urlquery - report: track.supercosmo.xyz/22ad99f7-6b2c-4c09-8edc-100c4ee8694a

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
firefox.settings.services.mozilla.com (2)	867	2020-05-25 20:06:39 UTC	2023-02-04 17:17:03 UTC	35.241.9.150
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2023-02-04 17:13:19 UTC	34.117.237.239
brandiprize.digital (22)	0	2022-05-22 08:08:06 UTC	2023-02-05 05:13:38 UTC	217.69.13.14	Unknown ranking
deefauph.com (2)	135892	2021-03-12 13:41:43 UTC	2023-02-04 05:58:20 UTC	139.45.197.251
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2023-02-04 17:24:41 UTC	52.88.25.203
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2023-02-04 17:49:21 UTC	34.120.237.76
track.supercosmo.xyz (1)	0	2020-09-07 21:23:16 UTC	2023-02-05 04:11:37 UTC	18.192.108.151	Unknown ranking
r3.o.lencr.org (10)	344	2020-12-02 08:52:13 UTC	2023-02-04 17:12:07 UTC	23.36.76.226
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2023-02-04 17:50:33 UTC	34.160.144.191

Scan Date	Severity	Indicator	Comment
2023-02-05	2	track.supercosmo.xyz/22ad99f7-6b2c-4c09-8edc-100c4ee8694a	Phishing

Scan Date	Severity	Indicator	Comment
2023-02-05	2	deefauph.com	Sinkholed
2023-02-05	2	deefauph.com	Sinkholed

Date	UQ / IDS / BL	URL	IP
2023-03-31 21:48:00 +0000	0 - 0 - 2	a.vfgtc.com/2d2fb929-79a5-4a1c-840d-3f370da18 (...)	18.192.108.151
2023-03-31 21:18:45 +0000	0 - 0 - 4	a.vfgtc.com/288f12d5-a315-4681-8755-34efe6603 (...)	18.192.108.151
2023-03-31 20:33:39 +0000	0 - 0 - 4	a.vfgtc.com/2d2fb929-79a5-4a1c-840d-3f370da18 (...)	18.192.108.151
2023-03-31 20:13:36 +0000	0 - 0 - 5	track.supercosmo.xyz/65b11799-6945-4737-b746- (...)	18.192.108.151
2023-03-31 20:12:54 +0000	0 - 0 - 5	track.supercosmo.xyz/03564657-a464-415b-ae40- (...)	18.192.108.151

Date	UQ / IDS / BL	URL	IP
2023-03-31 22:19:44 +0000	0 - 1 - 0	c1.stylezip.info/?step_id=1&installer_id=1505 (...)	54.67.42.145
2023-03-31 22:09:49 +0000	0 - 2 - 0	intraimed-legomens.icu/fd47f288-52f8-446d-aed (...)	18.195.123.247
2023-03-31 22:09:47 +0000	0 - 2 - 0	www.moxoxom.com/c/649a7be0e4e0b367	52.19.101.114
2023-03-31 22:09:17 +0000	0 - 0 - 4	ww25.metafraudteams.com/?subid1=20230401-0908 (...)	199.59.243.223
2023-03-31 22:07:31 +0000	0 - 2 - 0	download1.rstudio.org/electron/windows/RStudi (...)	54.230.111.59

Date	UQ / IDS / BL	URL	IP
2023-03-31 20:13:36 +0000	0 - 0 - 5	track.supercosmo.xyz/65b11799-6945-4737-b746- (...)	18.192.108.151
2023-03-31 20:12:54 +0000	0 - 0 - 5	track.supercosmo.xyz/03564657-a464-415b-ae40- (...)	18.192.108.151
2023-03-31 20:02:52 +0000	0 - 0 - 11	track.supercosmo.xyz/e403511e-25fa-4edc-8945- (...)	18.192.108.151
2023-03-31 19:29:30 +0000	0 - 0 - 4	track.supercosmo.xyz/900cc86e-015f-481d-9c53- (...)	18.192.108.151
2023-03-31 19:25:37 +0000	0 - 0 - 4	track.supercosmo.xyz/19032d68-d949-4717-90ce- (...)	18.192.108.151

Date	UQ / IDS / BL	URL	IP
2023-03-31 21:36:42 +0000	1 - 0 - 9	cmoprize.digital/alwheelpropcm/index.html?bro (...)	217.69.13.14
2023-03-31 21:11:18 +0000	1 - 0 - 7	www.your-lucky-days.xyz/sweeps/iPhone14-EN-Sp (...)	143.204.55.82
2023-03-31 20:56:25 +0000	1 - 0 - 0	0.winprizes700.monster/mx2/mxwr22.html	45.76.148.82
2023-03-31 20:42:31 +0000	1 - 0 - 0	40.winprizes540.digital/en1/index.html?city=M (...)	45.76.148.82
2023-03-31 20:17:36 +0000	1 - 0 - 1	f.loyalfabulousmobi.shop/wbiwxb/i14s22/index- (...)	104.16.118.67

Request	Response
GET /22ad99f7-6b2c-4c09-8edc-100c4ee8694a HTTP/1.1 Host: track.supercosmo.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: track.supercosmo.xyz/22ad99f7-6b2c-4c09-8edc-100c4ee8694a FQDN: track.supercosmo.xyz IP: 18.192.108.151 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 18.192.108.151 HTTP/1.1 302 Server: nginx Date: Sun, 05 Feb 2023 07:58:33 GMT Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, pre-check=0, post-check=0 Expires: Thu, 01 Jan 1970 00:00:00 GMT Location: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Pragma: no-cache Set-Cookie: 22ad99f7-6b2c-4c09-8edc-100c4ee8694a-v4=6v2_XLki_pFVxfbd6AN3dIsAxMNzgESVZngiLq_HAyU; Max-Age=86400; Expires=Mon, 06-Feb-2023 07:58:33 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly cep-v4=7Ya4OlKA_VNp9N21edmgDf0r6Os936vK4ELjVP4x6pF8OKw6ruPTLuSntFrF38Q6oIPJR2P4m7xQoh1U0nxid7-f5kkVvGwpyEDRBixi1Flsez3zMwZ7_Fo-HF2rTvK8zjT9RCJGXKrMxq9ob4PO0ZHa7eCGRw7DbZeeEvHwPmLsvCVnw6hy9gurqm9s6NgagIu_NI6jqKC1HPeBcR9gknMO-Bxq2UhmSmll11-F1QGoF8dw9EZGCJp8TpAsG6_aKMU2sXHeqCVdJXZRkYFRJvRaspTsnVFyzKVENcsqococBUzIuYIOs0wb6apgmJ6Uj5ciFFRgaww2umK3OtfmssYlAMK7qTzUn9DG9S-_kcza0tpUP2KVayWbghqZ3jCru8YSrQtgVK-usuuAsbWYng; Max-Age=86400; Expires=Mon, 06-Feb-2023 07:58:33 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2369 Expires: Sun, 05 Feb 2023 08:38:03 GMT Date: Sun, 05 Feb 2023 07:58:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 81713f952b51a865ad9764cde68e3fdb Sha1: 278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a Sha256: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5825 Expires: Sun, 05 Feb 2023 09:35:39 GMT Date: Sun, 05 Feb 2023 07:58:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c21ba65e44ac95470c314e068e49a9eb Sha1: 17a13b13738993d889d4afa3d848dc63bf6eba64 Sha256: 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 05 Feb 2023 07:36:17 GMT age: 1337 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: ff250d3ef3fa45322bf05039a0122a9f Sha1: b3e7a2c383bce1bab807dbe1a03c375258b51f1d Sha256: d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13508 Expires: Sun, 05 Feb 2023 11:43:42 GMT Date: Sun, 05 Feb 2023 07:58:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb7b6b46e708ad73eaaa3c21e74569ae Sha1: 950663c025acad81556af5aa3022ecc9d55097fe Sha256: 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: HgnxkQisJMu8AbCJVJkIPQNbdk++6zpDYKRK7fQ6vnDY1LnBse+7RrswJ+Xu8PrHx1Cj6uO2Bmw= x-amz-request-id: 6HFKJ268EM7SZRVE content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 05 Feb 2023 07:53:11 GMT age: 323 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 7b922915ebf1fa3639b333f994c74f24 Sha1: 144a3f80b98fd0652d4614f24cf6cbbee40f8938 Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /alwheelpropbr/i14wheel.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/i14wheel.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: cb4e4f2e6895ba24c0ee34b0404cab1de81dfa3440b54e85a3f92e072da27b8a 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 42443 last-modified: Thu, 03 Nov 2022 01:25:50 GMT etag: "a5cb-5ec86d660e380" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 501x501, components 3\012- data Size: 42443 Md5: 96609fbcc5f804cbe893946051325dbe Sha1: 3f5a28fd0d29224836399ab8f4955c66046cd7bc Sha256: cb4e4f2e6895ba24c0ee34b0404cab1de81dfa3440b54e85a3f92e072da27b8a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a0e84ff6895d1568da0116ab97093fef6788f637698b3cef650456452481040f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A0E84FF6895D1568DA0116AB97093FEF6788F637698B3CEF650456452481040F" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=1861 Expires: Sun, 05 Feb 2023 08:29:35 GMT Date: Sun, 05 Feb 2023 07:58:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 40818de099cbba6a6f70c85dd28489c6 Sha1: a9acdbc8ea3059a378e493addaf297d41b5fc4b6 Sha256: a0e84ff6895d1568da0116ab97093fef6788f637698b3cef650456452481040f
GET /alwheelpropbr/style.css HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/style.css FQDN: brandiprize.digital IP: 217.69.13.14 HASH: cbbafd84b2d9f228e79cfd8fec4531fa6abdbfd27323b6773b22553af33dd1fe 217.69.13.14 HTTP/2 200 OK content-type: text/css server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT vary: Accept-Encoding last-modified: Sun, 09 Jan 2022 12:10:13 GMT etag: W/"3a51-5d5251a29b340" content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 3117 Md5: 99b85d67fb14279268c18e1fd8e4d61f Sha1: 5683695268a0b9c4f02cad1f54825b5721a273b4 Sha256: cbbafd84b2d9f228e79cfd8fec4531fa6abdbfd27323b6773b22553af33dd1fe
GET /alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: brandiprize.digital/alwheelpropbr/index.html?browser=Fi (...) FQDN: brandiprize.digital IP: 217.69.13.14 HASH: f8b58e0dcf4fa7b59f3bd58549fe68d74513e85c44048d94866bc37bd4590195 217.69.13.14 HTTP/2 200 OK content-type: text/html server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT vary: Accept-Encoding last-modified: Sat, 04 Feb 2023 19:07:06 GMT etag: W/"3b52-5f3e481016a80" content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size: 3876 Md5: 7f45a4b96f16677353c553320b9312bb Sha1: c93224705aeaef0d0d3633cac3017e9601b9bb4b Sha256: f8b58e0dcf4fa7b59f3bd58549fe68d74513e85c44048d94866bc37bd4590195
GET /alwheelpropbr/spin_prize2.png HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/spin_prize2.png FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c 217.69.13.14 HTTP/2 200 OK content-type: image/png server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 2814 last-modified: Sun, 09 Jan 2022 11:43:52 GMT etag: "afe-5d524bbed8e00" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data Size: 2814 Md5: f278c8d30fc51b72e0774b9ecb49214c Sha1: 03b574db82b31ee5758eb5093fda8ea25d1b00d8 Sha256: 43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c
GET /alwheelpropbr/i14phone.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/i14phone.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 0f3a2e2e7f8ab18b9513fd334f82e227911e2f0f378ddc63b8b34347f12534c6 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 561946 last-modified: Mon, 24 Oct 2022 08:15:28 GMT etag: "8931a-5ebc364eda800" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 423 x 880, 8-bit/color RGBA, non-interlaced\012- data Size: 561946 Md5: 3db6e9a86a250c13268be4a224a40333 Sha1: 63fdc9bdf962bd044cc99800e68a7c945298e05b Sha256: 0f3a2e2e7f8ab18b9513fd334f82e227911e2f0f378ddc63b8b34347f12534c6
GET /alwheelpropbr/index.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/index.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: e25ba7e0c1b7e4bb61773bd32df4cf010a0d6c65e773fcc2bdc3454edf3401c0 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 5846 last-modified: Fri, 04 Nov 2022 00:21:47 GMT etag: "16d6-5ec9a0f28bcc0" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 203x249, components 3\012- data Size: 5846 Md5: 038a492cc0a3488f0547dafc24c15838 Sha1: e49b0adb8e08131c54b71c3325b8e9cb9ce716f9 Sha256: e25ba7e0c1b7e4bb61773bd32df4cf010a0d6c65e773fcc2bdc3454edf3401c0
GET /alwheelpropbr/14.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/14.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 64b10a435c7d01c123b1ad3c5b6c2a3a66b95e0dd5601d6c6b5bcb786881beca 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 6271 last-modified: Thu, 03 Nov 2022 01:26:51 GMT etag: "187f-5ec86da03acc0" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 165x212, components 3\012- data Size: 6271 Md5: 83dea2fa1f2cff1c3c228260b4bbef9f Sha1: 069c3bb290335ec373202bd52e9b064a372acf5d Sha256: 64b10a435c7d01c123b1ad3c5b6c2a3a66b95e0dd5601d6c6b5bcb786881beca
GET /alwheelpropbr/like_user_1.jpeg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/like_user_1.jpeg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1293 last-modified: Sun, 09 Jan 2022 11:40:48 GMT etag: "50d-5d524b0f5f000" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1293 Md5: 2aa0d43e70d60d76ac4bdff139f8c7cb Sha1: d7e3433297ad90f5d99249aee29b645265c9f3eb Sha256: e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa
GET /alwheelpropbr/like_user_2.jpeg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/like_user_2.jpeg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1216 last-modified: Sun, 09 Jan 2022 11:40:54 GMT etag: "4c0-5d524b1517d80" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1216 Md5: f9299c2023539a8f27a6e1b12ed260e5 Sha1: 046baf9bcd1bbdf9d51ca63e3899ea2e7f5de0b2 Sha256: ba0c57dd9fbd100462ac62c8c8b3156caf1283d250fb56ee8ce5b0f53e575ccd
GET /alwheelpropbr/7.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/7.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 197929a3e6fab02b0b8206c2e26d0abd5001a025d92ad6c27e28c9901b87c349 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1230 last-modified: Thu, 04 Apr 2019 20:40:58 GMT etag: "4ce-585ba632f2a80" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1230 Md5: c51ee8afc6f8843e6933837d725d69b8 Sha1: 6ddf880de5ad7672865df8d4bcfd87debb170da1 Sha256: 197929a3e6fab02b0b8206c2e26d0abd5001a025d92ad6c27e28c9901b87c349
GET /alwheelpropbr/2.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/2.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 55dd21faea4588d07d7d2053cdfebfc070ad688d77ae35778958dd7ea67afb94 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1509 last-modified: Thu, 04 Apr 2019 20:40:56 GMT etag: "5e5-585ba6310a600" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1509 Md5: ea6bb89a3f8ffdee99ee75e562dee26c Sha1: 08ae7020d581abe65b055f308700c1b51eafba66 Sha256: 55dd21faea4588d07d7d2053cdfebfc070ad688d77ae35778958dd7ea67afb94
GET /alwheelpropbr/3.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/3.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 9f68e285f55898bd6281d9ae689a94009cabce2ee32c3f3a50faf996d30d2875 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1383 last-modified: Thu, 04 Apr 2019 20:41:00 GMT etag: "567-585ba634daf00" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1383 Md5: c669cf5ed47f8e3f1aec584647a42b69 Sha1: f47b9c4a715e99cf4b3a58a85a83afa5e0678714 Sha256: 9f68e285f55898bd6281d9ae689a94009cabce2ee32c3f3a50faf996d30d2875
GET /alwheelpropbr/4.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/4.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 827b4cb864619782688afbf6cb21686e50e9e73bdcd044cde4a290c3f2cfd8e3 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1284 last-modified: Thu, 04 Apr 2019 20:40:58 GMT etag: "504-585ba632f2a80" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1284 Md5: 22716c80dffa6ec4a3ea6aa09673d5b9 Sha1: 9403046d7b9acc1c3606531fbb26469c613c611b Sha256: 827b4cb864619782688afbf6cb21686e50e9e73bdcd044cde4a290c3f2cfd8e3
GET /alwheelpropbr/6.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/6.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 151581da1048854193836639dc9da00da9eb437da73ba641384c71d03acbcaa0 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1420 last-modified: Thu, 04 Apr 2019 20:40:58 GMT etag: "58c-585ba632f2a80" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1420 Md5: 1836e5649d602b3a61b0ee4759991b61 Sha1: bfce6061772d6cfae5e104459953ebf3e146c73b Sha256: 151581da1048854193836639dc9da00da9eb437da73ba641384c71d03acbcaa0
GET /alwheelpropbr/1.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/1.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: eb07f424f516e05ca96883089c20b98393fd2d829c6b042fd52518623b217e78 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1582 last-modified: Thu, 04 Apr 2019 20:40:58 GMT etag: "62e-585ba632f2a80" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1582 Md5: 49d41609783f175121df9f9492108e3b Sha1: 668648350e8523e5cda1a51430cdf64d8c711330 Sha256: eb07f424f516e05ca96883089c20b98393fd2d829c6b042fd52518623b217e78
GET /alwheelpropbr/8.jpg HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/8.jpg FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 2fac6fd68117a212b4ae2529048a68ac4aee6c85bbb1d8bf1c068f66982531a6 217.69.13.14 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1443 last-modified: Thu, 04 Apr 2019 20:40:56 GMT etag: "5a3-585ba6310a600" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data Size: 1443 Md5: 6df8fdfbc3a1d631bacdb6555f92ee99 Sha1: 0594e276827b2f3f4bf9d6fc7d876014bcb8396b Sha256: 2fac6fd68117a212b4ae2529048a68ac4aee6c85bbb1d8bf1c068f66982531a6
GET /alwheelpropbr/clip_footer_3.png HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/clip_footer_3.png FQDN: brandiprize.digital IP: 217.69.13.14 HASH: ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f 217.69.13.14 HTTP/2 200 OK content-type: image/png server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 2460 last-modified: Sun, 09 Jan 2022 11:56:02 GMT etag: "99c-5d524e7707880" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data Size: 2460 Md5: e1b626392882cc25b4d891afaa68afd4 Sha1: 454d7abdbc2548d04feb95436ea0ab4126b4f00b Sha256: ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
GET /alwheelpropbr/footer_right.png HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/footer_right.png FQDN: brandiprize.digital IP: 217.69.13.14 HASH: f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5 217.69.13.14 HTTP/2 200 OK content-type: image/png server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 4919 last-modified: Sun, 09 Jan 2022 11:55:53 GMT etag: "1337-5d524e6e72440" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data Size: 4919 Md5: 0e786b7344ac0b63609290a3a415fc4f Sha1: c2e77827e895aaa13522f1c5c0ef79d4caef0bb2 Sha256: f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5
GET /alwheelpropbr/action_icons_20px_2x.png HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/action_icons_20px_2x.png FQDN: brandiprize.digital IP: 217.69.13.14 HASH: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e 217.69.13.14 HTTP/2 200 OK content-type: image/png server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 1726 last-modified: Sun, 09 Jan 2022 11:59:28 GMT etag: "6be-5d524f3b7c800" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data Size: 1726 Md5: b699975b5fe73b087e711a33ff24ee1e Sha1: 0e33cc5c32a5e7d18440751e3946076664caaf53 Sha256: 4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /alwheelpropbr/comment_action_2x.png HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/comment_action_2x.png FQDN: brandiprize.digital IP: 217.69.13.14 HASH: a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5 217.69.13.14 HTTP/2 200 OK content-type: image/png server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 641 last-modified: Sun, 09 Jan 2022 11:59:18 GMT etag: "281-5d524f31f3180" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data Size: 641 Md5: e9b3872b3e63e19728176d45f0aa6986 Sha1: b638f89d5d80c4cd65327da973c52f778e30bd55 Sha256: a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
POST /zone?&pub=0&zone_id=5545814&is_mobile=false&domain=brandiprize.digital&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1 Host: deefauph.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://brandiprize.digital Connection: keep-alive Referer: https://brandiprize.digital/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers	URL: deefauph.com/zone?&pub=0&zone_id=5545814&is_mobile=fals (...) FQDN: deefauph.com IP: 139.45.197.251 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.251 HTTP/2 200 OK server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT content-length: 0 x-trace-id: c8e0408fca07f5abf1882b3e5c6d8be5 access-control-allow-origin: https://brandiprize.digital access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept strict-transport-security: max-age=1 x-content-type-options: nosniff X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 05 Feb 2023 07:49:07 GMT age: 568 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2771 Expires: Sun, 05 Feb 2023 08:44:46 GMT Date: Sun, 05 Feb 2023 07:58:35 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dedf9c519ac38c4bece9c5bc895787d7 Sha1: 4911175c3f8a435978c5301c33c7a99a5e00a1d5 Sha256: bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: cPHd4F/mCuZQ8TyXA7O4Zg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.88.25.203 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.88.25.203 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: s2zVyApThRcPREewfYVTh45+A8U= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7831 Expires: Sun, 05 Feb 2023 10:09:07 GMT Date: Sun, 05 Feb 2023 07:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1b25bf82638deaab60981e1315ee0849 Sha1: e3bd912fd1a890e64ee6746a78a674db7ff77039 Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7831 Expires: Sun, 05 Feb 2023 10:09:07 GMT Date: Sun, 05 Feb 2023 07:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1b25bf82638deaab60981e1315ee0849 Sha1: e3bd912fd1a890e64ee6746a78a674db7ff77039 Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7831 Expires: Sun, 05 Feb 2023 10:09:07 GMT Date: Sun, 05 Feb 2023 07:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1b25bf82638deaab60981e1315ee0849 Sha1: e3bd912fd1a890e64ee6746a78a674db7ff77039 Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7831 Expires: Sun, 05 Feb 2023 10:09:07 GMT Date: Sun, 05 Feb 2023 07:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1b25bf82638deaab60981e1315ee0849 Sha1: e3bd912fd1a890e64ee6746a78a674db7ff77039 Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7831 Expires: Sun, 05 Feb 2023 10:09:07 GMT Date: Sun, 05 Feb 2023 07:58:36 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1b25bf82638deaab60981e1315ee0849 Sha1: e3bd912fd1a890e64ee6746a78a674db7ff77039 Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6202 x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3bUFEJoAMFapg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 11:30:27 GMT age: 73689 etag: "335425603d9eec146a3c03422dbca91134272e53" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6202 Md5: 251f1a5d671fb797fb98e9a71754c341 Sha1: 335425603d9eec146a3c03422dbca91134272e53 Sha256: 74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10905 x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmNJCEDzIAMFmxA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 22:09:58 GMT age: 35318 etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10905 Md5: 1a4eed23b240d04a3cd6b085cfa93375 Sha1: f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00 Sha256: 93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5014 x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3bIE0aoAMF6YQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 11:30:27 GMT age: 73689 etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5014 Md5: 5b6c30ad03669b66bf2f63b3edd69882 Sha1: e630bd132b52b965a5ade646ea8a165d1abf6d7b Sha256: f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3474 x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f1WXEEbnoAMFRdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:51:26 GMT age: 36430 etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3474 Md5: d7a466d89c75ff3459b7328591db52cf Sha1: c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb Sha256: e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7288 x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f1WrwH-iIAMFyhQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:43:26 GMT etag: "17444ff60be1afbc40d3653fa936f9eaf9478068" age: 36910 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7288 Md5: b1092c4dd4d9ca4d09462ae46e1dd7c1 Sha1: 17444ff60be1afbc40d3653fa936f9eaf9478068 Sha256: ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11056 x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fPFrwEW4IAMF_Tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4xmWa9XVzQ3xzjzIZyrdv3GpFSaTcoacse6b0lgGch2IMvV69AZ57w== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:45:28 GMT age: 36788 etag: "1367bebb73fa652695242100b26c394f1bfe4457" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11056 Md5: 3e0c38abfcd86f8074d4182d49fc354f Sha1: 1367bebb73fa652695242100b26c394f1bfe4457 Sha256: e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670
GET /alwheelpropbr/main_script.js HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/alwheelpropbr/main_script.js FQDN: brandiprize.digital IP: 217.69.13.14 217.69.13.14 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT vary: Accept-Encoding last-modified: Sun, 15 Jan 2023 15:00:38 GMT etag: W/"b55-5f24ebabef180" content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /pfe/current/micro.tag.min.js?z=5545814&sw=/sw-check-permissions-d7d09.js HTTP/1.1 Host: deefauph.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: deefauph.com/pfe/current/micro.tag.min.js?z=5545814&sw= (...) FQDN: deefauph.com IP: 139.45.197.251 139.45.197.251 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT last-modified: Fri, 27 Jan 2023 11:03:52 GMT etag: W/"63d3af98-a083" access-control-allow-credentials: true cache-control: no-cache pragma: no-cache content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - quad9: Sinkholed
GET /favicon.ico HTTP/1.1 Host: brandiprize.digital User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: brandiprize.digital/favicon.ico FQDN: brandiprize.digital IP: 217.69.13.14 217.69.13.14 HTTP/2 404 Not Found content-type: text/html; charset=iso-8859-1 server: nginx date: Sun, 05 Feb 2023 07:58:34 GMT vary: Accept-Encoding content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF" 

                                        
                                            
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=2369 

                                        
                                            
Expires: Sun, 05 Feb 2023 08:38:03 GMT 

                                        
                                            
Date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    81713f952b51a865ad9764cde68e3fdb

                                                Sha1:   278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a

                                                Sha256: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         35.241.9.150

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 05 Feb 2023 07:36:17 GMT 

                                        
                                            
age: 1337 

                                        
                                            
cache-control: max-age=3600,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    ff250d3ef3fa45322bf05039a0122a9f

                                                Sha1:   b3e7a2c383bce1bab807dbe1a03c375258b51f1d

                                                Sha256: d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream

                                        

                                        
                                            
x-amz-id-2: HgnxkQisJMu8AbCJVJkIPQNbdk++6zpDYKRK7fQ6vnDY1LnBse+7RrswJ+Xu8PrHx1Cj6uO2Bmw= 

                                        
                                            
x-amz-request-id: 6HFKJ268EM7SZRVE 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 05 Feb 2023 07:53:11 GMT 

                                        
                                            
age: 323 

                                        
                                            
last-modified: Mon, 09 Jan 2023 18:04:21 GMT 

                                        
                                            
etag: "7b922915ebf1fa3639b333f994c74f24" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    7b922915ebf1fa3639b333f994c74f24

                                                Sha1:   144a3f80b98fd0652d4614f24cf6cbbee40f8938

                                                Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

                                        
                                            GET /alwheelpropbr/i14wheel.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 42443 

                                        
                                            
last-modified: Thu, 03 Nov 2022 01:25:50 GMT 

                                        
                                            
etag: "a5cb-5ec86d660e380" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 501x501, components 3\012- data

                                                Size:   42443

                                                Md5:    96609fbcc5f804cbe893946051325dbe

                                                Sha1:   3f5a28fd0d29224836399ab8f4955c66046cd7bc

                                                Sha256: cb4e4f2e6895ba24c0ee34b0404cab1de81dfa3440b54e85a3f92e072da27b8a

                                        
                                            GET /alwheelpropbr/style.css HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
last-modified: Sun, 09 Jan 2022 12:10:13 GMT 

                                        
                                            
etag: W/"3a51-5d5251a29b340" 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   3117

                                                Md5:    99b85d67fb14279268c18e1fd8e4d61f

                                                Sha1:   5683695268a0b9c4f02cad1f54825b5721a273b4

                                                Sha256: cbbafd84b2d9f228e79cfd8fec4531fa6abdbfd27323b6773b22553af33dd1fe

                                        
                                            GET /alwheelpropbr/spin_prize2.png HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/style.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 2814 

                                        
                                            
last-modified: Sun, 09 Jan 2022 11:43:52 GMT 

                                        
                                            
etag: "afe-5d524bbed8e00" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data

                                                Size:   2814

                                                Md5:    f278c8d30fc51b72e0774b9ecb49214c

                                                Sha1:   03b574db82b31ee5758eb5093fda8ea25d1b00d8

                                                Sha256: 43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c

                                        
                                            GET /alwheelpropbr/index.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 5846 

                                        
                                            
last-modified: Fri, 04 Nov 2022 00:21:47 GMT 

                                        
                                            
etag: "16d6-5ec9a0f28bcc0" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 203x249, components 3\012- data

                                                Size:   5846

                                                Md5:    038a492cc0a3488f0547dafc24c15838

                                                Sha1:   e49b0adb8e08131c54b71c3325b8e9cb9ce716f9

                                                Sha256: e25ba7e0c1b7e4bb61773bd32df4cf010a0d6c65e773fcc2bdc3454edf3401c0

                                        
                                            GET /alwheelpropbr/like_user_1.jpeg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 1293 

                                        
                                            
last-modified: Sun, 09 Jan 2022 11:40:48 GMT 

                                        
                                            
etag: "50d-5d524b0f5f000" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1293

                                                Md5:    2aa0d43e70d60d76ac4bdff139f8c7cb

                                                Sha1:   d7e3433297ad90f5d99249aee29b645265c9f3eb

                                                Sha256: e7c85bfa7ba6d75dd0de72e51da2e185351ced82b32090ab35395766ef4849fa

                                        
                                            GET /alwheelpropbr/7.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 1230 

                                        
                                            
last-modified: Thu, 04 Apr 2019 20:40:58 GMT 

                                        
                                            
etag: "4ce-585ba632f2a80" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1230

                                                Md5:    c51ee8afc6f8843e6933837d725d69b8

                                                Sha1:   6ddf880de5ad7672865df8d4bcfd87debb170da1

                                                Sha256: 197929a3e6fab02b0b8206c2e26d0abd5001a025d92ad6c27e28c9901b87c349

                                        
                                            GET /alwheelpropbr/3.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 1383 

                                        
                                            
last-modified: Thu, 04 Apr 2019 20:41:00 GMT 

                                        
                                            
etag: "567-585ba634daf00" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1383

                                                Md5:    c669cf5ed47f8e3f1aec584647a42b69

                                                Sha1:   f47b9c4a715e99cf4b3a58a85a83afa5e0678714

                                                Sha256: 9f68e285f55898bd6281d9ae689a94009cabce2ee32c3f3a50faf996d30d2875

                                        
                                            GET /alwheelpropbr/6.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 1420 

                                        
                                            
last-modified: Thu, 04 Apr 2019 20:40:58 GMT 

                                        
                                            
etag: "58c-585ba632f2a80" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1420

                                                Md5:    1836e5649d602b3a61b0ee4759991b61

                                                Sha1:   bfce6061772d6cfae5e104459953ebf3e146c73b

                                                Sha256: 151581da1048854193836639dc9da00da9eb437da73ba641384c71d03acbcaa0

                                        
                                            GET /alwheelpropbr/8.jpg HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 1443 

                                        
                                            
last-modified: Thu, 04 Apr 2019 20:40:56 GMT 

                                        
                                            
etag: "5a3-585ba6310a600" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data

                                                Size:   1443

                                                Md5:    6df8fdfbc3a1d631bacdb6555f92ee99

                                                Sha1:   0594e276827b2f3f4bf9d6fc7d876014bcb8396b

                                                Sha256: 2fac6fd68117a212b4ae2529048a68ac4aee6c85bbb1d8bf1c068f66982531a6

                                        
                                            GET /alwheelpropbr/footer_right.png HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 4919 

                                        
                                            
last-modified: Sun, 09 Jan 2022 11:55:53 GMT 

                                        
                                            
etag: "1337-5d524e6e72440" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data

                                                Size:   4919

                                                Md5:    0e786b7344ac0b63609290a3a415fc4f

                                                Sha1:   c2e77827e895aaa13522f1c5c0ef79d4caef0bb2

                                                Sha256: f044237e4439b415a4947127f26fb14b4d32cf1d32ff51fd8f0ff4d21d2692e5

                                        
                                            GET /alwheelpropbr/comment_action_2x.png HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/style.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
content-length: 641 

                                        
                                            
last-modified: Sun, 09 Jan 2022 11:59:18 GMT 

                                        
                                            
etag: "281-5d524f31f3180" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data

                                                Size:   641

                                                Md5:    e9b3872b3e63e19728176d45f0aa6986

                                                Sha1:   b638f89d5d80c4cd65327da973c52f778e30bd55

                                                Sha256: a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         35.241.9.150

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sun, 05 Feb 2023 07:49:07 GMT 

                                        
                                            
age: 568 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
cache-control: max-age=3600,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: cPHd4F/mCuZQ8TyXA7O4Zg== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         52.88.25.203

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: s2zVyApThRcPREewfYVTh45+A8U= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" 

                                        
                                            
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7831 

                                        
                                            
Expires: Sun, 05 Feb 2023 10:09:07 GMT 

                                        
                                            
Date: Sun, 05 Feb 2023 07:58:36 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    1b25bf82638deaab60981e1315ee0849

                                                Sha1:   e3bd912fd1a890e64ee6746a78a674db7ff77039

                                                Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" 

                                        
                                            
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7831 

                                        
                                            
Expires: Sun, 05 Feb 2023 10:09:07 GMT 

                                        
                                            
Date: Sun, 05 Feb 2023 07:58:36 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    1b25bf82638deaab60981e1315ee0849

                                                Sha1:   e3bd912fd1a890e64ee6746a78a674db7ff77039

                                                Sha256: a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6202 

                                        
                                            
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: fi3bUFEJoAMFapg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ== 

                                        
                                            
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 04 Feb 2023 11:30:27 GMT 

                                        
                                            
age: 73689 

                                        
                                            
etag: "335425603d9eec146a3c03422dbca91134272e53" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6202

                                                Md5:    251f1a5d671fb797fb98e9a71754c341

                                                Sha1:   335425603d9eec146a3c03422dbca91134272e53

                                                Sha256: 74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 5014 

                                        
                                            
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: fi3bIE0aoAMF6YQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ== 

                                        
                                            
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 04 Feb 2023 11:30:27 GMT 

                                        
                                            
age: 73689 

                                        
                                            
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   5014

                                                Md5:    5b6c30ad03669b66bf2f63b3edd69882

                                                Sha1:   e630bd132b52b965a5ade646ea8a165d1abf6d7b

                                                Sha256: f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7288 

                                        
                                            
x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: f1WrwH-iIAMFyhQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA== 

                                        
                                            
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 04 Feb 2023 21:43:26 GMT 

                                        
                                            
etag: "17444ff60be1afbc40d3653fa936f9eaf9478068" 

                                        
                                            
age: 36910 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7288

                                                Md5:    b1092c4dd4d9ca4d09462ae46e1dd7c1

                                                Sha1:   17444ff60be1afbc40d3653fa936f9eaf9478068

                                                Sha256: ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f

                                        
                                            GET /alwheelpropbr/main_script.js HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
last-modified: Sun, 15 Jan 2023 15:00:38 GMT 

                                        
                                            
etag: W/"b55-5f24ebabef180" 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: brandiprize.digital

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://brandiprize.digital/alwheelpropbr/index.html?browser=Firefox&cep=heLHHmN93OHx-K_Gkohvtbl-Gu8h4r3CPfFt2-PWd9zZCwmnfC7HLYoPBDuogU0nbDqPssqIHKd2ghJXUzGqOZBX4xrmk2k7VXYVYJTWVAPHCgibXkqcu1fBqGyEOPGSa53Y5iHG0O_4In33qtbshDQPZragA7Fl4KQAtqvayv_xNBRd51XxcBae75_xh3A3YHwjsUKhnqNbaQVPv2UxEi9r5t5eaF-56BYGNhr9udq3r0YMsa7FO0_aiXo7ryExHAbDsVQMmiXnuofkSpEc5mBQHrJTzM3pbNWRaN0W3xvmzK4u4zyiwKXZM425_wvTV9c17iqC-ud2gQBx2dj_T255nG5r4NBv7xnsN87aEUhGYKfoiBHpDCm8XL1MCnMEt4iwaoENX_IeK-Rroar40Q&lptoken=16f375f8585757651332 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         217.69.13.14

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html; charset=iso-8859-1

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sun, 05 Feb 2023 07:58:34 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	track.supercosmo.xyz/22ad99f7-6b2c-4c09-8edc-100c4ee8694a
IP	18.192.108.151 (Germany)
ASN	#16509 AMAZON-02
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2023-02-05 07:58:44 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	3
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (9)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.192.108.151

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: supercosmo.xyz

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (16)

Executed Evals (1)

#1 JavaScript::Eval (size: 80) - SHA256: 95c23b954e57066cf50c1028b2048704f6e94f2e119c49851d5302b0ce295735

Executed Writes (7)

#1 JavaScript::Write (size: 11) - SHA256: 845d111aeae219ad92ae8c9d859a7174a388cfd10cda69e616547dfdd03e1ddf

#2 JavaScript::Write (size: 11) - SHA256: bbd3fc0564dbad35dfa3c39afc539ffef25d0a1ff5a1b98f54e7800811e444bb

#3 JavaScript::Write (size: 11) - SHA256: d569fa90806b8cf749cef5fc965cbd905587ee0a90b06139c0b20a2ca25735ae

#4 JavaScript::Write (size: 20) - SHA256: 8b7d07194711b4c35cc0ea609cf1d6351aa2221d8769815cf5fd03a4fa0325ec

#5 JavaScript::Write (size: 7) - SHA256: 424e93aa51340639238f61ecea841ec7ff2d32d81a080c7e5e5e5d4fde956fb7

#6 JavaScript::Write (size: 7) - SHA256: 2f26233595d165e6868c5bb9e5e835506039e72c61a36a1bafb0827abfe746a5

#7 JavaScript::Write (size: 0) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Transactions (46)

Overview

Domain Summary (9)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.192.108.151

Last 5 reports on ASN: AMAZON-02

Last 5 reports on domain: supercosmo.xyz

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (16)

Executed Evals (1)

#1 JavaScript::Eval (size: 80) - SHA256: 95c23b954e57066cf50c1028b2048704f6e94f2e119c49851d5302b0ce295735

Executed Writes (7)

#1 JavaScript::Write (size: 11) - SHA256: 845d111aeae219ad92ae8c9d859a7174a388cfd10cda69e616547dfdd03e1ddf

#2 JavaScript::Write (size: 11) - SHA256: bbd3fc0564dbad35dfa3c39afc539ffef25d0a1ff5a1b98f54e7800811e444bb

#3 JavaScript::Write (size: 11) - SHA256: d569fa90806b8cf749cef5fc965cbd905587ee0a90b06139c0b20a2ca25735ae

#4 JavaScript::Write (size: 20) - SHA256: 8b7d07194711b4c35cc0ea609cf1d6351aa2221d8769815cf5fd03a4fa0325ec

#5 JavaScript::Write (size: 7) - SHA256: 424e93aa51340639238f61ecea841ec7ff2d32d81a080c7e5e5e5d4fde956fb7

#6 JavaScript::Write (size: 7) - SHA256: 2f26233595d165e6868c5bb9e5e835506039e72c61a36a1bafb0827abfe746a5

#7 JavaScript::Write (size: 0) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Transactions (46)

Network Intrusion Detection Systems