070eff8bfa36c6
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/20.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1276"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: f7248d8c9c041e4d033942363245e46e
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/8.jpg
193.34.167.134200 OK 5.5 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/8.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 475e8a84095f0f64ff2343c8459e093d
577ad98e0dc8ff14e2e5910c9594a73269a72eb1
cc4a5e4fa2cd22e59a817e5c09c98d1669ac5c39d4d6d878f7836c8528a4a378
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/8.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-16b2"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: aad3971b7198010fad241f611a125e60
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/14.jpg
193.34.167.134200 OK 6.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/14.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 40f62f82c3776d3940089e4967bda2a9
9620dffa475006d1e18b163d4deaa4f96cd54655
33790aa517035680955cb076e7c980ad2e66246fe847efb161a8945e12c58983
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/14.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1a55"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 64f186c97c1f7b3d077f7998a1315a87
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/11.jpg
193.34.167.134200 OK 5.4 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/11.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash d5e5f4383ce1b12d2535e5fd85419ebe
0fcba3db5272253896095b88fcac9de365d83f46
c760791ed08dc982d06938f4227d9b3209d120936e4454f6871c6745ad38bfd5
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/11.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1660"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: bb81146b20579dae86f1f3bc7bf60600
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/71.jpg
193.34.167.134200 OK 6.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/71.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash de6063884b33c3fc731ac291b3f7af46
2e2ecd46bd6a5e6cdb56f67160333815804f9379
37b9b459783d0934cfaf5bbb2a51d8890662ca4b793703364d5dbb3bb3539077
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/71.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1a71"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 93b7ca8c7649946839089bef37ef8317
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/22.jpg
193.34.167.134200 OK 4.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/22.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash d3667433dfe7a50b459cc321a683bb9d
4a70171bd0d9772491a86b2ff69c85adf004ab35
140d82befaa45ab6040f187c0bd26ecc85c92b50767d4b430245643b33ac07ac
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/22.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1290"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: ccb65b166e53d84642144c3fd6da4416
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/68.jpg
193.34.167.134200 OK 6.7 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/68.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash b404230e6f4dd321977e4cd02b992942
7bbbfa073a8d1dfe3979d599405f5c41043f84ca
a01d45bf76d2f2e071d6bc0f135719f2d58067a59b80acc3166fd3111ab46f0d
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/68.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-1b24"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: a8476f3fcd4313ee7a5415b5a781b8fc
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/46.jpg
193.34.167.134200 OK 4.5 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/46.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash ccd761b7665908e1714b5e144e855470
b5b202d7c7fe50df4eb16dda2e568277ecdec63d
4fbb53d0a85e4d41d979c01744a53015d9bb8180f0a55ddfacb0534eafec68c2
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/46.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-12d8"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 7e29ba38c45fc793ece963a701902054
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/40.jpg
193.34.167.134200 OK 4.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/40.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 78cfed2aeb3617ec04d13e9be3fd7133
d68d975b407475eb0471684c988cbf5c0e6266d1
e565ddd60f306e1f5019f72058cf7ac60353e45aeae30cc4680e7ee3ea4b4479
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/40.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:24 GMT
ETag: W/"636b64a8-115a"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 070bd0ff50d0ad2d6c294d3665ab63e1
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/77.jpg
193.34.167.134200 OK 4.1 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/77.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 3f85aaabb05b9610d7db18a2c37711e3
72be8b301562fa6b59d48b1febcea9284654a372
2f0650844ff2269aaa05c79e65bbda0ccd417f19c1f13b6dbdda38ee54219103
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/77.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-ff2"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 783f11172b32dab1b31491ad4befb830
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/98.jpg
193.34.167.134200 OK 4.8 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/98.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 6a177842a07a7295c5c7f2d35a167d83
06994e7eff8f8f8d5bad887e865c124edecdc54d
3e43d9755a79df56d9514535fa90474e264d33ad26e12090218fe237e9908a3a
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/98.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-13dc"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: d2fdbfae177db8fd433220e81d7cd1fd
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/78.jpg
193.34.167.134200 OK 4.3 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/78.jpg
IP 193.34.167.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash aae717c791f2aacdd8c52d114ee8badc
7f1a03ebfc706699f2374814bfa88158d2c7508d
25f41bb7c874677772e4d9b48f35cd6311ffcb5eeebb539864416a556f962922
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/78.jpg HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-1223"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 038612bf8f90c82d13361cb63210ea8a
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/map-mobi.png
193.34.167.134200 OK 39 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/map-mobi.png
IP 193.34.167.134:0
File type PNG image data, 290 x 390, 8-bit colormap, non-interlaced\012- data
Hash 6c20c5c44e042805e479a847a2e7e2bd
f87f4751089d224433e5d14d4c498050535a1071
bc0e1907a5697cf16489700ef2930755f4ac3adc5e1a9fc0bf15a03aa1ef1090
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/map-mobi.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:57 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-9766"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: c5c506fd52f843cda6f8bd3c0e685b32
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/favicon.png
193.34.167.134200 OK 2.6 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/favicon.png
IP 193.34.167.134:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 71f8b3db0aae9336cec37bdcf7897907
de5988eb8e246f133d05f4dc6c180cfbffc8d6f3
671bee351a30bd4d72b16596ed72a2c1d6dc58ff0c4b780e66e671a551a5edce
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/favicon.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Cookie: intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5; intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e; intgrtn_custom3=124174; intgrtn_custom5=NETWORK; intgrtn_redirectReturningLead=auto; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:57 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-aea"
X-Upstream: stavri-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: bba8c33879fab1851f1a11fa7ca41d96
Content-Encoding: gzip
smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-d.png
193.34.167.134200 OK 539 kB URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-d.png
IP 193.34.167.134:0
File type PNG image data, 1920 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size 539 kB (539203 bytes)
Hash c0bc2f8db9160efb15c13e4fa1012873
1025c6eadf7e6c1119921b383ea9bbf88c1d01f8
def0844bb24ed98921c28ff7991edea1f11e167f7e352e623206e0cb7bb1c623
Analyzer Verdict Alert quad9 Sinkholed
GET /thebrexitmillionaire1/img/bg-d.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-839a8"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 182801e3a93f7baad53749a26a6d5960
Content-Encoding: gzip
smartmoneydealdaily.com/intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5
193.34.167.134200 OK 1.8 kB URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5
IP 193.34.167.134:0
File type JSON data\012- , ASCII text, with very long lines (4237), with no line terminators
Hash 84dd51a168a2f4f66546d70cc49fe948
23d0b6cc375bed7a203ee9e4e1d5ac0585033dc8
6512a1f0402280271e4e87b79af46547d12ddf66005ee7ad19a614bcc3913d32
Analyzer Verdict Alert quad9 Sinkholed
GET /intgrtn/api/v1/projects/agreements.php?type=4&clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5 HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Type: application/json
Intgrtn-Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: eleifend
PX-X-Request-Id: 6b94432d7ce985bd761072e88275e91d
smartmoneydealdaily.com/intgrtn/api/v1/events/add.php
193.34.167.134200 OK 160 B URL HTTP/1.1 smartmoneydealdaily.com/intgrtn/api/v1/events/add.php
IP 193.34.167.134:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 759bfbbce11bbde8f9ba1881ead6d803
5976e70b82d01c897f968e579b6760415caa3f90
cff66d413edffe081d8fb70dbf8ff55129e3607a11e4e2a4c5ff52ea7c2726fa
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /intgrtn/api/v1/events/add.php HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Type: application/json
Intgrtn-Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/?intgrtn_clickID=qAPO2E4gxQ1ZzR7bBj3lwv22z9jawnkMdLVJGryv09eDpYWm5&intgrtn_custom1=4a448fe7d08241f192d0c0d865715e571871e&intgrtn_custom3=124174&intgrtn_custom5=NETWORK&country=NO&intgrtn_redirectReturningLead=auto
Content-Length: 92
Origin: https://smartmoneydealdaily.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://smartmoneydealdaily.com
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: eleifend
PX-X-Request-Id: f90b26dcc33669f1b56bb194457650a2
smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-c@2x.png
193.34.167.134200 OK 0 B URL HTTP/1.1 smartmoneydealdaily.com/thebrexitmillionaire1/img/bg-c@2x.png
IP 193.34.167.134:0
GET /thebrexitmillionaire1/img/bg-c@2x.png HTTP/1.1
Host: smartmoneydealdaily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smartmoneydealdaily.com/thebrexitmillionaire1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 05:07:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 08:28:25 GMT
ETag: W/"636b64a9-4cc230"
X-Upstream: stavri-***ko
PX-Cache-Status: STALE
X-Server: eleifend
PX-X-Request-Id: 6744622b52e71edd09a76631eb241f92
Content-Encoding: gzip