Overview

URL 99hospitalitygroup.com/ckfinder/userfiles/files/
IP45.56.108.238
ASNLinode, LLC
Location United States
Report completed2022-07-02 01:46:07 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-02 2 99hospitalitygroup.com/ckfinder/userfiles/files/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-01 22:02:17 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-01 14:37:30 UTC 54.148.148.62
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-01 14:37:32 UTC 34.120.237.76
[Mnemonic Passive DNS] 99hospitalitygroup.com (2) 0 2019-06-05 07:25:12 UTC 2020-11-23 19:35:02 UTC 45.56.108.238 Unknown ranking
[Mnemonic Passive DNS] r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-07-01 14:37:29 UTC 23.36.76.226
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-01 05:33:42 UTC 54.230.111.64


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 45.56.108.238

Date UQ / IDS / BL URL IP
2022-06-29 20:56:43 +0000
0 - 0 - 1 sweatrinserepeat.com/ckfinder/userfiles/files (...) 45.56.108.238
2022-06-29 05:26:13 +0000
0 - 0 - 1 sweatrinserepeat.com/ckfinder/userfiles/files (...) 45.56.108.238
2022-06-28 19:10:26 +0000
0 - 0 - 1 sweatrinserepeat.com/ckfinder/userfiles/files (...) 45.56.108.238
2022-06-26 12:34:58 +0000
0 - 0 - 1 bodybybodyology.com/ckfinder/userfiles/files/ (...) 45.56.108.238
2022-06-24 17:16:03 +0000
0 - 0 - 1 skipjackpoke.com/ckfinder/userfiles/files/385 (...) 45.56.108.238
2022-06-24 00:09:09 +0000
0 - 0 - 1 embody.box8websites.com/ckfinder/userfiles/fi (...) 45.56.108.238
2022-06-23 09:03:07 +0000
0 - 0 - 2 chipublichouse.com/ckfinder/userfiles/files/3 (...) 45.56.108.238
2022-06-23 05:46:04 +0000
0 - 0 - 1 embody.box8websites.com/ckfinder/userfiles/fi (...) 45.56.108.238
2022-06-21 09:16:06 +0000
0 - 0 - 1 ckrestaurantgroup.com/ckfinder/userfiles/file (...) 45.56.108.238
2022-06-20 22:39:35 +0000
0 - 0 - 1 box8websites.com/ckfinder/userfiles/files/jun (...) 45.56.108.238

Last 10 reports on ASN: Linode, LLC

Date UQ / IDS / BL URL IP
2022-08-16 05:14:45 +0000
0 - 0 - 3 aromedtransport.sharezips.net/ 45.79.19.196
2022-08-16 04:57:24 +0000
0 - 0 - 1 anipo.tv/mtm/direct/.eJxdkF1TgkAYhf8Ll2YuhDlK (...) 198.58.118.167
2022-08-16 04:52:35 +0000
0 - 0 - 1 louisianaunclaimed.org/mtm/direct/.eJwli0EKgD (...) 45.33.30.197
2022-08-16 04:48:42 +0000
0 - 0 - 2 porntraffic.com/mtm/direct/.eJxliksOwjAMBe_iZ (...) 198.58.118.167
2022-08-16 04:48:41 +0000
0 - 0 - 1 fem-dom.com/mtm/direct/.eJxdikEOwjAMBP_iYwk1R (...) 173.255.194.134
2022-08-16 04:48:29 +0000
0 - 0 - 3 wrueandco.com/ 45.33.30.197
2022-08-16 04:47:17 +0000
0 - 0 - 1 tbtech.vn/l/?redacted 139.162.55.23
2022-08-16 04:35:26 +0000
0 - 0 - 28 weedcottage.online/ 172.105.8.229
2022-08-16 04:06:57 +0000
0 - 0 - 2 https://admin.classified.pointsource.ng/a3et6 (...) 139.162.200.189
2022-08-16 04:06:12 +0000
0 - 0 - 2 admin.classified.pointsource.ng/a3et6u5dw.rar 139.162.200.189

Last 1 reports on domain: 99hospitalitygroup.com

Date UQ / IDS / BL URL IP
2022-06-09 20:59:09 +0000
0 - 0 - 1 99hospitalitygroup.com/ckfinder/userfiles/files/ 45.56.108.238


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (18)


Request Response
                                        
                                            GET /ckfinder/userfiles/files/ HTTP/1.1 
Host: 99hospitalitygroup.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         45.56.108.238
HTTP/1.1 403 Forbidden
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 02 Jul 2022 01:45:53 GMT
Server: Apache
Content-Length: 227
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   227
Md5:    3921f69bb68efaf909b40577c7cce8ab
Sha1:   92f34f9beb9b3107297735f4bf2b63e04f20df8c
Sha256: 62db348ace369fdaf69ed2519c04eb63f748036a807bf93cbeed93074f9f1883

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11485
Expires: Sat, 02 Jul 2022 04:57:18 GMT
Date: Sat, 02 Jul 2022 01:45:53 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 02 Jul 2022 00:49:42 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WORyWxmnCzFiT00K_i7wtjtdgNUbCl0Zs5rirSb36QukPPzJ5sdpcA==
Age: 3371


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 01 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 88FuMFj129tFbJOnh2F_W89dorzIwQXghlxcedRiVFB9kIhhCYWc5w==
age: 80352
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 02 Jul 2022 01:45:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 99hospitalitygroup.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://99hospitalitygroup.com/ckfinder/userfiles/files/

                                         
                                         45.56.108.238
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 02 Jul 2022 01:45:54 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2015 22:36:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Expires: Sat, 09 Jul 2022 01:45:54 GMT
X-Content-Type-Options: nosniff
Content-Length: 4107
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 16x16, 8 bits/pixel, 32x32, 24 bits/pixel\012- data
Size:   4107
Md5:    88ed860524f26103ddccef80a550e48f
Sha1:   689ceea4bc310a1477c1b6766a2073d82d498b4f
Sha256: c2afb8a81ddfa87774b2da0c1f7adf321daff9329125cd0b4dafde9a80e7409d
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 02 Jul 2022 01:38:49 GMT
Cache-Control: max-age=3600
Expires: Sat, 02 Jul 2022 02:27:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KBIBc1jifq4X6Xy8jnuTEjBprYqQlWns9-t6alXyawk2d0G0AbHwdg==
Age: 426


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3272
Cache-Control: 'max-age=158059'
Date: Sat, 02 Jul 2022 01:45:55 GMT
Last-Modified: Sat, 02 Jul 2022 00:51:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XNjHBhjA5y1vQVkoWT3V5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.148.62
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BJyFlSmzoKQrfYL0oxKEC4BandQ=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5581
Expires: Sat, 02 Jul 2022 03:18:57 GMT
Date: Sat, 02 Jul 2022 01:45:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5581
Expires: Sat, 02 Jul 2022 03:18:57 GMT
Date: Sat, 02 Jul 2022 01:45:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5581
Expires: Sat, 02 Jul 2022 03:18:57 GMT
Date: Sat, 02 Jul 2022 01:45:56 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a74ab52-209f-4db5-bd0c-5f4fadfdc735.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7559
x-amzn-requestid: 5e3a9cd2-8985-4a49-b176-21869c376938
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2A0GHbIAMF1Ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a05-4a70ce59722056da703138bb;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:25 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1I4i3sdHSWk_4gCjvtt66dLRpNhKVjcd6LHsnkKGwPIqcIDFMXAU8w==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:53:09 GMT
age: 13967
etag: "9ed09b2c26ccf29c1cde3c81d744aa304a442592"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7559
Md5:    40880e1bfb70d52a4846ee333ae24400
Sha1:   9ed09b2c26ccf29c1cde3c81d744aa304a442592
Sha256: 21c0b8e9a32aadd4d79b877567df30b60b3b2f5a49e707ce5a5efd4ba8b57012
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5571171d-93e2-4135-8225-3bfc53bc48ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6736
x-amzn-requestid: 9e808fb4-bd09-40e9-91af-080ccdc93ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um2BSE0ToAMFfag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf6a08-2a5ed3cb6402d1907c9656a8;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9G-IIpCuXnf8fmMCzXnyB2Ciy2aUKE8G315HEV9w6GpGT1S1v9ZdOQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:46:36 GMT
etag: "a63b88bf7ec527ec4774676532c865a161533e4a"
content-type: image/jpeg
age: 14360
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6736
Md5:    0ace558e62edc260cee8891548c0621d
Sha1:   a63b88bf7ec527ec4774676532c865a161533e4a
Sha256: 1fb21b28c0480725834b801307a5fff6b62d1a9c2495b901217fff6f5617059f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b693c9f-67be-4ac0-b261-907639467fd1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9986
x-amzn-requestid: b96951f0-f4c4-4f63-ba41-ba43c6a30e11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1x6GWeIAMFXsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a5-04ea27df61b0abc76ec50b8a;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jQKaeII0MOP69AQkC4sUS3chweoHHM1glCDag2NSRohWeKevReGG6w==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 21:45:24 GMT
age: 14432
etag: "06bd1f5a2f23819184eb44076b107f234f432081"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9986
Md5:    423b835cc7c59b9ae5e054bea9b5a350
Sha1:   06bd1f5a2f23819184eb44076b107f234f432081
Sha256: 7b3a9e9f2cced74e0e018f5174c93dda41b95b2a5fa5aaabe933481d0a53ebde
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff52666ca-9cf5-46c2-96f1-bb6216284ea1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6720
x-amzn-requestid: f48f512e-4f19-4b7b-83bc-285d34ed3349
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ua_XOE90IAMF2HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62baac2e-2d113cf3404951d05385d9f1;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: j68fXePNT1IUwg2hPjAbBlyXhZXnQaM8fhGvyeyUjmj3X4xJ8nSkgQ==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 11:43:17 GMT
age: 50559
etag: "9351c584e318a6337c1acef4beebce39b08ff1a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6720
Md5:    73bcaab53a06d64548bc4a49ca3d4a03
Sha1:   9351c584e318a6337c1acef4beebce39b08ff1a1
Sha256: b54146b877b787c71685ec413f0ef9e3a30a931036d97dd1ce8fc160b19f8cd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40d73514-0b09-4d56-a6f6-75bca31f4d63.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9112
x-amzn-requestid: d94093a6-1d9d-4ab7-ac04-0848e5cd2e90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uk26HHnloAMFXFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be9ea6-1ecbd5de2c0a0f9e5f4d5fa6;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 07:13:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n_BYsPcwXZ-YsKG8AKYHY2wUxVx8nA6gZfgS-jFSfMy0ECSVCMO5kg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 07:26:29 GMT
age: 65967
etag: "7328a3ab741070cadcf5293db6b4df6b7b73ea4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9112
Md5:    1d9eaf40cb7d1274cf7e67cc35a515dd
Sha1:   7328a3ab741070cadcf5293db6b4df6b7b73ea4d
Sha256: 66a4021f5fef02c79f0315bcb2f67b006715121b02a352e4a85f8bb04c07b335
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5cdbb03-0721-41db-aa1f-4f230873644c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9009
x-amzn-requestid: a083b9d7-8689-4a21-9312-a0e64b1f7f5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1xnEhJoAMF-Rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a3-29f6e03c0eea21af0108d6e3;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SYZm85M2yb4dw9lvxSvgLEGKDMPqE_2P_Ij8-vFBDYZNPC2nUF5t4A==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 22:01:50 GMT
age: 13446
etag: "a62058ec75c26a6f1bfd7738335be6a9350b70a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9009
Md5:    70240fd48e744cc975b535f0bdd7d7de
Sha1:   a62058ec75c26a6f1bfd7738335be6a9350b70a5
Sha256: 2121f7e769114d9422f000e940e66a9c3ef240265ef1ef75b79eecb28cee5940