urlquery - report: 44.winprizes544.digital/myaff2icu/index.php?city=Mountain%20View&brand=Desktop&model=Desktop&browser=Chrome&cep=e3En-q-W9rB_hd8CYXvIZSMBaQ9T5IF4uTzn6W-5yyTEv3BjL3J9g8CYJQH-CuWyYMJbXCNFoe_IoOpytk7_3cUUnwobWd591JelKIWVL5TNvXpcSSvGhdrzdjHHmc4UFFo3gjZ9OLuZR5oJQW-qwOAIgNTZOWaxfRXoPj8qtjAKVPc8BRvQ6uF17RASbaz7pot4u7MWW7xge5sfuEcfFdX4jZ1c-IGG6WQSCfTKOWRpvDcGDPEgR3S-QhgUtcRcwXPcH6W7eFOtPzVTV-L3K_wXCPmt-nL6_xhm6mITxvcZzfrp3sHjU6syzLSPLdPSvwmFum-Q8VSGoHA8u_ELH9TZ-sgzYFuHGJx5NV4hGLC2NDEZUjutOFevJoCS1V2Q-JnU6b7c7HLTSkGSoguVNQ_7WlsQc-Oej8rDuP6Z1Vc&lptoken=16ff691a103118ee387e

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-21 05:36:45 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
44.winprizes544.digital (24)	0	No data	No data	45.76.148.82	Unknown ranking
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-21 05:38:14 UTC	34.117.237.239
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	52.41.201.177
img-getpocket.cdn.mozilla.net (7)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
r3.o.lencr.org (5)	344	No data	No data	23.36.77.32

Date	UQ / IDS / BL	URL	IP
2023-02-07 10:56:56 +0000	1 - 0 - 0	50.winprizes550.digital/myppush1/index.php?ci (...)	45.76.148.82
2023-02-07 04:35:48 +0000	0 - 0 - 1	78.winprizes678.monster/ph1/eng1ppn2.html?cit (...)	45.76.148.82
2023-02-07 03:27:57 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php?c (...)	45.76.148.82
2023-02-07 02:31:53 +0000	0 - 0 - 4	62.winprizes662.monster/eng/phengnotix4.html? (...)	45.76.148.82
2023-02-06 21:56:16 +0000	0 - 0 - 1	78.winprizes678.monster/ph1/eng1ppn2.html?cit (...)	45.76.148.82

Date	UQ / IDS / BL	URL	IP
2023-02-07 21:07:16 +0000	0 - 2 - 0	elhusseinyusmleprep.com/z02xz/w/view/login.php	144.202.87.104
2023-02-07 19:56:21 +0000	1 - 0 - 2	47.winprizes147.digital/mx2/mxwr22.html?city= (...)	217.69.14.8
2023-02-07 19:26:55 +0000	0 - 1 - 0	zagent365.zspeed-cdn.com/static/v2/among-us-t (...)	155.138.146.150
2023-02-07 15:51:59 +0000	0 - 1 - 0	zagent370.zspeed-cdn.com/static/v2/Practical- (...)	136.244.112.152
2023-02-07 15:49:18 +0000	4 - 7 - 0	mayank1099.duckdns.org/panel/28662d9.php	104.238.156.38

Date	UQ / IDS / BL	URL	IP
2023-02-07 03:27:57 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php?c (...)	45.76.148.82
2023-02-05 20:56:24 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php	45.76.148.82
2023-02-05 08:54:51 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php	45.76.148.82
2023-02-04 17:55:35 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php	45.76.148.82
2023-02-03 16:56:44 +0000	1 - 0 - 0	44.winprizes544.digital/myaff2icu/index.php?c (...)	45.76.148.82

Date	UQ / IDS / BL	URL	IP
2023-02-07 19:56:21 +0000	1 - 0 - 2	47.winprizes147.digital/mx2/mxwr22.html?city= (...)	217.69.14.8
2023-02-07 10:56:56 +0000	1 - 0 - 0	50.winprizes550.digital/myppush1/index.php?ci (...)	45.76.148.82
2023-02-07 07:53:47 +0000	1 - 0 - 2	mxsupergifts.digital/alwheelpropmx/index.html	217.69.13.14
2023-02-07 06:01:10 +0000	1 - 0 - 7	www.your-lucky-days.xyz/sweeps/iPhoneXS-EN-Sp (...)	54.230.111.40
2023-02-07 05:56:49 +0000	1 - 1 - 1	track.rendan-compto.com/9ed5687a-5907-4b78-81 (...)	18.195.128.171

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794" Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12497 Expires: Tue, 22 Nov 2022 10:22:30 GMT Date: Tue, 22 Nov 2022 06:54:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dfb72f04bd7a4410640c0543bb4bd402 Sha1: 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac Sha256: b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6508 Cache-Control: max-age=105932 Date: Tue, 22 Nov 2022 06:54:13 GMT Etag: "637b5375-1d7" Expires: Wed, 23 Nov 2022 12:19:45 GMT Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 4843de3bf95411e6aa89834def44bb86 Sha1: 1f1882351ac63fba73a22014382f69df5e02ec96 Sha256: 1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 22 Nov 2022 06:09:18 GMT cache-control: public,max-age=3600 age: 2695 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 567df7db606cf5d0871aa5bc9311b6da Sha1: 4263faac7cbab2fcaf6661911dcad5091c06be17 Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA" Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18289 Expires: Tue, 22 Nov 2022 11:59:02 GMT Date: Tue, 22 Nov 2022 06:54:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 8a6c553d89cb6fd1de4787fee2a0e0dc Sha1: b974e022ea8675c0a09f58864cc99df05b5b1241 Sha256: a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: lEvLA7N7MJ1V5Ko0K8pggoODrqIhf0Nv4xA7loVLi67ey/TE4TyxAjqjoEcCi4MLjx/zn+tc3Hc= x-amz-request-id: VVN5MTBT584PVG71 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 22 Nov 2022 06:39:27 GMT age: 886 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /myaff2icu/index.php?city=Mountain%20View&brand=Desktop&model=Desktop&browser=Chrome&cep=e3En-q-W9rB_hd8CYXvIZSMBaQ9T5IF4uTzn6W-5yyTEv3BjL3J9g8CYJQH-CuWyYMJbXCNFoe_IoOpytk7_3cUUnwobWd591JelKIWVL5TNvXpcSSvGhdrzdjHHmc4UFFo3gjZ9OLuZR5oJQW-qwOAIgNTZOWaxfRXoPj8qtjAKVPc8BRvQ6uF17RASbaz7pot4u7MWW7xge5sfuEcfFdX4jZ1c-IGG6WQSCfTKOWRpvDcGDPEgR3S-QhgUtcRcwXPcH6W7eFOtPzVTV-L3K_wXCPmt-nL6_xhm6mITxvcZzfrp3sHjU6syzLSPLdPSvwmFum-Q8VSGoHA8u_ELH9TZ-sgzYFuHGJx5NV4hGLC2NDEZUjutOFevJoCS1V2Q-JnU6b7c7HLTSkGSoguVNQ_7WlsQc-Oej8rDuP6Z1Vc&lptoken=16ff691a103118ee387e HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: 44.winprizes544.digital/myaff2icu/index.php?city=Mounta (...) FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: d3ff5d1eae2678c9058df206aa43824df462a367df845605d87df26e7583eb84 45.76.148.82 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Tue, 22 Nov 2022 06:54:13 GMT Content-Length: 979 Connection: keep-alive Location: https://44.winprizes544.digital/myaff2icu/index.php?city=Mountain%20View&brand=Desktop&model=Desktop&browser=Chrome&cep=e3En-q-W9rB_hd8CYXvIZSMBaQ9T5IF4uTzn6W-5yyTEv3BjL3J9g8CYJQH-CuWyYMJbXCNFoe_IoOpytk7_3cUUnwobWd591JelKIWVL5TNvXpcSSvGhdrzdjHHmc4UFFo3gjZ9OLuZR5oJQW-qwOAIgNTZOWaxfRXoPj8qtjAKVPc8BRvQ6uF17RASbaz7pot4u7MWW7xge5sfuEcfFdX4jZ1c-IGG6WQSCfTKOWRpvDcGDPEgR3S-QhgUtcRcwXPcH6W7eFOtPzVTV-L3K_wXCPmt-nL6_xhm6mITxvcZzfrp3sHjU6syzLSPLdPSvwmFum-Q8VSGoHA8u_ELH9TZ-sgzYFuHGJx5NV4hGLC2NDEZUjutOFevJoCS1V2Q-JnU6b7c7HLTSkGSoguVNQ_7WlsQc-Oej8rDuP6Z1Vc&lptoken=16ff691a103118ee387e --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (646) Size: 979 Md5: 28413b3c5251614d6cca2150daf4b3e4 Sha1: eaa9897ef7536dc2858f57f96c65e7eee5c62ac0 Sha256: d3ff5d1eae2678c9058df206aa43824df462a367df845605d87df26e7583eb84
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Tue, 22 Nov 2022 06:54:13 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 22 Nov 2022 06:08:53 GMT cache-control: public,max-age=3600 age: 2721 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5006 Cache-Control: max-age=99366 Date: Tue, 22 Nov 2022 06:54:14 GMT Etag: "637b3fae-1d7" Expires: Wed, 23 Nov 2022 10:30:20 GMT Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 2db0ebb9efcf3be3c92f23b61de5c065 Sha1: dd830565723f18a7944c26d24b0fb142d06a71a5 Sha256: 8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: VfDjcOEnaKStMlz9Y0b9vA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.41.201.177 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.41.201.177 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: vm0q6h4Z8eDPE5W3OJU8GQ+8uLE= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myaff2icu/pw_ix.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/pw_ix.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: cb6830f49373a35ef541e1fc3de08e4fb1a99c2c7ada98025909669b30d4b8c4 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 31191 last-modified: Mon, 25 Apr 2022 03:27:17 GMT etag: "79d7-5dd72273dd571" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data Size: 31191 Md5: 5fc015b94e8c0ea18422670e93b141ce Sha1: b578ad18a8ba581e6bb26598bc081496aaf24175 Sha256: cb6830f49373a35ef541e1fc3de08e4fb1a99c2c7ada98025909669b30d4b8c4
GET /myaff2icu/ixo.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/ixo.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: e79afff7ed20dae4001cd848396b37203f740cb03097d98a94d28e2874e743a8 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 14197 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "3775-5dd7226e5f152" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 165 x 331, 8-bit colormap, non-interlaced\012- data Size: 14197 Md5: 227549843293c6fa24a792b54248ef39 Sha1: 366312180e142c472c250d53334bec00a2634f79 Sha256: e79afff7ed20dae4001cd848396b37203f740cb03097d98a94d28e2874e743a8
GET /myaff2icu/ix-s.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/ix-s.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: f13ca6df822b46229be1c93a01180de802cc7391e98e6b349e04d41bf947a4a0 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 10582 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "2956-5dd7226e4a932" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 150 x 236, 8-bit colormap, non-interlaced\012- data Size: 10582 Md5: 77ce5723bbb951ae5b26478839f9f57e Sha1: a8748fea07c30d85a69ebfac68fb94746c063578 Sha256: f13ca6df822b46229be1c93a01180de802cc7391e98e6b349e04d41bf947a4a0
GET /myaff2icu/ix-g.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/ix-g.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: fc97772893ff2815057089661f7cb0755dd0b1e96af7b40a9ccc644dc88dd3e2 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 10749 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "29fd-5dd7226e39f91" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 150 x 236, 8-bit colormap, non-interlaced\012- data Size: 10749 Md5: 2c1edeb88c3c4e0f13ef4dd7809e9e61 Sha1: 99c3273103fc958c99ee9da9900ea78ea1fc517d Sha256: fc97772893ff2815057089661f7cb0755dd0b1e96af7b40a9ccc644dc88dd3e2
GET /myaff2icu/like_user_1.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/like_user_1.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 1293 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "50d-5dd7226eb8ed4" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1293 Md5: 2aa0d43e70d60d76ac4bdff139f8c7cb Sha1: d7e3433297ad90f5d99249aee29b645265c9f3eb Sha256: e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa Alerts: urlquery: - Scam / Brand infringement
GET /myaff2icu/like_user_2.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/like_user_2.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 1216 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "4c0-5dd7226eca814" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1216 Md5: f9299c2023539a8f27a6e1b12ed260e5 Sha1: 046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2 Sha256: ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd Alerts: urlquery: - Scam / Brand infringement
GET /myaff2icu/my11.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my11.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 657f339c517ce2e89a0355eb327a5532eec6b10a81fd1047c5a6b59c418f42d0 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 1017 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "3f9-5dd7226f38db7" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1017 Md5: ea5a480ce9f5175b1305da649659f3e2 Sha1: a86b6693a567918d7c7f5b69ea09bc3b54ec8b08 Sha256: 657f339c517ce2e89a0355eb327a5532eec6b10a81fd1047c5a6b59c418f42d0
GET /myaff2icu/my12.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my12.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 9c5f1c0fafd56a61ce4bbfde6b287e2fb564718c46dbd825b243060cf4554cbc 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 1358 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "54e-5dd7226f49757" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1358 Md5: e9e838da5f1f374be3b7b620917a7f57 Sha1: d0157bfc45aa1e2f291f7d9b12bff3000b86a112 Sha256: 9c5f1c0fafd56a61ce4bbfde6b287e2fb564718c46dbd825b243060cf4554cbc
GET /myaff2icu/my13.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my13.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: c8b5d9b1f95245213a1f0553ccae1140bf3b9b92ae2d6fffddfca138a1d0f8b4 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT content-length: 1241 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "4d9-5dd7226f5c038" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1241 Md5: 57a0ced58ec3b95e82a5969855badac2 Sha1: f180e3047a27ca9bec7b846ce96b273ac176f6b4 Sha256: c8b5d9b1f95245213a1f0553ccae1140bf3b9b92ae2d6fffddfca138a1d0f8b4
GET /myaff2icu/my14.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my14.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: fb8f60166e74367aea6c8205674026cb92ec1744ea1c35f3acdefc6baf8439ca 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 1559 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "617-5dd7226f6d978" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1559 Md5: 7c7142d86dc211731e3c15572ea85536 Sha1: 26b6f5a9011df0a33eebdb46e6ee49600aad2190 Sha256: fb8f60166e74367aea6c8205674026cb92ec1744ea1c35f3acdefc6baf8439ca
GET /myaff2icu/my17.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my17.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: b2211d80393499fd96a561cbc3695f1a1d7fb40ce0c7173ff6e7ea935ce86795 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 1101 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "44d-5dd7226f90bf9" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1101 Md5: f8d880b363c37e2c67f0ef180818a4e7 Sha1: 0eba8f1c533a4446dd2bb3736ef8e880ddfb7843 Sha256: b2211d80393499fd96a561cbc3695f1a1d7fb40ce0c7173ff6e7ea935ce86795
GET /myaff2icu/my16.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my16.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 934c8f2afaa9559ea4ec3da4e070be3bf8e894f6deb8e20413bd8ccd21b8fd03 45.76.148.82 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 1042 last-modified: Mon, 25 Apr 2022 03:27:13 GMT etag: "412-5dd7226f80258" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1042 Md5: 09e160b7e8738af97bdb5eeffad18d72 Sha1: ced1302eb83edd6cd4fa5485198060d8a8a9abe6 Sha256: 934c8f2afaa9559ea4ec3da4e070be3bf8e894f6deb8e20413bd8ccd21b8fd03
GET /myaff2icu/clip_footer_3.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/clip_footer_3.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 292ce5b88f14029a90f59f9ac004b7aeeb353b43637870ff4b19ddd0228ab4c4 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 2445 last-modified: Mon, 25 Apr 2022 03:27:10 GMT etag: "98d-5dd7226cd874a" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data Size: 2445 Md5: 0650d2120ba512d13badb739eb3bcb2f Sha1: ca501dbce36ab62896b57c043b7690bfc1b7f0c3 Sha256: 292ce5b88f14029a90f59f9ac004b7aeeb353b43637870ff4b19ddd0228ab4c4
GET /myaff2icu/footer_right.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/footer_right.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 2c998982251038bfd244986e4ea22da2dbb1d3308775c775b7943d10385de59d 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 4913 last-modified: Mon, 25 Apr 2022 03:27:10 GMT etag: "1331-5dd7226d1dcab" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data Size: 4913 Md5: 0be1d52e6c9ea63928452dda6f1ea1b9 Sha1: 9686e91f67342fe625445612c6a68a7f05518331 Sha256: 2c998982251038bfd244986e4ea22da2dbb1d3308775c775b7943d10385de59d
GET /myaff2icu/menu_2x.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://44.winprizes544.digital/myaff2icu/clean.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/menu_2x.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 61958be1ad915c79ddd505bd5097d482b91f929f61771a94063f69ade75f864f 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 156 last-modified: Mon, 25 Apr 2022 03:27:12 GMT etag: "9c-5dd7226f264d6" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 40 x 36, 4-bit colormap, non-interlaced\012- data Size: 156 Md5: e25a5701095b0a1a4c35e5406960bda8 Sha1: a9fc28153d26c5e8c74b5328a5c1d78fdfb2e031 Sha256: 61958be1ad915c79ddd505bd5097d482b91f929f61771a94063f69ade75f864f
GET /myaff2icu/notify_2x.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://44.winprizes544.digital/myaff2icu/clean.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/notify_2x.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 6d5c9dd1ad7b2543ca508f505aefb1bc6b055d39bd8894b6e481f090d0113a0d 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 279 last-modified: Mon, 25 Apr 2022 03:27:17 GMT etag: "117-5dd722739418f" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 36 x 32, 8-bit colormap, non-interlaced\012- data Size: 279 Md5: 141ded45bb5d658d1582b253dda5dc01 Sha1: 1d6925385863dd534465c818495e168f0d4633b6 Sha256: 6d5c9dd1ad7b2543ca508f505aefb1bc6b055d39bd8894b6e481f090d0113a0d
GET /myaff2icu/spin_prize2.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://44.winprizes544.digital/myaff2icu/clean.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/spin_prize2.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 31a273951472fd3d9882b4e0464b1815078065127ef8eed782493a97cadd56a0 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 2902 last-modified: Mon, 25 Apr 2022 03:27:19 GMT etag: "b56-5dd722756dbb9" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data Size: 2902 Md5: dc05391b4ed8b59f3cf2400ff3996f45 Sha1: 3996c073d670e035b391b778407287db9cda3c87 Sha256: 31a273951472fd3d9882b4e0464b1815078065127ef8eed782493a97cadd56a0
GET /myaff2icu/action_icons_20px_2x.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://44.winprizes544.digital/myaff2icu/clean.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/action_icons_20px_2x.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: ffa135c7ccdaf4dbd34ca273a467c2549f9c9e3a809eb3c87af93509fb84527e 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 1688 last-modified: Mon, 25 Apr 2022 03:27:10 GMT etag: "698-5dd7226c8c488" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1688 Md5: 887a1513d01bb098928ae132c0dfc902 Sha1: fba2c4a40dfe89ea83e088ae0577949af6765927 Sha256: ffa135c7ccdaf4dbd34ca273a467c2549f9c9e3a809eb3c87af93509fb84527e
GET /myaff2icu/comment_action_2x.png HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://44.winprizes544.digital/myaff2icu/clean.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/comment_action_2x.png FQDN: 44.winprizes544.digital IP: 45.76.148.82 HASH: 8f7e6c0300920a8d8847859adc639417386f837bc0a458436768d4207dc259cc 45.76.148.82 HTTP/2 200 OK content-type: image/png server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT content-length: 637 last-modified: Mon, 25 Apr 2022 03:27:10 GMT etag: "27d-5dd7226cfaa2a" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data Size: 637 Md5: 4012bda46485e716c4341cef9c214c17 Sha1: 0a021ad69b618cc6baf618a305ba37f2b40a4da7 Sha256: 8f7e6c0300920a8d8847859adc639417386f837bc0a458436768d4207dc259cc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4" Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12803 Expires: Tue, 22 Nov 2022 10:27:38 GMT Date: Tue, 22 Nov 2022 06:54:15 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 611d1eca860866489908506a26bd6a2a Sha1: 5e8c401f098357cd12889a6e507baf7c8a87772a Sha256: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4" Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12803 Expires: Tue, 22 Nov 2022 10:27:38 GMT Date: Tue, 22 Nov 2022 06:54:15 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 611d1eca860866489908506a26bd6a2a Sha1: 5e8c401f098357cd12889a6e507baf7c8a87772a Sha256: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4" Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12803 Expires: Tue, 22 Nov 2022 10:27:38 GMT Date: Tue, 22 Nov 2022 06:54:15 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 611d1eca860866489908506a26bd6a2a Sha1: 5e8c401f098357cd12889a6e507baf7c8a87772a Sha256: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4309 x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b1U8xGxgIAMF-qQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0 x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google date: Tue, 22 Nov 2022 04:39:13 GMT age: 8102 etag: "126771b86638108050cf57c0d12faa27f80f0edb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4309 Md5: 841a4b110022a99ddea6f7bf66df0fa1 Sha1: 126771b86638108050cf57c0d12faa27f80f0edb Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4639 x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6oELooAMFWFw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Z_LKFsiB_s81UenxBOVg9_qX_7vBHUZix7XF8YguDCytRn5opLkLRA== via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:01:10 GMT age: 31985 etag: "12e2654db1f384bb04f5c5042848b25dda86b710" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4639 Md5: dafd9e17dc0023e71ae513c6025e4b80 Sha1: 12e2654db1f384bb04f5c5042848b25dda86b710 Sha256: e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f1cc4c2d990689b2482c9817191fd1367a64aec5be46f8a074296d235acca341 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11307 x-amzn-requestid: e9ae5ce5-6e07-4deb-843b-ea49fc889d2c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6oHvoIAMF8qQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-0dcf9a735bcbd51d0acdb0bf;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 9ALy1URrdbmYHJ5eDJ1-ZICYERTYbJ5YU6Krg2eIDBTaMLqaA3WDIw== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:02:56 GMT etag: "4c51df26158581b7db7a1dd4a8b44013e1b5493c" age: 31879 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11307 Md5: fd91c051d71cf4d0a1436e4f371cd958 Sha1: 4c51df26158581b7db7a1dd4a8b44013e1b5493c Sha256: f1cc4c2d990689b2482c9817191fd1367a64aec5be46f8a074296d235acca341
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8685 x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-IrAHwKoAMFUHQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:02:46 GMT etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef" age: 31889 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8685 Md5: 2ed6b76d15fc8d6295acdb6fb47461d3 Sha1: b8c928f93a8d82b48491448d811a95ad99dc6aef Sha256: de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11088 x-amzn-requestid: 3a42e1ee-d63c-4a40-8122-22ea5775bd5d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6nFpMoAMF3gg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-01b48ea07786649b466b9b29;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: rQM8prt2Kwp-ND1TCSfMqn8YPIr19TZ_AxHla2UydDx9bBFxO5ddww== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 21:44:52 GMT age: 32963 etag: "c09ea0df36485d017a0fea2c992f5a5676d42d7c" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11088 Md5: 3675a1c1e9e3bfc3d16d71644b4c7ab1 Sha1: c09ea0df36485d017a0fea2c992f5a5676d42d7c Sha256: 6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f7c6319-e9a0-4736-90e8-07c1f2948417.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 46bbf30736f0b5df73bd8b4ecd668b4a9ddb978715e84351f7584eb3ea335dee 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11657 x-amzn-requestid: 381b1e9e-6857-4614-a66a-d746cd713edd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6oG1xIAMFf5w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-2b5204975c9ea4c60f81ee05;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vpLhU9FlKFStDh_NXAwnj82zdqpGLW7nxOWkYgSv8N-ZZf3TIrYwQQ== via: 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:12:16 GMT age: 31319 etag: "0dbf1014e9fed8175c4aa8ca17a52ae96a9b342f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11657 Md5: 5bea2f745ca4672047f47dcc4c805c37 Sha1: 0dbf1014e9fed8175c4aa8ca17a52ae96a9b342f Sha256: 46bbf30736f0b5df73bd8b4ecd668b4a9ddb978715e84351f7584eb3ea335dee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: eeab74cba5a5a12453a831f9d7e002999c6752576f8a2f31a7040158a7f57bee 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11343 x-amzn-requestid: 5af18795-3668-4174-a2cf-47a020d665f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6pEjEIAMF3pg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-26f7d1cd340cb8ab3ab6c81b;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Agcwvavv8A4OPGPxIBmI5UGmA_i8SARRmMCVA4zvXmVIPLycE-m6lQ== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:36:11 GMT age: 29891 etag: "a4b04d0296539fa5063b1f464d2c461be37491a5" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11343 Md5: 296559cb68d1f42b8b9e5d5e5a8167bc Sha1: a4b04d0296539fa5063b1f464d2c461be37491a5 Sha256: eeab74cba5a5a12453a831f9d7e002999c6752576f8a2f31a7040158a7f57bee
GET /myaff2icu/index.php?city=Mountain%20View&brand=Desktop&model=Desktop&browser=Chrome&cep=e3En-q-W9rB_hd8CYXvIZSMBaQ9T5IF4uTzn6W-5yyTEv3BjL3J9g8CYJQH-CuWyYMJbXCNFoe_IoOpytk7_3cUUnwobWd591JelKIWVL5TNvXpcSSvGhdrzdjHHmc4UFFo3gjZ9OLuZR5oJQW-qwOAIgNTZOWaxfRXoPj8qtjAKVPc8BRvQ6uF17RASbaz7pot4u7MWW7xge5sfuEcfFdX4jZ1c-IGG6WQSCfTKOWRpvDcGDPEgR3S-QhgUtcRcwXPcH6W7eFOtPzVTV-L3K_wXCPmt-nL6_xhm6mITxvcZzfrp3sHjU6syzLSPLdPSvwmFum-Q8VSGoHA8u_ELH9TZ-sgzYFuHGJx5NV4hGLC2NDEZUjutOFevJoCS1V2Q-JnU6b7c7HLTSkGSoguVNQ_7WlsQc-Oej8rDuP6Z1Vc&lptoken=16ff691a103118ee387e HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: 44.winprizes544.digital/myaff2icu/index.php?city=Mounta (...) FQDN: 44.winprizes544.digital IP: 45.76.148.82 45.76.148.82 HTTP/2 200 OK content-type: text/html; charset=UTF-8 server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /myaff2icu/clean.css HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/clean.css FQDN: 44.winprizes544.digital IP: 45.76.148.82 45.76.148.82 HTTP/2 200 OK content-type: text/css server: nginx date: Tue, 22 Nov 2022 06:54:14 GMT vary: Accept-Encoding last-modified: Mon, 25 Apr 2022 03:27:10 GMT etag: W/"2b87-5dd7226cd77aa" content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /myaff2icu/my15.jpg HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/myaff2icu/my15.jpg FQDN: 44.winprizes544.digital IP: 45.76.148.82 45.76.148.82 HTTP/2 404 Not Found content-type: text/html; charset=iso-8859-1 server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /favicon.ico HTTP/1.1 Host: 44.winprizes544.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: 44.winprizes544.digital/favicon.ico FQDN: 44.winprizes544.digital IP: 45.76.148.82 45.76.148.82 HTTP/2 404 Not Found content-type: text/html; charset=iso-8859-1 server: nginx date: Tue, 22 Nov 2022 06:54:15 GMT vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794" 

                                        
                                            
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=12497 

                                        
                                            
Expires: Tue, 22 Nov 2022 10:22:30 GMT 

                                        
                                            
Date: Tue, 22 Nov 2022 06:54:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    dfb72f04bd7a4410640c0543bb4bd402

                                                Sha1:   7c63b7e220b337b6a4f39864e11d6aa9e26c38ac

                                                Sha256: b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 22 Nov 2022 06:09:18 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2695 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    567df7db606cf5d0871aa5bc9311b6da

                                                Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17

                                                Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream

                                        

                                        
                                            
x-amz-id-2: lEvLA7N7MJ1V5Ko0K8pggoODrqIhf0Nv4xA7loVLi67ey/TE4TyxAjqjoEcCi4MLjx/zn+tc3Hc= 

                                        
                                            
x-amz-request-id: VVN5MTBT584PVG71 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 22 Nov 2022 06:39:27 GMT 

                                        
                                            
age: 886 

                                        
                                            
last-modified: Thu, 10 Nov 2022 09:21:27 GMT 

                                        
                                            
etag: "9ebddc2b260d081ebbefee47c037cb28" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    9ebddc2b260d081ebbefee47c037cb28

                                                Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39

                                                Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:13 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5006 

                                        
                                            
Cache-Control: max-age=99366 

                                        
                                            
Date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
Etag: "637b3fae-1d7" 

                                        
                                            
Expires: Wed, 23 Nov 2022 10:30:20 GMT 

                                        
                                            
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT 

                                        
                                            
Server: ECS (ska/F71C) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    2db0ebb9efcf3be3c92f23b61de5c065

                                                Sha1:   dd830565723f18a7944c26d24b0fb142d06a71a5

                                                Sha256: 8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb

                                        
                                            GET /myaff2icu/pw_ix.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
content-length: 31191 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:17 GMT 

                                        
                                            
etag: "79d7-5dd72273dd571" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data

                                                Size:   31191

                                                Md5:    5fc015b94e8c0ea18422670e93b141ce

                                                Sha1:   b578ad18a8ba581e6bb26598bc081496aaf24175

                                                Sha256: cb6830f49373a35ef541e1fc3de08e4fb1a99c2c7ada98025909669b30d4b8c4

                                        
                                            GET /myaff2icu/ix-s.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
content-length: 10582 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:12 GMT 

                                        
                                            
etag: "2956-5dd7226e4a932" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 150 x 236, 8-bit colormap, non-interlaced\012- data

                                                Size:   10582

                                                Md5:    77ce5723bbb951ae5b26478839f9f57e

                                                Sha1:   a8748fea07c30d85a69ebfac68fb94746c063578

                                                Sha256: f13ca6df822b46229be1c93a01180de802cc7391e98e6b349e04d41bf947a4a0

                                        
                                            GET /myaff2icu/my11.jpg HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
content-length: 1017 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:13 GMT 

                                        
                                            
etag: "3f9-5dd7226f38db7" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1017

                                                Md5:    ea5a480ce9f5175b1305da649659f3e2

                                                Sha1:   a86b6693a567918d7c7f5b69ea09bc3b54ec8b08

                                                Sha256: 657f339c517ce2e89a0355eb327a5532eec6b10a81fd1047c5a6b59c418f42d0

                                        
                                            GET /myaff2icu/my13.jpg HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
content-length: 1241 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:13 GMT 

                                        
                                            
etag: "4d9-5dd7226f5c038" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1241

                                                Md5:    57a0ced58ec3b95e82a5969855badac2

                                                Sha1:   f180e3047a27ca9bec7b846ce96b273ac176f6b4

                                                Sha256: c8b5d9b1f95245213a1f0553ccae1140bf3b9b92ae2d6fffddfca138a1d0f8b4

                                        
                                            GET /myaff2icu/my17.jpg HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
content-length: 1101 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:13 GMT 

                                        
                                            
etag: "44d-5dd7226f90bf9" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1101

                                                Md5:    f8d880b363c37e2c67f0ef180818a4e7

                                                Sha1:   0eba8f1c533a4446dd2bb3736ef8e880ddfb7843

                                                Sha256: b2211d80393499fd96a561cbc3695f1a1d7fb40ce0c7173ff6e7ea935ce86795

                                        
                                            GET /myaff2icu/clip_footer_3.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
content-length: 2445 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:10 GMT 

                                        
                                            
etag: "98d-5dd7226cd874a" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data

                                                Size:   2445

                                                Md5:    0650d2120ba512d13badb739eb3bcb2f

                                                Sha1:   ca501dbce36ab62896b57c043b7690bfc1b7f0c3

                                                Sha256: 292ce5b88f14029a90f59f9ac004b7aeeb353b43637870ff4b19ddd0228ab4c4

                                        
                                            GET /myaff2icu/menu_2x.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://44.winprizes544.digital/myaff2icu/clean.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
content-length: 156 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:12 GMT 

                                        
                                            
etag: "9c-5dd7226f264d6" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 40 x 36, 4-bit colormap, non-interlaced\012- data

                                                Size:   156

                                                Md5:    e25a5701095b0a1a4c35e5406960bda8

                                                Sha1:   a9fc28153d26c5e8c74b5328a5c1d78fdfb2e031

                                                Sha256: 61958be1ad915c79ddd505bd5097d482b91f929f61771a94063f69ade75f864f

                                        
                                            GET /myaff2icu/spin_prize2.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://44.winprizes544.digital/myaff2icu/clean.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
content-length: 2902 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:19 GMT 

                                        
                                            
etag: "b56-5dd722756dbb9" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data

                                                Size:   2902

                                                Md5:    dc05391b4ed8b59f3cf2400ff3996f45

                                                Sha1:   3996c073d670e035b391b778407287db9cda3c87

                                                Sha256: 31a273951472fd3d9882b4e0464b1815078065127ef8eed782493a97cadd56a0

                                        
                                            GET /myaff2icu/comment_action_2x.png HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://44.winprizes544.digital/myaff2icu/clean.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
content-length: 637 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:10 GMT 

                                        
                                            
etag: "27d-5dd7226cfaa2a" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data

                                                Size:   637

                                                Md5:    4012bda46485e716c4341cef9c214c17

                                                Sha1:   0a021ad69b618cc6baf618a305ba37f2b40a4da7

                                                Sha256: 8f7e6c0300920a8d8847859adc639417386f837bc0a458436768d4207dc259cc

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4" 

                                        
                                            
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=12803 

                                        
                                            
Expires: Tue, 22 Nov 2022 10:27:38 GMT 

                                        
                                            
Date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    611d1eca860866489908506a26bd6a2a

                                                Sha1:   5e8c401f098357cd12889a6e507baf7c8a87772a

                                                Sha256: e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4309 

                                        
                                            
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: b1U8xGxgIAMF-qQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C3 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg== 

                                        
                                            
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 22 Nov 2022 04:39:13 GMT 

                                        
                                            
age: 8102 

                                        
                                            
etag: "126771b86638108050cf57c0d12faa27f80f0edb" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4309

                                                Md5:    841a4b110022a99ddea6f7bf66df0fa1

                                                Sha1:   126771b86638108050cf57c0d12faa27f80f0edb

                                                Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 11307 

                                        
                                            
x-amzn-requestid: e9ae5ce5-6e07-4deb-843b-ea49fc889d2c 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: b-I6oHvoIAMF8qQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637beeaa-0dcf9a735bcbd51d0acdb0bf;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: 9ALy1URrdbmYHJ5eDJ1-ZICYERTYbJ5YU6Krg2eIDBTaMLqaA3WDIw== 

                                        
                                            
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Mon, 21 Nov 2022 22:02:56 GMT 

                                        
                                            
etag: "4c51df26158581b7db7a1dd4a8b44013e1b5493c" 

                                        
                                            
age: 31879 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11307

                                                Md5:    fd91c051d71cf4d0a1436e4f371cd958

                                                Sha1:   4c51df26158581b7db7a1dd4a8b44013e1b5493c

                                                Sha256: f1cc4c2d990689b2482c9817191fd1367a64aec5be46f8a074296d235acca341

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 11088 

                                        
                                            
x-amzn-requestid: 3a42e1ee-d63c-4a40-8122-22ea5775bd5d 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: b-I6nFpMoAMF3gg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637beeaa-01b48ea07786649b466b9b29;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: rQM8prt2Kwp-ND1TCSfMqn8YPIr19TZ_AxHla2UydDx9bBFxO5ddww== 

                                        
                                            
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Mon, 21 Nov 2022 21:44:52 GMT 

                                        
                                            
age: 32963 

                                        
                                            
etag: "c09ea0df36485d017a0fea2c992f5a5676d42d7c" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11088

                                                Md5:    3675a1c1e9e3bfc3d16d71644b4c7ab1

                                                Sha1:   c09ea0df36485d017a0fea2c992f5a5676d42d7c

                                                Sha256: 6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 11343 

                                        
                                            
x-amzn-requestid: 5af18795-3668-4174-a2cf-47a020d665f2 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: b-I6pEjEIAMF3pg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-637beeaa-26f7d1cd340cb8ab3ab6c81b;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: Agcwvavv8A4OPGPxIBmI5UGmA_i8SARRmMCVA4zvXmVIPLycE-m6lQ== 

                                        
                                            
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Mon, 21 Nov 2022 22:36:11 GMT 

                                        
                                            
age: 29891 

                                        
                                            
etag: "a4b04d0296539fa5063b1f464d2c461be37491a5" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11343

                                                Md5:    296559cb68d1f42b8b9e5d5e5a8167bc

                                                Sha1:   a4b04d0296539fa5063b1f464d2c461be37491a5

                                                Sha256: eeab74cba5a5a12453a831f9d7e002999c6752576f8a2f31a7040158a7f57bee

                                        
                                            GET /myaff2icu/clean.css HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:14 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
last-modified: Mon, 25 Apr 2022 03:27:10 GMT 

                                        
                                            
etag: W/"2b87-5dd7226cd77aa" 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: 44.winprizes544.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         45.76.148.82

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html; charset=iso-8859-1

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 22 Nov 2022 06:54:15 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	44.winprizes544.digital/myaff2icu/index.php?city=Mountain%20View&brand=Desktop&model=Desktop&browser=Chrome&cep=e3En-q-W9rB_hd8CYXvIZSMBaQ9T5IF4uTzn6W-5yyTEv3BjL3J9g8CYJQH-CuWyYMJbXCNFoe_IoOpytk7_3cUUnwobWd591JelKIWVL5TNvXpcSSvGhdrzdjHHmc4UFFo3gjZ9OLuZR5oJQW-qwOAIgNTZOWaxfRXoPj8qtjAKVPc8BRvQ6uF17RASbaz7pot4u7MWW7xge5sfuEcfFdX4jZ1c-IGG6WQSCfTKOWRpvDcGDPEgR3S-QhgUtcRcwXPcH6W7eFOtPzVTV-L3K_wXCPmt-nL6_xhm6mITxvcZzfrp3sHjU6syzLSPLdPSvwmFum-Q8VSGoHA8u_ELH9TZ-sgzYFuHGJx5NV4hGLC2NDEZUjutOFevJoCS1V2Q-JnU6b7c7HLTSkGSoguVNQ_7WlsQc-Oej8rDuP6Z1Vc&lptoken=16ff691a103118ee387e
IP	45.76.148.82 (Singapore)
ASN	#20473 AS-CHOOPA
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-22 06:54:24 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	0
urlquery alerts	4 Scam / Brand infringement Scam / Brand infringement
Tags	None

Overview

Domain Summary (8)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 45.76.148.82

Last 5 reports on ASN: AS-CHOOPA

Last 5 reports on domain: winprizes544.digital

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (13)

Executed Evals (0)

Executed Writes (7)

#1 JavaScript::Write (size: 6) - SHA256: c4ef2ec214f90032f39dddfbfe51add7ef2c79da14fb2ccf14cb4c9ad15e5c9a

#2 JavaScript::Write (size: 0) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

#3 JavaScript::Write (size: 11) - SHA256: 8709742caac9a7af1f9ec325318d264fc6662b0245b9732e6ca734967fc23f14

#4 JavaScript::Write (size: 11) - SHA256: a0ed60ffcccb029188c0fa7dd63537791f04c03f6e35201a563e9933a7f578fa

#5 JavaScript::Write (size: 11) - SHA256: 69ddef94538a320f1b41f286e1788c44c7a95cd9f4e62f8c977ef9a2d712a3e5

#6 JavaScript::Write (size: 24) - SHA256: 918769853ff1fdcef4727956f94717122c9d94837c93be29425b73f172b5b412

#7 JavaScript::Write (size: 6) - SHA256: ca1cda3ea6b683bd8dc82e3a13b5383ef615a26549d8e39e4a8a2ff6962b4527

HTTP Transactions (43)

Overview

Domain Summary (8)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 45.76.148.82

Last 5 reports on ASN: AS-CHOOPA

Last 5 reports on domain: winprizes544.digital

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (13)

Executed Evals (0)

Executed Writes (7)

#1 JavaScript::Write (size: 6) - SHA256: c4ef2ec214f90032f39dddfbfe51add7ef2c79da14fb2ccf14cb4c9ad15e5c9a

#2 JavaScript::Write (size: 0) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

#3 JavaScript::Write (size: 11) - SHA256: 8709742caac9a7af1f9ec325318d264fc6662b0245b9732e6ca734967fc23f14

#4 JavaScript::Write (size: 11) - SHA256: a0ed60ffcccb029188c0fa7dd63537791f04c03f6e35201a563e9933a7f578fa

#5 JavaScript::Write (size: 11) - SHA256: 69ddef94538a320f1b41f286e1788c44c7a95cd9f4e62f8c977ef9a2d712a3e5

#6 JavaScript::Write (size: 24) - SHA256: 918769853ff1fdcef4727956f94717122c9d94837c93be29425b73f172b5b412

#7 JavaScript::Write (size: 6) - SHA256: ca1cda3ea6b683bd8dc82e3a13b5383ef615a26549d8e39e4a8a2ff6962b4527

HTTP Transactions (43)

Network Intrusion Detection Systems