Overview

URL comsid.ro/cd/Doc/
IP89.42.218.85
ASNROMARG SRL
Location Romania
Report completed2022-06-02 07:41:40 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Added / Verified Severity Host Comment
2022-05-24 2 comsid.ro/cd/Doc/ Generic/Spear Phishing
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-02 2 comsid.ro/cd/Doc/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-02 00:39:25 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-01 05:00:55 UTC 35.161.136.21
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-01 14:19:39 UTC 34.120.237.76
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] comsid.ro (2) 0 2019-06-02 19:09:27 UTC 2022-05-29 20:58:16 UTC 89.42.218.85 Unknown ranking
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-06-01 04:32:28 UTC 23.36.77.32
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-01 04:58:12 UTC 54.230.111.14
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 89.42.218.85

Date UQ / IDS / BL URL IP
2022-08-01 09:41:14 +0000
0 - 0 - 3 www.jckfirs.punctulcentral.org/ 89.42.218.85
2022-07-12 05:17:12 +0000
0 - 0 - 3 www.jckfirs.punctulcentral.org/ 89.42.218.85
2022-07-09 01:56:50 +0000
0 - 0 - 3 jckfirs.punctulcentral.org/ 89.42.218.85
2022-07-02 20:49:20 +0000
0 - 0 - 3 www.jckfirs.punctulcentral.org/ 89.42.218.85
2022-06-22 14:12:06 +0000
0 - 0 - 13 www.prolexis.ro/_cgi/authen 89.42.218.85
2022-06-17 06:21:06 +0000
0 - 0 - 3 inchiriereelicoptere.ro/wp-content/plugins/fo (...) 89.42.218.85

Last 10 reports on ASN: ROMARG SRL

Date UQ / IDS / BL URL IP
2022-08-14 18:36:22 +0000
0 - 0 - 3 chop-shop.ro/maiores-repudiandae/documents.zip 89.47.242.199
2022-08-14 18:30:16 +0000
0 - 0 - 16 seinsweise.com/laborum-rerum/documents.zip 89.42.218.164
2022-08-14 18:11:36 +0000
0 - 0 - 2 turismtimis.ro/a-quas/documents.zip 89.42.218.164
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 13:35:04 +0000
0 - 0 - 1 db.vnc.ro/ 89.39.246.44
2022-08-14 07:11:35 +0000
0 - 0 - 1 actualitatea-crestina.ro/laudantium-reiciendi (...) 89.42.218.232
2022-08-14 06:32:21 +0000
0 - 0 - 1 louloucuisine.com/eligendi-soluta/documents.zip 89.42.218.94
2022-08-14 06:28:57 +0000
0 - 0 - 1 metalline.ro/sint-eveniet/documents.zip 89.42.218.72
2022-08-14 06:28:48 +0000
0 - 0 - 1 vladimirghika.ro/et-dolor/documents.zip 89.42.218.232
2022-08-14 06:27:19 +0000
0 - 0 - 1 rdrcollect.ro/ad-sunt/documents.zip 89.42.218.226

No other reports on domain: comsid.ro



JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (20)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Type, Content-Length, Alert, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 02 Jun 2022 07:05:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 376PxYMwIPhpnEdnjyWHQ3y0pTFAqiileP4vO3eDYZq0GPigTZUTNQ==
Age: 2147


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /cd/Doc/ HTTP/1.1 
Host: comsid.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         89.42.218.85
HTTP/1.1 404 Not Found
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 02 Jun 2022 07:41:26 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1238
Md5:    0bde7d4b3da67537eaf9188e6f8049cf
Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a
Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F5BA9F3BD904C913FDCBD351A4C78F9E197AB569EA5CFD75E16DE87E451CDBD4"
Last-Modified: Wed, 01 Jun 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12905
Expires: Thu, 02 Jun 2022 11:16:32 GMT
Date: Thu, 02 Jun 2022 07:41:27 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.14
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 02 Jun 2022 02:02:41 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3iOaHgJI8o7qDU4jfBT2evEG9vdp23bmZcFvLxoWGDDGCZXM0LMZVQ==
age: 20326
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 02 Jun 2022 07:41:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: comsid.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://comsid.ro/cd/Doc/

                                         
                                         89.42.218.85
HTTP/1.1 404 Not Found
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 02 Jun 2022 07:41:27 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1238
Md5:    0bde7d4b3da67537eaf9188e6f8049cf
Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a
Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Alert, Backoff, Last-Modified, ETag, Cache-Control, Expires, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 02 Jun 2022 07:13:25 GMT
Cache-Control: max-age=3600
Expires: Thu, 02 Jun 2022 07:25:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d2bN_a8NJ61so_ooqoN5VTmydBddcvWqqGidIzIK4gsKduA_JWjfiw==
Age: 1683


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4025
Cache-Control: 'max-age=158059'
Date: Thu, 02 Jun 2022 07:41:28 GMT
Last-Modified: Thu, 02 Jun 2022 06:34:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3ClAscd05TQVYRfd6rA8qQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.136.21
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tosTRwDvuLWxSQ5FDUbod/fYZvA=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F7F7EB438D5A68A9CDFEB83E3E69AC81C88A29F8A61E768E6DFA0E1ABCBCC089"
Last-Modified: Wed, 01 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Thu, 02 Jun 2022 09:27:21 GMT
Date: Thu, 02 Jun 2022 07:41:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F7F7EB438D5A68A9CDFEB83E3E69AC81C88A29F8A61E768E6DFA0E1ABCBCC089"
Last-Modified: Wed, 01 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Thu, 02 Jun 2022 09:27:21 GMT
Date: Thu, 02 Jun 2022 07:41:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F7F7EB438D5A68A9CDFEB83E3E69AC81C88A29F8A61E768E6DFA0E1ABCBCC089"
Last-Modified: Wed, 01 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Thu, 02 Jun 2022 09:27:21 GMT
Date: Thu, 02 Jun 2022 07:41:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F7F7EB438D5A68A9CDFEB83E3E69AC81C88A29F8A61E768E6DFA0E1ABCBCC089"
Last-Modified: Wed, 01 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Thu, 02 Jun 2022 09:27:21 GMT
Date: Thu, 02 Jun 2022 07:41:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F7F7EB438D5A68A9CDFEB83E3E69AC81C88A29F8A61E768E6DFA0E1ABCBCC089"
Last-Modified: Wed, 01 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Thu, 02 Jun 2022 09:27:21 GMT
Date: Thu, 02 Jun 2022 07:41:30 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c39055c-9d2a-4bbc-8ceb-b421f92dd916.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6155
x-amzn-requestid: 34ddf3fa-e108-4fda-b9e0-ea4d67f8c521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TEUZwEiBoAMFRlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6298010b-385b00e9566b3f5e7bb5c757;Sampled=0
x-amzn-remapped-date: Thu, 02 Jun 2022 00:15:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DjRzSa6zLogYXKqTfosbdEUajR8kbfSp0BKaB1gkkuZ_LdzBsnmsag==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 00:40:46 GMT
etag: "b586ab3880efb8bf8561dd5909d82902ac6f3330"
content-type: image/jpeg
age: 25244
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6155
Md5:    2b5c96e15d26ecee12ce71490b69af61
Sha1:   b586ab3880efb8bf8561dd5909d82902ac6f3330
Sha256: 0684d000045cdd5cc85fcf60004f050c582bd2cda64d64dc9f66a5fa5bc918e1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c625d04-9b9c-402a-832b-a22b631c6db8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8615
x-amzn-requestid: d152bdc3-14a7-4123-a804-cb2a0a1d13c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TET2qGV2oAMFnPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6298002a-73c4af265a6fbb640ccacb9f;Sampled=0
x-amzn-remapped-date: Thu, 02 Jun 2022 00:11:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mX6AdbzfK2Ma9-6VJRupPnNc9r2EpP01dNYmuxJoXKI3EEE6hA1UnQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 00:40:46 GMT
etag: "1b3a16c7abdd9e61c33cc5abd183e1fc280b50b5"
content-type: image/jpeg
age: 25244
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8615
Md5:    9c4bdd6f09dbdfa4c64da5fd117473d5
Sha1:   1b3a16c7abdd9e61c33cc5abd183e1fc280b50b5
Sha256: 0a072cad66c72774700ed9d0a6bdc24cfad770d2154b2e4d660a27e6db7170ff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F914f8f9e-9935-4a6f-a2b3-90bbc420b338.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9027
x-amzn-requestid: 515b196d-2e61-4789-b0d0-b7d650e4f12c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: SmoCWFvZIAMF1aQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-628c2075-0091929e4a3c47374e9ebdb1;Sampled=0
x-amzn-remapped-date: Tue, 24 May 2022 00:01:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4WuUN9qswwbHafuN-xiVsWuHjGNd14sem1CkH4EPi3VTcyeiQjB96w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 04:10:06 GMT
age: 12684
etag: "ffe93ceaf3f0648f980a05a3c03a94f5dcabb953"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9027
Md5:    429958a10401f23192ee882b2abef8f0
Sha1:   ffe93ceaf3f0648f980a05a3c03a94f5dcabb953
Sha256: bef39d8d28d751d6e6aced70bf4b4104b2bec3e83cf8a1248ae2074741eccfd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f7a71e-d0af-4b63-baf0-91d0d6464d76.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5715
x-amzn-requestid: 5920a973-36e7-4dd0-8274-5332df504294
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TET2MFSaoAMFZDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62980027-609d90c24789a5c05696d584;Sampled=0
x-amzn-remapped-date: Thu, 02 Jun 2022 00:11:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5JKEFfmBJsIP5MYfzQfwjWgYJgbqN8EsjTx1abFmsHf9E-P6F6-yOg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 00:40:46 GMT
etag: "bad06f91501f54c36595a8efada52962742e4011"
content-type: image/jpeg
age: 25244
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5715
Md5:    e191d2a0003dcca965b0b4b3413e4f56
Sha1:   bad06f91501f54c36595a8efada52962742e4011
Sha256: b38b21e86fd45fc27b253d4fcf7e63cb4172404d681bc2466106ec7deed1c633
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8dd04e4-df21-4838-9dd0-30107e2e9ba8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8817
x-amzn-requestid: 9f5b7ba6-e343-44ee-ab9e-6695ba456f68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TESgHEH9IAMFjVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6297fe00-196ee0b51e4457e02289c66a;Sampled=0
x-amzn-remapped-date: Thu, 02 Jun 2022 00:02:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZV66Gu8ZmuHKIAlnRhLyFMStIcc9jJ8v4OuPxs_0rpsBbThkg4iDzg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 00:40:59 GMT
age: 25231
etag: "f62809e40132bb68e5e29dbc8babaf4bd1da4132"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8817
Md5:    2122d813af7e8f938dcec9ad9b34f685
Sha1:   f62809e40132bb68e5e29dbc8babaf4bd1da4132
Sha256: de5463f5dc1f15a55b624c8769498e4df4c182334b35066882817756d530e40b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f9921e4-fdf3-49c6-8cff-c94d14fc63fe.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 543a629d-f27e-46c9-9d05-07794da710b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TEUZwHGBIAMFTGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6298010b-4aea547833899a207aa08c51;Sampled=0
x-amzn-remapped-date: Thu, 02 Jun 2022 00:15:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s4_lU272OwOIqf0Tg7omLDks3LOwuOJdq8qmo12QbQOJRfhBW8mvLw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Jun 2022 00:39:51 GMT
age: 25299
etag: "9142e5a63fa14c86f78cb26d3954db8cbee1e800"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    44f48b4f88ace776e1eb203c1e68edbf
Sha1:   9142e5a63fa14c86f78cb26d3954db8cbee1e800
Sha256: 7a4e75feda3048fd668452c6b88d813eaa2d2cc43e84b3a4a93568882ab1b65f