urlquery - report: condorutill.fr/CoTASA/CoTASA_data_HU23.zip

Overview

URL	condorutill.fr/CoTASA/CoTASA_data_HU23.zip
IP	213.186.33.24
ASN	OVH SAS
Location	France
Report completed	2022-07-01 22:21:03 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish	No alerts detected
PhishTank	No alerts detected
Fortinet's Web Filter	No alerts detected
mnemonic secure dns	No alerts detected
Quad9 DNS	No alerts detected

Files

URL	condorutill.fr/CoTASA/CoTASA_data_HU23.zip
IP	213.186.33.24
Magic	Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size	1455
MD5	116713fac77c2d820bd68b2e0561ab3f
SHA1	9299f8a717f1d55a515466b70b1a199265e216a4
SHA256	c52f1c903d3d536d7927855c72afa67a244413502413ebd8c7d2720a2a1e9a3c

Analyzer	Analysed	Verdict	Comment
VirusTotal		0/0

Passive DNS (8)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-01 14:37:32 UTC	34.120.237.76
[Mnemonic Passive DNS]	condorutill.fr (1)	0	No data	No data	213.186.33.24	Unknown ranking
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.35
[Mnemonic Passive DNS]	r3.o.lencr.org (6)	344	2020-12-02 08:52:13 UTC	2022-07-01 14:37:29 UTC	23.36.76.226
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-01 05:33:42 UTC	54.230.111.14
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-01 22:02:17 UTC	93.184.220.29
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-01 14:37:30 UTC	34.214.110.180

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 213.186.33.24

Date	UQ / IDS / BL	URL	IP
2022-08-09 07:48:45 +0000	0 - 0 - 1	tribulationsdanais.com/wp-includes/id3/nn/net/*	213.186.33.24
2022-07-31 04:48:57 +0000	0 - 0 - 1	avandcie-automation.fr/ckfinder/userfiles/files/	213.186.33.24
2022-07-28 00:30:57 +0000	0 - 0 - 1	avandcie-automation.fr/ckfinder/userfiles/files/	213.186.33.24
2022-07-18 07:12:54 +0000	0 - 0 - 3	www.bigre.archi/	213.186.33.24
2022-07-18 03:21:19 +0000	0 - 0 - 1	avandcie-automation.fr/ckfinder/userfiles/files/	213.186.33.24
2022-07-16 14:34:08 +0000	0 - 0 - 1	avandcie-automation.com/ckfinder/userfiles/files/	213.186.33.24
2022-07-15 16:29:41 +0000	0 - 0 - 50	caresine.com/caresine_new	213.186.33.24
2022-07-01 22:21:06 +0000	0 - 0 - 0	condorutill.fr/Polars/XCSoarPolarsHU23.zip	213.186.33.24
2022-07-01 22:21:00 +0000	0 - 0 - 0	condorutill.fr/CoTASA/CoTASAV30_Setup.zip	213.186.33.24
2022-07-01 22:21:00 +0000	0 - 0 - 0	condorutill.fr/CoTASA/CoTASAV30.zip	213.186.33.24

Last 10 reports on ASN: OVH SAS

Date	UQ / IDS / BL	URL	IP
2022-08-12 21:41:24 +0000	0 - 0 - 1	tracking.runyourselfstrong.net/tracking/click (...)	164.132.95.123
2022-08-12 21:37:31 +0000	0 - 0 - 3	https://abmaxdigital.com/wp-content/uploads/2 (...)	51.79.72.47
2022-08-12 21:34:31 +0000	0 - 0 - 73	lifewithoils.com/KSD84F9W87R9WE87R65F4X21WQE3 (...)	51.79.79.207
2022-08-12 21:15:35 +0000	0 - 0 - 1	wimair.at/	51.68.171.237
2022-08-12 21:14:56 +0000	0 - 0 - 11	icleandogwash.net/index.php/campaigns/hp086fv (...)	51.79.66.232
2022-08-12 21:14:39 +0000	0 - 0 - 44	fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFj (...)	149.202.74.222
2022-08-12 20:47:43 +0000	0 - 0 - 1	dullteens.com/	54.39.16.2
2022-08-12 20:36:24 +0000	0 - 0 - 1	192.99.237.111/wp-includes/Vyj7l35iCeCAT/	192.99.237.111
2022-08-12 20:16:24 +0000	0 - 0 - 5	sshd.run/.cache	135.125.140.65
2022-08-12 20:14:30 +0000	0 - 0 - 1	188.165.84.183/Api_DNS/launcher.exe	188.165.84.183

Last 5 reports on domain: condorutill.fr

Date	UQ / IDS / BL	URL	IP
2022-07-01 22:21:06 +0000	0 - 0 - 0	condorutill.fr/Polars/XCSoarPolarsHU23.zip	213.186.33.24
2022-07-01 22:21:00 +0000	0 - 0 - 0	condorutill.fr/CoTASA/CoTASAV30_Setup.zip	213.186.33.24
2022-07-01 22:21:00 +0000	0 - 0 - 0	condorutill.fr/CoTASA/CoTASAV30.zip	213.186.33.24
2022-07-01 22:20:59 +0000	0 - 0 - 0	condorutill.fr/CoTaCo/CoTaCoV412.zip	213.186.33.24
2022-07-01 22:20:58 +0000	0 - 0 - 0	condorutill.fr/CoToMa/CoToMaV101.zip	213.186.33.24

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (19)

Request	Response
GET /CoTASA/CoTASA_data_HU23.zip HTTP/1.1 Host: condorutill.fr User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: Zip archive data, at least v2.0 to extract, compression method=deflate\012- data Size: 1455 Md5: 116713fac77c2d820bd68b2e0561ab3f$ 213.186.33.24 HTTP/1.1 200 OK date: Fri, 01 Jul 2022 22:20:49 GMT content-type: application/zip content-length: 1455 server: Apache last-modified: Tue, 24 May 2022 18:49:12 GMT accept-ranges: bytes x-iplb-request-id: 5B5A2A9A:96B7_D5BA2118:0050_62BF7342_BA0F:14FB1 x-iplb-instance: 27465 --- Additional Info --- Magic: Zip archive data, at least v2.0 to extract, compression method=deflate\012- data Size: 1455 Md5: 116713fac77c2d820bd68b2e0561ab3f Sha1: 9299f8a717f1d55a515466b70b1a199265e216a4 Sha256: c52f1c903d3d536d7927855c72afa67a244413502413ebd8c7d2720a2a1e9a3c Alerts: File Analyzers: - virustotal: 0/0
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Fri, 01 Jul 2022 21:49:24 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 6wYWVxTzu7jnZjUYfDs13V51TE8KwOi-LAdH-6ISpnEI8p9e5ayZAQ== Age: 1886 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3 Sha1: 58c8dccc28ecd76424af6ed9988575a35cf8a0c2 Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575" Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2999 Expires: Fri, 01 Jul 2022 23:10:49 GMT Date: Fri, 01 Jul 2022 22:20:50 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a7e37e80f3a67a41ff567648c1f2d285 Sha1: 7ce66e5153f2d4a7b14ccba49fd1a4b70ae274f5 Sha256: 8e263e6763753f5659ac0fc2d11daf8ece9720988153c38cb40631af26c86575
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.14 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Fri, 01 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: rtL8wkoKNpGF8NJAbhVaCEVVKt-xmUMfXqptSQrSX_KV1H-stDZw9Q== age: 68049 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Fri, 01 Jul 2022 22:20:50 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4153 Cache-Control: 'max-age=158059' Date: Fri, 01 Jul 2022 22:20:52 GMT Last-Modified: Fri, 01 Jul 2022 21:11:39 GMT Server: ECS (ska/F705) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a5af35b6c6d203c1f7943571f558c790 Sha1: 832cfc0aff6943cf487e007f97216fd91ee45713 Sha256: 8f1ee2202e24b6dc484d8b6b284ee6d4153e802386344e5edc106b5c1d6a0777
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Fri, 01 Jul 2022 21:38:48 GMT Expires: Fri, 01 Jul 2022 22:26:11 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: YgccY_zic40_KQ7AsSGxvVc3lEvSCRKe3uq_ph7YqNEpm5JQWvrR0w== Age: 2524 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: pxkU339EunCZFd5L60ditA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	34.214.110.180 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 7MMIyNMHr74O+1iEuK/hSaXim0Q= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17884 Expires: Sat, 02 Jul 2022 03:18:57 GMT Date: Fri, 01 Jul 2022 22:20:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17884 Expires: Sat, 02 Jul 2022 03:18:57 GMT Date: Fri, 01 Jul 2022 22:20:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17884 Expires: Sat, 02 Jul 2022 03:18:57 GMT Date: Fri, 01 Jul 2022 22:20:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17884 Expires: Sat, 02 Jul 2022 03:18:57 GMT Date: Fri, 01 Jul 2022 22:20:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17884 Expires: Sat, 02 Jul 2022 03:18:57 GMT Date: Fri, 01 Jul 2022 22:20:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff52666ca-9cf5-46c2-96f1-bb6216284ea1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6720 Md5: 73bcaab53a06d64548bc4a49ca3d4a03$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6720 x-amzn-requestid: b213e1ec-27f2-493f-a8fd-8c566a25d4cb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Uk37eGHMIAMFmMw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bea049-24d0309508b4e1e16ebdb87c;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 07:20:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: JInjwOIm0-0bZDxHhVl9WidXOmyCd9ROyvACPQkp355s2sV5WwQPXA== via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 13:39:54 GMT age: 31259 etag: "9351c584e318a6337c1acef4beebce39b08ff1a1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6720 Md5: 73bcaab53a06d64548bc4a49ca3d4a03 Sha1: 9351c584e318a6337c1acef4beebce39b08ff1a1 Sha256: b54146b877b787c71685ec413f0ef9e3a30a931036d97dd1ce8fc160b19f8cd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b693c9f-67be-4ac0-b261-907639467fd1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9986 Md5: 423b835cc7c59b9ae5e054bea9b5a350$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 9986 x-amzn-requestid: b96951f0-f4c4-4f63-ba41-ba43c6a30e11 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um1x6GWeIAMFXsQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf69a5-04ea27df61b0abc76ec50b8a;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:49 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: hNfdMvL0PbaHLqRYzZDAACAbAwDwzctEoB6b41DGooXqdl4tx_5dlA== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:41:44 GMT age: 2349 etag: "06bd1f5a2f23819184eb44076b107f234f432081" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9986 Md5: 423b835cc7c59b9ae5e054bea9b5a350 Sha1: 06bd1f5a2f23819184eb44076b107f234f432081 Sha256: 7b3a9e9f2cced74e0e018f5174c93dda41b95b2a5fa5aaabe933481d0a53ebde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f8c214c-730e-4b19-b99e-a0a766f1bb7c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9951 Md5: 8158ba1891b3e97ba4713a6078565420$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 9951 x-amzn-requestid: 03ad32b0-df58-4683-83a9-121124a7a262 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um2fdFhZoAMFQSQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf6ac9-3118c2bb3c45b6e26574fe54;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:44:41 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: zpxnK1HJInekigjGGstGZsMA4_CQKXzXjBMmDLdh_620XoiDhtGxaQ== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:45:24 GMT age: 2129 etag: "bd966de692cd14099641123af30404e0196d8351" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9951 Md5: 8158ba1891b3e97ba4713a6078565420 Sha1: bd966de692cd14099641123af30404e0196d8351 Sha256: af5da3e044cb75c0286f1cb6e1500406246d1bb828e1a8f8b901f8c0a0efdef7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5571171d-93e2-4135-8225-3bfc53bc48ac.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6736 Md5: 0ace558e62edc260cee8891548c0621d$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6736 x-amzn-requestid: 9e808fb4-bd09-40e9-91af-080ccdc93ee9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um2BSE0ToAMFfag= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf6a08-2a5ed3cb6402d1907c9656a8;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:28 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: QsLGBz_oGZL0ZFz_WyunCdHOX7Rz5Q8HSmI4n6FmkqpeZiUGvl0fJQ== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:46:17 GMT age: 2076 etag: "a63b88bf7ec527ec4774676532c865a161533e4a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6736 Md5: 0ace558e62edc260cee8891548c0621d Sha1: a63b88bf7ec527ec4774676532c865a161533e4a Sha256: 1fb21b28c0480725834b801307a5fff6b62d1a9c2495b901217fff6f5617059f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb074cace-c82e-4a74-9c0b-0aaa90d93be0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12514 Md5: db5faddf8709d2d8145b887ac6ff3d1b$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12514 x-amzn-requestid: dc829fc7-a56f-4cbe-a887-d0bd2dbfd422 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um1_dHSzoAMFWQg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf69fc-41ffb7f34ac6b9a52be63062;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:16 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: mJ9rm3pMqU15qg66vcmXzJfjD5qNFLVjGKcDqQxDvgfKsz_CU50Dqw== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:46:17 GMT age: 2076 etag: "3006b8bb663154dcc506d82e7e2b0622a059c5e2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12514 Md5: db5faddf8709d2d8145b887ac6ff3d1b Sha1: 3006b8bb663154dcc506d82e7e2b0622a059c5e2 Sha256: 86f4dc7c2001b8503f9885d9aedf3c977488c7c808228bd3a6df586607d9b6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F467439ea-c575-4827-98d6-8825c0de90b2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11075 Md5: e7d92596bbfb52e7c7ef07251faa1e34$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11075 x-amzn-requestid: f2f5e6fb-4573-4ba4-a9f3-865bc0321d7c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um1yEGIeoAMFhzw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf69a6-6cb9d26126682e19094b83c9;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:50 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: a4lrFADmcw_0phQATsctedZ3woIBHpaWK2b1VMlgaSebmolyJAZFHQ== via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:41:44 GMT age: 2349 etag: "48af41305be6b193dbc13ba537a791da30aed693" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11075 Md5: e7d92596bbfb52e7c7ef07251faa1e34 Sha1: 48af41305be6b193dbc13ba537a791da30aed693 Sha256: a9c4445a531c8110ebde68f91f678e74893fa0648b6140b37a26c35533eb1386