Overview

URL kovofilm.cz/userfiles/file/mavijimije.pdf
IP217.11.249.138
ASNCASABLANCA INT a.s.
Location Czechia
Report completed2022-06-28 09:20:47 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-28 2 kovofilm.cz/userfiles/file/mavijimije.pdf Phishing
2022-06-28 2 kovofilm.cz/userfiles/file/mavijimije.pdf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-28 04:03:59 UTC 34.120.237.76
[Mnemonic Passive DNS] kovofilm.cz (3) 0 No data No data 217.11.249.138 Unknown ranking
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-06-28 04:47:27 UTC 23.36.76.226
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-28 04:55:22 UTC 54.230.111.99
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-28 05:35:57 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-28 05:15:05 UTC 35.82.103.10


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 217.11.249.138

Date UQ / IDS / BL URL IP
2022-08-05 12:27:40 +0000
0 - 0 - 1 brightworks.cz/ 217.11.249.138
2022-06-28 19:42:15 +0000
0 - 0 - 2 kovofilm.cz/userfiles/file/mavijimije.pdf 217.11.249.138
2022-06-23 13:23:08 +0000
0 - 0 - 1 urs-certification.com/gais/image/file/7685611 (...) 217.11.249.138
2019-05-07 03:27:48 +0200
0 - 0 - 4 bergkom.cz/ 217.11.249.138
2019-04-19 23:33:59 +0200
0 - 0 - 0 www.kotanec.cz/media/k2/attachments/008v_vodo (...) 217.11.249.138
2019-03-30 22:39:59 +0100
0 - 0 - 5 kuchyne-volf.com/obrazky/dinds/alibaba/index 217.11.249.138
2019-03-19 19:20:08 +0100
0 - 0 - 0 www.urs-certification.co.uk 217.11.249.138
2018-12-18 17:58:30 +0100
0 - 0 - 1 medi-beauty.eu/ 217.11.249.138
2018-12-12 19:17:58 +0100
0 - 0 - 2 www.medi-beauty.eu/invoices/8065392/DOC/En/In (...) 217.11.249.138
2018-09-27 12:30:29 +0200
0 - 0 - 6 kuchyne-volf.com/obrazky/dinds/alibaba/index.php 217.11.249.138

Last 10 reports on ASN: CASABLANCA INT a.s.

Date UQ / IDS / BL URL IP
2022-08-10 16:07:28 +0000
0 - 0 - 1 ckeditor.pamlskovnik.cz/ckfinder/userfiles/files/ 217.11.249.139
2022-08-10 05:50:58 +0000
0 - 0 - 1 ckeditor.pamlskovnik.cz/ckfinder/userfiles/files/ 217.11.249.139
2022-08-09 07:04:04 +0000
0 - 0 - 11 naramkylenny.cz/ 77.78.76.152
2022-08-05 22:56:30 +0000
0 - 0 - 30 latinotravel.cz/images/content/Made-in-China. (...) 81.0.212.3
2022-08-05 12:27:40 +0000
0 - 0 - 1 brightworks.cz/ 217.11.249.138
2022-08-04 08:00:04 +0000
0 - 0 - 1 www.greenfieldspolo.com/ 77.78.104.3
2022-08-03 06:34:29 +0000
0 - 0 - 1 slenderclub.cz/ckfinder/userfiles/files/94705 (...) 81.0.232.156
2022-08-03 05:31:42 +0000
0 - 0 - 1 www.tractortools.cz/ckfinder/userfiles/files/ (...) 82.208.9.182
2022-08-03 05:31:37 +0000
0 - 0 - 1 www.tractortools.cz/ckfinder/userfiles/files/ (...) 82.208.9.182
2022-08-02 20:08:12 +0000
0 - 0 - 1 stehovani-ostrava.cz/static_pages_files/file/ (...) 82.208.18.187

Last 1 reports on domain: kovofilm.cz

Date UQ / IDS / BL URL IP
2022-06-28 19:42:15 +0000
0 - 0 - 2 kovofilm.cz/userfiles/file/mavijimije.pdf 217.11.249.138


JavaScript

Executed Scripts (0)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (21)


Request Response
                                        
                                            GET /userfiles/file/mavijimije.pdf HTTP/1.1 
Host: kovofilm.cz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         217.11.249.138
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 28 Jun 2022 09:20:31 GMT
Server: Apache
Location: https://kovofilm.cz/userfiles/file/mavijimije.pdf
Content-Length: 257
Keep-Alive: timeout=3, max=400
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   257
Md5:    1abbb3a2ec93ffb0df54065c78fb85ac
Sha1:   b0a8aecd533c7592fc72686c2aff755093941d01
Sha256: 5e158efee081fda9709dcdb36a87f087fa1a650d913bd3152afe4c5fbf1654ae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 28 Jun 2022 08:41:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lC6ss7vlw3Bs55iL8djdpYVZK7mKWYBC_nwDaZh4lhYlpKQjMHnotg==
Age: 2359


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "82BA5EF79A337F17AC89D35A6869A1C607D98C1C1F7F599962AEDD03580A9118"
Last-Modified: Sun, 26 Jun 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2524
Expires: Tue, 28 Jun 2022 10:02:35 GMT
Date: Tue, 28 Jun 2022 09:20:31 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 28 Jun 2022 02:10:56 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 45Cygm4Rm0rqaOcyRm3NOjbFNH6KmftDAHjo8CDSo2TUYlU_f87uqA==
age: 25777
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 28 Jun 2022 09:20:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "18FABC89CE380E0901402998786603B3FEE5307A9D45524D57E0942FA5D9D12D"
Last-Modified: Tue, 28 Jun 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Tue, 28 Jun 2022 15:19:41 GMT
Date: Tue, 28 Jun 2022 09:20:31 GMT
Connection: keep-alive

                                        
                                            GET /userfiles/file/mavijimije.pdf HTTP/1.1 
Host: kovofilm.cz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         217.11.249.138
HTTP/2 404 Not Found
                                        
content-length: 196
content-type: text/html; charset=iso-8859-1
date: Tue, 28 Jun 2022 09:20:31 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: kovofilm.cz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kovofilm.cz/userfiles/file/mavijimije.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         217.11.249.138
HTTP/2 200 OK
                                        
last-modified: Thu, 15 Mar 2012 15:08:50 GMT
etag: "3aee-4bb49782c0480"
accept-ranges: bytes
content-length: 15086
content-type: image/x-icon
date: Tue, 28 Jun 2022 09:20:32 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   15086
Md5:    2d1d8ba9b218823ee5053a29dbe2b4a9
Sha1:   92727ce0702312a3db9bb417fc0315116f298c47
Sha256: 1d8cc310c34dd5b8befc57cc6bbf7b3681a61ec8656304ddec5f70fb26923416
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 28 Jun 2022 08:31:51 GMT
Expires: Tue, 28 Jun 2022 09:09:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v5gbUTtyubOUKTw5rxfqHuq_SC49habOj6XSeYzNpyefo-cxm4LjXA==
Age: 2921


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1904
Cache-Control: 'max-age=158059'
Date: Tue, 28 Jun 2022 09:20:32 GMT
Last-Modified: Tue, 28 Jun 2022 08:48:48 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: endUcKqrOhqRucB1/g2NCg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.103.10
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4jpy7DrtQT8TBYf/NZYNfVWkag4=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "231B325D990CED62D0B4BE0BA77EB3B65814F57A2E1B66C35A9819EE4D4ABE4B"
Last-Modified: Sun, 26 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Tue, 28 Jun 2022 10:02:58 GMT
Date: Tue, 28 Jun 2022 09:20:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "231B325D990CED62D0B4BE0BA77EB3B65814F57A2E1B66C35A9819EE4D4ABE4B"
Last-Modified: Sun, 26 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Tue, 28 Jun 2022 10:02:58 GMT
Date: Tue, 28 Jun 2022 09:20:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "231B325D990CED62D0B4BE0BA77EB3B65814F57A2E1B66C35A9819EE4D4ABE4B"
Last-Modified: Sun, 26 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Tue, 28 Jun 2022 10:02:58 GMT
Date: Tue, 28 Jun 2022 09:20:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "231B325D990CED62D0B4BE0BA77EB3B65814F57A2E1B66C35A9819EE4D4ABE4B"
Last-Modified: Sun, 26 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Tue, 28 Jun 2022 10:02:58 GMT
Date: Tue, 28 Jun 2022 09:20:34 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F662e3924-4c86-4dd0-a8f4-4bb0ac10e2b0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8056
x-amzn-requestid: 6296c533-300b-420c-b836-79666d099a64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UZqadGPnIAMFmZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba2442-0dfc2405297259b625cbbc05;Sampled=0
x-amzn-remapped-date: Mon, 27 Jun 2022 21:42:26 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XbU56klGftR7I90ZJ2amrdMNLJZxVUu_m18Q9kOihd-7l8f2ZQmPHg==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Jun 2022 21:47:11 GMT
age: 41603
etag: "3c2b0f512d76e6c2a64c0e857e3aec0e0501d05a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8056
Md5:    c3fa821bf9944ddba98647633128172b
Sha1:   3c2b0f512d76e6c2a64c0e857e3aec0e0501d05a
Sha256: d7275cef091d549384356d2990db77cfbf41f2259b1ed54ee4664a9d999888a9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92e72a99-483d-499b-a39b-8bc74ada0bcd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4541
x-amzn-requestid: e3803055-1706-42f3-9c4c-f8505f704cf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UaBLhFBJIAMF0BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba48af-499da3df537cc04c0b523d80;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 00:17:51 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fpYZT5cLxAqGuanC4_VSfWzv99PqndvecLnZ5XQHxAI7XsS5R1SMNw==
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 eab8a154a09e69260fbfe4df90182b2e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Jun 2022 00:25:35 GMT
etag: "54d8f88f9d0d0120590137d8e56b825c17c80027"
content-type: image/jpeg
age: 32099
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4541
Md5:    a85340b0ab553f512b956d0b2abd622d
Sha1:   54d8f88f9d0d0120590137d8e56b825c17c80027
Sha256: f6b6bc0f4ca29c05584a93e358b5f1048bcc6aa9a0e1af101bc9a19ad93bc81c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff92f71-2ed2-4cd5-9485-1b828a130c82.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 3602
x-amzn-requestid: 813d66e0-b43c-43a7-adfd-6415f036263c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UR4VUFj8IAMF0BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b70755-75208d3b75502cc533164913;Sampled=0
x-amzn-remapped-date: Sat, 25 Jun 2022 13:02:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yLdPLNgv70Iq4NzCylLCn7okPCwdY_x0E4WlQWXmNRqo5c_U7UMF2Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Jun 2022 04:53:05 GMT
age: 16049
etag: "a634e46c4ee333351671eca873896d3326df6c92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3602
Md5:    4d45c3dbda830f83ed7afb53cca696be
Sha1:   a634e46c4ee333351671eca873896d3326df6c92
Sha256: c63be91fc2b3b1c2b494f31420a35bce5dedd3a2058e5e369b095479d5b0056e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2ef32bd-1d06-4efe-9ee3-264abace5e57.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8457
x-amzn-requestid: 058e01e4-2d52-4223-a58e-66fc3d9aad64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UZpd3GWooAMFilA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba22be-2ff856310d9c9bee446ded24;Sampled=0
x-amzn-remapped-date: Mon, 27 Jun 2022 21:35:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-yDT6CLCTGPj9TQGIwhpp0-4EJI4EWFi9ClP3UPx-XupuiYzaThng==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Jun 2022 22:28:47 GMT
age: 39107
etag: "57e4ee94ab36b07b31fd2f78723b393861eebd70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8457
Md5:    08c81e77c222e2d2f417408fa05a9b55
Sha1:   57e4ee94ab36b07b31fd2f78723b393861eebd70
Sha256: c2c7653e61b97262a0c6a908251cccfd77ae6ecd4b489a047a2a8b4b6b8aa629
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa544857c-94df-4a2f-a455-7086ddb48824.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 13702
x-amzn-requestid: 9d6907b5-0f95-44d1-bcd8-64c2247f1b6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UZpd2GHLoAMFRWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba22be-0ab5354847837db1796ed8df;Sampled=0
x-amzn-remapped-date: Mon, 27 Jun 2022 21:35:58 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ciyKVpdH0yUyrE9NnuydS_7HBL9Mb11MG0Fz5fMnOlsJ-WRUQiWnUA==
via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Jun 2022 21:47:11 GMT
age: 41603
etag: "6cb50d3899f8193251f9e61b7347c943e3af2dc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13702
Md5:    9811abfddac37aabca1e40b3cdccf79e
Sha1:   6cb50d3899f8193251f9e61b7347c943e3af2dc9
Sha256: 9da1183068693da26dd9bc19827c48419eb40c81370b52bf336b1d58d6ba97cb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f092bf5-4517-42fc-b48c-06207bc0810e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4972
x-amzn-requestid: 43006d1b-59c4-4a56-8af9-90921a3905c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: URbZpErFoAMF0WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b6d90a-458bfd937fe823580d72dae0;Sampled=0
x-amzn-remapped-date: Sat, 25 Jun 2022 09:44:42 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7l67hqJclMyM15HCdVSkfd40jg0YzUKUwfREz-UEbz31yH1YM99foQ==
via: 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Jun 2022 07:00:14 GMT
age: 8420
etag: "c1a2d21a2d9b3309d980d07e5265de58b3d46e9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4972
Md5:    4615c4ab8fd735f6c2bba05f758cb1ab
Sha1:   c1a2d21a2d9b3309d980d07e5265de58b3d46e9c
Sha256: 0a8d2c04157f99a6b632feadd7aebcf34c27552b039dd2eb1d196617a967d4b2