bom.so/5m79O0
403 Forbidden 3.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (816)
Hash 38d065bdf8efd7b9d8ea5c2c21c84c20
c12f1b50deb106013fc0eafb6703d44b77ce81b2
050bb7b40ef7d59884cb0d3ec00bbb87b40fcf3851995cbba6ff13dd7bf4587e
Analyzer Verdict Alert quad9 Sinkholed
GET /5m79O0 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Date: Tue, 08 Nov 2022 12:21:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=esgyfvFlm%2BMkgKen3P4dcd9BeTbivlqIJgvrNOCEOrrgljthkTeIoT2ihMBS0AEGm3%2Bh8roDDinZYtunb1Ae3vnNZ5itglWXiXvPRg11raUc4QaYuzZPYds%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 766e446f7e790b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9e164a845d32db8fa51fdb5b1aa218d9
169099b4d2f8e119ab6cf6fca279b6fb535b1759
402ffbf1404cf05c0516c5a8cd5344bd53537ac5150d387730a90c81c17dc9e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "402FFBF1404CF05C0516C5A8CD5344BD53537AC5150D387730A90C81C17DC9E4"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15744
Expires: Tue, 08 Nov 2022 16:43:38 GMT
Date: Tue, 08 Nov 2022 12:21:14 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9fd081ea88e8b8563986b3e558496d21
60700393dce5eb42c0db0d5feef340f4832e3c65
d92555957857423ed02f0d0435739bcd40a996591c73f40315564b372f6e2395
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6069
Cache-Control: max-age=85873
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 12:21:14 GMT
Etag: "6368de76-1d7"
Expires: Wed, 09 Nov 2022 12:12:27 GMT
Last-Modified: Mon, 07 Nov 2022 10:31:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a21dcd6794c5ba4178522096f695511
d731cf49db5e048d0d820d5cee03417cdd8c1c7b
c4981ce849fcfce045d1c9eeb2978767d87fcbf6087626f3d6541ec8b1938a37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4981CE849FCFCE045D1C9EEB2978767D87FCBF6087626F3D6541EC8B1938A37"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18877
Expires: Tue, 08 Nov 2022 17:35:51 GMT
Date: Tue, 08 Nov 2022 12:21:14 GMT
Connection: keep-alive
bom.so/cdn-cgi/styles/challenges.css
200 OK 2.6 kB URL HTTP/1.1 bom.so/cdn-cgi/styles/challenges.css
IP
File type ASCII text, with very long lines (6294), with no line terminators
Hash ba2d8534d208d2a5b158507e004d7150
ab81307634698ea304a68783fa38937f562009a2
63b366fdbfea7cbec639f9a5f24714a831e171570625def9462d724b5c8fdc59
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 12:21:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Nov 2022 12:47:43 GMT
ETag: W/"636509ef-1896"
Server: cloudflare
CF-RAY: 766e4470b8b8b4fd-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 08 Nov 2022 14:21:15 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IZh+Z59wVtx/zfArLI6+PToDjwloFT/OSTUT9/p7BxheAe6MGIn1ptTQiffnUZEgXvcsac9qfbc=
x-amz-request-id: 35SQPTRF6Q0J2MJA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 08 Nov 2022 12:11:18 GMT
age: 597
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
bom.so/favicon.ico
403 Forbidden 3.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (816)
Hash 7a80a2b5d58ada0b198f5f294e35b5f0
268afbf8a391befa81cf978647db286882aabde5
2317af9d622caf6fb5c054630e33bd3f5305939ecf3f2d40d07f6c80c76201da
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0
Connection: keep-alive
HTTP/1.1 403 Forbidden
Date: Tue, 08 Nov 2022 12:21:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dk9vRVVh9tDnOYdUlmqZBCC6iyYc9HEu0iSQBCzGTtU704W%2Bwj2C5F1FnnA6sa3N%2FW1dWhRzWHnzWEWxs3HtQnmBSp7q3CNJ%2F5AxOo8SBBAOFRyPYzWZ0q8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 766e4470cf440afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
bom.so/cdn-cgi/images/trace/managed/js/transparent.gif?ray=766e446f7e790b45
200 OK 42 B URL HTTP/1.1 bom.so/cdn-cgi/images/trace/managed/js/transparent.gif?ray=766e446f7e790b45
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=766e446f7e790b45 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 12:21:15 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Fri, 04 Nov 2022 12:47:43 GMT
ETag: "636509ef-2a"
Server: cloudflare
CF-RAY: 766e44712960b4fd-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 08 Nov 2022 14:21:15 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
bom.so/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=766e446f7e790b45
200 OK 24 kB URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=766e446f7e790b45
IP
File type ASCII text, with very long lines (55424), with no line terminators
Hash eef8af07d1523d92bc67f33bbda45c15
0d9f9c01478f0fd389d0e8db8935fcf5d587a014
57557f719898181677ecd5c47eb7e671de87357ace3b4ed46e7a0e2b1c1c6bfb
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=766e446f7e790b45 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0?__cf_chl_rt_tk=dqnAROMRJor64rahKziIyknXQJNrZ7u3Jvwb33V8lL4-1667910074-0-gaNycGzNAv0
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 12:21:15 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WaRu1bW%2BVLIHrrduUFjEn9XMzWs9VDCWJh%2FfxWsZB3Ds1IThU45WiFumd3BB82YVcw6Kg2aqxjoo3%2F6m4v%2FVyPJ0UkkLasihgJiA7faQlhN6eTNW2GcPhpU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 766e4471298b0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 08 Nov 2022 12:21:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 011cd3c916d0a4d4bf20f1963bb3054e
31655e1623dcd3562694bf166f58d0c0ed01a095
606c3d12b3a7809952748e655f013fbcdf1cbbfc2f4b2cc617267a50d0a19bf4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: max-age=86103
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 12:21:15 GMT
Etag: "6368e144-116"
Expires: Wed, 09 Nov 2022 12:16:18 GMT
Last-Modified: Mon, 07 Nov 2022 10:43:16 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
200 OK 131 kB URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP
File type Unicode text, UTF-8 text, with very long lines (57362)
Size 131 kB (131291 bytes)
Hash 1ab02fa3bcd95ccfdf07d9d655fb2559
92d1e586952e887d488269897ee22b3f68d38ed6
47223258576b2f83bc481daa9553765aa62403b140c0390477bae970892dfd0e
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:15 GMT
content-type: application/javascript
cf-ray: 766e44721cafb4ff-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"b90536c97bb07e890f4835e16aa28f70"
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
strict-transport-security: max-age=0
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: -O7QxwZYs9aGWPLLMVOFy6CDODSXAWWwvQZAMPk9_3TQpiFNMIAuqg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 2a47d129a3af5f02c654faf925c60273
9ad27ed9f4500c939260a677c12e702599b00fa9
0e031af077bf7009ffefada782407a247bbd31bddc96994c68de7bfe902bf992
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5283
Cache-Control: max-age=166414
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 12:21:15 GMT
Etag: "636a1c26-1d7"
Expires: Thu, 10 Nov 2022 10:34:49 GMT
Last-Modified: Tue, 08 Nov 2022 09:06:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HKPXhdmJkCPO3kyoqqJPoA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zgUJEFlD8p+U/+pgGbxJn3nE5e4=
bom.so/cdn-cgi/challenge-platform/h/g/img/766e446f7e790b45/1667910075277/MiKOBk-UCSvVrNg
200 OK 61 B URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/img/766e446f7e790b45/1667910075277/MiKOBk-UCSvVrNg
IP
File type PNG image data, 67 x 22, 8-bit/color RGB, non-interlaced\012- data
Hash 9fb537f46e1af43da308e25bb57a339a
f9f88323f7bb15847461ffd4ea101e4db80bfb75
dc1bce462387411467917ae91e810f57231f1f234c779c2a9d9ad8dcdad22c1c
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/challenge-platform/h/g/img/766e446f7e790b45/1667910075277/MiKOBk-UCSvVrNg HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0
Connection: keep-alive
Cookie: cf_chl_prog=b
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 12:21:16 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tn%2FYpPESRMKDAk1D5%2F1P%2B9iCGdPi8iNjG6%2FUF6Ehaa%2FIvSAEKy5%2BjDE9imS%2FDMrdUKEVma55Bbl07C5EtHqKWj7qwzjO8FZsq8L398Ems%2FcqNxVXn89l01w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 766e447868930b51-OSL
alt-svc: h2=":443"; ma=60
bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.44757672530489734:1667905605:lUM4esp1hec7AOoZTRNHd1c4jLHirVRLC7xY_MdAVGA/766e446f7e790b45/567660fa9add167
200 OK 3.9 kB URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.44757672530489734:1667905605:lUM4esp1hec7AOoZTRNHd1c4jLHirVRLC7xY_MdAVGA/766e446f7e790b45/567660fa9add167
IP
File type ASCII text, with very long lines (5188), with no line terminators
Hash 7faa1b9b3349831a30a083a0e0a61807
2150699520a97223a1005da689e318a5ca10d3b5
48fbfe69554d995ede0a9a95dbaf5afa4dddadacaeb3cac418586c0b5ad49358
Analyzer Verdict Alert quad9 Sinkholed
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.44757672530489734:1667905605:lUM4esp1hec7AOoZTRNHd1c4jLHirVRLC7xY_MdAVGA/766e446f7e790b45/567660fa9add167 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bom.so/5m79O0
Content-type: application/x-www-form-urlencoded
CF-Challenge: 567660fa9add167
Content-Length: 15297
Origin: http://bom.so
Connection: keep-alive
Cookie: cf_chl_prog=b
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 12:21:16 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: OczbMqT4Awp/FETz/M7ESm4vpZZmynnkxUUFOfFEhFI=$7mdlxMxhb/leBNPt9uyFtw==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5w1hq3a%2BMKONrxNA7Ohf0XsQuK70%2F1ezU41LZzNBWyi115ZX410pvfNRJvUBVmXevKHk%2FI7IW5VWsFNOJoQO%2FuG7POhrC%2B6ztfyn3m5SRhEiIyOXS2RVbdQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 766e447919760b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 8e9522209418a6a55828d735b272c706
a91f035856eba72384378e5b1c76c4b83ac81a94
f912011995cd4364bc5f2e9b0a29a975d8c47ace3773eac7953a7468e134c9f5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F912011995CD4364BC5F2E9B0A29A975D8C47ACE3773EAC7953A7468E134C9F5"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16014
Expires: Tue, 08 Nov 2022 16:48:10 GMT
Date: Tue, 08 Nov 2022 12:21:16 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 8e9522209418a6a55828d735b272c706
a91f035856eba72384378e5b1c76c4b83ac81a94
f912011995cd4364bc5f2e9b0a29a975d8c47ace3773eac7953a7468e134c9f5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F912011995CD4364BC5F2E9B0A29A975D8C47ACE3773EAC7953A7468E134C9F5"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16014
Expires: Tue, 08 Nov 2022 16:48:10 GMT
Date: Tue, 08 Nov 2022 12:21:16 GMT
Connection: keep-alive
cf-assets.hcaptcha.com/captcha/v1/8c089cd/hcaptcha.js
200 OK 81 kB URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/8c089cd/hcaptcha.js
IP
File type Unicode text, UTF-8 text, with very long lines (57362)
Hash b90536c97bb07e890f4835e16aa28f70
e51508ddac0cfc78c34d7af97863c74a393aa06b
3f6278d5f5bf74152c3540f799e5198379c64831f2541181eb1a45a5afc7e3a6
GET /captcha/v1/8c089cd/hcaptcha.js HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
Cookie: __cf_bm=XyM81bNbQrRTe8gMRYngXaui7CrdcfgDitfZk3MIi_0-1667910076-0-AQlA2Ms7F64nfZRGU7VeXjp1552JDrzFuNPU+L5ggZhjub8p3NdIZRs06RevnVt2DYVTR66y/GCvl8YTWkHBmgs=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:16 GMT
content-type: application/javascript
content-length: 81423
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
etag: "b90536c97bb07e890f4835e16aa28f70"
cache-control: public, max-age=1209600
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 6a3ecfb1a4acff795e79a73839fdf21a.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P1
x-amz-cf-id: F-MI42H-IhtcVYksd_wZwaAb2xXyqRUCynGmqVt0f09vacETqhw88w==
cf-cache-status: HIT
age: 15307
expires: Tue, 22 Nov 2022 12:21:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 766e4479ec59b51d-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Tue, 08 Nov 2022 17:46:14 GMT
Date: Tue, 08 Nov 2022 12:21:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Tue, 08 Nov 2022 17:46:14 GMT
Date: Tue, 08 Nov 2022 12:21:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Tue, 08 Nov 2022 17:46:14 GMT
Date: Tue, 08 Nov 2022 12:21:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56aa1a3-694e-4b80-85bc-4623e329ddce.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56aa1a3-694e-4b80-85bc-4623e329ddce.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1880403dd046309abafaa754e128c77d
ffa0c6a21a1abd598805781c8674d0804e9eac23
11fac70eb2d4c7e362d2636f51b3ce674d702b5aa71bd811b94b7d977f528350
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56aa1a3-694e-4b80-85bc-4623e329ddce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7267
x-amzn-requestid: 1e3a514d-a886-4e53-bd87-c52f892d94eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG3xcGbdoAMFzXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d33c-31d42df829d8a01b50a8a24d;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:06:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jc2FY2gPHzuidFxUEP-iFyfgiA47_5EyCkg48pQmbzhRIrt1It00Gw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 10:23:14 GMT
age: 7083
etag: "ffa0c6a21a1abd598805781c8674d0804e9eac23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37802736d42529da1237e5d89e253928
6f246d25b36dc880489f3af2ae8767a0f5f2542b
b21622ee7e858a4508096480ec3ffba824e96d469b0fcfa0f6daaabad296fd40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12165
x-amzn-requestid: 7baae03c-2e22-477c-9c14-d21a26469b47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQAvEFHdIAMF_XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b2d-2edb1d9722872b1166a5b085;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:39:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1QlljbC_YBobvvYSxTH2jH4a4kZAK8Am-k6CNxJrLIm1TY1gbfP1gg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 22:12:03 GMT
age: 50954
etag: "6f246d25b36dc880489f3af2ae8767a0f5f2542b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
200 OK 6.8 kB URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
IP
Hash 1530660b055ed3cf0668836839a1e265
442fe0a5eec28f32f32345d94bb99caa61909b45
3e0ef508bd7a577a5823fc3bf054d9afb8a529d9a2f5732f6adad2d26664ab5d
GET /captcha/v1/8c089cd/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:16 GMT
content-type: text/html
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
cache-control: public, max-age=1209600
x-cache: Hit from cloudfront
via: 1.1 a5360ecc08e8db6327b49f3dde2d69fe.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 9YDwFWsEx-Uam1jpofdFBom-hE3G8KgLZDMJxLgrW6mkYIXWeC9OrQ==
cf-cache-status: HIT
age: 15458
expires: Tue, 22 Nov 2022 12:21:16 GMT
set-cookie: __cf_bm=o2SoQKXvg2eh4sSjkNL3NlTo3M.XLoSL43ZJM_bs_H0-1667910076-0-AfBI4/Su9WrqPDl/ai1xl2mDTfkmPlXi4miTO3Whz/ls5llgfSMBIR4HJdOWI2UOjzze01FcoVj8Ox7Sv+phoLw=; path=/; expires=Tue, 08-Nov-22 12:51:16 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 766e4479cc0bb51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7884b85a4b30e918a0b44f73a301a78b
f7ae1b83a0199b76dd0d31a21db4072b867e4f37
9576f9ad95c958887de953dee72b267cd0ed7293ed62fb540df76a2d49fac035
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4527
x-amzn-requestid: c3be9447-c43a-48d6-9aef-c0999742886c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQA1GFN5IAMFaRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b53-3bb315de52dcf6114da9ad05;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _nFA59k8ERwiA6Ct_pZJs0WkFuagosyyiOkeQc1PuWMcno-Lpz4UfA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 22:01:04 GMT
age: 51613
etag: "f7ae1b83a0199b76dd0d31a21db4072b867e4f37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q0yZmbExDP4tH0n1n2qj_NR2Mv_y_dsO0LJ1RKZoS6Me-NLbhpUWqw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 09:08:56 GMT
age: 11541
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39446652ee66d20bd73df20f1a29589c
349ea78f3ad0f2f7376ba22e417226b2e06806d7
655a00944a319ba167e99b43055044cb18bc48d53605ff0d1b6c8b1ba8ee8237
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4737
x-amzn-requestid: ad230e08-9f4e-46cf-9a86-f8e013a1c498
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQBFkEhLIAMFq_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697bbd-7e8b686a23a84c5d473c9ef5;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:42:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FoOPmZEjC6nhw801dgqENVL-9-aC0pyFAF-fMS57XzQyfxck2GGUvA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:55:45 GMT
age: 51932
etag: "349ea78f3ad0f2f7376ba22e417226b2e06806d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
IP
GET /captcha/v1/8c089cd/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:16 GMT
content-type: text/html
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
cache-control: public, max-age=1209600
x-cache: Hit from cloudfront
via: 1.1 a5360ecc08e8db6327b49f3dde2d69fe.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 9YDwFWsEx-Uam1jpofdFBom-hE3G8KgLZDMJxLgrW6mkYIXWeC9OrQ==
cf-cache-status: HIT
age: 15458
expires: Tue, 22 Nov 2022 12:21:16 GMT
set-cookie: __cf_bm=Kvgv1O.BZScaNioCM5f7YKaDfMN7arxCqp0EFBXMqao-1667910076-0-ASJh6XMBxsE6H7cz6E5zEoQfsqogV3mDBjLaenFHB/4wQ4utw+Zd8Mk9Nxp1ODsqNs1tHEq1Iz6dxLLjF2eUZt0=; path=/; expires=Tue, 08-Nov-22 12:51:16 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 766e4479dc34b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
IP
GET /captcha/v1/8c089cd/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:16 GMT
content-type: text/html
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
cache-control: public, max-age=1209600
x-cache: Hit from cloudfront
via: 1.1 a5360ecc08e8db6327b49f3dde2d69fe.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 9YDwFWsEx-Uam1jpofdFBom-hE3G8KgLZDMJxLgrW6mkYIXWeC9OrQ==
cf-cache-status: HIT
age: 15458
expires: Tue, 22 Nov 2022 12:21:16 GMT
set-cookie: __cf_bm=XyM81bNbQrRTe8gMRYngXaui7CrdcfgDitfZk3MIi_0-1667910076-0-AQlA2Ms7F64nfZRGU7VeXjp1552JDrzFuNPU+L5ggZhjub8p3NdIZRs06RevnVt2DYVTR66y/GCvl8YTWkHBmgs=; path=/; expires=Tue, 08-Nov-22 12:51:16 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 766e4479dc32b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/8c089cd/static/hcaptcha.html
IP
GET /captcha/v1/8c089cd/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 12:21:16 GMT
content-type: text/html
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
cache-control: public, max-age=1209600
x-cache: Hit from cloudfront
via: 1.1 a5360ecc08e8db6327b49f3dde2d69fe.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 9YDwFWsEx-Uam1jpofdFBom-hE3G8KgLZDMJxLgrW6mkYIXWeC9OrQ==
cf-cache-status: HIT
age: 15458
expires: Tue, 22 Nov 2022 12:21:16 GMT
set-cookie: __cf_bm=xrnvMhSQvtW._YJ1LddjK7hel462NwiY14tYtxBdKVs-1667910076-0-AfXpRLeNHaoxdeugGpHZffNobxdq10ZdspYRLB+YbF3VBW7ea/0Mpme7BgB9YJv/54lnDADE29QUnvmnfFgPVaY=; path=/; expires=Tue, 08-Nov-22 12:51:16 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 766e4479dc35b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
104.26.7.214
23.36.77.32
104.18.23.122
93.184.220.29