urlquery - report: dl021.apkawards.com/apkmod_apks/dl21/beatmaker.edm.musicgames.gunsounds.beatfire2/beatmaker.edm.musicgames.gunsounds.beatfire2_1.1-apk_award-mod.apk

Overview

URL	dl021.apkawards.com/apkmod_apks/dl21/beatmaker.edm.musicgames.gunsounds.beatfire2/beatmaker.edm.musicgames.gunsounds.beatfire2_1.1-apk_award-mod.apk
IP	104.21.64.9
ASN	CLOUDFLARENET
Location
Report completed	2022-06-30 01:54:16 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-06-30	2	dl021.apkawards.com/apkmod_apks/dl21/beatmaker.edm.musicgames.gunsounds.bea (...)	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (8)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-06-29 20:37:26 UTC	34.120.237.76
[Mnemonic Passive DNS]	dl021.apkawards.com (1)	0	No data	No data	104.21.64.9	Domain (apkawards.com) ranked at: 942040
[Mnemonic Passive DNS]	r3.o.lencr.org (4)	344	2020-12-02 08:52:13 UTC	2022-06-29 04:27:49 UTC	23.36.76.226
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	143.204.55.35
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-06-29 04:30:20 UTC	143.204.55.110
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-06-29 19:09:02 UTC	93.184.220.29
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-06-29 20:37:23 UTC	35.82.213.230

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.21.64.9

Date	UQ / IDS / BL	URL	IP
2022-06-30 15:31:57 +0000	0 - 0 - 1	dl8910.apkawards.com/apkmod_apks/dl9/com.ea.g (...)	104.21.64.9
2022-06-30 01:56:00 +0000	0 - 0 - 1	dl021.apkawards.com/apkmod_apks/dl21/com.noxg (...)	104.21.64.9
2022-06-30 01:55:34 +0000	0 - 0 - 1	dl567.apkawards.com/apkmod_apks/dl7/com.fours (...)	104.21.64.9
2022-06-30 01:55:28 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl12/net.bas (...)	104.21.64.9
2022-06-30 01:54:57 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.jo (...)	104.21.64.9
2022-06-30 01:54:34 +0000	0 - 0 - 1	dl155.apkawards.com/apkmod_apks/dl5/com.klock (...)	104.21.64.9
2022-06-30 01:54:34 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/io.eme (...)	104.21.64.9
2022-06-30 01:54:25 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.be (...)	104.21.64.9
2022-06-30 01:54:18 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl12/net.hex (...)	104.21.64.9
2022-06-30 01:54:08 +0000	0 - 0 - 1	dl155.apkawards.com/apkmod_apks/dl15/com.tira (...)	104.21.64.9

Last 10 reports on ASN: CLOUDFLARENET

Date	UQ / IDS / BL	URL	IP
2022-08-12 13:01:35 +0000	0 - 0 - 51	register-new-event.ml/	188.114.97.1
2022-08-12 13:00:56 +0000	0 - 0 - 3	https://infinite-stars.net/files/vida.exe	104.21.66.135
2022-08-12 13:00:52 +0000	0 - 0 - 3	https://infinite-stars.net/files/drop.exe	104.21.66.135
2022-08-12 13:00:46 +0000	0 - 0 - 3	https://infinite-stars.net/files/clip.exe	172.67.160.101
2022-08-12 13:00:27 +0000	0 - 0 - 5	investing-world.com/lps/bitcoinlt/index.html	104.21.10.233
2022-08-12 12:59:42 +0000	0 - 0 - 3	https://infinite-stars.net/files/sysadmin.exe	172.67.160.101
2022-08-12 12:59:27 +0000	0 - 0 - 3	vpnadefence2plus.com/2/vdo/index.html	104.21.87.248
2022-08-12 12:56:43 +0000	0 - 0 - 1	romsclean.xyz/The%20tutorial%20files_17294	172.67.154.128
2022-08-12 12:56:03 +0000	2 - 0 - 1	stylishannexation.top/c9dffll0AWNodWJIBEYIUTc (...)	104.21.27.150
2022-08-12 12:55:37 +0000	0 - 0 - 1	vapourscale.online/	104.21.28.23

No other reports on domain: apkawards.com

JavaScript

Executed Scripts (4)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (17)

Request	Response
GET /apkmod_apks/dl21/beatmaker.edm.musicgames.gunsounds.beatfire2/beatmaker.edm.musicgames.gunsounds.beatfire2_1.1-apk_award-mod.apk HTTP/1.1 Host: dl021.apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4$ 104.21.64.9 HTTP/1.1 302 Found Content-Type: text/html; charset=iso-8859-1 Date: Thu, 30 Jun 2022 01:54:02 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://apkaward.com/errors/dl.html CF-Cache-Status: BYPASS Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rovZfBQjHOG%2Fp%2BoYthVKLgm2Pu8LRN9UjeTnr9zYCp5xQ41LS3UMu9IxANv5Leh3NMaVUTDOc0Zr8icJOdNiIVNTFTBqhCFUY92dOZXBlMcO15p9d3SzYoTlkj3x%2FFWvegPUPqvg"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7233458fcf820b51-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4 Sha1: a73ecd2827f89a1f943bf9c3145ee8eab8e18d55 Sha256: 47d134c4a97cdf64d2a79ee3eb6741011223e3e2b0ae120c69da602a470f3b08 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "3E2650132BC75A58C9B08C2A69EC353237F48E840D9D2481F9D5E63D92ABBC6F" Last-Modified: Wed, 29 Jun 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13714 Expires: Thu, 30 Jun 2022 05:42:37 GMT Date: Thu, 30 Jun 2022 01:54:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: f877dcf1049551cb05fe926e4b94fb51 Sha1: 2f5c8da538c78853b68ca58a3df5dd64b032291b Sha256: 3e2650132bc75a58c9b08c2a69ec353237f48e840d9d2481f9d5e63d92abbc6f
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3$ 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 30 Jun 2022 01:48:21 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: l_vEXFk9QtwgCawx5vvBsbn5PE2O_xVES5sWn1fTzwHPY2dWYd_XAA== Age: 342 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3 Sha1: 58c8dccc28ecd76424af6ed9988575a35cf8a0c2 Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0$ 143.204.55.110 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 date: Wed, 29 Jun 2022 02:10:55 GMT last-modified: Wed, 11 May 2022 19:51:39 GMT etag: "48ca0beea419a9039591cf1aee5179e0" content-disposition: attachment accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: DvqLFSkc5KXjpuXyv59URVly3g8sE5Lhfz6JFfaGayXVMhke8keeag== age: 85389 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0 Sha1: 9e92629f505fcc07aab51221e8fe62197a23e307 Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Thu, 30 Jun 2022 01:54:03 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Thu, 30 Jun 2022 01:31:51 GMT Expires: Thu, 30 Jun 2022 01:32:32 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: puIrpbyH0MxJA0dxaRqt_i2mPxkxNSHdm_LLMulNy8QQqPpo_srcGw== Age: 1333 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2682 Cache-Control: max-age=111436 Date: Thu, 30 Jun 2022 01:54:04 GMT Etag: "62bc080e-1d7" Expires: Fri, 01 Jul 2022 08:51:20 GMT Last-Modified: Wed, 29 Jun 2022 08:06:38 GMT Server: ECS (ska/F707) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: cdfeaca3994b060f79b30baed6e1a5f8 Sha1: 8b53b71d89f77bdd9025ea92d5ecf9d8fc42ac0b Sha256: 45b4fbbe4c3fe2b94e23db698bebfcec936cd21bb5b264be311c109f1c1242ce
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: DbYa9z8M0utDozuD55Ip+A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	35.82.213.230 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: mVbdzUcXJuGuHrzlJJMPQNoRJLE= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5884 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:06 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5884 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:06 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5884 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:06 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79d277b-5e0d-4a1d-83ed-a355ef2276b5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7289 Md5: f1824610da34f0cd715ab3e1d02e574e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7289 x-amzn-requestid: 264aa8ac-52cb-4197-9228-e5313adf839b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UduTkE2MoAMFilA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbc416-2949bcb82c4d4d0563afe339;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 03:16:38 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QJZq1ShEJ95I6Plw6TMo5lIXtIFdP7WQUrd8m8EpwYiMZuCCuAUUVg== via: 1.1 dfd0a9d31e7c22e1ecdaa3c92763b966.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:58:17 GMT age: 14149 etag: "443cc22a0847bea98bfb28ed46abe38567605116" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7289 Md5: f1824610da34f0cd715ab3e1d02e574e Sha1: 443cc22a0847bea98bfb28ed46abe38567605116 Sha256: 80cb62cc2421eea285770c4c2bed8b53cd9c004938004b21d9889db88e06dff2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11d0870a-bbc1-425f-baab-78d8faee2f69.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12525 Md5: 35a9456069f8c234f9df7f90deddad64$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12525 x-amzn-requestid: de846bdc-4966-481a-9b04-909cd7faae72 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgO9OHKpIAMFX5g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc521-6a6aa9e827cb3dc964a27a97;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:21 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: LRHwjpR8zYoPoCTCdz9DeojKORZLjVBzm6cijcQCMyDfUQRvN5FuJQ== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:54:25 GMT age: 14381 etag: "c4bd5602723c5eabcb935dc8af373d5b58d30d4d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12525 Md5: 35a9456069f8c234f9df7f90deddad64 Sha1: c4bd5602723c5eabcb935dc8af373d5b58d30d4d Sha256: e4e2dac06aecdbe7af1e366f8cb15919689154f3e05cd949582285bc611660ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c8df935-2cd0-4257-a634-97444dfbb7c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5212 Md5: 3bfbc94a4f67fe0dd25808724bd628cf$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5212 x-amzn-requestid: 509c0604-ea2c-4174-8350-96e63e064275 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgP2pFk8IAMFcLw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc690-78d5e73c5382093e1e5613de;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:39:28 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: adeINGgbdqX3AjqA9FHiIBcnK80WptM2rMnkg3BCVoQkX18nM0NYcQ== via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:54:28 GMT age: 14378 etag: "c148393bd889634b8e891e3370504c24982b8efb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5212 Md5: 3bfbc94a4f67fe0dd25808724bd628cf Sha1: c148393bd889634b8e891e3370504c24982b8efb Sha256: ac31355e39e17fb063049b565e24fd28736e0afef316703c7d50fec7b93f58b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c820b41-1344-4f3c-aab0-014f108e8b52.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7422 Md5: 8d4b79df526e3f0fb56adab2db711218$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7422 x-amzn-requestid: c58357ff-a4e0-4360-9ed0-0c99c0113bb3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ua_bJHL4IAMFs_g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62baac47-6079b89463e237df5e6d6943;Sampled=0 x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:47 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: SngKu74kM4rr6AAuiB82W9CGxOCoVJKC9h5LqKgBIfL97YjmtEfT-g== via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 07:25:57 GMT age: 66489 etag: "be66cb7246698432cabd92c4e0b484c9dcd22b40" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7422 Md5: 8d4b79df526e3f0fb56adab2db711218 Sha1: be66cb7246698432cabd92c4e0b484c9dcd22b40 Sha256: f22197231cbd66c2b57cfc18c8c33d3411803887ef222b0a31e81d6a80d34eee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc64139e3-1714-4207-9f83-6963efdebdb1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11303 x-amzn-requestid: 133e1b8e-7db3-4337-92a0-b693c3ba40aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeQEkHN1IAMF6qQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbfa1d-65b9ee0025592952377ccb6d;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:07:09 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: qZ65_kcaLORUGEbUuifwMdYmlm007Tehq5XMtiHQGeFkUOcqwiXi2Q== via: 1.1 cb2af39fbf29fa8b3d7f263c2b822092.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 07:07:09 GMT age: 67617 etag: "91d2dc48008a198adb2b740bec1843a146f826c1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2 Sha1: 91d2dc48008a198adb2b740bec1843a146f826c1 Sha256: 2e56992e4642c248dd330fc1343977dedd2ec4e944564214be432f3f390488e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7a4375-a2db-4744-a689-0c1e65ea038f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10792 Md5: 3144b94a8936136d9e7214c57fef0d1c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10792 x-amzn-requestid: c239e02c-f315-4de9-9d2e-7d0ebaaa7533 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgO-qHlxIAMF3GQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc52a-6a031ec43564a69e1a8efe66;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:30 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: aZnblzoq9MlncZxFISS3Bx92B8nnCbXHnTd8cOXyXfWqmYVxY3HYFA== via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:47:40 GMT age: 14786 etag: "91a496da3231d55b9511ed5c64cc4b7386fb130e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10792 Md5: 3144b94a8936136d9e7214c57fef0d1c Sha1: 91a496da3231d55b9511ed5c64cc4b7386fb130e Sha256: f2062f616360faf1e83f0d6161ee0fe552091df15c01e30eb518d5bb1ab90920