Overview

URLpurposecommunications.ca/backuplogin-office/officiseyes/login.php
IP 199.34.228.59 (United States)
ASN#27647 WEEBLY
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-10-12 18:53:20 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (11)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-12 15:05:50 UTC 93.184.220.29
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-12 05:00:17 UTC 44.237.239.70
cdn2.editmysite.com (2) 11564 2012-10-02 18:27:39 UTC 2022-10-12 13:13:02 UTC 151.101.85.46
img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-10-12 12:13:11 UTC 34.120.237.76
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-12 04:58:09 UTC 23.36.77.32
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-12 04:58:20 UTC 34.160.144.191
www.purposecommunications.ca (2) 0 2019-08-22 10:21:47 UTC 2021-08-17 11:05:06 UTC 199.34.228.59 Unknown ranking
cdn1.editmysite.com (2) 56529 2012-05-23 06:23:09 UTC 2022-10-12 13:13:01 UTC 151.101.85.46
firefox.settings.services.mozilla.com (2) 867 2020-06-27 01:58:08 UTC 2022-10-12 14:32:44 UTC 54.230.111.118
purposecommunications.ca (1) 0 2019-08-22 10:21:46 UTC 2022-10-12 13:13:12 UTC 199.34.228.59 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-12 04:58:51 UTC 34.117.237.239

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-12 2 purposecommunications.ca/backuplogin-office/officiseyes/login.php Phishing
2022-10-12 2 www.purposecommunications.ca/backuplogin-office/officiseyes/login.php Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.59
Date UQ / IDS / BL URL IP
2023-01-17 08:37:38 +0000 0 - 0 - 13 www.daddyspeaks.net/ 199.34.228.59
2023-01-11 08:53:18 +0000 0 - 13 - 0 www.adastra.world/ 199.34.228.59
2023-01-05 22:52:09 +0000 0 - 0 - 5 dr.aboucaya.docvitae.fr/ 199.34.228.59
2023-01-01 11:51:35 +0000 0 - 1 - 0 www.d1rmrc.org/uploads/2/4/2/8/24285692/mi_co (...) 199.34.228.59
2022-12-30 10:39:01 +0000 0 - 1 - 0 www.mcbemusic.com/uploads/1/3/4/7/13470514/st (...) 199.34.228.59


Last 5 reports on ASN: WEEBLY
Date UQ / IDS / BL URL IP
2023-01-27 02:49:53 +0000 0 - 0 - 2 hjcbhjdsjbsd.weeblysite.com/ 199.34.228.97
2023-01-27 00:13:53 +0000 0 - 0 - 0 rbskripts.weebly.com 199.34.228.53
2023-01-26 23:37:48 +0000 0 - 0 - 24 my-site-105294-104399.weeblysite.com/ 199.34.228.96
2023-01-26 22:49:14 +0000 0 - 2 - 0 gatewayreadingcouncil.org/ 199.34.228.159
2023-01-26 21:41:18 +0000 0 - 0 - 3 yahoo-108500.weeblysite.com/ 199.34.228.97


Last 2 reports on domain: purposecommunications.ca
Date UQ / IDS / BL URL IP
2022-10-12 18:53:20 +0000 0 - 0 - 2 purposecommunications.ca/backuplogin-office/o (...) 199.34.228.59
2022-10-12 13:13:11 +0000 0 - 0 - 2 purposecommunications.ca/backuplogin-office/o (...) 199.34.228.59


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-31 23:25:08 +0000 0 - 0 - 2 www.edinburghh3.com/jock-hash-2014.html 199.34.228.155
2022-12-13 07:21:32 +0000 0 - 0 - 2 www.stenenbergmolen.be/uadmin/adm.php 199.34.228.72
2022-12-12 23:21:05 +0000 0 - 0 - 2 www.edinburghh3.com/run-1688.html 199.34.228.155
2022-12-10 20:09:17 +0000 0 - 0 - 2 www.edinburghh3.com/run-1871.html 199.34.228.155
2022-11-28 17:00:31 +0000 0 - 0 - 0 photopsychrophile.weebly.com/%3Chttps://prote (...) 199.34.228.53

JavaScript

Executed Scripts (1)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (27)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 18:49:15 GMT
Expires: Wed, 12 Oct 2022 19:31:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RqC3J7XPnLxZC6xIJOgTv3gwaN8x4SkVTPL6RM_J9pdwsJ7cpQB7QQ==
Age: 234


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1aac651ec250c598683dd17ca2002c07
Sha1:   11595ac82e017f95190c2a36dc77323a3fedcbfc
Sha256: 93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14040
Expires: Wed, 12 Oct 2022 22:47:09 GMT
Date: Wed, 12 Oct 2022 18:53:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10114
Expires: Wed, 12 Oct 2022 21:41:43 GMT
Date: Wed, 12 Oct 2022 18:53:09 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 8gNfdsEn0onGAP0YL3vFSKmFd5RM9uDeTbbOEI1WrAXuM2ubm929BCbUbOxVY11ftwcr3DHgRW8=
x-amz-request-id: SX9R45RN3HM8XVE2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 18:01:22 GMT
age: 3107
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /backuplogin-office/officiseyes/login.php HTTP/1.1 
Host: purposecommunications.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.34.228.59
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 12 Oct 2022 18:53:09 GMT
Server: Apache
Location: http://www.purposecommunications.ca/backuplogin-office/officiseyes/login.php
Content-Length: 284
Keep-Alive: timeout=10, max=52
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   284
Md5:    e80f4c44718be356475e25a840d10f96
Sha1:   ca3efb614d6211adb1e5f7df1f0ae9436897fdf1
Sha256: dd969e3b5c7483c5994c973fa88d2e5eb1095fbd706329ccffb1853b3c48c137

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 12 Oct 2022 18:53:09 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 18:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 18:46:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: meKImooh1jhNgtcQpuFHueVHA6hJuMqB8SgsRhFKmwvi5zHea5CSwg==
Age: 1408


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /backuplogin-office/officiseyes/login.php HTTP/1.1 
Host: www.purposecommunications.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.34.228.59
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 12 Oct 2022 18:53:10 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: language=en; expires=Wed, 26-Oct-2022 18:53:10 GMT; Max-Age=1209600; path=/
Cache-Control: private
X-Host: blu69.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 3909
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Size:   3909
Md5:    b63df800a4bac547e6dfcd6e0ef00296
Sha1:   5cb8fa15c54cf90a9e39f7a4ec74f47c3e519b64
Sha256: 9503ee026cb489f49a51d738763177c88ef84ce953e34e40369c56f624cb5927

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6557
Cache-Control: max-age=140576
Date: Wed, 12 Oct 2022 18:53:10 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:56:06 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SFneCvLKAEuzTmC3kzqbxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.237.239.70
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z4si8wOdp/wr3bdqUV6g26ADml0=

                                        
                                            GET /gdpr/gdprscript.js?buildTime=1665599970 HTTP/1.1 
Host: www.purposecommunications.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.purposecommunications.ca/backuplogin-office/officiseyes/login.php
Cookie: language=en

search
                                         199.34.228.59
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 12 Oct 2022 18:53:10 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: language=en; expires=Wed, 26-Oct-2022 18:53:10 GMT; Max-Age=1209600; path=/
Cache-Control: private
X-Host: grn14.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (17520)
Size:   19351
Md5:    96e736991e6f17c40a174fbef2d5b650
Sha1:   f860a3ae4d6ab3a6855ffc5724f067961c530256
Sha256: 130260cba2906101fe010213070db3057078c28749ce9837082f4714f58bcaca
                                        
                                            GET /images/weebly-logo-blue.png HTTP/1.1 
Host: cdn1.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.purposecommunications.ca/

search
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Connection: keep-alive
Content-Length: 3740
Server: nginx
Last-Modified: Tue, 04 Oct 2022 22:15:54 GMT
ETag: "633cb09a-e9c"
Expires: Wed, 05 Oct 2022 11:56:31 GMT
Cache-Control: max-age=300
X-Host: blu13.sf2p.intern.weebly.net
Access-Control-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 12 Oct 2022 18:53:10 GMT
Age: 630099
X-Served-By: cache-sjc10027-SJC, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5374, 8
X-Timer: S1665600791.589660,VS0,VE0


--- Additional Info ---
Magic:  PNG image data, 174 x 62, 8-bit colormap, non-interlaced\012- data
Size:   3740
Md5:    6907726ede4fc851beeafb7b9ff6eeb9
Sha1:   86b1e9af4a07e02a426ec9475e37a13dfcedcb3c
Sha256: 2b37ca56c61b7f2f892d75655cc37699ef847dd9139c94171414e5f92ffd97ed
                                        
                                            GET /developer/none.ico HTTP/1.1 
Host: cdn1.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.purposecommunications.ca/

search
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Connection: keep-alive
Content-Length: 65
Server: nginx
Last-Modified: Mon, 10 Oct 2022 17:15:35 GMT
ETag: "63445337-57e"
Expires: Tue, 11 Oct 2022 08:20:28 GMT
Cache-Control: max-age=300
X-Host: grn89.sf2p.intern.weebly.net
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 12 Oct 2022 18:53:10 GMT
Age: 124662
X-Served-By: cache-sjc10061-SJC, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 24, 902
X-Timer: S1665600791.608204,VS0,VE0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16\012- data
Size:   65
Md5:    c88c3b0a67be1aa816661dbd567e7163
Sha1:   e0c36a8570ee2ed2bfcb6a9b3ec3389f98cb1d9c
Sha256: 2f506d63f617cb33b2e42f8779a67cb23b191a51cdc86903fd378bfa9b878576
                                        
                                            GET /components/ui-framework/fonts/proxima-nova-semibold/31AC96_2_0.woff HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.purposecommunications.ca
Connection: keep-alive
Referer: http://www.purposecommunications.ca/

search
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Connection: keep-alive
Content-Length: 45516
Server: nginx
Last-Modified: Thu, 06 Oct 2022 21:49:07 GMT
ETag: "633f4d53-b1cc"
Expires: Mon, 24 Oct 2022 13:00:22 GMT
Cache-Control: max-age=1209600
X-Host: grn56.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 12 Oct 2022 18:53:10 GMT
Age: 193967
X-Served-By: cache-sjc10057-SJC, cache-bma1651-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 595, 3
X-Timer: S1665600791.633741,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 45516, version 0.0\012- data
Size:   45516
Md5:    861dfbee66a135b4421ba3f0f3bc297f
Sha1:   1b379173b64e92893538ff39da0b16410dd5f653
Sha256: abbc659e9c167b41e012d7b7d7f8cf22d4edd74a7ffb85704e213b1418c8b177
                                        
                                            GET /components/ui-framework/fonts/proxima-nova-regular/31AC96_1_0.woff HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.purposecommunications.ca
Connection: keep-alive
Referer: http://www.purposecommunications.ca/

search
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Connection: keep-alive
Content-Length: 46052
Server: nginx
Last-Modified: Mon, 03 Oct 2022 17:45:47 GMT
ETag: "633b1fcb-b3e4"
Expires: Tue, 18 Oct 2022 11:37:02 GMT
Cache-Control: max-age=1209600
X-Host: grn14.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 12 Oct 2022 18:53:10 GMT
Age: 717368
X-Served-By: cache-sjc10067-SJC, cache-bma1682-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 3
X-Timer: S1665600791.633142,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 46052, version 0.0\012- data
Size:   46052
Md5:    61f3bc4fc6146cc65961a8c8e917855a
Sha1:   02e25e22cf1c0a26d838a477b1f21bf33b71ca38
Sha256: aabc1a485e0941f1e2927b6a4beed2b368431466977483068bbe367de253a05c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Wed, 12 Oct 2022 22:16:09 GMT
Date: Wed, 12 Oct 2022 18:53:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Wed, 12 Oct 2022 22:16:09 GMT
Date: Wed, 12 Oct 2022 18:53:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Wed, 12 Oct 2022 22:16:09 GMT
Date: Wed, 12 Oct 2022 18:53:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Wed, 12 Oct 2022 22:16:09 GMT
Date: Wed, 12 Oct 2022 18:53:11 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12284
x-amzn-requestid: 7df5e0e3-155f-4cfd-b1e1-62310edf4516
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3B7JFbxIAMFxnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e37a-0882e1333f26304f1d89c3c9;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:43:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7WAk09ANiNHmH9U2PMQRQ8WjASq6GKpEw-zsLtg97Y-DedBaEumK5A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:59:07 GMT
age: 75244
etag: "19dd911262d941074183edd995d59abc84a42cd5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12284
Md5:    5a61ea2d6a9b25c5567339c60f503bc6
Sha1:   19dd911262d941074183edd995d59abc84a42cd5
Sha256: 0ff68c4572b0eda2ddce4ce76b39cd268dcf5182acdaacb0274c23e2c5f50b3d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7108
x-amzn-requestid: 9f8e92e1-b64f-46b4-8a87-4d0e5c21bdaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BzOEmzoAMFsoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e347-3ec5e4d50d2e14a17f88a64d;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:42:31 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 07WNuyF4EIA2AAZyB4kU669K49Jzqys2YvkfnzEb2aIn3Dq6K_CT2g==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:12 GMT
age: 74639
etag: "22a32b863ce79c6165cc90e998f1498bf9e74fd0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7108
Md5:    f5d47115d404a4b49a15c5aa29f132c2
Sha1:   22a32b863ce79c6165cc90e998f1498bf9e74fd0
Sha256: 549725a62e4c15820c47249ae933120bbb091a55331be511b486307e33ec59c0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3985
x-amzn-requestid: 6da73a65-c346-4040-9a03-63d5d6845adf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z1Cr1HeVoAMFubg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634517e5-34af0c8d6dc8218963b7319c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 07:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LAjdvQ29NhOnJjwigVkIjb7vx5tCPJPrHOOPmUD5Vh9N45WN4ZZXCg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 07:45:22 GMT
age: 40069
etag: "3bbdd5560213e9b49ab7c079c5f2549d68890720"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3985
Md5:    eda06240feabfa1b019765fe963c2d9c
Sha1:   3bbdd5560213e9b49ab7c079c5f2549d68890720
Sha256: cd3724bfc1355b419c46df1259bfa40b4b4517a81bd45a4392d34e22c14a3d6e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9325
x-amzn-requestid: 6a0388e5-97d6-42f4-b54d-a3f4826f2293
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDE2JoAMFieg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-76ff69230ce03c033b35a4c4;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oUdj3LVRzke7i9j4pQRCGqss6LC-l1Qf4gvtAnrM9ZH1Bzu6Adezuw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:22:04 GMT
age: 52267
etag: "ec0a371cca2d4e43f3375dd6b699478c5af62884"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9325
Md5:    d31330d47548d966e50813d7e2253551
Sha1:   ec0a371cca2d4e43f3375dd6b699478c5af62884
Sha256: 309f2cf9ccd62d5c2fd8713836b602317875f4273ef560f3bf3d681aa868b9d6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5252
x-amzn-requestid: b4ef9c4f-7ca4-42c9-a928-b0b8aa3cc695
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BUaEtBoAMF8Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e282-455619be605fa91977c66df7;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:39:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u8SRxkVzSO3pnQB_FibQBfwzvJ2uiT9YQzQI4_ZVMxgdED9Zsir8qQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:04 GMT
age: 74647
etag: "53a7502d8932c515aa09055c5cf8f2d2242e4398"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5252
Md5:    4f78379e6bde371b492c950402bcc39e
Sha1:   53a7502d8932c515aa09055c5cf8f2d2242e4398
Sha256: 241016bbd3cebc009f63dff2773c1c7fdb68fa941ab62b368d5e023b9155fa37
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Wed, 12 Oct 2022 22:16:09 GMT
Date: Wed, 12 Oct 2022 18:53:11 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZKsi1hYgZdJQNWpphaMVLfpg69dC93J575Y2RsOzFV3ZzBb6x-nrew==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:42:26 GMT
age: 76245
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11800
Md5:    6e9aa9808428e5fd81ac9d61d6f7c708
Sha1:   3a8d76badce50dd98938885082dcb6e30363ae88
Sha256: d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13724
x-amzn-requestid: 3f358e0a-786b-48fc-9e45-bda97026e544
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3Ak_FbjoAMFfQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e152-134d2c6f4efafecb71df10e6;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C2z9SP8_BZ-lf9NPNR-24Tjtc98JRz54D4Lmeie9QmTKNIDCR9knNg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:48:15 GMT
age: 75903
etag: "bf37aa53466c3764d205de17070753b3204d78e4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13724
Md5:    e885fe35564ed7fefe0fb0fda2b9ebe7
Sha1:   bf37aa53466c3764d205de17070753b3204d78e4
Sha256: 187a99359986ae3131d303c09baf25ffa0dcf1ca80e09c9bee56434bff6f07d1