urlquery - report: 30571619671362393.best-system-tools.com/

Overview

URL	30571619671362393.best-system-tools.com/
IP	151.106.15.13
ASN	Host Europe GmbH
Location	France
Report completed	2022-07-07 04:42:32 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-07	2	30571619671362393.best-system-tools.com/	Malware
2022-07-07	2	30571619671362393.best-system-tools.com/pit.js?tkefrep=bs?nosaj=mycustom:va (...)	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (10)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	r3.o.lencr.org (6)	344	2020-12-02 08:52:13 UTC	2022-07-06 04:41:34 UTC	23.36.76.226
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-06 23:57:46 UTC	93.184.220.29
[Mnemonic Passive DNS]	30571619671362393.best-system-tools.com (3)	0	2022-06-03 09:50:25 UTC	2022-07-05 06:35:15 UTC	151.106.15.13	Domain (best-system-tools.com) ranked at: 289741
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.65
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-06 04:55:23 UTC	54.230.111.64
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	ocsp.pki.goog (2)	175	2017-06-14 07:23:31 UTC	2022-07-06 04:42:12 UTC	142.250.74.3
[Mnemonic Passive DNS]	www.google-analytics.com (2)	40	2017-01-30 05:00:06 UTC	2022-07-06 06:00:56 UTC	142.250.74.174
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-06 04:47:23 UTC	35.160.97.225
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-06 17:02:11 UTC	34.120.237.76

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 151.106.15.13

Date	UQ / IDS / BL	URL	IP
2022-08-15 22:02:04 +0000	0 - 0 - 1	012308709463235035.best-system-tools.com/	151.106.15.13
2022-08-14 13:15:01 +0000	0 - 0 - 1	04234046724582363.best-system-tools.com/	151.106.15.13
2022-08-14 05:57:26 +0000	0 - 0 - 2	77635834178522.best-system-tools.com/	151.106.15.13
2022-08-14 05:01:13 +0000	0 - 0 - 1	542069491470957.best-system-tools.com/	151.106.15.13
2022-08-14 04:54:51 +0000	0 - 0 - 1	6627646849447393.best-system-tools.com/	151.106.15.13
2022-08-13 13:02:49 +0000	0 - 0 - 1	9763529261799606.windows-updates-service.com/	151.106.15.13
2022-08-13 12:05:30 +0000	0 - 0 - 1	164332240702032.windows-updates-service.com/	151.106.15.13
2022-08-13 11:35:58 +0000	0 - 0 - 2	20292366132374418.best-system-tools.com/	151.106.15.13
2022-08-13 06:48:17 +0000	0 - 0 - 1	1988025504309221.windows-updates-service.com/	151.106.15.13
2022-08-12 09:04:47 +0000	0 - 0 - 1	1988343945479476.best-system-tools.com/	151.106.15.13

Last 10 reports on ASN: Host Europe GmbH

Date	UQ / IDS / BL	URL	IP
2022-08-19 10:02:14 +0000	0 - 0 - 76	activa-ghana.com/pti/ileeutnlvmei	160.153.133.143
2022-08-19 10:01:59 +0000	0 - 0 - 2	activa-ghana.com/pti/oooedlqrsu	160.153.133.143
2022-08-19 09:41:43 +0000	0 - 0 - 1	waves-enterprise.com/hydroponics/wp-includes/ (...)	160.153.131.197
2022-08-19 08:10:23 +0000	0 - 0 - 2	www.f.account2.almusand.com/m.facebook.com/lo (...)	151.106.39.173
2022-08-19 07:45:30 +0000	0 - 0 - 1	waves-enterprise.com/hydroponics/wp-includes/ (...)	160.153.131.197
2022-08-19 07:44:53 +0000	0 - 0 - 1	regalnutritious.com/mail.ionos.com/error.php	160.153.133.144
2022-08-19 06:53:46 +0000	0 - 0 - 2	incrediblepixels.com/wp-content/themes/Divi/c (...)	185.119.173.229
2022-08-19 06:48:56 +0000	0 - 0 - 2	ohsewgorgeous.co.uk/Images/bin_GMRUGSou199.bin	95.131.65.73
2022-08-19 06:48:51 +0000	0 - 0 - 2	ohsewgorgeous.co.uk/Images/lik_IOIisjkJ7.bin	95.131.65.73
2022-08-19 06:44:57 +0000	0 - 0 - 2	www.f.account2.almusand.com/m.facebook.com/lo (...)	151.106.39.173

No other reports on domain: best-system-tools.com

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (25)

Request	Response
GET / HTTP/1.1 Host: 30571619671362393.best-system-tools.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	151.106.15.13 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Thu, 07 Jul 2022 04:42:19 GMT Content-Length: 150 Last-Modified: Fri, 27 Nov 2020 12:31:18 GMT Connection: keep-alive Keep-Alive: timeout=5 ETag: "5fc0f196-96" X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Accept-Ranges: bytes --- Additional Info --- Magic: HTML document, ASCII text Size: 150 Md5: bd056c5e20f4af62df7e89d4a373b0ba Sha1: 725d4920611005428c920d900fe86b375d4a6adb Sha256: fb7f155c363573ade085a2697f19d3e1bc46355106bb23c226f57b2ffeb66fb2 Alerts: Blocklists: - fortinet: Malware
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 07 Jul 2022 03:56:31 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: G4GgTfiIrY9otj_IcI5BYREJBnn6xgJbPd2DjjKbnq6HGqcvXAgyuw== Age: 2748 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "78A5DCFAF2D93D9C87CFB6DBC56100E9F22965D4500554BA65F71CB7D84DD666" Last-Modified: Wed, 06 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13547 Expires: Thu, 07 Jul 2022 08:28:06 GMT Date: Thu, 07 Jul 2022 04:42:19 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1bd93fff937cfdc8744b841243b93fd5 Sha1: 240c31be9cdaeb5d1e4f9e3558c812ba007e6d22 Sha256: 78a5dcfaf2d93d9c87cfb6dbc56100e9f22965d4500554ba65f71cb7d84dd666
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.64 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Thu, 07 Jul 2022 03:26:47 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: H4pE79R3rgZuEMMrHhoQ-lfWdJBfrkCXFs_2FoKtencDxgmIWjLfvQ== age: 4533 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Thu, 07 Jul 2022 04:42:19 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /pit.js?tkefrep=bs?nosaj=mycustom:variant2 HTTP/1.1 Host: 30571619671362393.best-system-tools.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://30571619671362393.best-system-tools.com/	151.106.15.13 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Thu, 07 Jul 2022 04:42:19 GMT Last-Modified: Thu, 07 Jul 2022 04:42:01 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=5 Vary: Accept-Encoding ETag: W/"62c66419-2e772" Expires: Fri, 07 Jul 2023 04:42:19 GMT Cache-Control: max-age=31536000 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (59554), with CRLF line terminators Size: 138285 Md5: 4d5af6e25b9a611f49b76d3df72996bf Sha1: 2a3cb215fce94320e6dc6925a59cdec23ec5f3a4 Sha256: a578992cfe1bbb0aca65d38b1c28aff7fc03ad1cdedcea2655d0f94b6e032057 Alerts: Blocklists: - fortinet: Malware
GET /favicon.ico HTTP/1.1 Host: 30571619671362393.best-system-tools.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://30571619671362393.best-system-tools.com/	$Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 162 Md5: 70461da8b94c6ca5d2fda3260c5a8c3b$ 151.106.15.13 HTTP/1.1 404 Not Found Content-Type: text/html Server: nginx Date: Thu, 07 Jul 2022 04:42:19 GMT Content-Length: 162 Connection: keep-alive Keep-Alive: timeout=5 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 162 Md5: 70461da8b94c6ca5d2fda3260c5a8c3b Sha1: 994bc667720c21257500e29038c1a5f61e25da1e Sha256: f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 04:42:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 692bbf9aef3dab1f50bc9accb061b228 Sha1: f147a7c37c44660cd8c5a9bbeb170d0bf351afb7 Sha256: 11d21066827c4a97e77fa9f1deff460171cda255317dea2af5aee8ca413fb999
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Thu, 07 Jul 2022 04:34:57 GMT Cache-Control: max-age=3600 Expires: Thu, 07 Jul 2022 05:13:24 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: IW0BgpnDRPGizZBcnX5KU8NFzoEjr6FnEDsCXsstg5t67gboWGJ1-w== Age: 444 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://30571619671362393.best-system-tools.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.174 HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20006 date: Thu, 07 Jul 2022 04:41:12 GMT expires: Thu, 07 Jul 2022 06:41:12 GMT cache-control: public, max-age=7200 age: 68 last-modified: Wed, 13 Apr 2022 21:02:38 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1325) Size: 20006 Md5: 56f5d7f608e25d64207135f045f988cb Sha1: 901eb59372ae330ae85e1384da93479b21ae1082 Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 04:42:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 692bbf9aef3dab1f50bc9accb061b228 Sha1: f147a7c37c44660cd8c5a9bbeb170d0bf351afb7 Sha256: 11d21066827c4a97e77fa9f1deff460171cda255317dea2af5aee8ca413fb999
POST /j/collect?v=1&_v=j96&a=598327219&t=pageview&_s=1&dl=http%3A%2F%2F30571619671362393.best-system-tools.com%2F&ul=en-us&de=windows-1252&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=IEBAAEABAAAAAC~&jid=906508511&gjid=1810450055&cid=1361909493.1657168940&tid=UA-39296755-10&_gid=559560632.1657168940&_r=1&_slc=1&z=1853609320 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: http://30571619671362393.best-system-tools.com Connection: keep-alive Referer: http://30571619671362393.best-system-tools.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	142.250.74.174 HTTP/2 200 OK access-control-allow-origin: http://30571619671362393.best-system-tools.com date: Thu, 07 Jul 2022 04:42:20 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 38684612f0c6bb6dfa16da92f4a6878f Sha1: 6fe62d0dd7db314b7f9bb945672f078e01d27f0f Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3530 Cache-Control: 'max-age=158059' Date: Thu, 07 Jul 2022 04:42:20 GMT Last-Modified: Thu, 07 Jul 2022 03:43:30 GMT Server: ECS (ska/F714) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 54a5ebdb4e3b060878632555583e462f Sha1: df627b311d6276eabf36fe1390a8219714839aed Sha256: 5c77d20265a9a328455b745ec5191e036ec35814586c1e6bcd1c8b2de01b3ff2
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: UJoa7T9r2WW+mr3Yfz1CVw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	35.160.97.225 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: mQfjxCd3vhoopbfwEzwkMOtZDFg= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6593 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 04:42:22 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6593 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 04:42:22 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6593 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 04:42:22 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6593 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 04:42:22 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6593 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 04:42:22 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13136825-0301-44c6-8c81-faf21628fe4c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6737 Md5: 44f59062cacc44be268845c493de29de$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6737 x-amzn-requestid: 9a9c33df-daa2-49fb-ba8e-fd5a3149828e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeP9ZG93oAMFX6A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbf9ef-248528170cf451be2662dbef;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:23 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: GZWZ5vCdHbLeGN4FdZbd8ysfjqcGd-7MsBW_steUpJ38jyLd16JNtw== via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Thu, 07 Jul 2022 03:53:29 GMT age: 2933 etag: "5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6737 Md5: 44f59062cacc44be268845c493de29de Sha1: 5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f Sha256: c37305dfa7a241e526c7246a6eb71360dbfa2fe5d7f369f37ef7ddbfe1b97749
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1f48beb-da86-42f3-b5da-39fa82b568cb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7249 Md5: 5c958b0c904620aff5f5f8a74f80d9f9$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7249 x-amzn-requestid: 74cbc653-182e-4ef0-9fe5-901ddaa4edaf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UoBIEGKqIAMFp8Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bfe233-383f73a750696511624ff453;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 06:14:11 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: BVo4WA3x-2hGSrOBQTIcT5yjiYcdzQby4NDOrnrWpREFtHG5x52Jzg== via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 09:18:45 GMT age: 69817 etag: "2f79d1e28bb827f7fa60b6675dba8022c28a1a3d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7249 Md5: 5c958b0c904620aff5f5f8a74f80d9f9 Sha1: 2f79d1e28bb827f7fa60b6675dba8022c28a1a3d Sha256: 8bba608d028bbb678f021eaca3364856f930069f44b647346e649eca4c383955
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2fc71a-842c-433d-8506-e191aa0edcd6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4243 Md5: 4dadb5bd9157f2899ea250117bf6655e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 4243 x-amzn-requestid: 7529aa91-0ea7-442d-a0b7-c3c74f0d5d5b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UthU8HNdoAMFpUw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c215b9-527e994b56eb0630557d6dd5;Sampled=0 x-amzn-remapped-date: Sun, 03 Jul 2022 22:18:33 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: DQPLClNEQSPyiJJEq83p-1_lCk1cLIqpXQuPUQA2EzYd4kc0D9ILaw== via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 04:44:24 GMT age: 86278 etag: "5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4243 Md5: 4dadb5bd9157f2899ea250117bf6655e Sha1: 5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3 Sha256: 236f94db1ce5926743b6f0692509ab20c17fca595b5c062133a9d24fc80d6f0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5943e946-454d-4fa2-9a42-3742d5c15b9c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8185 Md5: 71f575ec1945ef97114e5125f7f46bec$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8185 x-amzn-requestid: 4175b120-06ce-4a9c-bc4e-03631c38f97b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UoJB0FzDoAMFUTg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bfeed8-705a0dc35090e183285bfa9a;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 07:08:08 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: noyuVo7-k6XK-GX49yRV5JSF3UzqNjEpQ8N8b6Tv5iUok1C9rMFOrQ== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 09:02:03 GMT age: 70819 etag: "71d91b56c51c8e6c72049088c5f48d047e3c2528" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8185 Md5: 71f575ec1945ef97114e5125f7f46bec Sha1: 71d91b56c51c8e6c72049088c5f48d047e3c2528 Sha256: b0aafa06050270acd35bd434d7418ca1c6ed4b66c0680302da29477d78bc4578
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc206c557-59f9-4388-9fb5-c531bfc1e267.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7535 Md5: 46c17cd5132fb117423c755afc8d2ff4$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7535 x-amzn-requestid: d1a7164d-2136-46bd-a831-e4f63cc4572c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ui9cvEC1IAMFzJQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bddc51-356395610daf2005680c880a;Sampled=0 x-amzn-remapped-date: Thu, 30 Jun 2022 17:24:33 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: xTuWwoB6QRW-z2U2HVH3QW2i1CoK5RI1WnsHhTvtnZbtsXUEarcSUQ== via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Thu, 07 Jul 2022 03:14:47 GMT age: 5255 etag: "1b289e6ddd5c29de34cd087ce8913d494622ed79" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7535 Md5: 46c17cd5132fb117423c755afc8d2ff4 Sha1: 1b289e6ddd5c29de34cd087ce8913d494622ed79 Sha256: 1d741918a2e9e46f18aa3ec463c490541a5528fb8edc74d95fd23034ebf602f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20165510-22d4-4fd3-a7a0-a05de8f30a73.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8819 Md5: 20c802789b33d6fb0e0281e414dc026b$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8819 x-amzn-requestid: e6b0eb97-425a-40cd-90f2-5ad0a29f6d1c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UtbSXF_OoAMFZvg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c20c0e-05a61ec7164824ac14a8123c;Sampled=0 x-amzn-remapped-date: Sun, 03 Jul 2022 21:37:18 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 9jXahL-FA0ISRD2H6YaoEgqz3crM-Y85BWZoYnLRMClvhBMVMRX3HQ== via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 22:20:28 GMT age: 22914 etag: "70b335824065f60c310468051b28e3d9b3a5d576" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8819 Md5: 20c802789b33d6fb0e0281e414dc026b Sha1: 70b335824065f60c310468051b28e3d9b3a5d576 Sha256: ea8dd804ffee3932e68eabd3ea401de17f3341e59136227a0c73b886cf3eaf61