Overview

URL dl021.apkawards.com/apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manorvampire_1.6.2-apk_award.apk
IP172.67.173.188
ASNCLOUDFLARENET
Location United States
Report completed2022-06-30 01:54:17 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-30 2 dl021.apkawards.com/apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manor (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-29 04:30:20 UTC 143.204.55.25
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-29 19:09:02 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-29 20:37:23 UTC 35.82.213.230
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-29 20:37:26 UTC 34.120.237.76
[Mnemonic Passive DNS] dl021.apkawards.com (1) 0 No data No data 172.67.173.188 Domain (apkawards.com) ranked at: 942040
[Mnemonic Passive DNS] r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-06-29 04:27:49 UTC 23.36.76.226
[Mnemonic Passive DNS] apkawards.com (5) 942040 No data No data 104.21.64.9
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 143.204.55.36
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 172.67.173.188

Date UQ / IDS / BL URL IP
2022-07-02 15:54:40 +0000
0 - 0 - 1 dl567.apkawards.com/mod/dl6/com.gameloft.andr (...) 172.67.173.188
2022-06-30 01:55:07 +0000
0 - 0 - 1 dl25160.apkawards.com/apkmod_apks/dl25/com.ka (...) 172.67.173.188
2022-06-30 01:54:33 +0000
0 - 0 - 1 dl012.apkawards.com/apkmod_apks/dl4/com.prome (...) 172.67.173.188
2022-06-30 01:54:13 +0000
0 - 0 - 1 dl567.apkawards.com/apkmod_apks/dl6/com.t2ksp (...) 172.67.173.188
2022-06-30 01:54:04 +0000
0 - 0 - 1 dl2324.apkawards.com/apkmod_apks/dl24/com.cla (...) 172.67.173.188
2022-06-30 01:54:03 +0000
0 - 0 - 1 dl25160.apkawards.com/apkmod_apks/dl25/com.fa (...) 172.67.173.188
2022-06-30 01:53:57 +0000
0 - 0 - 1 dl1123.apkawards.com/apkmod_apks/dl12/air.inf (...) 172.67.173.188
2022-06-30 01:53:17 +0000
0 - 0 - 1 dl1123.apkawards.com/apkmod_apks/dl13/com.dev (...) 172.67.173.188
2022-06-28 14:24:17 +0000
0 - 0 - 1 dl25160.apkawards.com/APkmod_apks/dl25/com.pl (...) 172.67.173.188
2022-06-28 05:03:15 +0000
0 - 0 - 1 dl25160.apkawards.com/APkmod_apks/dl25/com.pl (...) 172.67.173.188

Last 10 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-08-09 10:05:53 +0000
0 - 0 - 4 www.grandocasino.com/gaoskc/ca/index-uni.html 172.67.173.217
2022-08-09 10:05:07 +0000
0 - 0 - 6 eng.certificazioni.basilicata.it/ 104.21.84.165
2022-08-09 09:59:37 +0000
0 - 0 - 1 www.viralvia.fi/p4/svq.exe 172.67.198.155
2022-08-09 09:58:48 +0000
0 - 0 - 3 brittknight.com/PHP/5bgKOXH0pM/ 104.21.20.122
2022-08-09 09:54:49 +0000
0 - 0 - 2 the.now-prize.monster/UK-new/argos-s22-cm1f.php 104.21.77.177
2022-08-09 09:49:28 +0000
0 - 0 - 2 https://invoice001.yolasite.com/resources/INV (...) 104.16.163.215
2022-08-09 09:48:01 +0000
0 - 0 - 1 archiveofsins.com/h/thread/6215425 104.21.7.52
2022-08-09 09:47:30 +0000
0 - 0 - 5 teenlovelies.com/ 104.21.73.109
2022-08-09 09:47:24 +0000
0 - 0 - 2 https://invoice4c.yolasite.com/resources/INVO (...) 104.16.161.215
2022-08-09 09:40:18 +0000
0 - 0 - 1 https://storageapi.fleek.co/9bf66bb8-c814-435 (...) 104.18.6.145

No other reports on domain: apkawards.com



JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (23)


Request Response
                                        
                                            GET /apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manorvampire_1.6.2-apk_award.apk HTTP/1.1 
Host: dl021.apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.173.188
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 30 Jun 2022 01:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://apkaward.com/errors/dl.html
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2Bk0oc%2BAFodgLHMkkFtTNVszx6cpn%2Bqp%2FvTfC%2FFKC%2FnUnA2IonYFz2XdPy42EOo9HXTSFnfL6s%2FYt8%2FWL7c0PB7iNHki0vIEgUt1Fcyp9%2FYuB3ujtstSGz8TunYYlReQ9rlhUVxn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 723345981be80b61-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   219
Md5:    256a93cfae9a9320f1b11af4e2d0d7e4
Sha1:   a73ecd2827f89a1f943bf9c3145ee8eab8e18d55
Sha256: 47d134c4a97cdf64d2a79ee3eb6741011223e3e2b0ae120c69da602a470f3b08

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 30 Jun 2022 01:48:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Pbmr7EQuLBQqAZhLrGzv1pMQPHtT06u1FIgtIzll-WMORS6xr-xZzA==
Age: 343


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3E2650132BC75A58C9B08C2A69EC353237F48E840D9D2481F9D5E63D92ABBC6F"
Last-Modified: Wed, 29 Jun 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13713
Expires: Thu, 30 Jun 2022 05:42:37 GMT
Date: Thu, 30 Jun 2022 01:54:04 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
date: Wed, 29 Jun 2022 02:10:55 GMT
last-modified: Wed, 11 May 2022 19:51:39 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -nM-jnuiB1_rKVh3BWI_RZUd9y-f6hYoxOrUZZi6yUbL9zsWrlzDvg==
age: 85390
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /img/zt/2020music.jpg HTTP/1.1 
Host: apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apkaward.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.64.9
HTTP/2 200 OK
                                        
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: image/jpeg
content-length: 34774
last-modified: Sat, 27 Feb 2021 01:31:49 GMT
etag: "87d6-5bc475937bbf0"
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1969340
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NInOdz%2B82Hn97Gu%2BJvhsMmRhSZYblBm1zr8lFtQqVFVLXH1QdCk1jIW%2FdnVjZOOEz%2BgB22ZdVZ8tIFFJ891KrCNYyOHT1PuL%2BIf0Yu7g0gcI%2F5EsLcLLlJdDNzWvfBQ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7233459d1e48b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x170, components 3\012- data
Size:   34774
Md5:    a60ab1a8083a1774631850e9a528fd23
Sha1:   31092ccfe8e136b062f25f31abb672ceb07ca508
Sha256: b1188f5c6fbb70716ffacb5ad956511abb106e119151a3654dfbcb3ca5c09e3c
                                        
                                            GET /img/zt/2020.png HTTP/1.1 
Host: apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apkaward.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.64.9
HTTP/2 200 OK
                                        
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: image/png
content-length: 33410
last-modified: Sat, 27 Feb 2021 01:31:49 GMT
etag: "8282-5bc475937b420"
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1968194
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5EJzdgLIsa5BzhC%2BY3kZnsashMgWaTXNtC50zWM0kpQPJLe3xgARrGbcDn7FLdJCLaQwJoSdecw2Tzfma5%2Bfp7zwq9VDX0gcXBOGHQyBtm7d4K6xduU2NO%2FzxbA2aGA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7233459d0e46b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data
Size:   33410
Md5:    a2596b02be737b9728a964b0ff670866
Sha1:   1813bba389c541bcfd1da57126e1634c368afc0d
Sha256: a901f2bde72269eabff149c9d24fdf1d64e13d922e4130ba8018b25d34dc3e87
                                        
                                            GET /img/zt/2020f.png?v=2019 HTTP/1.1 
Host: apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apkaward.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.64.9
HTTP/2 200 OK
                                        
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: image/png
content-length: 111827
last-modified: Sat, 27 Feb 2021 01:31:49 GMT
etag: "1b4d3-5bc475937b038"
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1803807
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bBqNyu9Argi8KaHkyYUsL9FjTQJgFG%2B0H0ykDQxH5O5OdnygaRHoiwGOvlq87tIfn8iNOrp3ViA48rRM%2B0pjTvZ%2BOmka8nRo897oCOq%2Fu83kQUoM313hAQ1WzdBJz%2BGb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7233459d1e4eb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data
Size:   111827
Md5:    89f69b5a5e276a6074ee23906b103e0f
Sha1:   5a99a6faa265e73941456e5ec40a60e2341751cd
Sha256: a4a1eb49b18bd9392d7bf0c0e5119885bd71b24078e2dd46d420113058509d39
                                        
                                            GET /img/zt/2020r.png HTTP/1.1 
Host: apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apkaward.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.64.9
HTTP/2 200 OK
                                        
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: image/png
content-length: 92031
last-modified: Sat, 27 Feb 2021 01:31:49 GMT
etag: "1677f-5bc47593794e0"
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1968194
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SAzEkjKrdAzcsvnla1lCDos72Prux9G7%2B4OA1Av9jZNeKWZpf3xUbLy7%2BGXQa62MN9ZDFRvt1EWLatBY9dTIb1bRZualF1a7bpbGVPR9sNe%2FNK2CI46b%2Bc8KESsiOQTj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7233459d3e65b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data
Size:   92031
Md5:    d4c7e079420b1bdbe4ed5318fe7f10b7
Sha1:   fc90fdeda25c761ae1bcff75f442ced58e4445a4
Sha256: 678e9c0f739d24292289467cc0c383fc49952a00bb722b1a989867859531380b
                                        
                                            GET /img/navicon/08.png HTTP/1.1 
Host: apkawards.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apkaward.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.64.9
HTTP/2 200 OK
                                        
date: Thu, 30 Jun 2022 01:54:04 GMT
content-type: image/png
content-length: 2103
last-modified: Sat, 27 Feb 2021 01:31:49 GMT
etag: "837-5bc4759389e80"
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1081669
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQVMN3yMOPOk7aERe51NoxLKHE2OcPwGOKG3pHW7Qg6mIb%2FU5SzxhXqgYaHmgE6FkzN1rIaFpjpxUWEyrUBQ%2FmCxDqBQWDOgVeKYsazDrhQK0Kf0XnDVhnf2s4KemR9W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7233459d3e66b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Size:   2103
Md5:    9c1c131aff4fb79d407c894548afd699
Sha1:   9ccaa0b560a1c5f82cb5dcd59b0192697f929d76
Sha256: 15de9b45b80a404421721147af5c749710657b193fcf5dea467baa0e6330373c
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 30 Jun 2022 01:31:51 GMT
Expires: Thu, 30 Jun 2022 01:32:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YmAPeUMdFNh8IJoX-hciV_ux539Lak7-AfQtpBY39EFiGSsAckkCrg==
Age: 1334


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2683
Cache-Control: max-age=111436
Date: Thu, 30 Jun 2022 01:54:05 GMT
Etag: "62bc080e-1d7"
Expires: Fri, 01 Jul 2022 08:51:21 GMT
Last-Modified: Wed, 29 Jun 2022 08:06:38 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N/SVwWbBGcF9SqDDOu4kOA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.213.230
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jccd4RtoFy4a0AGRJi9HJ3xmXKQ=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5883
Expires: Thu, 30 Jun 2022 03:32:10 GMT
Date: Thu, 30 Jun 2022 01:54:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5883
Expires: Thu, 30 Jun 2022 03:32:10 GMT
Date: Thu, 30 Jun 2022 01:54:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5883
Expires: Thu, 30 Jun 2022 03:32:10 GMT
Date: Thu, 30 Jun 2022 01:54:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5883
Expires: Thu, 30 Jun 2022 03:32:10 GMT
Date: Thu, 30 Jun 2022 01:54:07 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c820b41-1344-4f3c-aab0-014f108e8b52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7422
x-amzn-requestid: c58357ff-a4e0-4360-9ed0-0c99c0113bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ua_bJHL4IAMFs_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62baac47-6079b89463e237df5e6d6943;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: k-G5ZER8D-M5kL4XQJV_m8fXh-CXV-eKMLyXbOmDA_FylN8N6fqIkA==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 07:26:57 GMT
age: 66430
etag: "be66cb7246698432cabd92c4e0b484c9dcd22b40"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7422
Md5:    8d4b79df526e3f0fb56adab2db711218
Sha1:   be66cb7246698432cabd92c4e0b484c9dcd22b40
Sha256: f22197231cbd66c2b57cfc18c8c33d3411803887ef222b0a31e81d6a80d34eee
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7a4375-a2db-4744-a689-0c1e65ea038f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10792
x-amzn-requestid: c239e02c-f315-4de9-9d2e-7d0ebaaa7533
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UgO-qHlxIAMF3GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bcc52a-6a031ec43564a69e1a8efe66;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:30 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aZnblzoq9MlncZxFISS3Bx92B8nnCbXHnTd8cOXyXfWqmYVxY3HYFA==
via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 21:44:18 GMT
age: 14989
etag: "91a496da3231d55b9511ed5c64cc4b7386fb130e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10792
Md5:    3144b94a8936136d9e7214c57fef0d1c
Sha1:   91a496da3231d55b9511ed5c64cc4b7386fb130e
Sha256: f2062f616360faf1e83f0d6161ee0fe552091df15c01e30eb518d5bb1ab90920
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11d0870a-bbc1-425f-baab-78d8faee2f69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12525
x-amzn-requestid: de846bdc-4966-481a-9b04-909cd7faae72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UgO9OHKpIAMFX5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bcc521-6a6aa9e827cb3dc964a27a97;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bLc1WlV8IvDuxrkvPA_31nJrO9HceLFR29sEb8CaBPIJC2MAhmcSng==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 a2c13de7f3df76280ef01a6604863734.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 21:44:26 GMT
age: 14981
etag: "c4bd5602723c5eabcb935dc8af373d5b58d30d4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12525
Md5:    35a9456069f8c234f9df7f90deddad64
Sha1:   c4bd5602723c5eabcb935dc8af373d5b58d30d4d
Sha256: e4e2dac06aecdbe7af1e366f8cb15919689154f3e05cd949582285bc611660ff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c8df935-2cd0-4257-a634-97444dfbb7c7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5212
x-amzn-requestid: 509c0604-ea2c-4174-8350-96e63e064275
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UgP2pFk8IAMFcLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bcc690-78d5e73c5382093e1e5613de;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 21:39:28 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: adeINGgbdqX3AjqA9FHiIBcnK80WptM2rMnkg3BCVoQkX18nM0NYcQ==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 21:55:28 GMT
age: 14319
etag: "c148393bd889634b8e891e3370504c24982b8efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5212
Md5:    3bfbc94a4f67fe0dd25808724bd628cf
Sha1:   c148393bd889634b8e891e3370504c24982b8efb
Sha256: ac31355e39e17fb063049b565e24fd28736e0afef316703c7d50fec7b93f58b9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc64139e3-1714-4207-9f83-6963efdebdb1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11303
x-amzn-requestid: 133e1b8e-7db3-4337-92a0-b693c3ba40aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UeQEkHN1IAMF6qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbfa1d-65b9ee0025592952377ccb6d;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:07:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qZ65_kcaLORUGEbUuifwMdYmlm007Tehq5XMtiHQGeFkUOcqwiXi2Q==
via: 1.1 cb2af39fbf29fa8b3d7f263c2b822092.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 07:43:43 GMT
age: 65424
etag: "91d2dc48008a198adb2b740bec1843a146f826c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11303
Md5:    b38a21dc4af2a753ec1149a58eca2ee2
Sha1:   91d2dc48008a198adb2b740bec1843a146f826c1
Sha256: 2e56992e4642c248dd330fc1343977dedd2ec4e944564214be432f3f390488e7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79d277b-5e0d-4a1d-83ed-a355ef2276b5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7289
x-amzn-requestid: 67245eef-0b7a-485a-b4a2-467109edb67c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UT0pCHi_IAMFvPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b7ce39-6dfe37fe45caaa90166fe5a9;Sampled=0
x-amzn-remapped-date: Sun, 26 Jun 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VwEBq3yKGEPsPsQTyhgqfHt1n5SMu2hllYkD6XYrYGL7X1fQDQzC3g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Jun 2022 22:03:09 GMT
age: 13858
etag: "443cc22a0847bea98bfb28ed46abe38567605116"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7289
Md5:    f1824610da34f0cd715ab3e1d02e574e
Sha1:   443cc22a0847bea98bfb28ed46abe38567605116
Sha256: 80cb62cc2421eea285770c4c2bed8b53cd9c004938004b21d9889db88e06dff2