r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8f33f56c329fe0b1570d2ee3e000ce4e
b11fcecd7cc1210d3f3b4e1426a37d3cd138119e
ebcb744a032452533c000c0a9f193fd2566b2389729c41b6c5ed69b9e4cd42d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBCB744A032452533C000C0A9F193FD2566B2389729C41B6C5ED69B9E4CD42D4"
Last-Modified: Tue, 07 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7712
Expires: Thu, 09 Mar 2023 13:02:57 GMT
Date: Thu, 09 Mar 2023 10:54:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0f2c901fe04f9e3d18e9c3387b076780
3f0115cd05d7857a8119eff0479f5812df155d3d
84518fa2565f7f63933d3c552e1dc07f84c71f4a3df5d2821484c371ef57b924
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84518FA2565F7F63933D3C552E1DC07F84C71F4A3DF5D2821484C371EF57B924"
Last-Modified: Tue, 07 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4574
Expires: Thu, 09 Mar 2023 12:10:39 GMT
Date: Thu, 09 Mar 2023 10:54:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ed282214b024a7895d90e229e92bb1cc
1f447aa59287ce2b45860a1a909d005a41305f77
a35ae9f89cbc77ed5fe849acdc2701592799c335f2674776d69c25bca0a00c2e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Mar 2023 10:08:57 GMT
content-type: application/json
age: 2728
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8901ec6f89f9452d6335be4dd3c3821
aca9da9cfc93413247952e224ac69d684f51d3ac
560f8228fedc912e05b84af1d19fcefca3fec82415180df5d18c5b2a3f533a68
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560F8228FEDC912E05B84AF1D19FCEFCA3FEC82415180DF5D18C5B2A3F533A68"
Last-Modified: Tue, 07 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12752
Expires: Thu, 09 Mar 2023 14:26:57 GMT
Date: Thu, 09 Mar 2023 10:54:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XDtxiMeV07qdvJnwEIdehlhsfE6DoYQOiQuMPcKTKoS6evf4+ImwfprrPmyjEaNsA/TlrsG64oV/8P/AduPwFQ==
x-amz-request-id: K6V74KCN7MYEFNDG
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Mar 2023 10:36:00 GMT
age: 1106
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Mar 2023 10:54:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
antinyedot.com/
172.96.190.240200 OK 7.1 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1004)
Hash 8225e58e0fcc291a86f1f3ddb29b6f83
9979c88b4937a7e3f27d5e17761e6c6bca720128
8ec2333ca9162a0947a7fb3ad6286c6d569191b062e06e3976a9af634cec1944
GET / HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: text/html
Last-Modified: Sat, 28 Jan 2023 03:15:00 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 7073
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Last-Modified, Retry-After, Expires, Pragma, Content-Length, Cache-Control, Alert, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Mar 2023 10:03:42 GMT
age: 3044
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
23.36.79.17200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash a05b5965e24e5dd60e75511a4b03225b
19fd48f32856fb8eead9892a7aa84795594c6648
2107f0ea12d52cb439dbeff0cdd761f6c10022cf916391d31d9068c64f449fff
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 09:29:09 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Xu0wIwA4wyai_8tPlux1aUEq6F3ot75D
server: AmazonS3
content-encoding: br
etag: W/"a32a40761bca5e113b6310a25cb44187"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 1e260fps-BTSRjIcXbB5JMqvGaDllR1ZUKX1irWzmiQoK9OxNE-dqA==
content-length: 26164
cache-control: max-age=28800
expires: Thu, 09 Mar 2023 18:54:26 GMT
date: Thu, 09 Mar 2023 10:54:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f963ad6104c08b0403759ec22008ace
7e2bf8de614c2b589093f5d90366d0b85ad989e4
a01488f649fa48674fc21cc847f180dbb70631c1338c8daf93b4e564fd868830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Mar 2023 10:54:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-8EMC2Y9LGG
142.250.74.40200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-8EMC2Y9LGG
IP 142.250.74.40:0
File type ASCII text, with very long lines (21849)
Hash 5bd8a17de5e76ff6deb259fa5516b6e0
170e15fafe164c62c847dbfc450315c6f53ee8a2
5fa0943d15d610496e70c5110fc1c00c377afea45cc8268728d4c0d02ea89140
GET /gtag/js?id=G-8EMC2Y9LGG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 Mar 2023 10:54:26 GMT
expires: Thu, 09 Mar 2023 10:54:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78818
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f963ad6104c08b0403759ec22008ace
7e2bf8de614c2b589093f5d90366d0b85ad989e4
a01488f649fa48674fc21cc847f180dbb70631c1338c8daf93b4e564fd868830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Mar 2023 10:54:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
antinyedot.com/img/tracking.html
172.96.190.240200 OK 238 B URL HTTP/1.1 antinyedot.com/img/tracking.html
IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /img/tracking.html HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: text/html
Last-Modified: Sat, 21 May 2022 09:23:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 238
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=14472486&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=http%3A%2F%2Fantinyedot.com%2F&channel_type=code&jsonp=__jzv4b40rqur
23.36.79.17200 OK 384 B URL HTTP/2 api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=14472486&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=http%3A%2F%2Fantinyedot.com%2F&channel_type=code&jsonp=__jzv4b40rqur
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (384), with no line terminators
Hash 073e33af810ef7fe297ae94ca228a108
e6864979d9c919bae7f63e3558bde994388ad985
0e18c13cdb6db477f19fbe3a8455c97769ad3f5792d198e30b151cf5c83fa356
GET /v3.6/customer/action/get_dynamic_configuration?license_id=14472486&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=http%3A%2F%2Fantinyedot.com%2F&channel_type=code&jsonp=__jzv4b40rqur HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors http://antinyedot.com/;
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: allow-from http://antinyedot.com/
content-length: 384
date: Thu, 09 Mar 2023 10:54:26 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 60aa5d6bb5b58dc56ac139f241cda41a
c135c57597b9b03e7aac2128aba025e925ee2082
fcfb45b1788a0daa639f2516cbfdbdb484adb60e7eea5d0f8f388a8da6e3238a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCFB45B1788A0DAA639F2516CBFDBDB484ADB60E7EEA5D0F8F388A8DA6E3238A"
Last-Modified: Tue, 07 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1477
Expires: Thu, 09 Mar 2023 11:19:03 GMT
Date: Thu, 09 Mar 2023 10:54:26 GMT
Connection: keep-alive
files.sitestatic.net/ImageFile/63afcef984d02_logo%20pc.png
154.83.2.16200 OK 197 kB URL HTTP/2 files.sitestatic.net/ImageFile/63afcef984d02_logo%20pc.png
IP 154.83.2.16:0
ASN #209242 Cloudflare London, LLC
File type RIFF (little-endian) data, Web/P image\012- data
Size 197 kB (196810 bytes)
Hash 27a387ff4fae96fdb1dfae273e765456
835cec8bbae4346a87d6d3e42bafccafd603be6b
89b80d63491f5521b90452fa6a1969fbc32f538d91ee70d0bee7d1165c049389
GET /ImageFile/63afcef984d02_logo%20pc.png HTTP/1.1
Host: files.sitestatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Mar 2023 10:54:26 GMT
content-type: image/webp
content-length: 196810
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=313432
content-disposition: inline; filename="63afcef984d02_logo%20pc.webp"
etag: "21d3a2dc010b188ee2a9980239c32763"
last-modified: Sat, 31 Dec 2022 05:56:10 GMT
vary: Accept
x-amz-id-2: VNkVn7m/GyXJYfbaL/v7K4tGy57uWlhZONq9CTn/Shb42i7ViGLuQf6+MNpfk00uApxT42Qs3/E=
x-amz-request-id: QSNVHQFNV25PSCN3
x-amz-server-side-encryption: AES256
x-amz-version-id: Y8M.HmC.vpLL7qzvDlOgTQnmSqbFeF2r
cf-cache-status: REVALIDATED
expires: Fri, 08 Mar 2024 10:54:26 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
server: cloudflare
cf-ray: 7a52c7a7b97e0b45-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.13.249.229101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.249.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bViKx2kMuBRBc3kEBDoKvg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IfuyYhPiwuo5Cmi55J4Y9319EC0=
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=be77062c-6253-44e9-a798-1a1f1943305a&version=229.2.2.11.34.15.2.3.1.13.1.1.6&group_id=0&jsonp=__lc_static_config
23.36.79.17200 OK 1.8 kB URL HTTP/2 api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=be77062c-6253-44e9-a798-1a1f1943305a&version=229.2.2.11.34.15.2.3.1.13.1.1.6&group_id=0&jsonp=__lc_static_config
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (5173), with no line terminators
Hash 14b5e86e283666a119fd5dfe5028ef97
32f803a75a07301f6244af2021bc5141ad036013
73f6dfcac236096e7d32e62b038acb3218328d783db76ac32875ab21d0f25a0a
GET /v3.4/customer/action/get_configuration?organization_id=be77062c-6253-44e9-a798-1a1f1943305a&version=229.2.2.11.34.15.2.3.1.13.1.1.6&group_id=0&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
content-length: 1757
cache-control: public, max-age=599
expires: Thu, 09 Mar 2023 11:04:26 GMT
date: Thu, 09 Mar 2023 10:54:27 GMT
X-Firefox-Spdy: h2
antinyedot.com/img/jQuery.js
172.96.190.240200 OK 34 kB URL HTTP/1.1 antinyedot.com/img/jQuery.js
IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type Unicode text, UTF-8 text, with very long lines (65438)
Hash 3b3b1d6cffb2d7e677df3d6de8ef2afc
1c04fe30f459a0d79cf09a83685a410a46f41812
9709d8d0a4f06aefd561be27713b37ccae7a4c8acffac0f2d47196156297b76c
GET /img/jQuery.js HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: application/javascript
Last-Modified: Sat, 21 May 2022 09:23:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 33620
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
swall.teahub.io/photos/small/138-1381450_abstract-pattern-black-orange-design-wallpaper-abstract-orange.jpg
198.204.228.67200 OK 64 kB URL HTTP/1.1 swall.teahub.io/photos/small/138-1381450_abstract-pattern-black-orange-design-wallpaper-abstract-orange.jpg
IP 198.204.228.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 711x400, components 3\012- data
Hash 6922168727168dca8fcb631eb4c191a2
050aa09b61f566965447bd2afe1b9ba2136ee3c2
210debf5a8548ff7c7c54a946b35dab3d43e9bf0ed2cbb30ac3048bb48511c16
GET /photos/small/138-1381450_abstract-pattern-black-orange-design-wallpaper-abstract-orange.jpg HTTP/1.1
Host: swall.teahub.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Date: Thu, 09 Mar 2023 10:54:27 GMT
Content-Type: image/jpeg
Last-Modified: Mon, 16 Dec 2019 09:29:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5df74e82-10789"
Content-Encoding: gzip
region1.google-analytics.com/g/collect?v=2&tid=G-8EMC2Y9LGG>m=45je3360&_p=634106871&cid=1562648392.1678359267&ul=en-us&sr=1280x1024&_s=1&sid=1678359266&sct=1&seg=0&dl=http%3A%2F%2Fantinyedot.com%2F&dt=Link%20Alternatif%20untuk%20Daftar%20UGSLOT168%20Situs%20Agen%20Judi%20Deposit%20Pulsa&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-8EMC2Y9LGG>m=45je3360&_p=634106871&cid=1562648392.1678359267&ul=en-us&sr=1280x1024&_s=1&sid=1678359266&sct=1&seg=0&dl=http%3A%2F%2Fantinyedot.com%2F&dt=Link%20Alternatif%20untuk%20Daftar%20UGSLOT168%20Situs%20Agen%20Judi%20Deposit%20Pulsa&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8EMC2Y9LGG>m=45je3360&_p=634106871&cid=1562648392.1678359267&ul=en-us&sr=1280x1024&_s=1&sid=1678359266&sct=1&seg=0&dl=http%3A%2F%2Fantinyedot.com%2F&dt=Link%20Alternatif%20untuk%20Daftar%20UGSLOT168%20Situs%20Agen%20Judi%20Deposit%20Pulsa&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://antinyedot.com
Connection: keep-alive
Referer: http://antinyedot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://antinyedot.com
date: Thu, 09 Mar 2023 10:54:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
antinyedot.com/img/2.png
172.96.190.240200 OK 42 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash d38a082707cc7b031904247657b49723
716c6b28e54099ad8c55f362e06c2841f10702ad
1234419b20e12080e3dbdc33c05e1bdaccf864b8905df488fd95c8a4a64ecd82
GET /img/2.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 10:00:07 GMT
Accept-Ranges: bytes
Content-Length: 41561
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
antinyedot.com/img/1.png
172.96.190.240200 OK 43 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f956597ae5e988b7364c7985361a848
0ed393a2646735b76b8e4a501bb65baae57bb076
983ba76efe8d4d1b8be13d98fcaf2a5c1e105f756cda99b8dd01406dd1bb465e
GET /img/1.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 10:00:07 GMT
Accept-Ranges: bytes
Content-Length: 42698
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
antinyedot.com/img/5.png
172.96.190.240200 OK 35 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash cb59f34014e71f22f804314f4a0fcc11
2fe0ce976f1744400d939610d4fd12797018da74
33cbd160991ab5da3f8467ef80a16963431f223b0bb0d9bd3195f20b32de9c0f
GET /img/5.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 10:06:32 GMT
Accept-Ranges: bytes
Content-Length: 34629
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
antinyedot.com/img/4.png
172.96.190.240200 OK 36 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 125179b2c7230ac655ac5186ffe498ac
8eb5ea905e5682f8617442ef95db4262bd284361
ddb0187d5515d58c13b8899f13d73e53a74161ad3b85939d3c0cdda81b1c6b3c
GET /img/4.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 10:00:07 GMT
Accept-Ranges: bytes
Content-Length: 35457
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
antinyedot.com/img/3.png
172.96.190.240200 OK 36 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 0102c8ef7c14dea08ca05ea521bd030f
5e734aa50250eb00325b3e1abb624f8c4b4da3e5
9e536a8e211ed9dc09646a7aa596e585abcd9a8e2d18d2250e9d43a44d7be899
GET /img/3.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:26 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 10:00:07 GMT
Accept-Ranges: bytes
Content-Length: 36021
Date: Thu, 09 Mar 2023 10:54:26 GMT
Server: LiteSpeed
antinyedot.com/img/deposit.png
172.96.190.240200 OK 13 kB URL HTTP/1.1 antinyedot.com/img/deposit.png
IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 738 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 689abc7d129e7a33a8ba3fddb61c8ba4
3a735540e148f2ebffea96adb71f0846baab734d
5c12ab0bcc3fa6d24881b152c16b1e0bb7b01405f90f27c9fdb6a30b72be75b2
GET /img/deposit.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:27 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 09:23:53 GMT
Accept-Ranges: bytes
Content-Length: 12728
Date: Thu, 09 Mar 2023 10:54:27 GMT
Server: LiteSpeed
antinyedot.com/img/responsible-gambling.png
172.96.190.240200 OK 19 kB URL HTTP/1.1 antinyedot.com/img/responsible-gambling.png
IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 387 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 5702b3fb4e56cf7bbe4e574471f82928
7d21a67957d25ca8b52297a8a3722de99188f24d
075ecb448441f7a5b3ad9a748e86e532d11daeaf434006004b937829a8d400fb
GET /img/responsible-gambling.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:27 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 09:23:53 GMT
Accept-Ranges: bytes
Content-Length: 18853
Date: Thu, 09 Mar 2023 10:54:27 GMT
Server: LiteSpeed
antinyedot.com/img/6.png
172.96.190.240200 OK 15 kB IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b0782e4d248b0821f64d11f0daea98f0
5d30d05d639845dae8fc99bd118113f8f92b0884
c5d7ae0290607488301dc3886709c624415881a0472fc2188ead918837adf1b6
GET /img/6.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Thu, 16 Mar 2023 10:54:27 GMT
Content-Type: image/png
Last-Modified: Sat, 21 May 2022 09:23:53 GMT
Accept-Ranges: bytes
Content-Length: 14820
Date: Thu, 09 Mar 2023 10:54:27 GMT
Server: LiteSpeed
antinyedot.com/img/favicon.png
172.96.190.240404 Not Found 1.2 kB URL HTTP/1.1 antinyedot.com/img/favicon.png
IP 172.96.190.240:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 30a9aa3e2018df9e4d5a7dea65c283f6
6abb0707a87dd0140ae3488c3f2a378726e2ca53
230d91b44ffd4de6a3cfe521b2560e5ed59763df51a5de76fc01513787fb1682
GET /img/favicon.png HTTP/1.1
Host: antinyedot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://antinyedot.com/
Cookie: _ga_8EMC2Y9LGG=GS1.1.1678359266.1.0.1678359266.0.0.0; _ga=GA1.1.1562648392.1678359267
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 1236
Date: Thu, 09 Mar 2023 10:54:27 GMT
Server: LiteSpeed
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12743
Expires: Thu, 09 Mar 2023 14:26:51 GMT
Date: Thu, 09 Mar 2023 10:54:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12743
Expires: Thu, 09 Mar 2023 14:26:51 GMT
Date: Thu, 09 Mar 2023 10:54:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12743
Expires: Thu, 09 Mar 2023 14:26:51 GMT
Date: Thu, 09 Mar 2023 10:54:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd16eee49-9645-4802-8739-6377f400ec11.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd16eee49-9645-4802-8739-6377f400ec11.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 413d6119d5bdf3af44ff49e58a5d63fc
b5ab8681ca33d8b484cc31e3b5e0749db66b0cd6
6d548c606c89a7f13929c9591bda128e45bd67e771e11096ccc2a968bc278a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd16eee49-9645-4802-8739-6377f400ec11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6446
x-amzn-requestid: 33d98949-8739-4737-a84a-aba9fca57913
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BPoHqGQxIAMF5ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6402ed63-3dffefd17e7768a208e6fb10;Sampled=0
x-amzn-remapped-date: Sat, 04 Mar 2023 07:04:03 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: ST1BfwQLoDpuZJ-VgeMaWnjtJu9UJLjHIvXl5tKeO686U_ePfUmlzw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 16:01:27 GMT
age: 67981
etag: "b5ab8681ca33d8b484cc31e3b5e0749db66b0cd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff38cea88-980c-4bc3-9bc7-9a1bd822bec7.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff38cea88-980c-4bc3-9bc7-9a1bd822bec7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f45f111388e764cdc6482be2307e0a1
f849869251bd94a51243604d94f9dd708930d3e2
8e7b32b34a50ba9ca3834a7d915b245590bd19d96ae13aa9881cdea8b7f5fcc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff38cea88-980c-4bc3-9bc7-9a1bd822bec7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7804
x-amzn-requestid: c100b707-4225-449e-b028-4d9f9da81b3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BfIm7H1_IAMFRYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6409215f-192127435abb06342b869fff;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 23:59:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bfnl06q4VdgNQOw7uOgtQvhdBzjBsmKHR33fIimnrggCh0cW9pfybQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Mar 2023 00:14:14 GMT
age: 38414
etag: "f849869251bd94a51243604d94f9dd708930d3e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834c2aef-aac4-479f-968e-6e2512e6b3a7.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834c2aef-aac4-479f-968e-6e2512e6b3a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a2b1e2520b334c727a108a6ef9e3a5b
bb9f22ac357ef47cac278a35acfec2a3c45b9778
44395dbddf288edbb6e450aedbdbef228904b39ff4816a11113be7e5c7f209b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834c2aef-aac4-479f-968e-6e2512e6b3a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0596691a-f410-4aaf-9b05-f9e24f776901
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BezeKGgGIAMF4UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6408ff8d-4a4a6e5e1ba9967f11131c82;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 6TjTZsqUlL4tyx5jrOM3zCLd-4nAP4IqBHYFEDY_-b51OErcrsfXnw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 6bdc2963c9ed59b475ec36c35e5932a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:45:40 GMT
age: 47328
etag: "bb9f22ac357ef47cac278a35acfec2a3c45b9778"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9da3492d-91de-45e4-82a1-51dec7e4ba28.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9da3492d-91de-45e4-82a1-51dec7e4ba28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d541504b5777fedb1a4b99770ca977e0
1acb5b7a05f617c8fc7cd6fe420ab72646bfc306
34dfdf8d3d5fa6fed1a6eca3c852301dae86f3765f824d93c26980fb8ac519c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9da3492d-91de-45e4-82a1-51dec7e4ba28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4785
x-amzn-requestid: 57be76f4-6f1b-45d2-bfc1-fc573c56489a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BezeJEhZIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6408ff8d-5e469b5f2c0adfd619e0e7b4;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: cDI-93Hy2SjT7q1l2FxfJnvKyqQzZZ7M6edx7oPwOVS6Hi6BBbgXZg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:45:40 GMT
age: 47328
etag: "1acb5b7a05f617c8fc7cd6fe420ab72646bfc306"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8327210c-f08f-45fb-8563-0fbd126e3ffb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8327210c-f08f-45fb-8563-0fbd126e3ffb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab6603d51a922110ab6f24d92204fcab
ced566c17a5bf05d9065e04dac4db1118ea8dce8
24d0f401f671317d654c7e5b208f540757f28e793281f18c39a5a1380eb39cdd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8327210c-f08f-45fb-8563-0fbd126e3ffb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9037
x-amzn-requestid: a6530fec-fd1b-4899-8784-aab3736e15b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BWCk2HhsIAMFupA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64057e1e-6f2507e5752545572f51e04c;Sampled=0
x-amzn-remapped-date: Mon, 06 Mar 2023 05:46:06 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: NQWaXxdOCkiZ30688Cf5VUloJGSYWVo9tPZQY0_ZZKuEAoceqBVnpQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 22:04:10 GMT
age: 46218
etag: "ced566c17a5bf05d9065e04dac4db1118ea8dce8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5f13a1-64f5-41ac-aa1b-5fb0a6b438d4.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5f13a1-64f5-41ac-aa1b-5fb0a6b438d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd029abcba5db74cecb02bad1a036c43
bc714ee0389e279919dde08149be61c4dc9ab0a7
10ae90728b38f7aeba134961a7b80c68c213a09eeef618ef3d66f3305b19834e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5f13a1-64f5-41ac-aa1b-5fb0a6b438d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4770
x-amzn-requestid: 963dae3d-8336-4a5b-8b25-c3617f946d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BUZkWFhLIAMF6FQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6404d61b-1b705b460f7539f97c3dd7e5;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 17:49:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: uGH8_fFeonTgrNF5RYeA6pMhKoh24-6W74Vhju3CcJ7A8LEGFse9Sw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:51:07 GMT
age: 47001
etag: "bc714ee0389e279919dde08149be61c4dc9ab0a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea03d56b-0100-4e7f-bc07-0bcf79745625.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea03d56b-0100-4e7f-bc07-0bcf79745625.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c2a867dd9ce40374b3f8bac3de89c5
6ea3ae91319fe33a4ed905d39ccb9ea850a83c2c
554723e647b0bfb54585a10f72938e397710688507e0223d62a6fec0df360737
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea03d56b-0100-4e7f-bc07-0bcf79745625.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6271
x-amzn-requestid: b09a2f59-1c0e-4121-b6eb-468417195031
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bez9vGGEoAMFq_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64090057-0d420f6f4e5ca3eb001d4b85;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 21:38:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 394K_XvcfkwUtcHExY54w1YveiM3EeVcdW9eeS0wFILFhK58dUVHMw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:43:34 GMT
age: 47461
etag: "6ea3ae91319fe33a4ed905d39ccb9ea850a83c2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2