r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10856
Expires: Sat, 10 Dec 2022 01:37:08 GMT
Date: Fri, 09 Dec 2022 22:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2993
Expires: Fri, 09 Dec 2022 23:26:05 GMT
Date: Fri, 09 Dec 2022 22:36:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 22:33:14 GMT
content-type: application/json
age: 178
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5743
Expires: Sat, 10 Dec 2022 00:11:55 GMT
Date: Fri, 09 Dec 2022 22:36:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ki7y4+Y9ZUqO//15b2VIxNIteaknmSALuKNkN7WGtXJaV2rJ0B0fyHe4CSRNpdwujl4hCvSSoec=
x-amz-request-id: 2902XE3M6WBEW0BD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 21:50:25 GMT
age: 2747
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
flow.just4melifestyle.com/ga/click/2-318939731-1615-15495-30254-28114-1037a8c6fd-t18d337858
194.34.232.5302 Found 172 B URL HTTP/1.1 flow.just4melifestyle.com/ga/click/2-318939731-1615-15495-30254-28114-1037a8c6fd-t18d337858
IP 194.34.232.5:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 734c3c58640ec97d8c126d0fb1468ce6
dc1457288d39726f3101b1d7f6277a1710010031
11e96a556491fed1a4c0cb10a881c54cc8c530cc52a4a95b58201d1336462dd4
Analyzer Verdict Alert fortinet Phishing
GET /ga/click/2-318939731-1615-15495-30254-28114-1037a8c6fd-t18d337858 HTTP/1.1
Host: flow.just4melifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 22:36:12 GMT
Server: Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.29
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: 2abe4108ea610718ad6a5fce88b8e014
Location: https://bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.023779
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 22:36:12 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
IP 142.250.74.131:0
Hash 4198bd836ed81e7de2a739c09d711dc7
f4f3058f04ec61535936f642f062f9ca5616e620
18516df63fc9a11c4f267287b6e1785a7a1d1c432659aa754b264fd778f2b6e9
POST /s/gts1p5/EECR8fePMLQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:12 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 22:07:55 GMT
age: 1698
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5031
Cache-Control: max-age=129273
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:13 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:30:46 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: liyC9RnYEEpBvokpXL/saA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EaEb6Cl5lrgOcYxxcnjcUMVLm2Q=
bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
104.18.211.89302 Found 0 B URL HTTP/2 bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
IP 104.18.211.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214 HTTP/1.1
Host: bestdealtoday.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 09 Dec 2022 22:36:14 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
x-redirect-by: WordPress
cache-control: public, max-age=0, s-maxage=2592000
cf-cache-status: BYPASS
set-cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; expires=Sat, 10-Dec-2022 22:36:13 GMT; Max-Age=86400; path=/
wmc_current_currency=NOK; expires=Sat, 10-Dec-2022 22:36:13 GMT; Max-Age=86400; path=/
wmc_current_currency_old=NOK; expires=Sat, 10-Dec-2022 22:36:13 GMT; Max-Age=86400; path=/
PHPSESSID=fbd450a97bad351892fe18445245ee5f; path=/
wmc_current_currency=NOK; expires=Sat, 10-Dec-2022 22:36:13 GMT; Max-Age=86400; path=/
affiliate_for_woocommerce=214; expires=Sun, 08-Jan-2023 22:36:14 GMT; Max-Age=2592000; path=/
afwc_campaign=0; expires=Sun, 08-Jan-2023 22:36:14 GMT; Max-Age=2592000; path=/
vary: Accept-Encoding
server: cloudflare
cf-ray: 777137e45e4ab529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
IP 142.250.74.131:0
Hash 4198bd836ed81e7de2a739c09d711dc7
f4f3058f04ec61535936f642f062f9ca5616e620
18516df63fc9a11c4f267287b6e1785a7a1d1c432659aa754b264fd778f2b6e9
POST /s/gts1p5/EECR8fePMLQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7536
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:36:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7536
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:36:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcdc2c9891132c82cd09ef237930877
3e112ad867e159d1bfdf9bfd2e2a04fea8248494
8d543255c1272d77981913e4b0e0e5efede8f4ffaa91572a3eee9e44ac035946
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8473
x-amzn-requestid: 40260408-5f10-42ed-832e-a8bc5d02e95c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e9hGqwIAMFl2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab89-078ecefb64853b047acc2de7;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oe1qgsBhixlxqlLZdNtuON-CMoWDhGTH1SQhmQQhLGYTmp_R9FKaEw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:41 GMT
age: 2433
etag: "3e112ad867e159d1bfdf9bfd2e2a04fea8248494"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 66547
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00ad01d32ff690b4a28f6d0555c7e146
c607a2782213afcc058882ffa11a08860a6de034
b5896253222e132fa68f11fba133195a20e4aad94f8cdbfef747ded7e9243b0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7444
x-amzn-requestid: eaf9e585-6b52-46c3-a62a-fa591bbf2204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5f7BEV6IAMFbIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ad13-3cab7e35787037ec74ff6e31;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:48:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q-JwtoYGsFkpCudY52QAzpwi-93TU1Eh_1szsnTQp1jHpILapcn5PQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
etag: "c607a2782213afcc058882ffa11a08860a6de034"
content-type: image/jpeg
age: 2443
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8a5e9d0cddf26cf3a1478d2942f2478
e8a228a857a414f04108c84670ed7bc74534407c
3a15851f412000f1647057745348bc6f6e2f0cfe481ca7a72f6e94fab8d5e52e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12990
x-amzn-requestid: 2e4f71f3-b81d-4822-a13a-e8367a76aa20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMREp3IAMFRJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-447650995616ab6a09780380;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D3mXg-fDM59RiUxg-BxZNdAQG4_iGSTcxhleWiDkSmwlOdxS8SGhDA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
age: 2443
etag: "e8a228a857a414f04108c84670ed7bc74534407c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F_FNF6MAvQjqQ9kTGvu8lERPdurC-ZyLWtxQ5Ezs1OBUUmejNwiQ4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:13 GMT
age: 2161
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 1957
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-10956017856
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10956017856
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash de762838134a957fa9c20a930ed67dcb
b22d0fc0d5d6987331f785eb9ed1a9b037edf14e
9ec4ab121c490813f400c84b6112c37b73d09fcd447149d82a0659abb702bc26
GET /gtag/js?id=AW-10956017856 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 22:36:16 GMT
expires: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52987
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QWW4LY28GH
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-QWW4LY28GH
IP 142.250.74.168:0
File type ASCII text, with very long lines (20080)
Hash 96c93809b29f89320ea12585ff8b7aad
c37f77ca7a1594c93da451ae518a1e116511c035
37f171dcf370a047ef1d16cce73e60729312cad6905934ff73ff798433020827
GET /gtag/js?id=G-QWW4LY28GH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 22:36:16 GMT
expires: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77325
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3
142.250.74.170200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3
IP 142.250.74.170:0
File type ASCII text, with very long lines (2426)
Hash d9f4437babc7875a0154626a8c06db47
8d4a585787e01a99783c7d2e3851e5ad520e79c8
d63b988f554e00a5d9b9898eeed66a8167b6923092e4fb41c88a037cb475a9a2
GET /maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:16 GMT
expires: Fri, 09 Dec 2022 23:06:16 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55998
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-183515777-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183515777-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 1608000273dfe8bc2a5b1c8fc99976d7
7f9161ac76fd739f865f66cfffeb401a5290bca4
b2a111638f8c92d2543eb546655958709596dcdfc5c88fb1296e9067837064ea
GET /gtag/js?id=UA-183515777-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 22:36:16 GMT
expires: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c5cfecf3256a9cb2ee12bcc3bd7cbbf9
368d6e636fb4c88ffe7ec4f03bcbf5e6d023b6c9
66ae4b7333989439fce52a55e8e233aa84cfffe84e43ac88b87d16a02aab8d75
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 11:40:43 GMT
Expires: Thu, 15 Dec 2022 11:40:42 GMT
Etag: "368d6e636fb4c88ffe7ec4f03bcbf5e6d023b6c9"
Cache-Control: max-age=478465,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777137facd7db52d-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.5 kB IP 142.250.74.131:0
Hash 8751d6f40e354910a1332bef607f9f71
1878ee8ff67984f7c3d792970d9e70c60f262014
1c11a1c00079aa693278783dba3c5bdbdac7a5a0352ec9659a48935ec8733367
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws.bluesnap.com/web-sdk/4/bluesnap.js?ver=4.0
104.18.27.40200 OK 158 kB URL HTTP/2 ws.bluesnap.com/web-sdk/4/bluesnap.js?ver=4.0
IP 104.18.27.40:0
File type Unicode text, UTF-8 text, with very long lines (63566)
Size 158 kB (158526 bytes)
Hash f1627992790c079a1acf5db6d3920f98
609370d44aafe7a81f4197eed91d15fe57762e5e
cb9b24fea2a96bc78cafc1e3716b91902dd227b5cfdfa49d10e5d88ed6511598
GET /web-sdk/4/bluesnap.js?ver=4.0 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:16 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 11:11:21 GMT
etag: W/"67fd1-5ee0d3b589708-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: HIT
age: 5696
expires: Sat, 10 Dec 2022 02:36:16 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 777137fb2acab511-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2150)
Hash 6c78ead70d4b4bf7b314f50761426dad
47958b97827ddf1272d880408723bc893dae2679
bade7ee3ecf37536758f72dc47843cff6751b8333cfff5186c6f1253863596c6
GET /i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202212092236163DFCFAA7C26179D396EC
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6095a9f6ff93115297bddc89802eb91bbeb2fde8760d11ebcf73e75b1fa3438677f9b625a7d208e821a19aea21309c0b6e7ef190637c62acd94022c07ee86b96162c9cf6b39770e7519f9112909098492e
content-encoding: gzip
content-length: 1068
x-origin-response-time: 12,23.194.131.53
x-akamai-request-id: 773910ec.24c9885a
expires: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:16 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IhENgsZjUvkLWekwoVZ7TJ9bQl; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-194-131-53.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=11, inner; dur=3
x-parent-response-time: 117,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq
23.36.79.17200 OK 5.9 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 998086a8e9391906149a972e08ccea86
d4424525bfbe89f182221fb5cfdf4ca4e88b488e
d20a64e6fd5532ae86e309d71c3d9cf735a002f8d8964e1a4eca3592596b6960
GET /i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221209223616388A8B376105D0D1CE08
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b5dd3d5869ff11b629c7dc2a643cf2cb418135ecd25107048884380075c1518effe1b6df6647298f1bdbd9c4b26bc94267afe4257b00a794bbd1108703f3ef261b
content-encoding: gzip
content-length: 1074
x-origin-response-time: 5,23.218.220.138
x-akamai-request-id: 2618422a.24c9885f
expires: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:16 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-138.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=114, origin; dur=5, inner; dur=3
x-parent-response-time: 114,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMQ.js
23.36.79.17200 OK 65 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMQ.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (20457)
Hash d7c8475d37e641f1b6503229dd9e7c96
b011ac8cb1299f392c7fdf24036c43ab86a41941
5db52b7433cd76f28cd6aa9652aad8872967c97b898ac25cc1aa30eb2afcebd5
GET /i18n/pixel/static/main.MTRjZDliOGFlMQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221201150722A8E62342B91703E75262
x-tt-trace-host: 01884ddddb11c76940690a89f7d4189812d6fb50d40e709fb8f060ac03b4935927bdfbe64f6ad6311529c6be6d58c19862543bdbe54dfb1bf489771bec8e37cb2b5a6d9780e709b1f9f0a7bb33c5fafa3d
content-encoding: gzip
content-length: 64862
date: Fri, 09 Dec 2022 22:36:16 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=2
x-akamai-request-id: 24c98a50
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_87671.js
23.36.79.17200 OK 32 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_87671.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash cd427eb75f34fc128c06346b73d70862
4eeeddb0db776a635f1fc4e3785cca50b995ec55
d17303dd46810ec356d27a773c6722c20750dc921f70a51d76d3d77c406788c7
GET /i18n/pixel/static/identify_87671.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221025132316F80FA7E63D4578714882
x-tt-trace-host: 015720010e4cdc282df4fc80cf78bd2dddb7690c595eb6de72e640e5719fc1783fa3a117acf8783861c9b1a0e011382f534f2e840e795a57845c7147ea27ce830a72cd5dec7a946e64d3ac2f92a831f887
content-encoding: gzip
content-length: 30897
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=14
x-akamai-request-id: 24c98e32
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq
23.36.79.17200 OK 13 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 465a4ddc229de3c4696030080c2c4fdc
3b0ec7e56ea638b14d9f2dae4c4f44263e2ebba5
f84256b1f0c2c4de6d38d74f336522fae9b8801cd822be524be9ca7dcb1d3bc3
GET /i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022120922361748690DB3A1B6FAD27470
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6095a9f6ff93115297bddc89802eb91bbedeef452fea777d03c6ce2eeb492fb58ddaaac72ce938fb19737e90e0f6eb0cacec479fb58f11500c13fb433133350307ae2a1e8aa1e8a147b61d298b93dce228
content-encoding: gzip
content-length: 1411
x-origin-response-time: 13,23.194.131.39
x-akamai-request-id: ee05fa3e.24c98da9
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-194-131-39.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=13, inner; dur=3
x-parent-response-time: 110,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMA.js
23.36.79.17200 OK 62 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (25602)
Hash 46e419afe1d1eae8b3cc5879882fa98e
042f443a29546c4322266b2a3b30ca575a5c4811
f0afb51c6106aac41448e6e47d8287ce2a8aa871805b2cbb3fdee26d7e19dcf6
GET /i18n/pixel/static/main.MTRjZDliOGFlMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221201150723ED924227A87E5FF9CE13
x-tt-trace-host: 01fab06eb892e489693f2d013b537b14c6ac6b3db49a7ad94a982cf2deb9586f77b6b87a497e52ea023ad71249767d7bc5be6f4f71e9dd38e20c74f6d048e77ccf225b8783d230e6360c1412e69163aa4f
content-encoding: gzip
content-length: 62390
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=16
x-akamai-request-id: 24c98f9c
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 3.3 kB URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash ad6fe199d3bfd42b13900124f8262c97
b6e50a6815ad12a9df7b76fd561fb8402080d754
b58d693b7dc1e96c418a3de3b8f3e468f0416b66e263afe5a5ebf5d6a239389f
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 839
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209223617A407941151C5B7C27191
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b55ac32e591ceb2f572b93f84e233f6a9880b7607f1ca4cf2b3b082f860c2a4c33cb0be5137118c23e2117404bd0fe177ec4d12881225ba94b6ad8c9c8ae696ff5
x-origin-response-time: 21,23.218.220.142
x-akamai-request-id: 45752f5f.24c98e7c
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-142.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=108, origin; dur=21, inner; dur=15
x-parent-response-time: 125,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 3.5 kB URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash f51126bd65399e389d808188f0ea4646
55a93e38781737bbe707a2897849f8e5734cab53
8eee1a35422fc2ad39468535e73e048875033c0556a834f682cfe469d028bfdf
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 831
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022120922361724654A1D6C5619D3641B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e53b8b3c2f96c8cf3d22308a9cf2c4db9d1274c4a54ed500acd69eb519be7c9d342d42e5b8f916d7a8a03984b97a813899
x-origin-response-time: 20,23.218.220.145
x-akamai-request-id: df3e8e13.24c98e9f
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=19, inner; dur=15
x-parent-response-time: 119,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 3.8 kB URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash edb7cbf4a4e132fe862ea55a99b5d3fd
e02aaac7f365dd9c8ce9d1e3c0859553ab215671
a7ec53b6bcc7ad80ccdf5f533f987df90d1b230bc8f7acfbdad4f6c73cd77a91
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 839
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209223617E64C1171229496D29227
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601db5ac1833c61fc7a5ce608d9719a17a98c08316b6dc4a1f19279a6433d2ea23375a46abc06d69b4822e48a4e98d4a33471d01d20c433e53c6b279b62d18082630d2902c466bdd8cf32eda98bcf1f5d1
x-origin-response-time: 16,184.27.45.61
x-akamai-request-id: 26e5fbee.24c98ea8
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a184-27-45-61.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=16, inner; dur=14
x-parent-response-time: 119,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 831
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209223617ED760F4DBAFD66D199BA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601db5ac1833c61fc7a5ce608d9719a17a9d9ece480078017883f9b2d199970bd7222efc4b8bffc0803992a0efc4d0180d3c56ff06829556e36cbcbdbcc67fb925afaeb982c9e66ed1bd4e35e5895e2cd4
x-origin-response-time: 38,184.27.45.52
x-akamai-request-id: 6d5e2313.24c98e73
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a184-27-45-52.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=38, inner; dur=33
x-parent-response-time: 141,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org
23.36.79.17200 OK 44 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 17b3534cae0e2ec81a6bd8ec91f20bee
a866d4bc393fd769188f35cf91edf70d89df905f
eb2fb732d292a98fe639ea96d5efb385aa554e4009a48635806583efebb0ec84
GET /i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221209223617E2C8449F6C9203D208E3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601db5ac1833c61fc7a5ce608d9719a17a59e6c87268a27785facfd0b9c353916736ea711213a9c1f06d4f9d5814888b22d441c0868d6bc48cf2a06bf77cb838c3ac8a5eacdb4f6384bdd9ff3fb2ca5dde
content-encoding: gzip
x-origin-response-time: 8,184.27.45.46
x-akamai-request-id: e325d890.24c98e53
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-27-45-46.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=8, inner; dur=5
x-parent-response-time: 114,23.36.79.13
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 2.4 kB IP 142.250.74.131:0
Hash f953fa345c41912a59b9b170534b0640
840422f5cbc583649e5476c2cdc2f60313a21dc9
dd35aa46e52c6f5d658cb196f8bcd79c95bb8d2a9a32ff373381f6e373133271
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670625376375&cv=11&fst=1670625376375&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4
142.250.74.130200 OK 976 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670625376375&cv=11&fst=1670625376375&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2410), with no line terminators
Hash cc5159ab7d25b968513afe3298563dc6
fdfc69c67220dc1cdafd91bb480fd38d70449c55
5dfccb8fa3a21d66efdfba6f6139e30037a1d3aa9fc9578ea8152596a5b1f5b2
GET /pagead/viewthroughconversion/10956017856/?random=1670625376375&cv=11&fst=1670625376375&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 976
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 22:51:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670625376306&cv=11&fst=1670625376306&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=899775096.1670625376&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 949 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670625376306&cv=11&fst=1670625376306&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=899775096.1670625376&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2059), with no line terminators
Hash bbd771a68b349c9dd924ec9950a5928f
b95a997ea70536d98c75d11627b38a40e0e6ac77
cc69537d00914663def0e1bf736a49ff173f2acc1fe674bdb0c0f42705501174
GET /pagead/viewthroughconversion/10956017856/?random=1670625376306&cv=11&fst=1670625376306&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=899775096.1670625376&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 949
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 22:51:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10992351212/?random=1670625376411&cv=11&fst=1670625376411&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&rfmt=3&fmt=4
142.250.74.130200 OK 931 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10992351212/?random=1670625376411&cv=11&fst=1670625376411&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1995), with no line terminators
Hash 111e28e010c92450c34300347687b16d
69240649844b17bcdb41598f349d8c202234f7eb
188e977a3fa554b67c7285791f1d6dd29bb6728ec1e6fcddec7710e386cd5507
GET /pagead/viewthroughconversion/10992351212/?random=1670625376411&cv=11&fst=1670625376411&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=899775096.1670625376&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 931
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 22:51:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 831
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209223617BEBA855DE1876BD396A9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b55ac32e591ceb2f572b93f84e233f6a98322048a670beec7a82668a5d97d50908419334ccc83cd46e3709f487003afa07f22c24737613ea9e29fcd1fbb008f460
x-origin-response-time: 21,23.218.220.142
x-akamai-request-id: 45753407.24c990e7
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-142.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=21, inner; dur=16
x-parent-response-time: 121,23.36.79.13
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 934 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 065eb8a96bd7ffb288247e215dc0ce4e
82a4d14594124755ba3c35b7c80e5f101b85466d
bb0972300e1742db7ed34a64c06f09b7b9d56fdcecd9de62fbf2b00c1972e90e
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 839
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IhENgWvWMeJOj27aWzOhS77pVi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202212092236178AA478FEABE66CD4CA3B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6095a9f6ff93115297bddc89802eb91bbe9339f68b5f5f00ec75c7170303c0d9457ddced2bfaf6f110bda1fb20ff47eecb735154f745c47b2e586f0c44ec32a0e135b48755d9ac32782c5fefcbd8b7c52d
x-origin-response-time: 23,23.194.131.31
x-akamai-request-id: ee562f24.24c9910a
expires: Fri, 09 Dec 2022 22:36:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 22:36:17 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-194-131-31.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=23, inner; dur=17
x-parent-response-time: 123,23.36.79.13
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=3D77875CFDC7635839C79529FC326210; domain=.bing.com; expires=Wed, 03-Jan-2024 22:36:17 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1257039EB0A54B519B839FC521A585B2 Ref B: OSL30EDGE0205 Ref C: 2022-12-09T22:36:17Z
date: Fri, 09 Dec 2022 22:36:17 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4563
Cache-Control: max-age=154353
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 17:28:50 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 558 B IP 142.250.74.131:0
Hash 8231f420e3845a429649011a311abbaf
4cd6719a83b96ae63c2367ca575f590c59831e20
40810f3001e766538676e0e80fec11f8e53a0c01b80c54863210af0b607d3bb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670625376375&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=1350573798&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10992351212/?random=1670625376411&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=482887762&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670625376306&cv=11&fst=1670623200000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2162581848&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 22:36:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash fb4fa2fc1d1ae70e567ab20aa1b76f13
1822cd6ff1328973c151a56ab93f32f96622d8d0
e93413c3ea2c638b095bb981f8934fde3571fa227da6014302e6113d0665691a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 09:06:08 GMT
Expires: Thu, 15 Dec 2022 09:06:07 GMT
Etag: "1822cd6ff1328973c151a56ab93f32f96622d8d0"
Cache-Control: max-age=469189,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77713802ad09b52d-OSL
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
143.204.55.96200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48638)
Hash 2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb
GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7dsxnFbCjo9yhS6z6mJ8VGq_oGsOWAdopZ5IHDE-4TwJSJxgfnhePA==
age: 201671
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4563
Cache-Control: max-age=154353
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 17:28:50 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 472 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: C4DxcRLkFVQoHBj4C4HCfCOjF4JWFfngoRMWSZeGslGmoqnukB6PW+Wn17aXViVy44iXzkd5fGmJHCxwBMoztQ==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 09 Dec 2022 22:36:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/icons/material/system/1x/payment_white_36dp.png
142.250.74.35200 OK 149 B URL HTTP/2 www.gstatic.com/images/icons/material/system/1x/payment_white_36dp.png
IP 142.250.74.35:0
File type PNG image data, 36 x 36, 8-bit gray+alpha, non-interlaced\012- data
Hash 613481bf1448c72d049b68f1e02c4973
41bd753fb2f05b146b2ead160d9924d3e5a91737
004d7aa90e2889f6291a71c84ac3d3e394e0cade32bd41dc214736418f769181
GET /images/icons/material/system/1x/payment_white_36dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 149
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 05:11:38 GMT
expires: Thu, 07 Dec 2023 05:11:38 GMT
cache-control: public, max-age=31536000
age: 235479
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Hqo9Mn6mL40.es5.O/am=nAFA/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrhpPgCmCYs2QfaZr0-ipw-f2vk5iA/m=_b,_tp,_r
142.250.74.35200 OK 57 kB URL HTTP/2 www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Hqo9Mn6mL40.es5.O/am=nAFA/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrhpPgCmCYs2QfaZr0-ipw-f2vk5iA/m=_b,_tp,_r
IP 142.250.74.35:0
File type ASCII text, with very long lines (563)
Hash cefebfcce97902970acbc0db3d025b14
99239e6a8a3e61202ada0135d6889d896973dc01
6538b30a91fa83b1259a7d24e5b256b74f0c705681b64e01dfc0d2459c7707f6
GET /_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Hqo9Mn6mL40.es5.O/am=nAFA/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrhpPgCmCYs2QfaZr0-ipw-f2vk5iA/m=_b,_tp,_r HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/payments-consumer-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/payments-consumer-boq-js-css-signers"
report-to: {"group":"boq-infra/payments-consumer-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/payments-consumer-boq-js-css-signers"}]}
content-length: 57163
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 21:13:12 GMT
expires: Sat, 09 Dec 2023 21:13:12 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 09 Dec 2022 08:23:11 GMT
content-type: text/javascript; charset=UTF-8
age: 4985
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=2107645422&gdid=dZTNiMT&cid=1875198492.1670625376&ul=en-us&sr=1280x1024&_s=1&sid=1670625376&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=2107645422&gdid=dZTNiMT&cid=1875198492.1670625376&ul=en-us&sr=1280x1024&_s=1&sid=1670625376&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=2107645422&gdid=dZTNiMT&cid=1875198492.1670625376&ul=en-us&sr=1280x1024&_s=1&sid=1670625376&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://bestdealtoday.org
date: Fri, 09 Dec 2022 22:36:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true
142.250.74.78200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true
IP 142.250.74.78:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1521
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+324; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
X-Firefox-Spdy: h2
ws.bluesnap.com/servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157
104.18.27.40302 Found 22 kB URL HTTP/2 ws.bluesnap.com/servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157
IP 104.18.27.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (22027)
Hash 6b8e3e1c4072e7f06e875f4cf6813713
bdaa8a9bb9851b834c93994d40e6afe38c09091e
612c854308e0168821e4d17fe80d4ba593514f47aed4c320aa966434344f553e
GET /servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 22:36:17 GMT
content-type: text/html
location: https://ssl.kaptcha.com/logo.htm?m=700000&s=65828575390054a344151ad072a95a8e
set-cookie: ADRUM_BTa="R:26|g:75e3d787-d0ca-4d31-af6a-46f4b4863c3d"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:47 GMT; Path=/; Secure
ADRUM_BTa="R:26|g:75e3d787-d0ca-4d31-af6a-46f4b4863c3d|n:customer1_0b3cbbe7-6355-44e0-99fd-80572741c872"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:47 GMT; Path=/; Secure
SameSite=None; Expires=Fri, 09-Dec-2022 22:36:47 GMT; Path=/; Secure
JSESSIONID=FB741056D8B0F4B5151D16FD23B2468C; Path=/; Secure; HttpOnly
ADRUM_BT1="R:26|i:83"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:47 GMT; Path=/; Secure
ADRUM_BT1="R:26|i:83|e:0"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:47 GMT; Path=/; Secure
TS01e9f3cd=01b5d3bcb9f313f8cea546dc16fb49986aecf737a3b0463bdc3eb5b0fc81f1543ec634935addce8bef09724555f5d24637004d7d1bcd92d81f20113e46f2b83c6a4687fb9d8ab137a121ed34f86e1fa2d554fc6aa25735903fa00aa38f7eac911d66c14d7e4dc4ef06e00a8ad97f5c8cc950d5467dbbc911973255d0462187a53d2113b0a263c5a10190797914b057168d65f25f7d; Path=/
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777137fe5df6b511-OSL
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670625377037&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670625377036.1838762036&it=1670625376784&coo=false&tm=1&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670625377037&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670625377036.1838762036&it=1670625376784&coo=false&tm=1&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670625377037&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670625377036.1838762036&it=1670625376784&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 22:36:18 GMT
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
172.67.38.66200 OK 70 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
IP 172.67.38.66:0
File type ASCII text, with no line terminators
Hash c94c26ba5f5943d4a644c071d5202211
9f26360c3adc1eeebe9da5a3d358e4ff4ca81fbc
3d90f8fac928217404ab5db712c874c80f5ca2916ad86ab3762b7e809117f93d
GET /_s/v4/app/637ddf31c8f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 219590
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138061dcfb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js
172.67.38.66200 OK 41 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65466)
Hash 6acf186c6b3fe003c23794a586e770a4
8b96f0d3543f0a11b71aab5ab093cd0bfddbe0c7
bd8d0fa716a11aff0980a91e2dabebede0eb2313d42e8ee1d3dd0ea6dfb123f8
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"bde99510bdf9ab7bbc9ce82519a19a36"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 219590
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138063dfcb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.kaptcha.com/md
35.80.101.90200 OK 0 B IP 35.80.101.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 180
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=65828575390054a344151ad072a95a8e
Cookie: k=127a177618da43fa9df5353d33dc8b6a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: ddaa4848-791d-4c58-b5d6-ed928790dd27
Date: Fri, 09 Dec 2022 22:36:18 GMT
Content-Length: 0
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+235; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+390; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+590; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+771; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+828; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+225; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:18 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+375; expires=Sun, 08-Dec-2024 22:36:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=1875198492.1670625376&jid=1644185219&gjid=11116272&_gid=18453513.1670625376&_u=6CDACUIhBAAAACAAIg~&z=1653166873
108.177.14.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=1875198492.1670625376&jid=1644185219&gjid=11116272&_gid=18453513.1670625376&_u=6CDACUIhBAAAACAAIg~&z=1653166873
IP 108.177.14.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=1875198492.1670625376&jid=1644185219&gjid=11116272&_gid=18453513.1670625376&_u=6CDACUIhBAAAACAAIg~&z=1653166873 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://bestdealtoday.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 22:36:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/api-3/images/autocomplete-icons.png
142.250.74.3200 OK 3.4 kB URL HTTP/2 maps.gstatic.com/mapfiles/api-3/images/autocomplete-icons.png
IP 142.250.74.3:0
File type PNG image data, 34 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e9dd969ceb057a228067a1c539127f9
fb2da26959858054157960bb7f8e6c145648eaac
db209390b90b70f4b1ef3540cb581e4ec8edbba21980971b68e4aef5c5d352fb
GET /mapfiles/api-3/images/autocomplete-icons.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 3351
date: Fri, 09 Dec 2022 22:36:18 GMT
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/api-3/images/powered-by-google-on-white3.png
142.250.74.3200 OK 1.6 kB URL HTTP/2 maps.gstatic.com/mapfiles/api-3/images/powered-by-google-on-white3.png
IP 142.250.74.3:0
File type PNG image data, 120 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash f28a13545ca7be5cd9ea31bdd9ea7f8e
f4f45a59720b9d637b1e7e0ed5783ee84887287f
cd80d0dcb2a44bd30c11fcdf13d4c280f336dad9442ee7da79146f2bb77381a4
GET /mapfiles/api-3/images/powered-by-google-on-white3.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 1616
date: Fri, 09 Dec 2022 22:36:18 GMT
expires: Fri, 09 Dec 2022 22:36:18 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZiC_eUF7KDBR9utKC66nlTYV7wdcv_gg-EvRTvr_ZHaOrXnWdbYg5A==
age: 1416372
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=187010392&tm=gtm002&Ver=2&mid=cbef7846-d2c6-45b2-adf3-d8a6fdcd5418&sid=e5656fe0781111edaa52a9a1e115e103&vid=e565a8e0781111edbb49959d8c38d929&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=6019&evt=pageLoad&sv=1&rn=546200
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=187010392&tm=gtm002&Ver=2&mid=cbef7846-d2c6-45b2-adf3-d8a6fdcd5418&sid=e5656fe0781111edaa52a9a1e115e103&vid=e565a8e0781111edbb49959d8c38d929&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=6019&evt=pageLoad&sv=1&rn=546200
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=187010392&tm=gtm002&Ver=2&mid=cbef7846-d2c6-45b2-adf3-d8a6fdcd5418&sid=e5656fe0781111edaa52a9a1e115e103&vid=e565a8e0781111edbb49959d8c38d929&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=6019&evt=pageLoad&sv=1&rn=546200 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=24E38376376A6B6236389103369F6ABB; domain=.bing.com; expires=Wed, 03-Jan-2024 22:36:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C68DCE9934F340518D7FA9D7865183F3 Ref B: OSL30EDGE0205 Ref C: 2022-12-09T22:36:19Z
date: Fri, 09 Dec 2022 22:36:18 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/187010392.js
13.107.21.200200 OK 1.4 kB URL HTTP/2 bat.bing.com/p/action/187010392.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 5f1bb78ae1bc3037d10bfe1c24a26022
45f0e5d6a09a2a720d537f877b049867b099a939
bb0f0014bc4d149ef009ea202ca979cbcee2108c122f70c6e4579c732698b590
GET /p/action/187010392.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 1447
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=03715AFFF21765E10E30488AF3E26409; domain=.bing.com; expires=Wed, 03-Jan-2024 22:36:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 79B6A8DCEF9043E984DCF3D8F804276D Ref B: OSL30EDGE0205 Ref C: 2022-12-09T22:36:19Z
date: Fri, 09 Dec 2022 22:36:18 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 35cf854d2d432c960a27bf1fb3c1acc7
0776661a6a8ca17950cc37b5a8002d46a9230f4d
4efbe4fa402bee0baa8c91dbd341545126758e9ad2edc7f64da5c47f02207833
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151834
Date: Fri, 09 Dec 2022 22:36:19 GMT
Etag: "6393535d-1d7"
Expires: Sun, 11 Dec 2022 16:46:53 GMT
Last-Modified: Fri, 09 Dec 2022 15:25:17 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QCBQNMyG6mbKTDGc072pY7Z4QMmeqZh1gaCJzPpxWMvvfWP1ppw7Nw==
Age: 4896
embed.tawk.to/_s/v4/app/637ddf31c8f/languages/en.js
172.67.38.66200 OK 4.1 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/languages/en.js
IP 172.67.38.66:0
File type ASCII text, with CRLF, LF line terminators
Hash 43708c011c9ba047a9c410e50f48598c
773f4255fd0b65d8004e20c50fcb28ce7ab52107
59473679ae2c353553fc76e7b445cf5898227d5b7fb777331cfaac5a6edd0d9e
GET /_s/v4/app/637ddf31c8f/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
age: 1431512
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380c0c3db4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ws39.hotjar.com/api/v2/client/ws
63.35.52.85101 Switching Protocols 0 B URL HTTP/1.1 ws39.hotjar.com/api/v2/client/ws
IP 63.35.52.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws39.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bestdealtoday.org
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CEx5Dg2rR8AnsfKyXXVzlg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 09 Dec 2022 22:36:19 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g6JwP1t5psqSW4oNcsrHx0lGycE=
Sec-WebSocket-Extensions: permessage-deflate
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-4fe9d5dd.js
172.67.38.66200 OK 8.4 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-4fe9d5dd.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (942), with no line terminators
Hash 38f2d33490517c2c583bb94c8505f864
8b8cacad48e3615074916bfe859d89f1e4eac07c
babadedbf2a82b6a5adacf3186ada248dc99b92e9cfc2e2f53e2bcdab1fec46c
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 1431512
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e5f39b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/187010392
13.107.213.53200 OK 2.6 kB URL HTTP/2 www.clarity.ms/tag/uet/187010392
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 1a292d0fc671f3467aa5286bab9afc8c
5efcc9b7159dda40ea4e67e4b24c00b246b277eb
4065741cc48a75a87feaa6d0184f17da82662c6386fdb44932fe6a3a46e121b2
GET /tag/uet/187010392 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=919f32ab476a4bba84f62e586096ca7a.20221209.20231209; expires=Sat, 09 Dec 2023 22:36:19 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-cache: CONFIG_NOCACHE
x-azure-ref: 0Y7iTYwAAAAAlnlWZc9yWRK2NzC4A+XXTU1ZHMjBFREdFMDYxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 09 Dec 2022 22:36:19 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45f8e4f259853199eabad811f7bb660a
c13008020166cbc841a3871e3d7b460175707996
d4a0dc7b33c9706567db0cf91c2b5606a32214f30f131167061a247caed3842a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5306
Cache-Control: max-age=161576
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:36:19 GMT
Etag: "639377d1-1d7"
Expires: Sun, 11 Dec 2022 19:29:15 GMT
Last-Modified: Fri, 09 Dec 2022 18:00:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
141.226.142.181200 OK 494 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 65e0a485a34e297e0b33f83a7d9d1ad7
b9ffd5b8f731a5c8c4bc2d0e90faf6deefd3c066
389f42fad1a42ea4af5c71d7e0c6920b564a715426be84e394503adc8832be30
GET /web-sdk/4.12.2/hpfCcnInput.html HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:19 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:07 GMT
ETag: "1ee-5ee0d3a8bb5c2"
Accept-Ranges: bytes
Content-Length: 494
Access-Control-Allow-Origin: *
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Content-Type: text/html
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ssl.kaptcha.com/collect/sdk?m=700000&s=XJXN5jLppFOftdFvv__56_Q0CZRpk01s
35.80.101.90200 OK 5.6 kB URL HTTP/1.1 ssl.kaptcha.com/collect/sdk?m=700000&s=XJXN5jLppFOftdFvv__56_Q0CZRpk01s
IP 35.80.101.90:0
File type ASCII text, with very long lines (5410)
Hash e9303d52b209035a0e7339decb98e7df
a3ae200951f61ea2c8d693d2a2304796d1aee046
c82e2a0874948663160a2daa1523e07778fe6401637c489af933c6bf145651ef
GET /collect/sdk?m=700000&s=XJXN5jLppFOftdFvv__56_Q0CZRpk01s HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: k=127a177618da43fa9df5353d33dc8b6a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Content-Type: text/javascript
Expires: 0
P3p: CP=CAO PSA OUR
Pragma: no-cache
Set-Cookie: k=127a177618da43fa9df5353d33dc8b6a; Path=/; Expires=Thu, 09 Mar 2023 22:36:19 GMT; HttpOnly; Secure; SameSite=None
X-Correlation-Id: 0d10376b-2763-4ce3-a1d8-ad5170d8c345
Date: Fri, 09 Dec 2022 22:36:19 GMT
Transfer-Encoding: chunked
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-32507910.js
172.67.38.66200 OK 17 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-32507910.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7d452ce1915075571dcd1ade870f9d7
6ae8340e1bcc893ad9440e2d1784797f1ee78313
231333894b5cc833324ffe7d80b2008872de6dc3d68a105c6b99fcaadd614c51
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"af764270cff49e4f88710a5824f1af0a"
age: 1431511
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e5f41b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
141.226.142.181200 OK 497 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 927cf878587d44c8338aeb0452bebf6c
270af5545ec858a3b7b7f1e1b722309571616496
2438e53c7db4fb6acb110c2f5d1bf5e41890b3cccf14e10ab082898a075a405d
GET /web-sdk/4.12.2/hpfExpInput.html HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:19 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:08 GMT
ETag: "1f1-5ee0d3a919d7d"
Accept-Ranges: bytes
Content-Length: 497
Access-Control-Allow-Origin: *
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Content-Type: text/html
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/style/hostedPaymentFields.css
141.226.142.181200 OK 172 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hostedPaymentFields.css
IP 141.226.142.181:0
Hash d55830429b3706e5dcc46a5fb1341892
4f9d20291fb353caedc2489697f7c937636d3478
1e6ca74379f5982edb2752d93776768a161b438dac215822cd86a337c0a6b226
GET /web-sdk/4.12.2/style/hostedPaymentFields.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:20 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "115-5ee0d3ae2519e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 172
Keep-Alive: timeout=2, max=79
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.129.229200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.129.229:0
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 22:36:20 GMT
age: 22771737
x-served-by: cache-fra19156-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash c446fdc39cb61f87805aa909e736eea1
3400737f46d137f63690bc8f361e1cebcbc59351
7c587e6f566987526b988d04820311d2095031a62363724d4d946a02a8deedb5
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:20 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EE8B58940063E53F58E57DBA3B9332184942C5F2"
Expires: Sat, 10 Dec 2022 09:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1783
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 777138117c75b518-OSL
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&RedC=c.clarity.ms&MXFR=22522F2542DF675631213D5046DF6993
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=22522F2542DF675631213D5046DF6993; domain=.clarity.ms; expires=Wed, 03-Jan-2024 22:36:20 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 09 Dec 2022 22:36:20 GMT
content-length: 0
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/css/max-widget.css
172.67.38.66200 OK 172 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/css/max-widget.css
IP 172.67.38.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 172 kB (171785 bytes)
Hash 16c389b34ebeec8311af583828da6d10
7f6532cc9e86fc172d8ff05b4950daa2e8e40eea
0f5810f439a49e7958d33b26d5ce9371d950b8bef5745ab2b9b37ef6f3029480
GET /_s/v4/app/637ddf31c8f/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=75771
access-control-allow-origin: *
age: 1431511
etag: W/"0158db159e8967dbda5865ed6b2e435d"
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771381059aab4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-696bc286.js
172.67.38.66200 OK 4.5 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-696bc286.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (16814), with no line terminators
Hash 4d6951f2abe146a74c3d52917ad53ac2
d33741751a816b64d3860c64d9aa8b66e2ce7d69
89f515ea82eceacf6b76adc3e584983413099ebe1d1a421bb6f5e4932781fec3
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"a4ee0f7f38343d301e91591fc360d3fa"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1431512
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e4f21b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ws39.hotjar.com/api/v2/sites/3266006/recordings/content
63.35.52.85200 OK 22 kB URL HTTP/2 ws39.hotjar.com/api/v2/sites/3266006/recordings/content
IP 63.35.52.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c50703a4e9a516b635735d7d47582915
41fb76adcb375a2806abf1edd9d614ce5cdd2be8
3fb090cfa7c4edb66a96bf7a80cbfbc443efa5546d6800281924d73f5ebcba02
POST /api/v2/sites/3266006/recordings/content HTTP/1.1
Host: ws39.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 519151
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&RedC=c.clarity.ms&MXFR=22522F2542DF675631213D5046DF6993
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&RedC=c.clarity.ms&MXFR=22522F2542DF675631213D5046DF6993
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&RedC=c.clarity.ms&MXFR=22522F2542DF675631213D5046DF6993 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestdealtoday.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&MUID=0962B42D65506A2A3C7AA65864A56B4A
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=0962B42D65506A2A3C7AA65864A56B4A; domain=c.bing.com; expires=Wed, 03-Jan-2024 22:36:20 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 687983A43753432A915D51F90E8342E9 Ref B: OSL30EDGE0205 Ref C: 2022-12-09T22:36:20Z
date: Fri, 09 Dec 2022 22:36:20 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&MUID=0962B42D65506A2A3C7AA65864A56B4A
20.234.93.27200 OK 830 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&MUID=0962B42D65506A2A3C7AA65864A56B4A
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, max compression\012- data
Hash 8f4ba72b00ebe007eca97d387f48f07b
1b95745a838b90b6ea27d95f328320e925d3c356
9dc2b4d382ae0e8108994371eeeb56be6322e435a007d942a7f21c0598107c54
GET /c.gif?CtsSyncId=936944383DE34730AE30DB5FF1B1B537&MUID=0962B42D65506A2A3C7AA65864A56B4A HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestdealtoday.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 09-Dec-2022 22:46:20 GMT; path=/; SameSite=None; Secure;
date: Fri, 09 Dec 2022 22:36:20 GMT
content-length: 42
X-Firefox-Spdy: h2
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardNumberInput.css
141.226.142.181200 OK 196 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardNumberInput.css
IP 141.226.142.181:0
Hash 84304b18def08ae64ead4bc8633b92f0
a221df74ec05df9c6de55dd6d46e9f69664d6ff9
7380e4828c67c7da781ebcbf766ee8151899063a7446d9a6cd088607276a1dd3
GET /web-sdk/4.12.2/style/hpfCardNumberInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:20 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "118-5ee0d3ae9a887-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 196
Keep-Alive: timeout=2, max=79
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ssl.kaptcha.com/md
35.80.101.90200 OK 0 B IP 35.80.101.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 180
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=65828575390054a344151ad072a95a8e
Cookie: k=127a177618da43fa9df5353d33dc8b6a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 1c1f3061-aedb-41ff-8945-2abfbce5915c
Date: Fri, 09 Dec 2022 22:36:20 GMT
Content-Length: 0
ssl.kaptcha.com/collect/kasupport
35.80.101.90200 OK 2.1 kB URL HTTP/1.1 ssl.kaptcha.com/collect/kasupport
IP 35.80.101.90:0
File type ASCII text, with very long lines (2080), with no line terminators
Hash 021c185d4dee7c56161998890b4baa76
2a669025550a0a5d712ba551a9023cc912ad0153
6eac8761b6e5927679ac8fb69e2abcecfc5ee66a42bb5448ce4a2a159c6d0d62
POST /collect/kasupport HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 43
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: cd419513-189d-4c4c-965a-bad392ab61c2
Date: Fri, 09 Dec 2022 22:36:20 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardCvvInput.css
141.226.142.181200 OK 226 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardCvvInput.css
IP 141.226.142.181:0
Hash c8ac0833ed76e868732ca2f7802f0402
943c30bb690ea2553cbf789ad16efcf8e0877792
34a9ec5b86fff0bf056b71e16699b3aab05c2c2e172c37b231612e842e7417fb
GET /web-sdk/4.12.2/style/hpfCardCvvInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:20 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "167-5ee0d3ae4b6ff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 226
Keep-Alive: timeout=2, max=78
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardExpInput.css
141.226.142.181200 OK 7.7 kB URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardExpInput.css
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2694)
Hash c222d7840658a82df6879cfbf86a75ee
b645073c3d3702151dc0061cad14713b5e9d4b9c
a08af0e3e8cbfc9fb1cd21566f69f192d9fad6f334dd7a471048e04440ef0514
GET /web-sdk/4.12.2/style/hpfCardExpInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 22:36:20 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "ff-5ee0d3ae71841-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 181
Keep-Alive: timeout=2, max=78
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.213.53200 OK 41 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 0c76ad7f75e6406da5b2479bf1970cab
9751b533d8082136d8774dbbed84340c9cc71ba0
f49ff0029ffef39c0059012d3a2d797cf0eb20c4b5ab65488e7c5e3c255b78ed
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d90b0402dd6f4c"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0i2CTYwAAAABpeeOky75NSKCJG0nVOL32QU1TMDRFREdFMTgxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0Y7iTYwAAAAABhAbpfA58QKqKHbKNgzADU1ZHMjBFREdFMDYxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 09 Dec 2022 22:36:19 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1687
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://bestdealtoday.org
access-control-allow-credentials: true
date: Fri, 09 Dec 2022 22:36:20 GMT
X-Firefox-Spdy: h2
ssl.kaptcha.com/collect/cookiestore
35.80.101.90200 OK 0 B URL HTTP/1.1 ssl.kaptcha.com/collect/cookiestore
IP 35.80.101.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect/cookiestore HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 356
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: e768d734-5c33-4501-a040-961407fb816a
Date: Fri, 09 Dec 2022 22:36:20 GMT
Content-Length: 0
www2.bluesnap.com/services/2/tokenized-services/3ds-jwt-v2
141.226.142.181200 200 382 B URL HTTP/1.1 www2.bluesnap.com/services/2/tokenized-services/3ds-jwt-v2
IP 141.226.142.181:0
File type JSON data\012- , ASCII text, with very long lines (458), with no line terminators
Hash e8ce32d798a32f52cdc23fa7d862d011
341868781642c9edb9986ad28d3b3302cbe2cf9e
4b6db048df433b69ee36f669078ca13335ccab0bee48fbd3fc827446fb907439
POST /services/2/tokenized-services/3ds-jwt-v2 HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: anonymous
BLUESNAP_VERSION_HEADER: 2.0
BLUESNAP_ORIGIN_VERSION_HEADER: 4.12.2
BLUESNAP_ORIGIN_HEADER: Web SDK - Hosted Payment Fields 4.12.2
Token-Authentication: eyJhbGciOiJIUzI1NiJ9.eyJwYXlsb2FkIjp7ImNvbW1vbkp3dFBheWxvYWQiOnsiaWQiOiIxMzQyNDg3NjkxODE2NDE2ODMyNTE3MDEiLCJkYXRlQ3JlYXRlZCI6MTY3MDYyNTM3NTkwMn0sIm1lcmNoYW50SWQiOjExNTkxNTcsInNlbnRyeSI6eyJtZXJjaGFudCI6ZmFsc2UsImFwcHMiOltdfX19.XJXN5jLppFOftdFvv__56_Q0CZRpk01sUbeXJt9qGko._2
Cache-Control: no-cache
Content-Length: 2
Origin: https://www2.bluesnap.com
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 200
Date: Fri, 09 Dec 2022 22:36:20 GMT
Set-Cookie: ADRUM_BTa=R:57|g:22368de4-f4e3-4ede-9299-d7bd2a01b939; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
ADRUM_BTa=R:57|g:22368de4-f4e3-4ede-9299-d7bd2a01b939|n:customer1_0b3cbbe7-6355-44e0-99fd-80572741c872; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
SameSite=None; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
JSESSIONID=B9842E0B36F1FB91464D7C588EA25C91; Path=/services; Secure; HttpOnly
ADRUM_BT1=R:57|i:46; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
ADRUM_BT1=R:57|i:46|e:188; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
ADRUM_BTs=R:57|s:f; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:50 GMT; Path=/; Secure
TS01ce4ad4=01b5d3bcb9e9c86d4fb772b18063c7f8e5ec5a1a65d232a41208b1739aecbe60848e6e3088d10ecd404af77814645f1520e2629276fb21ee14db73e4046e8dde0fa4b71866ffa9feed22642c1bf3b276b593c7488fc8a68346a960591fe5c332b1c50e46c336ae08808124f77d90621cc328351d91cfaffdbff1ce8a41757550549616eb49869fcdca64d3fc270101a2d4b9edfad1; Path=/
TS0142b774=01b5d3bcb9fba68a7e25feb8d2b5884946da7b4ae5d232a41208b1739aecbe60848e6e30887bfdebcc220f35af2256a4765e3212c4ef8d9cfac6bb91cc490f3d70ac2e3877; path=/services
Content-Encoding: gzip
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json
Access-Control-Allow-Origin: https://www2.bluesnap.com
Vary: Accept-Encoding, Origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ssl.kaptcha.com/md
35.80.101.90200 OK 0 B IP 35.80.101.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 178
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=XJXN5jLppFOftdFvv__56_Q0CZRpk01s
Cookie: k=127a177618da43fa9df5353d33dc8b6a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 85a92e81-5c76-47d6-b69b-3df5805b1e29
Date: Fri, 09 Dec 2022 22:36:20 GMT
Content-Length: 0
songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js
198.217.251.251200 OK 7.5 kB URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js
IP 198.217.251.251:0
File type ASCII text, with very long lines (23840), with no line terminators
Hash dd1d411784d3c7c8314741a0c66ec43a
ecea1441595d3f5b63493622a6ce27072cd4dc5d
144914591626216299c7d3f2a80dd834409a487cc0c1c692f35e40f02b8bd142
GET /edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:20 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=15552000
cf-bgj: minify
cf-polished: origSize=23843
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 188018
expires: Wed, 07 Jun 2023 22:36:20 GMT
set-cookie: __cf_bm=c4CmoudZV_XymdjFjbfCIUBTsBHWNJcqQHa4Y2AAOys-1670625380-0-AZDF839MG9Itfag2wIuZTbj2hXYN4WMh2BvILAsNi5MZVmRhR9PcdsFvoldddtauEPSYkkhEmEiVEINJKhX+EyA=; path=/; expires=Fri, 09-Dec-22 23:06:20 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7XlAGRda9wHXcmhoWvzMp1p6hPsar2as6NMqxncD7Tx%2BYnXwGYEtg1AO16LwBPwfGl0Qdr9QYcwbGmsa6445JL6Pr7q9S8zLQmS8Id%2BKUZnRrIElnGAe6%2FKQqN0V%2FFWgo2w%2FeCEXO3xblYD6Q5mg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 777138157dfbb4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
104.18.211.89200 OK 0 B URL HTTP/2 bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
IP 104.18.211.89:0
GET /product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/ HTTP/1.1
Host: bestdealtoday.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=NOK; wmc_current_currency_old=NOK; PHPSESSID=fbd450a97bad351892fe18445245ee5f; affiliate_for_woocommerce=214; afwc_campaign=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:15 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
link: <https://bestdealtoday.org/wp-json/>; rel="https://api.w.org/", <https://bestdealtoday.org/wp-json/wp/v2/product/83258>; rel="alternate"; type="application/json", <https://bestdealtoday.org/?p=83258>; rel=shortlink
cache-control: public, max-age=0, s-maxage=2592000
cf-cache-status: BYPASS
set-cookie: wmc_current_currency=NOK; expires=Sat, 10-Dec-2022 22:36:15 GMT; Max-Age=86400; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_fd6bfceb04f63d5b669dafb2aa2378%7C%7C1670798174%7C%7C1670794574%7C%7C0d2c5d7548f166f5743d5cfd4ea7389e; expires=Sun, 11-Dec-2022 22:36:14 GMT; Max-Age=172799; path=/; secure; HttpOnly
wcct-ever-cookie=%7B%22c%22%3A%2242%22%2C%22s%22%3A%221661556087%22%2C%22t%22%3A%221687477887%22%7D; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16852512; path=/; secure; HttpOnly
wcct-ever-cookie-hash=5f1f65842516e9f4fecbcac4c6bd3138; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16852512; path=/; secure; HttpOnly
wcct-ever-cookie-last=%7B%22c%22%3A%2242%22%2C%22s%22%3A%221661556087%22%2C%22t%22%3A%221687477887%22%7D; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16852512; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=48409d1b832eae4b8fdb109180f9609e; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_fd6bfceb04f63d5b669dafb2aa2378%7C%7C1670798174%7C%7C1670794574%7C%7C0d2c5d7548f166f5743d5cfd4ea7389e; expires=Sun, 11-Dec-2022 22:36:14 GMT; Max-Age=172799; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=9dd14916607e80fa501a66c2832ab533; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_fd6bfceb04f63d5b669dafb2aa2378%7C%7C1670798174%7C%7C1670794574%7C%7C0d2c5d7548f166f5743d5cfd4ea7389e; expires=Sun, 11-Dec-2022 22:36:14 GMT; Max-Age=172799; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=9dd14916607e80fa501a66c2832ab533; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_fd6bfceb04f63d5b669dafb2aa2378%7C%7C1670798174%7C%7C1670794574%7C%7C0d2c5d7548f166f5743d5cfd4ea7389e; expires=Sun, 11-Dec-2022 22:36:14 GMT; Max-Age=172799; path=/; secure; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 777137ef8a76b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3266006.js?sv=5
143.204.55.84200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266006.js?sv=5
IP 143.204.55.84:0
GET /c/hotjar-3266006.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 09 Dec 2022 22:36:17 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/a51bf70da01fc998cffa17092217e712
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: L9KGtor-x_JQKszpwFJTQFhVxOfRYUxokY9xHHoOVbmotOKZkxOcmQ==
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2c78ba82.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-2c78ba82.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"fac25ff2d2c405e1ac7e156dca1f819c"
age: 1431512
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e3f1cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
142.250.74.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
IP 142.250.74.170:0
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 22:36:16 GMT
date: Fri, 09 Dec 2022 22:36:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/5fb7cf13920fc91564c8fae8/default
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/5fb7cf13920fc91564c8fae8/default
IP 172.67.38.66:0
GET /5fb7cf13920fc91564c8fae8/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:17 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-637ddf31c8f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777137ffde65b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
age: 219590
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138062de3b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
content-type: application/javascript
age: 657678
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138063e06b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5fb7cf13920fc91564c8fae8&widgetId=default&sv=undefined
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=5fb7cf13920fc91564c8fae8&widgetId=default&sv=undefined
IP 172.67.38.66:0
GET /v1/widget-settings?propertyId=5fb7cf13920fc91564c8fae8&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestdealtoday.org/
Origin: https://bestdealtoday.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-lsrc
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-50-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138085886b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-48f46bef.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-48f46bef.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"12f6c0f6e6cec2a03629fbce091e2072"
age: 1431512
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e4f30b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f163fcd0.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-f163fcd0.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-f163fcd0.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"a92075fd9ac5ba130387a80453676099"
age: 1431512
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771380e5f40b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
songbird.cardinalcommerce.com/edge/v1/songbird.js
198.217.251.251200 OK 0 B URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/songbird.js
IP 198.217.251.251:0
GET /edge/v1/songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=14400
cf-bgj: minify
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 603
expires: Sat, 10 Dec 2022 02:36:19 GMT
set-cookie: __cf_bm=DXTP86LJukdsw_DA_5_0_PACE8P5PdudVIPFj8brQJA-1670625379-0-AYpCWnxgWmsnm9xQW2bV9jhGc9sdivE3HK7u/BkcrFHgjP7IhB0fa2lp1g8yGCebM2CzamnzLIW2dszwyAPnx8c=; path=/; expires=Fri, 09-Dec-22 23:06:19 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=99%2FE1yqoOtdW5NN25n0eVYNOBrv0IjbIkBs03MGw7f5V67YC6dL%2BPGGc4zWRwnTziVAx3bs8X76Pa7vM3NPMRx%2FqJDNInMQQ3atWUbJ15vRuDTFg6fZJmkev4x8nteUMwOcUHwa28Q8z7mLNzDtv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7771380fd99ab4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ws.bluesnap.com/servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157
104.18.27.40302 Found 0 B URL HTTP/2 ws.bluesnap.com/servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157
IP 104.18.27.40:0
GET /servlet/logo.htm?s=65828575390054a344151ad072a95a8e&d=1159157 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: text/html
location: https://ssl.kaptcha.com/logo.htm?m=700000&s=65828575390054a344151ad072a95a8e
set-cookie: ADRUM_BTa="R:26|g:7f94b95a-425f-4e68-9310-b1244a9e919a"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:49 GMT; Path=/; Secure
ADRUM_BTa="R:26|g:7f94b95a-425f-4e68-9310-b1244a9e919a|n:customer1_0b3cbbe7-6355-44e0-99fd-80572741c872"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:49 GMT; Path=/; Secure
SameSite=None; Expires=Fri, 09-Dec-2022 22:36:49 GMT; Path=/; Secure
JSESSIONID=76186446990C4FB88DCC5D43E970D1A4; Path=/; Secure; HttpOnly
ADRUM_BT1="R:26|i:83"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:49 GMT; Path=/; Secure
ADRUM_BT1="R:26|i:83|e:0"; Version=1; Max-Age=30; Expires=Fri, 09-Dec-2022 22:36:49 GMT; Path=/; Secure
TS01e9f3cd=01b5d3bcb976f0669e76c9a0915381f9af479076b036e4a9cc5577b73baffa98fd27218a85043de5a1b13ad76df11f5f9f7317b4d61f857c6d94ca32d9e23aa7e02284ce66d81a725cd2e7bb0ca43b1946299285f6111348918237d87ba03d8e3880546a9e8abc7f99ead7faa368f878f4654c084abff5de0268e4a438aadfac8341a3d19ca104a64c83e82dccbf7520125bc174f1; Path=/
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7771380f081ab511-OSL
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/css/min-widget.css
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/css/min-widget.css
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24960
access-control-allow-origin: *
age: 1431511
etag: W/"80df9814fe6b98404ccc1df3c455ceaa"
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77713810499ab4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/1.597f4104d311c33d4189.songbird.js
198.217.251.251200 OK 0 B URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/1.597f4104d311c33d4189.songbird.js
IP 198.217.251.251:0
GET /edge/v1/597f4104d311c33d4189/1.597f4104d311c33d4189.songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=15552000
cf-bgj: minify
cf-polished: origSize=397453
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 214063
expires: Wed, 07 Jun 2023 22:36:19 GMT
set-cookie: __cf_bm=__8uFAGmlJ_6dQfFz0J0fxHHdBqz9UL_gffjvrCRvp8-1670625379-0-Abs69CbiR7M0USnUEHQfs8QGg7SArNwLVZ80elgwx+noka2USiKZZcM11/eXVHWeu+R2VaZB8Cy2RIr9SXunPpQ=; path=/; expires=Fri, 09-Dec-22 23:06:19 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iN7gfZnvq%2FWS1syVDeCBjUgAjmoTIJ%2Ff7wlPRe37gZJ%2BFbyGF6fh5nJ%2F3E417TNXfDDpLeI4L6wkj%2FpCJBmd5hV2P%2BSP8C%2FI%2FoddDOWpwGpcmsnSTGrAddiwH7o7vsWy%2Bm7CimrOcZktIEBMBa38"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 777138106f8fb4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js
198.217.251.251200 OK 0 B URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js
IP 198.217.251.251:0
GET /edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:21 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=15552000
cf-bgj: minify
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 214063
expires: Wed, 07 Jun 2023 22:36:21 GMT
set-cookie: __cf_bm=_kvAYUQlQOFv0zmm0Y14cMePYVP.2NAyN.5cye0w9WQ-1670625381-0-AeaED9UYjC1wqG/bW2GO+ky5ulNC7W3NPZR0HUUGzGdQQSSSo0JogRkS36/iYU3sfF5aXWJse1QPf/qMOArXoPM=; path=/; expires=Fri, 09-Dec-22 23:06:21 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BEDzqdYG3MTLWN%2BQAlsUEPdRLQwR7nfzVKCoevCg721VAxqhuSEl9hE%2BfK%2BNvVT8eZhldY3kfVUgboHFzI65p33kze3MWNIjboUHqSo2K7wiCdYY2f5F95QiGADIHQ7eimvHvtqM9%2FeFZZcBaN1x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77713818ea46b4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 172.67.38.66:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bestdealtoday.org/
Origin: https://bestdealtoday.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
x-served-by: visitor-application-preemptive-s31x
access-control-allow-origin: https://bestdealtoday.org
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138085887b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:18 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"9075c2f5460b2832318d3c7217cc68cb"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 219590
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777138063e03b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
198.217.251.251200 OK 0 B URL HTTP/2 centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
IP 198.217.251.251:0
POST /V1/Order/JWT/Init HTTP/1.1
Host: centinelapi.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
X-Cardinal-Tid: Tid-c2eaa786-2e4e-4a1b-84ed-e947b172686f
Content-Length: 843
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:21 GMT
content-type: text/plain
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers, Accept-Encoding
access-control-allow-origin: https://bestdealtoday.org
access-control-expose-headers: Access-Control-Allow-Origin
access-control-allow-credentials: true
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZWL%2F1NB31CHYzpU4i4nOVhB0kPFwoWUAffPB2Hrl6uASabl7FVsMqeMLUjVJzQJAmcqf%2B8ddpai08YAE9%2FgNc%2BOMzznQc7NQZmcVoZ9Co1%2FeB556Y7pk7n%2BPZ3WKpVEQX1iFd256K15l16Bvoy7VQjZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: BIGipServerCentinel-Prod-Web-CentinelAPI.app~Centinel-Prod-Web-CentinelAPI_pool=!3i700Pc4bDiIidGtg/saPAE4p6Lf+JsMsxraSz3W5JMzDPZEMuk+/BrE+1IWUcbDrOE6PaM0UQfs0Dc=; path=/; Httponly; Secure
__cf_bm=kBEU9adwhay5CtRB260GeQCrZLB00RFLUwJ23DZOMuA-1670625381-0-AdxgyPuRgBOsDb9vQJ0FLdYJCabRhGjpHBMRf8m0g3ehTsijBaCtF9+VLPJAeHUz2zpqbbzWaIrtlLrc76jnQEk=; path=/; expires=Fri, 09-Dec-22 23:06:21 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
__cflb=0H28vfjo6DQQsJ1UPaWE4t52HJ2dQUsduWsdLxqZWg5; SameSite=Lax; path=/; expires=Fri, 09-Dec-22 23:06:21 GMT; HttpOnly
__cfruid=d99f53c23817e799a3c3120a5ce87508181c28ff-1670625381; path=/; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77713816ef99b4eb-OSL
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/3266006/visit-data?sv=5
54.171.136.239200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/3266006/visit-data?sv=5
IP 54.171.136.239:0
POST /api/v2/client/sites/3266006/visit-data?sv=5 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/css/message-preview.css
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/css/message-preview.css
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 22:36:19 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38268
access-control-allow-origin: *
age: 1431511
etag: W/"949ecc85ac578750ec9a03e5680f7b0e"
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7771381049a4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2