bom.so/5qiG0Q
172.67.68.240403 Forbidden 3.7 kB IP 172.67.68.240:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (817)
Hash 185437bffc634600b3589a6717905bc6
08b1bc3b4e417ed852647e4a843ef668ec16c07f
5f59830da8ba13fe118cc22fcf20a69131bc426e76530fe6af535c636b960cc1
Analyzer Verdict Alert quad9 Sinkholed
GET /5qiG0Q HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dq5evrG6BEQQSfduoAwVXSlJo2Oe1bQfIwUsJqQzApX9G6UPbX1jiCDnlz%2FiZP1Nczq%2BkOmP5sqVKnjvhe2iPE2kOUyBVEr93MdKOPcSWVoCIk%2Fat7uhRcE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75b5a0cbaff0b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 17 Oct 2022 01:51:01 GMT
Expires: Mon, 17 Oct 2022 02:47:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hnFJetbkTS2Xhv8E3v5vikOp-oB2ZB5sSHHVSRzCigV9NCHjepCw5w==
Age: 2531
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 10ab470535c002d333b4f27d38b51091
ed3b0850c5d75881de410f7e8ca35e012e38bd38
31d6655d048ec8a62e00125766fea65cde04beae0b11f12ce7f722c9a5f7e232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "31D6655D048EC8A62E00125766FEA65CDE04BEAE0B11F12CE7F722C9A5F7E232"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12375
Expires: Mon, 17 Oct 2022 05:59:27 GMT
Date: Mon, 17 Oct 2022 02:33:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4548
Expires: Mon, 17 Oct 2022 03:49:00 GMT
Date: Mon, 17 Oct 2022 02:33:12 GMT
Connection: keep-alive
bom.so/cdn-cgi/styles/challenges.css
172.67.68.240200 OK 2.6 kB URL HTTP/1.1 bom.so/cdn-cgi/styles/challenges.css
IP 172.67.68.240:0
File type ASCII text, with very long lines (6294), with no line terminators
Hash ba2d8534d208d2a5b158507e004d7150
ab81307634698ea304a68783fa38937f562009a2
63b366fdbfea7cbec639f9a5f24714a831e171570625def9462d724b5c8fdc59
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 11 Oct 2022 13:37:46 GMT
ETag: W/"634571aa-1896"
Server: cloudflare
CF-RAY: 75b5a0cda8b9b4ed-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Mon, 17 Oct 2022 04:33:12 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: naMqHHcylNrMukiFiktSWgqlebnbooEBXXA8QUanmwEgQ3liJLd7yZArqjILNsMDEBxXLvn1toM=
x-amz-request-id: G3T5K28F37KVQJ7Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 17 Oct 2022 01:35:16 GMT
age: 3476
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
bom.so/favicon.ico
172.67.68.240403 Forbidden 3.7 kB IP 172.67.68.240:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (793)
Hash 6680a7d5202bf8e0bb29cbc73a2045e0
29b36ffa80346f80a72debf5a4e32b1893c8b769
58475f46cfeee83219e6e0f6e7d35be42b5584f8c40a19adec4000ba62a3ee11
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
HTTP/1.1 403 Forbidden
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OqXW5XtJOXCQiroPRTQLFrm7%2BmZalzNxx8gwWJ%2BTAQTrR7HJaZgZdq4NHruUlENeUNXDMfH2ziTt1ZGgql8Nn9iIQTqUke7MJbHVYtIuqas07kDh3VRRQVk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75b5a0cdbee4b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
bom.so/cdn-cgi/images/trace/managed/js/transparent.gif?ray=75b5a0cbaff0b505
172.67.68.240200 OK 42 B URL HTTP/1.1 bom.so/cdn-cgi/images/trace/managed/js/transparent.gif?ray=75b5a0cbaff0b505
IP 172.67.68.240:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=75b5a0cbaff0b505 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 11 Oct 2022 13:37:46 GMT
ETag: "634571aa-2a"
Server: cloudflare
CF-RAY: 75b5a0ce28dcb4ed-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Mon, 17 Oct 2022 04:33:12 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
bom.so/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=75b5a0cbaff0b505
172.67.68.240200 OK 22 kB URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=75b5a0cbaff0b505
IP 172.67.68.240:0
File type HTML document, ASCII text, with very long lines (64525), with no line terminators
Hash 91ce09808e554c139febb8feb813cb01
059d0762d8d276e3c0b7e3ca868a6d99f6e9deb6
f573151ad1dd842610d2dc7027dbfa3c963fd5763cadfa3d9eac1656e386d6cc
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=75b5a0cbaff0b505 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bom.so/5qiG0Q?__cf_chl_rt_tk=8on9rFlQbGMBrN96Qadl5SGMAujWDqU60.r3ajD9_OA-1665973992-0-gaNycGzNAv0
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yzTxnfY7PU%2BFiVvO2MD%2BqJW5HovWlqNBEpGviZ8cjfyVyiOr8sc8%2FL1tR%2F2b9FCeAtY3hNFmnyelhZaIOQRiCWXUuoayjpdA%2FH2x4z%2Fzkj58IyRQ7ME24eY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75b5a0ce48e4b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 17 Oct 2022 02:33:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4
172.67.68.240200 OK 52 kB URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4
IP 172.67.68.240:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79b5ac90553292d44dd0c6325a215814
2985c5f59b4578ec2c056ac08f20ef0ea9bd5588
7a8d488468e0b36ba2f20c66bf8e8ed072818b568c5b3e3df111e5f123a87382
Analyzer Verdict Alert quad9 Sinkholed
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
CF-Challenge: ede6b98d1bed3e4
Content-Length: 1695
Origin: http://bom.so
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
Cookie: cf_chl_prog=e
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:12 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: cf_chl_seq_ede6b98d1bed3e4=0JUzfvwcnxvlp8w;SameSite=Strict;HttpOnly
cf_chl_gen: 0ZZGtQb9OxMfVtu6q3lHFEFFu+vf4eaPZdhTy7wIDyj7JS6Zhzh3Id7hTLn8utdVi9gplkcVHwxjYQsoPleC7QsosbH4RMGHJpfDQeMcva2ddV/PoUjsEM8E9kGWWKnto69WCkvfGFbtyvoL/6OkuaF1oYvtDYXB3CG8vkRvy0Ns3ycZOsAaDsOMNFm8qCfaqR7G19+gu3K41gNVMGHklwhFvuH4Al9aLxk5z3DZDaODDxqZj5cM10HqiIEY8o1kKHb6xcexT0nXLpcumP9CgH7fWP82gQoNRdFdou0ZBbRzKpBsGxpIoUIlOMwO51fpUFt0pfHzAuhTpxeY18SKJQ==$3/MEIHKe5RapvYyiEQ/8dg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8b4x3q7rEZFSULMV6nefP%2BhuvjMUQxo6KUO6FzzQxkMFwhkv1Co34zjNTXHGS%2FCY%2B8coO6bSM2LIKI4Au2%2FQygKCO3aFCMrHDhX42CvAcid%2BEj%2FXgBPPnDQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75b5a0cf5934b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 17 Oct 2022 02:07:43 GMT
Cache-Control: max-age=3600
Expires: Mon, 17 Oct 2022 02:49:04 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jVXYNK6yNSnR_QsUcGPzWfFsl6BSFQJ9QqHWH_l4WeEThWhT3YHSKw==
Age: 1530
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfc92c8f6ee7599505d969732542ac42
7f4804d49c8ccd76ccffa6b72d41b1df611eb090
406c057a8392b9fa0ab09efa8b3222a58ec5fc17fa73f55a1f093e3d1092b0e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5927
Cache-Control: max-age=112341
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 02:33:13 GMT
Etag: "634bbb97-1d7"
Expires: Tue, 18 Oct 2022 09:45:34 GMT
Last-Modified: Sun, 16 Oct 2022 08:06:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.97.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.97.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7wVtC2bDlWHMPVzUBmMcVw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MinUM6cZk7z9BUDxGKnZPAACpY4=
bom.so/cdn-cgi/challenge-platform/h/g/img/75b5a0cbaff0b505/1665973992862/egRlUM3t3bT5uGB
172.67.68.240200 OK 61 B URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/img/75b5a0cbaff0b505/1665973992862/egRlUM3t3bT5uGB
IP 172.67.68.240:0
File type PNG image data, 36 x 27, 8-bit/color RGB, non-interlaced\012- data
Hash 036833bf85c6e9455291aa53b23df7bf
fe69d3f1bfd10a471ec94903847385e8a50947f9
5676ceada35bcda8a10158e3ebaf5a3add7190010a0c97affe1234a48ccf53ec
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/challenge-platform/h/g/img/75b5a0cbaff0b505/1665973992862/egRlUM3t3bT5uGB HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
Cookie: cf_chl_prog=e
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:13 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N7Ah1qECDQU7Hhr8SSN85S8V3X5wslPvWP8WAUEm4b6N1oesF6bjiFK5JbqvWjN3j24F3jPwU0hsqXBX0l0d27ZX%2BGCeKixUhl3d1I9Y%2B34cVw5y0zdJbk4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75b5a0d4baabb4ed-OSL
alt-svc: h2=":443"; ma=60
bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4
172.67.68.240200 OK 3.9 kB URL HTTP/1.1 bom.so/cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4
IP 172.67.68.240:0
File type ASCII text, with very long lines (5168), with no line terminators
Hash 700a4b7b938e4594cca164374905e03c
44a37d3907a4759b7935b2713baeb39de616eb1f
2c076f03b6d623a6dac95750184cc2de1e8adad227f71b780c73a9bb74e33ec6
Analyzer Verdict Alert quad9 Sinkholed
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.03949545282139759:1665972295:WTqoNNRcoOmDHpCy8BSaPzXO5X7fBaap5yvDi3nTamw/75b5a0cbaff0b505/ede6b98d1bed3e4 HTTP/1.1
Host: bom.so
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
CF-Challenge: ede6b98d1bed3e4
Content-Length: 15532
Origin: http://bom.so
Connection: keep-alive
Referer: http://bom.so/5qiG0Q
Cookie: cf_chl_seq_ede6b98d1bed3e4=0JUzfvwcnxvlp8w; cf_chl_prog=b
HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 02:33:14 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: cf_chl_seq_ede6b98d1bed3e4=I2DruIu9iyxh-A_;SameSite=Strict;HttpOnly
cf_chl_gen: PX67EmKfgfZjC2D5nzy3BGCFlE6mG61EWthXJ1wBKR4=$TF6foZkGhjgnlPWObcJAhg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QroKI2xY5pkR2UFxpRUWdsvKf9RS1v0dpXD1%2BiKCO5j%2FKEIRzh4hQYql1VAX9OxNY9lc9CKPzddsXL13hhfoEXmOVOvjYHp7Sl6FzJhFpBla4uhmZ21jEP8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75b5a0d6db63b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 99df2ddd5c71bbc6f3c170a77edeccbc
46ba5a1cda3c05dede156e3a2e06eb85034514d3
f5b9fcf25211cd65e8fea25d0dc20df1f89c4751c5c427f0467c35bfe1cb7fdd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F5B9FCF25211CD65E8FEA25D0DC20DF1F89C4751C5C427F0467C35BFE1CB7FDD"
Last-Modified: Sun, 16 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16237
Expires: Mon, 17 Oct 2022 07:03:51 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 99df2ddd5c71bbc6f3c170a77edeccbc
46ba5a1cda3c05dede156e3a2e06eb85034514d3
f5b9fcf25211cd65e8fea25d0dc20df1f89c4751c5c427f0467c35bfe1cb7fdd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F5B9FCF25211CD65E8FEA25D0DC20DF1F89C4751C5C427F0467C35BFE1CB7FDD"
Last-Modified: Sun, 16 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16237
Expires: Mon, 17 Oct 2022 07:03:51 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
cf-assets.hcaptcha.com/i/4cb9c41/e
104.18.22.122200 OK 117 kB URL HTTP/2 cf-assets.hcaptcha.com/i/4cb9c41/e
IP 104.18.22.122:0
Size 117 kB (117044 bytes)
Hash 160259ca8c12a6e71a7b99ba9ca34193
bb75f9f2d707c82f36c568cc705893d818b09357
063cc297dcbebf4153f6328790b223ad40617581bc82112568626c418f69cd49
GET /i/4cb9c41/e HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
Connection: keep-alive
Cookie: __cf_bm=jfgtvDWjms16HWlq74Y5xnEEbs8QkA5c0WgTsNtGO2Q-1665973994-0-AZfQFwAKRzxlDs2wBEWoxRQphQsDAqWUqamoxYJdOv0OR8Kd1FQpza/5WyJOsoUpzxVJdwo5G7Txqoq9PYpCEHw=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/octet-stream
content-length: 117044
cf-ray: 75b5a0dba8da0b69-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1379594
cache-control: max-age=1209600
etag: "160259ca8c12a6e71a7b99ba9ca34193"
last-modified: Fri, 16 Sep 2022 14:07:46 GMT
strict-transport-security: max-age=0
via: 1.1 c908cbeaf223c80632fd467b8ff1278a.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: LuMz3KKIijgzMbDM0PTtAgCd7tJqXqYJH8XmRoawB5w8Hqj7Ve6aFQ==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 02:33:14 GMT
Connection: keep-alive
cf-assets.hcaptcha.com/i/4cb9c41/e
104.18.22.122200 OK 117 kB URL HTTP/2 cf-assets.hcaptcha.com/i/4cb9c41/e
IP 104.18.22.122:0
Size 117 kB (117044 bytes)
Hash 160259ca8c12a6e71a7b99ba9ca34193
bb75f9f2d707c82f36c568cc705893d818b09357
063cc297dcbebf4153f6328790b223ad40617581bc82112568626c418f69cd49
GET /i/4cb9c41/e HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
Connection: keep-alive
Cookie: __cf_bm=jfgtvDWjms16HWlq74Y5xnEEbs8QkA5c0WgTsNtGO2Q-1665973994-0-AZfQFwAKRzxlDs2wBEWoxRQphQsDAqWUqamoxYJdOv0OR8Kd1FQpza/5WyJOsoUpzxVJdwo5G7Txqoq9PYpCEHw=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/octet-stream
content-length: 117044
cf-ray: 75b5a0dbc8e60b69-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1379594
cache-control: max-age=1209600
etag: "160259ca8c12a6e71a7b99ba9ca34193"
last-modified: Fri, 16 Sep 2022 14:07:46 GMT
strict-transport-security: max-age=0
via: 1.1 c908cbeaf223c80632fd467b8ff1278a.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: LuMz3KKIijgzMbDM0PTtAgCd7tJqXqYJH8XmRoawB5w8Hqj7Ve6aFQ==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F730763bb-3207-4921-9bea-b71a7356517b.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F730763bb-3207-4921-9bea-b71a7356517b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af4c7c0970c0ebf00c89be5612cd1baf
04784a8026e1bfd22be9027337e24080dbf22b27
d919ce83ae2636ba64d9ed505611ee609c69720200cf580c8a57e1cbe6831681
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F730763bb-3207-4921-9bea-b71a7356517b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9765
x-amzn-requestid: 7010796c-63dd-4e04-bc47-5920d33e81dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5PF4poAMFe3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d4-239c01c42ab711c553efa72b;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l3LeUicJQgQ0815URAKO8-2kdfSaTEYgyKkM6KTquTjggESVAVQuTw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:51:20 GMT
etag: "04784a8026e1bfd22be9027337e24080dbf22b27"
content-type: image/jpeg
age: 16914
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
104.18.22.122200 OK 6.4 kB URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
IP 104.18.22.122:0
Hash 667c176d0cce907fa656aac45c37c548
13cca63dbbc174dea0cf1f4aabfca191c9414cb7
1faed11757cf72660dee7d6bb4eff37593b0cb2549bc7e2aefb39a6a6d1e3ce5
GET /captcha/v1/1f7dc62/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bom.so/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: text/html
cf-ray: 75b5a0d75fbe0b69-OSL
access-control-allow-origin: *
age: 1389788
cache-control: max-age=1209600
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: hvRDLq-Ss7_5szM4k2vS6RqEi65yBFSEJ5PZI_cik2LruPRwx5OcrQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=xcVz_okDeXEkaFeJeKe7ho3H_YJxJaNyVT7Hx.gOElE-1665973994-0-AcJs8ECcpposQuFmhi3uyq9EwXbtUbeJw4K8t9WCRJHdI9upzXadI43qClELpQrsuij4EuVkf09dlL+NmyUgNec=; path=/; expires=Mon, 17-Oct-22 03:03:14 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb142a960-3a6b-4e93-9150-e60d4e70d760.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb142a960-3a6b-4e93-9150-e60d4e70d760.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55283ac0e7dda5a5f3e9e604771f2abd
674ca9ab901a0ca0392fdb9720681c459808cae7
d51d9d9723d6810ece552150ad0c3ae0f2153d2481295cac379665c5f9827800
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb142a960-3a6b-4e93-9150-e60d4e70d760.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10621
x-amzn-requestid: 1e4cba0d-7c7c-4293-ade2-8580cdc9f0e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7Ei_FcHoAMFjPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63478146-0e92f0555b74c17d4378516f;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O--lV8GTSQHXuTIQnEL9sgcsZM1YWckqHoxD76eJMJQWQPhqtYIYPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 10:58:06 GMT
age: 56108
etag: "674ca9ab901a0ca0392fdb9720681c459808cae7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F935873e1-fd8f-4f15-bc42-f143988cca48.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F935873e1-fd8f-4f15-bc42-f143988cca48.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f64de27635a47c9ab65eda0d654af6e
7241adf898ec80b4e0db840fe2deebf1a79a25d8
99aed4ee6d743ceeac86e65a5f25bac2618657d59a5dd56973cd66fc35a96e56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F935873e1-fd8f-4f15-bc42-f143988cca48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6183
x-amzn-requestid: 887eb605-59d3-4ff8-9fa8-97e0b7f739a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt6SRGv1IAMF86w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423da7-31465f5533a1fe711dd9043f;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:19:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: v7p640lNjGh0ciQ24zUcN8Djt6eGq3G7BiPPwOjOWvKZSJabhBY3Fg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 13:10:21 GMT
age: 48173
etag: "7241adf898ec80b4e0db840fe2deebf1a79a25d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33dc6416-1273-4434-89dc-098ea71abbf2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33dc6416-1273-4434-89dc-098ea71abbf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00bfa49ee360823765aa6ea3a7b08b9c
fe6c8ba4546cdcbf5e375cffc0212f569fe38eaa
a7ae5c72036d8bf6af81658c402a65f1c17b474c2eb94bda7e0c47e25e151860
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33dc6416-1273-4434-89dc-098ea71abbf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10135
x-amzn-requestid: e892507b-03c1-4229-9176-6af04bf2171d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5OH2FIAMFXPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d4-29af6a1175f21a5321348591;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: W5y5hAkSrHROcYEUznx6a6g6ArCkWERE0MMxxrZ6b7uGLFVyUvhJMw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:51:20 GMT
etag: "fe6c8ba4546cdcbf5e375cffc0212f569fe38eaa"
content-type: image/jpeg
age: 16914
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 440811a19987ddee099df289d9b61e79
ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1
1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9623
x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7Q8oFLRIAMFrEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:37:28 GMT
age: 17746
etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/1f7dc62/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bom.so/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: text/html
cf-ray: 75b5a0d76fc30b69-OSL
access-control-allow-origin: *
age: 1389788
cache-control: max-age=1209600
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: hvRDLq-Ss7_5szM4k2vS6RqEi65yBFSEJ5PZI_cik2LruPRwx5OcrQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=FaGMaTaHCiUKNt9elFEe.1k_NWeeMGScD.mKBmN0rr4-1665973994-0-AWT0UtNX/U5PCqT/quzq6Rvi4kWAa3keg50I5YkFe+9459CdEJE7PCq5iZX9OClDBdMtCtMXDTqDTN5zKNbb9Wg=; path=/; expires=Mon, 17-Oct-22 03:03:14 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/1f7dc62/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bom.so/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: text/html
cf-ray: 75b5a0d76fc20b69-OSL
access-control-allow-origin: *
age: 1389788
cache-control: max-age=1209600
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: hvRDLq-Ss7_5szM4k2vS6RqEi65yBFSEJ5PZI_cik2LruPRwx5OcrQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=HBpxMnldBCjpW61.4iQRH9BQ0BHX.fkxyXhcXPPUPCM-1665973994-0-AfnmM099vYhCWNPIhrB/Uf4yzC2B3BoHd4SfpB5F9KY+FzTarydvxsmAZry0XB9vjIS+k7vukvV/sASmb8Lsrw8=; path=/; expires=Mon, 17-Oct-22 03:03:14 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
IP 104.18.22.122:0
GET /captcha/v1/1f7dc62/static/hcaptcha.html HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bom.so/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: text/html
cf-ray: 75b5a0d76fc10b69-OSL
access-control-allow-origin: *
age: 1389788
cache-control: max-age=1209600
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: hvRDLq-Ss7_5szM4k2vS6RqEi65yBFSEJ5PZI_cik2LruPRwx5OcrQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
set-cookie: __cf_bm=jfgtvDWjms16HWlq74Y5xnEEbs8QkA5c0WgTsNtGO2Q-1665973994-0-AZfQFwAKRzxlDs2wBEWoxRQphQsDAqWUqamoxYJdOv0OR8Kd1FQpza/5WyJOsoUpzxVJdwo5G7Txqoq9PYpCEHw=; path=/; expires=Mon, 17-Oct-22 03:03:14 GMT; domain=.cf-assets.hcaptcha.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1
104.18.18.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1
IP 104.18.18.132:0
POST /checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1 HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cf-assets.hcaptcha.com
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/json
access-control-allow-origin: https://cf-assets.hcaptcha.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent, challenge-bypass-token, cf-chl-bypass, challenge-bypass-token, challenge-bypass-host, challenge-bypass-path
access-control-allow-methods: GET, HEAD, POST, OPTIONS
cf-chl-bypass: 2
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 75b5a0d91fd80b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1
104.18.18.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1
IP 104.18.18.132:0
POST /checksiteconfig?v=1f7dc62&host=bom.so&sitekey=f9630567-8bfa-4fc9-8ee5-9c91c6276dff&sc=1&swa=1 HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cf-assets.hcaptcha.com
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/json
access-control-allow-origin: https://cf-assets.hcaptcha.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent, challenge-bypass-token, cf-chl-bypass, challenge-bypass-token, challenge-bypass-host, challenge-bypass-path
access-control-allow-methods: GET, HEAD, POST, OPTIONS
cf-chl-bypass: 2
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 75b5a0d91fda0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/c/8548ae12/hsw.js
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/c/8548ae12/hsw.js
IP 104.18.22.122:0
GET /c/8548ae12/hsw.js HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
Cookie: __cf_bm=jfgtvDWjms16HWlq74Y5xnEEbs8QkA5c0WgTsNtGO2Q-1665973994-0-AZfQFwAKRzxlDs2wBEWoxRQphQsDAqWUqamoxYJdOv0OR8Kd1FQpza/5WyJOsoUpzxVJdwo5G7Txqoq9PYpCEHw=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/javascript
cf-ray: 75b5a0d948420b69-OSL
access-control-allow-origin: *
age: 86818
cache-control: max-age=1209600
etag: W/"288ca93cf78a8d922f849c694165d5dd"
last-modified: Thu, 13 Oct 2022 17:11:23 GMT
strict-transport-security: max-age=0
via: 1.1 5189ed92462b822bc9c8a27ceed0cb4e.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: 9HECd7yBCOYDpnn_SCIsIn4BxD2tG1uBPtrhv8sZGnWaoTyXuSzQgQ==
x-amz-cf-pop: ARN56-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cf-assets.hcaptcha.com/captcha/v1/1f7dc62/hcaptcha.js
104.18.22.122200 OK 0 B URL HTTP/2 cf-assets.hcaptcha.com/captcha/v1/1f7dc62/hcaptcha.js
IP 104.18.22.122:0
GET /captcha/v1/1f7dc62/hcaptcha.js HTTP/1.1
Host: cf-assets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf-assets.hcaptcha.com/captcha/v1/1f7dc62/static/hcaptcha.html
Cookie: __cf_bm=jfgtvDWjms16HWlq74Y5xnEEbs8QkA5c0WgTsNtGO2Q-1665973994-0-AZfQFwAKRzxlDs2wBEWoxRQphQsDAqWUqamoxYJdOv0OR8Kd1FQpza/5WyJOsoUpzxVJdwo5G7Txqoq9PYpCEHw=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:14 GMT
content-type: application/javascript
cf-ray: 75b5a0d77fc80b69-OSL
access-control-allow-origin: *
age: 124614
cache-control: max-age=1209600
etag: W/"84729783ded6e9166650d2e40d1556b2"
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: 10g5RVqLpYkU0aa-3kxGh5TDyliupy3A-DXslF07tUxdkEnx8Zz81g==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
104.18.18.132200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP 104.18.18.132:0
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bom.so/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 17 Oct 2022 02:33:12 GMT
content-type: application/javascript
cf-ray: 75b5a0cedd360b55-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"84729783ded6e9166650d2e40d1556b2"
last-modified: Thu, 11 Aug 2022 21:59:15 GMT
strict-transport-security: max-age=0
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: 10g5RVqLpYkU0aa-3kxGh5TDyliupy3A-DXslF07tUxdkEnx8Zz81g==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2