urlquery - report: 208.67.105.125/vik/stubino.txt

Overview

URL	208.67.105.125/vik/stubino.txt
IP	208.67.105.125
ASN
Location
Report completed	2022-08-06 12:14:52 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-08-06	2	208.67.105.125/vik/stubino.txt	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (8)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-08-06 05:12:46 UTC	54.230.111.64
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-08-06 09:57:42 UTC	93.184.220.29
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-08-06 05:12:46 UTC	34.215.91.121
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-08-06 04:58:36 UTC	34.120.237.76
[Mnemonic Passive DNS]	208.67.105.125 (2)	0	No data	No data	208.67.105.125	Unknown ranking
[Mnemonic Passive DNS]	r3.o.lencr.org (6)	344	2020-12-02 08:52:13 UTC	2022-08-06 04:58:11 UTC	23.36.77.32
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.118

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 208.67.105.125

Date	UQ / IDS / BL	URL	IP
2022-08-12 17:51:16 +0000	0 - 0 - 1	208.67.105.125/vik/barry.txt	208.67.105.125
2022-08-12 17:51:07 +0000	0 - 0 - 1	208.67.105.125/vik/DLLL.txt	208.67.105.125
2022-08-12 17:50:58 +0000	0 - 0 - 1	208.67.105.125/vik/saintserver.txt	208.67.105.125
2022-08-12 17:50:54 +0000	0 - 0 - 1	208.67.105.125/vik/stubino.txt	208.67.105.125
2022-08-12 17:50:48 +0000	0 - 0 - 1	208.67.105.125/vik/AAXEL.txt	208.67.105.125
2022-08-12 17:50:44 +0000	0 - 0 - 1	208.67.105.125/vik/POPO.txt	208.67.105.125
2022-08-12 17:50:41 +0000	0 - 0 - 1	208.67.105.125/vik/eurro.txt	208.67.105.125
2022-08-12 17:50:34 +0000	0 - 0 - 1	208.67.105.125/vik/roth.txt	208.67.105.125
2022-08-12 17:50:29 +0000	0 - 0 - 1	208.67.105.125/vik/aristo.txt	208.67.105.125
2022-08-12 17:50:23 +0000	0 - 0 - 1	208.67.105.125/vik/james.txt	208.67.105.125

Last 10 reports on ASN:

Date	UQ / IDS / BL	URL	IP
2022-08-12 20:44:40 +0000	0 - 0 - 14	https://bendigo-refservices.com/pages	82.180.175.81
2022-08-12 20:41:57 +0000	0 - 0 - 2	icscards.kaartverificatie.nl/a1b2c3/bedf97564 (...)	185.225.73.209
2022-08-12 20:41:27 +0000	0 - 0 - 2	icscards.kaartverificatie.nl/a1b2c3/a3c2ffd32 (...)	185.225.73.209
2022-08-12 20:41:05 +0000	0 - 0 - 3	johnlaaks.org/	208.87.102.183
2022-08-12 20:24:06 +0000	0 - 0 - 2	forgione.com.ar/images/1UkF5eI7/?i=1	23.227.176.11
2022-08-12 20:24:02 +0000	0 - 0 - 5	forgione.com.ar/images/1UkF5eI7/	23.227.176.11
2022-08-12 19:59:40 +0000	0 - 0 - 3	https://chalmllst.store/connect_metamask.php	82.180.138.204
2022-08-12 19:54:19 +0000	0 - 0 - 4	steamcommuntiy.ru/316483	185.149.120.71
2022-08-12 19:49:34 +0000	3 - 0 - 5	cleaning.homesecuritypc.com/packages/Zltare_C (...)	185.225.73.46
2022-08-12 19:42:12 +0000	0 - 0 - 1	146.19.247.187/1044639990.zip	146.19.247.187

No other reports on domain: 208.67.105.125.

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (20)

Request	Response
GET /vik/stubino.txt HTTP/1.1 Host: 208.67.105.125 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	208.67.105.125 HTTP/1.1 200 OK Content-Type: text/plain Date: Sat, 06 Aug 2022 12:14:41 GMT Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2 Last-Modified: Mon, 01 Aug 2022 21:49:27 GMT ETag: "25aac-5e534f956f69a" Accept-Ranges: bytes Content-Length: 154284 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 154284 Md5: a9026e3359b0804c757565c51f65d019 Sha1: 51902b8b7d0b03acd8c59b40693e07237c8b2cb6 Sha256: eb3c745fcd2ea44f91f1576486d1182722ad47371342ff98df0935b6a5def866 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F055127A4794D0F76CB4DF8F290DF8E259258A63398A700F592C859DFFE9AC34" Last-Modified: Thu, 04 Aug 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9380 Expires: Sat, 06 Aug 2022 14:51:01 GMT Date: Sat, 06 Aug 2022 12:14:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 897b60146adb68539b3dc20e78ef2ece Sha1: eace3c5af0104a58586040660a2565bbde5d3d72 Sha256: f055127a4794d0f76cb4df8f290df8e259258a63398a700f592c859dffe9ac34
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sat, 06 Aug 2022 12:02:43 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 2_DqfdzNWCMmkhrXxYgKslWqvQbaEhtthnK6ohzzPTk8CI00B9MwkA== Age: 718 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 578b9ff83ff3950ab2a3d1a8344d2938$ 54.230.111.64 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sun, 31 Jul 2022 18:34:08 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sat, 06 Aug 2022 04:15:27 GMT etag: "578b9ff83ff3950ab2a3d1a8344d2938" x-cache: Hit from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: E-i0FIM5dC67iu3OOUVEYH9v-Uu-pCCjRU_MfhGej2KUhUZS3i8DPw== age: 28755 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 578b9ff83ff3950ab2a3d1a8344d2938 Sha1: 39d48b67ba6aa45ec01767725e726cf9b0c87a70 Sha256: 35c99da9a5463a4788ceab7cf4b027bb25506cde28ace36c70d0bc924138f2f5
GET /favicon.ico HTTP/1.1 Host: 208.67.105.125 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://208.67.105.125/vik/stubino.txt	$Magic: MS Windows icon resource - 3 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel\012- data Size: 30894 Md5: 6eb4a43cb64c97f76562af703893c8fd$ 208.67.105.125 HTTP/1.1 200 OK Content-Type: image/x-icon Date: Sat, 06 Aug 2022 12:14:41 GMT Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2 Last-Modified: Thu, 16 Jul 2015 15:32:32 GMT ETag: "78ae-51affc7a4c400" Accept-Ranges: bytes Content-Length: 30894 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: MS Windows icon resource - 3 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel\012- data Size: 30894 Md5: 6eb4a43cb64c97f76562af703893c8fd Sha1: c50c4273b9d2433c6069454f971ed6653e07c126 Sha256: 1d7c95c5eea00a8083a95810f902682f9e26e7fbb7876b022a403642d776d0c9
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Sat, 06 Aug 2022 12:14:41 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Sat, 06 Aug 2022 11:16:14 GMT Expires: Sat, 06 Aug 2022 11:31:18 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: tXkpPnd9IvxEmtklYHAAl4G3qAFetlLNqtENizgwu27lnk_nxd-vqA== Age: 3508 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4456 Cache-Control: max-age=162494 Date: Sat, 06 Aug 2022 12:14:42 GMT Etag: "62ee2188-1d7" Expires: Mon, 08 Aug 2022 09:22:56 GMT Last-Modified: Sat, 06 Aug 2022 08:08:40 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 5811dfe7b1873c0075c845435200ffc9 Sha1: b17fa7b085e8312c991c3eeb8cea152d03917637 Sha256: 372c34c3bfc514e5ed13a2c79b7e936c82c3110b0af4b6d6c1daf0bb1653f306
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 5AmIuxuxekuCUlcgLMo3ug== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	34.215.91.121 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: tutioIvS/52Hv8FXnXAdxZESno4= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4" Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14268 Expires: Sat, 06 Aug 2022 16:12:31 GMT Date: Sat, 06 Aug 2022 12:14:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de0663791c4b683408f7ccd8ac3fff39 Sha1: 6708b0ac7fc5ad55bfb9690aeb0b1bec6b3b4646 Sha256: c952c97052bcb4af8d3fbb70cfefa150605486a2905ee7349ede5564a59c21c4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4" Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14268 Expires: Sat, 06 Aug 2022 16:12:31 GMT Date: Sat, 06 Aug 2022 12:14:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de0663791c4b683408f7ccd8ac3fff39 Sha1: 6708b0ac7fc5ad55bfb9690aeb0b1bec6b3b4646 Sha256: c952c97052bcb4af8d3fbb70cfefa150605486a2905ee7349ede5564a59c21c4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4" Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14268 Expires: Sat, 06 Aug 2022 16:12:31 GMT Date: Sat, 06 Aug 2022 12:14:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de0663791c4b683408f7ccd8ac3fff39 Sha1: 6708b0ac7fc5ad55bfb9690aeb0b1bec6b3b4646 Sha256: c952c97052bcb4af8d3fbb70cfefa150605486a2905ee7349ede5564a59c21c4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4" Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14268 Expires: Sat, 06 Aug 2022 16:12:31 GMT Date: Sat, 06 Aug 2022 12:14:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de0663791c4b683408f7ccd8ac3fff39 Sha1: 6708b0ac7fc5ad55bfb9690aeb0b1bec6b3b4646 Sha256: c952c97052bcb4af8d3fbb70cfefa150605486a2905ee7349ede5564a59c21c4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4" Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14268 Expires: Sat, 06 Aug 2022 16:12:31 GMT Date: Sat, 06 Aug 2022 12:14:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de0663791c4b683408f7ccd8ac3fff39 Sha1: 6708b0ac7fc5ad55bfb9690aeb0b1bec6b3b4646 Sha256: c952c97052bcb4af8d3fbb70cfefa150605486a2905ee7349ede5564a59c21c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F817dc1f7-eb45-43f8-baff-dc8c8dc431d5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5927 Md5: 1d51f89b8978e5f853da0ec27aeba1f2$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5927 x-amzn-requestid: 99ada533-43cd-41fc-82bb-e458f0eb1f76 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMb7GCHIAMFTvA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8de5-229e11765cf29cea03c3627a;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 4XnbV70sg2VdJpPpU4qwePJEGJtqD9fvi7N5tGLwn53qD4YlgsV2nQ== via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:46:20 GMT age: 52103 etag: "2f672c1b11a1c279f429a25e80e37c19d87ed31b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5927 Md5: 1d51f89b8978e5f853da0ec27aeba1f2 Sha1: 2f672c1b11a1c279f429a25e80e37c19d87ed31b Sha256: 4b1741201668ef2b420b2c6ca02a9acec12b98c5527745229ceb27239a99881d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47127619-5c86-4363-ad38-bd0ea52d7a06.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3871 Md5: 2d2380784d41f22b7c39f22aa6ee89f5$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 3871 x-amzn-requestid: 8e2f628a-40e7-4a30-9250-e799388e3f06 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMExESGIAMFmSg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8d51-548ce53641314e2f14e5c4af;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:36:17 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: K_JIjjIoI8WKlfv4W3wDwglaTEkOabSJz7gG2zq8_1vEccPljbZilw== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:58:37 GMT age: 51366 etag: "5aafd1e4d78ce8b097b9d9333f8a583a3004ed21" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3871 Md5: 2d2380784d41f22b7c39f22aa6ee89f5 Sha1: 5aafd1e4d78ce8b097b9d9333f8a583a3004ed21 Sha256: 0c0f5233c5b6e055ab79900dcd96b99dcd837a2459c75c75ba54d1289dab4ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa26223bd-d704-4f37-9bda-4a67147d87f9.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7022 Md5: f8ee35182a507e89b787ac718a80508c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7022 x-amzn-requestid: a4b2e422-88b5-406a-9e4d-40f5cf5cbdb4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMb9HouoAMF-WQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8de5-08e066b803cf639d6dc69fe7;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: hCi-KrTW8WV29cRt4s46po6kaTKYMb18-JSCEGbgoIbYu9tdEkJ-rw== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:58:37 GMT etag: "de125f4ffd1f967c1557f082c41477891630539c" content-type: image/jpeg age: 51366 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7022 Md5: f8ee35182a507e89b787ac718a80508c Sha1: de125f4ffd1f967c1557f082c41477891630539c Sha256: 8def080600f8b45c3683dfb91586c9b03bf3fbb07437e9ab9dad816909cc3021
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfd5df4-420a-41ec-b1de-b396653699e3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8223 Md5: 21cb9fd64193c9fa61a65be28fa65bda$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8223 x-amzn-requestid: 1d39aed7-65da-4168-9a89-900d5a861e84 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMdAFTKoAMFz_w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8dec-114929484ac704c76691f89f;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:52 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: vWXGezsy5PVgC3WkZskelMsz0v1wgoMt7-8_nrKuvEOfsUbwLXdxcw== via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:46:25 GMT age: 52098 etag: "9b19561b15e7e126ee65436ba20d4ae4098e6776" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8223 Md5: 21cb9fd64193c9fa61a65be28fa65bda Sha1: 9b19561b15e7e126ee65436ba20d4ae4098e6776 Sha256: 16676379a98b377329551dea82df06b036aa7a1902ecc18b2467b25c0bd0e4dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7ee7a08-356c-4c63-bdb4-9e1927d27091.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7820 Md5: 256e12f553c7b4624aef1dc17ca401e5$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7820 x-amzn-requestid: c5a5a629-6a89-4b1b-ba1f-5d5969177bc0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMEvFnEIAMF0Lw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8d51-0ec3942c69a1b4be00209980;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:36:17 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: eiwhDqE7a1hggz3h-PAWE_5FkXHN7rrjCzF9X73DifFs5TdO-tAmwQ== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:58:47 GMT age: 51356 etag: "4a71016db1dacf44b5a33543f48cf952143c43ab" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7820 Md5: 256e12f553c7b4624aef1dc17ca401e5 Sha1: 4a71016db1dacf44b5a33543f48cf952143c43ab Sha256: 90b262e51d8d4d85728a5d58f9401a6ff81a93bd45430b6dd02990d62db7d1be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2e82c42-fd94-454a-912f-56867d09ec8d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7007 Md5: 1ed454c7b6a969da4f12c5dc57b0117e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7007 x-amzn-requestid: f82ea4ee-a0dd-484b-8d07-7cc98b4f3345 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: WaMb8FGzIAMFzJQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ed8de5-4fc058516eb94d393a3bfd64;Sampled=0 x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: vMBgynj5-az3NTLcvmLHPEitqn3dhouad7LLZY6NkcmWstbQdrJ4_Q== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Fri, 05 Aug 2022 21:46:20 GMT age: 52103 etag: "671abe46bc15fe88431e40416df266331a65f849" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7007 Md5: 1ed454c7b6a969da4f12c5dc57b0117e Sha1: 671abe46bc15fe88431e40416df266331a65f849 Sha256: eb2cd92f0994a7bfea8151ce716bce18aa1bbbeca7ca66a786c09c3dff8a41e7