urlquery - report: dl1789.apkawards.com/mod/dl18/com.notdoppler.crashofcars/com.notdoppler.crashofcars_1.6.07-apk_award.apk

Overview

URL	dl1789.apkawards.com/mod/dl18/com.notdoppler.crashofcars/com.notdoppler.crashofcars_1.6.07-apk_award.apk
IP	104.21.64.9
ASN	CLOUDFLARENET
Location
Report completed	2022-06-14 21:22:36 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-06-14	2	d4.xiazaiyuming2.com/android/shuangshanbizhe.apk	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (9)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.118
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-06-14 16:36:00 UTC	93.184.220.29
[Mnemonic Passive DNS]	d4.xiazaiyuming2.com (1)	0	No data	No data	113.219.238.74	Unknown ranking
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-06-14 08:54:13 UTC	34.120.237.76
[Mnemonic Passive DNS]	r3.o.lencr.org (3)	344	2020-12-02 08:52:13 UTC	2022-06-14 04:59:12 UTC	23.36.76.226
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-06-14 05:05:57 UTC	54.230.111.14
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-06-14 04:59:08 UTC	52.40.161.235
[Mnemonic Passive DNS]	dl1789.apkawards.com (1)	0	No data	No data	104.21.64.9	Domain (apkawards.com) ranked at: 942040

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.21.64.9

Date	UQ / IDS / BL	URL	IP
2022-06-30 15:31:57 +0000	0 - 0 - 1	dl8910.apkawards.com/apkmod_apks/dl9/com.ea.g (...)	104.21.64.9
2022-06-30 01:56:00 +0000	0 - 0 - 1	dl021.apkawards.com/apkmod_apks/dl21/com.noxg (...)	104.21.64.9
2022-06-30 01:55:34 +0000	0 - 0 - 1	dl567.apkawards.com/apkmod_apks/dl7/com.fours (...)	104.21.64.9
2022-06-30 01:55:28 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl12/net.bas (...)	104.21.64.9
2022-06-30 01:54:57 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.jo (...)	104.21.64.9
2022-06-30 01:54:34 +0000	0 - 0 - 1	dl155.apkawards.com/apkmod_apks/dl5/com.klock (...)	104.21.64.9
2022-06-30 01:54:34 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/io.eme (...)	104.21.64.9
2022-06-30 01:54:25 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.be (...)	104.21.64.9
2022-06-30 01:54:18 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl12/net.hex (...)	104.21.64.9
2022-06-30 01:54:16 +0000	0 - 0 - 1	dl021.apkawards.com/apkmod_apks/dl21/beatmake (...)	104.21.64.9

Last 10 reports on ASN: CLOUDFLARENET

Date	UQ / IDS / BL	URL	IP
2022-07-06 00:27:06 +0000	0 - 0 - 1	msfnbldc.site/Paypal-Payment-Request-Not-Show (...)	104.21.58.88
2022-07-06 00:27:06 +0000	0 - 0 - 1	msfnbldc.site/Paypal-Payment-Request-Not-Show (...)	104.21.58.88
2022-07-06 00:27:01 +0000	0 - 0 - 1	solaraudition.site/Babson-College-Transcript- (...)	104.21.88.229
2022-07-06 00:25:27 +0000	0 - 0 - 1	nomicseffect.shop/	172.67.151.64
2022-07-06 00:18:09 +0000	0 - 0 - 2	franksuffice.top/	172.67.161.156
2022-07-06 00:17:14 +0000	0 - 0 - 40	secure.getcondorcbd.com/v2/mobile/?AFFID=88F5 (...)	104.18.24.47
2022-07-06 00:15:47 +0000	0 - 0 - 1	moderator-academy-registration.gq/	104.21.87.79
2022-07-06 00:13:04 +0000	0 - 0 - 3	phone-services.xyz/av/av_ml_1/index.html	104.21.56.53
2022-07-06 00:08:52 +0000	0 - 0 - 2	strengthandlight.com/	23.227.38.32
2022-07-06 00:06:38 +0000	1 - 0 - 0	e.enjoyasky.xyz/wbiwxb/i13s21m/index-en-i13pr (...)	104.18.70.149

No other reports on domain: apkawards.com

JavaScript

Executed Scripts (4)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (17)

Request	Response
GET /mod/dl18/com.notdoppler.crashofcars/com.notdoppler.crashofcars_1.6.07-apk_award.apk HTTP/1.1 Host: dl1789.apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4$ 104.21.64.9 HTTP/1.1 302 Found Content-Type: text/html; charset=iso-8859-1 Date: Tue, 14 Jun 2022 21:22:25 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://apkaward.com/errors/dl.html CF-Cache-Status: BYPASS Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcHjkA0X5FDwl3gKs0hNphj1LtppRHRZc7p76JCwABc6IZlGXVyCFmpXDGGUGQizlG28tLIFNqxxPVM7R%2FIdjRLMpLQ3VY4gVFWyYbbUrqBG7ge0TxWG1fMys%2BOnb9AMQfbXR644ww%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 71b61f0ccd69b4fa-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4 Sha1: a73ecd2827f89a1f943bf9c3145ee8eab8e18d55 Sha256: 47d134c4a97cdf64d2a79ee3eb6741011223e3e2b0ae120c69da602a470f3b08
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A72C5AD08B5111E1443CF8CC7A6A5F39EF196F8AE55C43D4902661F93D87F0C0" Last-Modified: Tue, 14 Jun 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9869 Expires: Wed, 15 Jun 2022 00:06:54 GMT Date: Tue, 14 Jun 2022 21:22:25 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dfae85015dc6a71cdbf0aa51719a89c1 Sha1: ccd9124376b8009e67b96fbdbb4d9367a88c1680 Sha256: a72c5ad08b5111e1443cf8cc7a6a5f39ef196f8ae55c43d4902661f93d87f0c0
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 680f534bc29773f704a63c3e3af93c2e$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Retry-After, Backoff, Alert, Content-Type Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Tue, 14 Jun 2022 20:33:55 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: rTM9o-k4WuXL3RtBNNq0hV8x_EKns-wKlBfoqk5BDhnT9UhKqHsgdQ== Age: 2910 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 680f534bc29773f704a63c3e3af93c2e Sha1: f1002cea53ff52d1c926d929f80601353c43bb48 Sha256: 0e83ec9c78b140e17c61e7c0f67997b5227af6f7c283c412a087b10a825a69f8
GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0$ 54.230.111.14 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Wed, 11 May 2022 19:51:39 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Tue, 14 Jun 2022 02:10:49 GMT etag: "48ca0beea419a9039591cf1aee5179e0" x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: neuQ2oi9h41MFghKyG-vgvvPsZKNDAjLWvkuWqImJuCBgxUACWGMyQ== age: 69097 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0 Sha1: 9e92629f505fcc07aab51221e8fe62197a23e307 Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Tue, 14 Jun 2022 21:22:25 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Pragma, Expires, Content-Length, Retry-After, Last-Modified, ETag, Backoff, Cache-Control, Alert, Content-Type Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Tue, 14 Jun 2022 20:52:03 GMT Cache-Control: max-age=3600 Expires: Tue, 14 Jun 2022 21:06:48 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: PabLBrdp6zokd95tEZaMKXJ7cYONxbHPlBe4YKZ-eveTTlntaiKM1g== Age: 1825 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4586 Cache-Control: 'max-age=158059' Date: Tue, 14 Jun 2022 21:22:28 GMT Last-Modified: Tue, 14 Jun 2022 20:06:03 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: f2be856ebee3596db2c6cef065ac7967 Sha1: ab654cb6e66dd2a903326d187712fec1f6dc58a0 Sha256: 92d2ba2927d0c3c9cb2458633403320f76917387ed09799e9d633147504f4ab9
GET /android/shuangshanbizhe.apk HTTP/1.1 Host: d4.xiazaiyuming2.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Range: bytes=18495348- If-Match: "5fa20a0a-11af6c5" If-Unmodified-Since: Wed, 04 Nov 2020 01:55:22 GMT	113.219.238.74 HTTP/1.1 206 Partial Content Content-Type: application/octet-stream Server: nginx Date: Tue, 14 Jun 2022 21:22:27 GMT Content-Length: 48977 Last-Modified: Wed, 04 Nov 2020 01:55:22 GMT Connection: keep-alive ETag: "5fa20a0a-11af6c5" X-Frame-Options: sameorigin Content-Range: bytes 18495348-18544324/18544325 --- Additional Info --- Magic: data Size: 48977 Md5: d41110546b2fb0fd634a723cb42095f5 Sha1: 4e929bbe82725bde84a844a4cc510eb275ffc704 Sha256: 5b2204beac99b2df9f46307dc38b45e6e10aa599c6608d094f0d6e348168ac00 Alerts: Blocklists: - fortinet: Malware
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 2JHYbyEevATV4vZsYEdrWw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.40.161.235 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: p9TGqp7EP+8rvemL5CaS9pw4nGM= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F95A4059C8A915B6D9B7BA0C5BDA51F09B49C2201186279058C0925C41933780" Last-Modified: Tue, 14 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3278 Expires: Tue, 14 Jun 2022 22:17:06 GMT Date: Tue, 14 Jun 2022 21:22:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 2c73963555e3638508a5efa84edfd130 Sha1: f56ea9740a59563e59a346f22df0f1036459d411 Sha256: f95a4059c8a915b6d9b7ba0c5bda51f09b49c2201186279058c0925c41933780
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F95A4059C8A915B6D9B7BA0C5BDA51F09B49C2201186279058C0925C41933780" Last-Modified: Tue, 14 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3278 Expires: Tue, 14 Jun 2022 22:17:06 GMT Date: Tue, 14 Jun 2022 21:22:28 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 2c73963555e3638508a5efa84edfd130 Sha1: f56ea9740a59563e59a346f22df0f1036459d411 Sha256: f95a4059c8a915b6d9b7ba0c5bda51f09b49c2201186279058c0925c41933780
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1657ccb-775b-4dda-b423-860277072067.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8955 Md5: a08dfbf7829079acd1ec817ee3e9b7d7$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8955 x-amzn-requestid: 90307d6c-5302-4634-ad00-075793054b22 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Tr2akGv9oAMFXkA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a7d110-5e97e65562b04a906c3d8d16;Sampled=0 x-amzn-remapped-date: Tue, 14 Jun 2022 00:06:40 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: Wx249cec9Dc2PhCuHT1njXSy0ppfcDHU5ozNQnbss6JkJD8jn-NVuw== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 00:31:08 GMT age: 75080 etag: "b31d36919e38303695fc13b2148a492110b4a25e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8955 Md5: a08dfbf7829079acd1ec817ee3e9b7d7 Sha1: b31d36919e38303695fc13b2148a492110b4a25e Sha256: 7aabd38b322923b06b03e7b9653afb37f0cd7d42a7d345a9d1537c16888e944a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dccc804-cd1e-4221-9cb5-97d8062419f1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5638 Md5: f5b67d952265daf446fbe8e26a53f0f1$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5638 x-amzn-requestid: 51f5a0d9-b769-4b86-9b13-88321d9dc032 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: TokKGET9oAMF2vg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a680a6-487b5bf83cb9e8d547b77ae9;Sampled=0 x-amzn-remapped-date: Mon, 13 Jun 2022 00:11:18 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: bQCWGFkK9ZYlf-7VzvFyd3GoSrkODk81_vq0PPyYdtSB_PcTyprU4A== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 01:06:27 GMT age: 72961 etag: "8435847ad413c32bf242158296f9a1de4dd9ef1d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5638 Md5: f5b67d952265daf446fbe8e26a53f0f1 Sha1: 8435847ad413c32bf242158296f9a1de4dd9ef1d Sha256: cd942e11ce4b299bc16573fdfc43b669538b5ff071cc4f3437fa4d96d7a14b26
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b1a78a-dfe3-4da6-8cc4-670373641c4b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5805 Md5: e09ac4b955c74af734b7d4ddebe46612$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5805 x-amzn-requestid: 90327810-34ff-467f-997f-c31978af33fb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Tr3M2FXBoAMFV1w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a7d252-23051fc8667ccf5900e76534;Sampled=0 x-amzn-remapped-date: Tue, 14 Jun 2022 00:12:02 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: fUOqF4vVxMkXRFSJ3oZA04TUK7JJ4pTde4Pbf89wvD6OYvWwns8JzA== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 01:31:58 GMT age: 71430 etag: "3c11fd7397db3e37c58413fa1fdbae424eaf08ab" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5805 Md5: e09ac4b955c74af734b7d4ddebe46612 Sha1: 3c11fd7397db3e37c58413fa1fdbae424eaf08ab Sha256: 1e24690d21d9c3b0cdb2979d1e6a7098e5c49aefa4a32dbe653a0d528309c3bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4eae668-4235-407e-839b-a87a88514ebd.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7922 Md5: 049c739bd5f5714c5a022f9a4418e60c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7922 x-amzn-requestid: d5e72a51-4ee0-47ac-b6a1-3f64c67b017b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Tr2amEJuIAMF7CQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a7d110-017524fd6c54a4b222a07f19;Sampled=0 x-amzn-remapped-date: Tue, 14 Jun 2022 00:06:40 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: fgHt7mIFc8otGHZlB3q18cD4iewXCW4YoF2_B4ji_4Q8ZzxOhtS9jQ== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 00:20:15 GMT age: 75733 etag: "f20326f4665bf9f460d8db41672ff04875a096c4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7922 Md5: 049c739bd5f5714c5a022f9a4418e60c Sha1: f20326f4665bf9f460d8db41672ff04875a096c4 Sha256: 1cd40073b87e14a71d56380792f558364366f2d12615e03835de3ff9cf0e4b99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb85dbf6f-ac3a-4776-bd46-3131d1a8d2ca.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11401 Md5: 4637dc49b9ad2aab43f0e12db6788bad$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11401 x-amzn-requestid: 8de8e602-100d-4d78-b886-b1e10166321f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Tr1z9FqEoAMFUQw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a7d019-38c31cf429a51215475fd1e8;Sampled=0 x-amzn-remapped-date: Tue, 14 Jun 2022 00:02:33 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: YwWE_jGeZHj1y4T-3U7DcNJY9wbhpHqG0rotU9Oaa3Zclss9gNSR0w== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a2c13de7f3df76280ef01a6604863734.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 00:21:20 GMT age: 75668 etag: "9411cb315834ec38b5be258918bb5bf94f576326" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11401 Md5: 4637dc49b9ad2aab43f0e12db6788bad Sha1: 9411cb315834ec38b5be258918bb5bf94f576326 Sha256: 5d1c3d0e1d8e7e6d3a7c3c8a36822844118cdd5b476178bf437d59213ea15eaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F959739b2-768d-44e0-b071-f304f0621bf5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7466 Md5: 6dab028abe94cb9ec22e48c3daf1d3cb$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7466 x-amzn-requestid: 05dd3df0-31d7-4896-9a4e-ebd77a762a53 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Tr2amFYqIAMFehg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62a7d110-170b7f046920719b6e475e6c;Sampled=0 x-amzn-remapped-date: Tue, 14 Jun 2022 00:06:40 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: vPpvOtlQwd-YwB4qtjZbF4f1PNrU-uEOA_8Oz8Bsnop4iUSVYIg62A== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Tue, 14 Jun 2022 00:47:01 GMT age: 74127 etag: "2047abc0cca965f398367c69ab20b50c8eb53829" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7466 Md5: 6dab028abe94cb9ec22e48c3daf1d3cb Sha1: 2047abc0cca965f398367c69ab20b50c8eb53829 Sha256: ad5dbe404360e7c470b4743f21def6ee9077f3066f95fefb2212766014fc3151