urlquery - report: dl021.apkawards.com/apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manorvampire_1.6.2-apk

Overview

URL	dl021.apkawards.com/apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manorvampire_1.6.2-apk_award.apk
IP	172.67.173.188
ASN	CLOUDFLARENET
Location	United States
Report completed	2022-06-30 01:54:17 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-06-30	2	dl021.apkawards.com/apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manor (...)	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (9)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-06-29 04:30:20 UTC	143.204.55.25
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-06-29 19:09:02 UTC	93.184.220.29
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-06-29 20:37:23 UTC	35.82.213.230
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-06-29 20:37:26 UTC	34.120.237.76
[Mnemonic Passive DNS]	dl021.apkawards.com (1)	0	No data	No data	172.67.173.188	Domain (apkawards.com) ranked at: 942040
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-06-29 04:27:49 UTC	23.36.76.226
[Mnemonic Passive DNS]	apkawards.com (5)	942040	No data	No data	104.21.64.9
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	143.204.55.36
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 172.67.173.188

Date	UQ / IDS / BL	URL	IP
2022-07-02 15:54:40 +0000	0 - 0 - 1	dl567.apkawards.com/mod/dl6/com.gameloft.andr (...)	172.67.173.188
2022-06-30 01:55:07 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.ka (...)	172.67.173.188
2022-06-30 01:54:33 +0000	0 - 0 - 1	dl012.apkawards.com/apkmod_apks/dl4/com.prome (...)	172.67.173.188
2022-06-30 01:54:13 +0000	0 - 0 - 1	dl567.apkawards.com/apkmod_apks/dl6/com.t2ksp (...)	172.67.173.188
2022-06-30 01:54:04 +0000	0 - 0 - 1	dl2324.apkawards.com/apkmod_apks/dl24/com.cla (...)	172.67.173.188
2022-06-30 01:54:03 +0000	0 - 0 - 1	dl25160.apkawards.com/apkmod_apks/dl25/com.fa (...)	172.67.173.188
2022-06-30 01:53:57 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl12/air.inf (...)	172.67.173.188
2022-06-30 01:53:17 +0000	0 - 0 - 1	dl1123.apkawards.com/apkmod_apks/dl13/com.dev (...)	172.67.173.188
2022-06-28 14:24:17 +0000	0 - 0 - 1	dl25160.apkawards.com/APkmod_apks/dl25/com.pl (...)	172.67.173.188
2022-06-28 05:03:15 +0000	0 - 0 - 1	dl25160.apkawards.com/APkmod_apks/dl25/com.pl (...)	172.67.173.188

Last 10 reports on ASN: CLOUDFLARENET

Date	UQ / IDS / BL	URL	IP
2022-08-09 10:05:53 +0000	0 - 0 - 4	www.grandocasino.com/gaoskc/ca/index-uni.html	172.67.173.217
2022-08-09 10:05:07 +0000	0 - 0 - 6	eng.certificazioni.basilicata.it/	104.21.84.165
2022-08-09 09:59:37 +0000	0 - 0 - 1	www.viralvia.fi/p4/svq.exe	172.67.198.155
2022-08-09 09:58:48 +0000	0 - 0 - 3	brittknight.com/PHP/5bgKOXH0pM/	104.21.20.122
2022-08-09 09:54:49 +0000	0 - 0 - 2	the.now-prize.monster/UK-new/argos-s22-cm1f.php	104.21.77.177
2022-08-09 09:49:28 +0000	0 - 0 - 2	https://invoice001.yolasite.com/resources/INV (...)	104.16.163.215
2022-08-09 09:48:01 +0000	0 - 0 - 1	archiveofsins.com/h/thread/6215425	104.21.7.52
2022-08-09 09:47:30 +0000	0 - 0 - 5	teenlovelies.com/	104.21.73.109
2022-08-09 09:47:24 +0000	0 - 0 - 2	https://invoice4c.yolasite.com/resources/INVO (...)	104.16.161.215
2022-08-09 09:40:18 +0000	0 - 0 - 1	https://storageapi.fleek.co/9bf66bb8-c814-435 (...)	104.18.6.145

No other reports on domain: apkawards.com

JavaScript

Executed Scripts (4)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (23)

Request	Response
GET /apkmod_apks/dl21/com.hidea.manorvampire/com.hidea.manorvampire_1.6.2-apk_award.apk HTTP/1.1 Host: dl021.apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4$ 172.67.173.188 HTTP/1.1 302 Found Content-Type: text/html; charset=iso-8859-1 Date: Thu, 30 Jun 2022 01:54:04 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://apkaward.com/errors/dl.html CF-Cache-Status: BYPASS Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2Bk0oc%2BAFodgLHMkkFtTNVszx6cpn%2Bqp%2FvTfC%2FFKC%2FnUnA2IonYFz2XdPy42EOo9HXTSFnfL6s%2FYt8%2FWL7c0PB7iNHki0vIEgUt1Fcyp9%2FYuB3ujtstSGz8TunYYlReQ9rlhUVxn"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 723345981be80b61-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 219 Md5: 256a93cfae9a9320f1b11af4e2d0d7e4 Sha1: a73ecd2827f89a1f943bf9c3145ee8eab8e18d55 Sha256: 47d134c4a97cdf64d2a79ee3eb6741011223e3e2b0ae120c69da602a470f3b08 Alerts: Blocklists: - fortinet: Malware
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3$ 143.204.55.36 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 30 Jun 2022 01:48:21 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Pbmr7EQuLBQqAZhLrGzv1pMQPHtT06u1FIgtIzll-WMORS6xr-xZzA== Age: 343 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3 Sha1: 58c8dccc28ecd76424af6ed9988575a35cf8a0c2 Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "3E2650132BC75A58C9B08C2A69EC353237F48E840D9D2481F9D5E63D92ABBC6F" Last-Modified: Wed, 29 Jun 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13713 Expires: Thu, 30 Jun 2022 05:42:37 GMT Date: Thu, 30 Jun 2022 01:54:04 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: f877dcf1049551cb05fe926e4b94fb51 Sha1: 2f5c8da538c78853b68ca58a3df5dd64b032291b Sha256: 3e2650132bc75a58c9b08c2a69ec353237f48e840d9d2481f9d5e63d92abbc6f
GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0$ 143.204.55.25 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 date: Wed, 29 Jun 2022 02:10:55 GMT last-modified: Wed, 11 May 2022 19:51:39 GMT etag: "48ca0beea419a9039591cf1aee5179e0" content-disposition: attachment accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: -nM-jnuiB1_rKVh3BWI_RZUd9y-f6hYoxOrUZZi6yUbL9zsWrlzDvg== age: 85390 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 48ca0beea419a9039591cf1aee5179e0 Sha1: 9e92629f505fcc07aab51221e8fe62197a23e307 Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Thu, 30 Jun 2022 01:54:04 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /img/zt/2020music.jpg HTTP/1.1 Host: apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://apkaward.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x170, components 3\012- data Size: 34774 Md5: a60ab1a8083a1774631850e9a528fd23$ 104.21.64.9 HTTP/2 200 OK date: Thu, 30 Jun 2022 01:54:04 GMT content-type: image/jpeg content-length: 34774 last-modified: Sat, 27 Feb 2021 01:31:49 GMT etag: "87d6-5bc475937bbf0" cache-control: max-age=2592000 cf-cache-status: HIT age: 1969340 accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NInOdz%2B82Hn97Gu%2BJvhsMmRhSZYblBm1zr8lFtQqVFVLXH1QdCk1jIW%2FdnVjZOOEz%2BgB22ZdVZ8tIFFJ891KrCNYyOHT1PuL%2BIf0Yu7g0gcI%2F5EsLcLLlJdDNzWvfBQ2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7233459d1e48b527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x170, components 3\012- data Size: 34774 Md5: a60ab1a8083a1774631850e9a528fd23 Sha1: 31092ccfe8e136b062f25f31abb672ceb07ca508 Sha256: b1188f5c6fbb70716ffacb5ad956511abb106e119151a3654dfbcb3ca5c09e3c
GET /img/zt/2020.png HTTP/1.1 Host: apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://apkaward.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 33410 Md5: a2596b02be737b9728a964b0ff670866$ 104.21.64.9 HTTP/2 200 OK date: Thu, 30 Jun 2022 01:54:04 GMT content-type: image/png content-length: 33410 last-modified: Sat, 27 Feb 2021 01:31:49 GMT etag: "8282-5bc475937b420" cache-control: max-age=2592000 cf-cache-status: HIT age: 1968194 accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5EJzdgLIsa5BzhC%2BY3kZnsashMgWaTXNtC50zWM0kpQPJLe3xgARrGbcDn7FLdJCLaQwJoSdecw2Tzfma5%2Bfp7zwq9VDX0gcXBOGHQyBtm7d4K6xduU2NO%2FzxbA2aGA"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7233459d0e46b527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 33410 Md5: a2596b02be737b9728a964b0ff670866 Sha1: 1813bba389c541bcfd1da57126e1634c368afc0d Sha256: a901f2bde72269eabff149c9d24fdf1d64e13d922e4130ba8018b25d34dc3e87
GET /img/zt/2020f.png?v=2019 HTTP/1.1 Host: apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://apkaward.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 111827 Md5: 89f69b5a5e276a6074ee23906b103e0f$ 104.21.64.9 HTTP/2 200 OK date: Thu, 30 Jun 2022 01:54:04 GMT content-type: image/png content-length: 111827 last-modified: Sat, 27 Feb 2021 01:31:49 GMT etag: "1b4d3-5bc475937b038" cache-control: max-age=2592000 cf-cache-status: HIT age: 1803807 accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bBqNyu9Argi8KaHkyYUsL9FjTQJgFG%2B0H0ykDQxH5O5OdnygaRHoiwGOvlq87tIfn8iNOrp3ViA48rRM%2B0pjTvZ%2BOmka8nRo897oCOq%2Fu83kQUoM313hAQ1WzdBJz%2BGb"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7233459d1e4eb527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 111827 Md5: 89f69b5a5e276a6074ee23906b103e0f Sha1: 5a99a6faa265e73941456e5ec40a60e2341751cd Sha256: a4a1eb49b18bd9392d7bf0c0e5119885bd71b24078e2dd46d420113058509d39
GET /img/zt/2020r.png HTTP/1.1 Host: apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://apkaward.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 92031 Md5: d4c7e079420b1bdbe4ed5318fe7f10b7$ 104.21.64.9 HTTP/2 200 OK date: Thu, 30 Jun 2022 01:54:04 GMT content-type: image/png content-length: 92031 last-modified: Sat, 27 Feb 2021 01:31:49 GMT etag: "1677f-5bc47593794e0" cache-control: max-age=2592000 cf-cache-status: HIT age: 1968194 accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SAzEkjKrdAzcsvnla1lCDos72Prux9G7%2B4OA1Av9jZNeKWZpf3xUbLy7%2BGXQa62MN9ZDFRvt1EWLatBY9dTIb1bRZualF1a7bpbGVPR9sNe%2FNK2CI46b%2Bc8KESsiOQTj"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7233459d3e65b527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 170, 8-bit/color RGB, non-interlaced\012- data Size: 92031 Md5: d4c7e079420b1bdbe4ed5318fe7f10b7 Sha1: fc90fdeda25c761ae1bcff75f442ced58e4445a4 Sha256: 678e9c0f739d24292289467cc0c383fc49952a00bb722b1a989867859531380b
GET /img/navicon/08.png HTTP/1.1 Host: apkawards.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://apkaward.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data Size: 2103 Md5: 9c1c131aff4fb79d407c894548afd699$ 104.21.64.9 HTTP/2 200 OK date: Thu, 30 Jun 2022 01:54:04 GMT content-type: image/png content-length: 2103 last-modified: Sat, 27 Feb 2021 01:31:49 GMT etag: "837-5bc4759389e80" cache-control: max-age=2592000 cf-cache-status: HIT age: 1081669 accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQVMN3yMOPOk7aERe51NoxLKHE2OcPwGOKG3pHW7Qg6mIb%2FU5SzxhXqgYaHmgE6FkzN1rIaFpjpxUWEyrUBQ%2FmCxDqBQWDOgVeKYsazDrhQK0Kf0XnDVhnf2s4KemR9W"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7233459d3e66b527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data Size: 2103 Md5: 9c1c131aff4fb79d407c894548afd699 Sha1: 9ccaa0b560a1c5f82cb5dcd59b0192697f929d76 Sha256: 15de9b45b80a404421721147af5c749710657b193fcf5dea467baa0e6330373c
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 143.204.55.36 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Thu, 30 Jun 2022 01:31:51 GMT Expires: Thu, 30 Jun 2022 01:32:32 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: YmAPeUMdFNh8IJoX-hciV_ux539Lak7-AfQtpBY39EFiGSsAckkCrg== Age: 1334 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2683 Cache-Control: max-age=111436 Date: Thu, 30 Jun 2022 01:54:05 GMT Etag: "62bc080e-1d7" Expires: Fri, 01 Jul 2022 08:51:21 GMT Last-Modified: Wed, 29 Jun 2022 08:06:38 GMT Server: ECS (ska/F707) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: cdfeaca3994b060f79b30baed6e1a5f8 Sha1: 8b53b71d89f77bdd9025ea92d5ecf9d8fc42ac0b Sha256: 45b4fbbe4c3fe2b94e23db698bebfcec936cd21bb5b264be311c109f1c1242ce
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: N/SVwWbBGcF9SqDDOu4kOA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	35.82.213.230 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: jccd4RtoFy4a0AGRJi9HJ3xmXKQ= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5883 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:07 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5883 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:07 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5883 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:07 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5883 Expires: Thu, 30 Jun 2022 03:32:10 GMT Date: Thu, 30 Jun 2022 01:54:07 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c820b41-1344-4f3c-aab0-014f108e8b52.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7422 Md5: 8d4b79df526e3f0fb56adab2db711218$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7422 x-amzn-requestid: c58357ff-a4e0-4360-9ed0-0c99c0113bb3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ua_bJHL4IAMFs_g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62baac47-6079b89463e237df5e6d6943;Sampled=0 x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:47 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: k-G5ZER8D-M5kL4XQJV_m8fXh-CXV-eKMLyXbOmDA_FylN8N6fqIkA== via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 07:26:57 GMT age: 66430 etag: "be66cb7246698432cabd92c4e0b484c9dcd22b40" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7422 Md5: 8d4b79df526e3f0fb56adab2db711218 Sha1: be66cb7246698432cabd92c4e0b484c9dcd22b40 Sha256: f22197231cbd66c2b57cfc18c8c33d3411803887ef222b0a31e81d6a80d34eee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7a4375-a2db-4744-a689-0c1e65ea038f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10792 Md5: 3144b94a8936136d9e7214c57fef0d1c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10792 x-amzn-requestid: c239e02c-f315-4de9-9d2e-7d0ebaaa7533 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgO-qHlxIAMF3GQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc52a-6a031ec43564a69e1a8efe66;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:30 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: aZnblzoq9MlncZxFISS3Bx92B8nnCbXHnTd8cOXyXfWqmYVxY3HYFA== via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:44:18 GMT age: 14989 etag: "91a496da3231d55b9511ed5c64cc4b7386fb130e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10792 Md5: 3144b94a8936136d9e7214c57fef0d1c Sha1: 91a496da3231d55b9511ed5c64cc4b7386fb130e Sha256: f2062f616360faf1e83f0d6161ee0fe552091df15c01e30eb518d5bb1ab90920
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11d0870a-bbc1-425f-baab-78d8faee2f69.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12525 Md5: 35a9456069f8c234f9df7f90deddad64$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12525 x-amzn-requestid: de846bdc-4966-481a-9b04-909cd7faae72 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgO9OHKpIAMFX5g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc521-6a6aa9e827cb3dc964a27a97;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:33:21 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: bLc1WlV8IvDuxrkvPA_31nJrO9HceLFR29sEb8CaBPIJC2MAhmcSng== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 a2c13de7f3df76280ef01a6604863734.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:44:26 GMT age: 14981 etag: "c4bd5602723c5eabcb935dc8af373d5b58d30d4d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12525 Md5: 35a9456069f8c234f9df7f90deddad64 Sha1: c4bd5602723c5eabcb935dc8af373d5b58d30d4d Sha256: e4e2dac06aecdbe7af1e366f8cb15919689154f3e05cd949582285bc611660ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c8df935-2cd0-4257-a634-97444dfbb7c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5212 Md5: 3bfbc94a4f67fe0dd25808724bd628cf$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5212 x-amzn-requestid: 509c0604-ea2c-4174-8350-96e63e064275 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UgP2pFk8IAMFcLw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bcc690-78d5e73c5382093e1e5613de;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 21:39:28 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: adeINGgbdqX3AjqA9FHiIBcnK80WptM2rMnkg3BCVoQkX18nM0NYcQ== via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 21:55:28 GMT age: 14319 etag: "c148393bd889634b8e891e3370504c24982b8efb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5212 Md5: 3bfbc94a4f67fe0dd25808724bd628cf Sha1: c148393bd889634b8e891e3370504c24982b8efb Sha256: ac31355e39e17fb063049b565e24fd28736e0afef316703c7d50fec7b93f58b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc64139e3-1714-4207-9f83-6963efdebdb1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11303 x-amzn-requestid: 133e1b8e-7db3-4337-92a0-b693c3ba40aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeQEkHN1IAMF6qQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbfa1d-65b9ee0025592952377ccb6d;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:07:09 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: qZ65_kcaLORUGEbUuifwMdYmlm007Tehq5XMtiHQGeFkUOcqwiXi2Q== via: 1.1 cb2af39fbf29fa8b3d7f263c2b822092.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 07:43:43 GMT age: 65424 etag: "91d2dc48008a198adb2b740bec1843a146f826c1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2 Sha1: 91d2dc48008a198adb2b740bec1843a146f826c1 Sha256: 2e56992e4642c248dd330fc1343977dedd2ec4e944564214be432f3f390488e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79d277b-5e0d-4a1d-83ed-a355ef2276b5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7289 Md5: f1824610da34f0cd715ab3e1d02e574e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7289 x-amzn-requestid: 67245eef-0b7a-485a-b4a2-467109edb67c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UT0pCHi_IAMFvPA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b7ce39-6dfe37fe45caaa90166fe5a9;Sampled=0 x-amzn-remapped-date: Sun, 26 Jun 2022 03:10:49 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: VwEBq3yKGEPsPsQTyhgqfHt1n5SMu2hllYkD6XYrYGL7X1fQDQzC3g== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Jun 2022 22:03:09 GMT age: 13858 etag: "443cc22a0847bea98bfb28ed46abe38567605116" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7289 Md5: f1824610da34f0cd715ab3e1d02e574e Sha1: 443cc22a0847bea98bfb28ed46abe38567605116 Sha256: 80cb62cc2421eea285770c4c2bed8b53cd9c004938004b21d9889db88e06dff2