firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jpuvghQatBZTMCDwlw_zPZZpLS2yG1je8ZaQXmhn44WZv8EzWB2m2Q==
Age: 21847
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2921
Expires: Wed, 05 Oct 2022 22:40:06 GMT
Date: Wed, 05 Oct 2022 21:51:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4074
Expires: Wed, 05 Oct 2022 22:59:19 GMT
Date: Wed, 05 Oct 2022 21:51:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QZPmu7dh9ZoHpyvx8WG4oKHTcU3kbxrRo79TRIXDsINNDLPPdyyvyCnzyQToAUmaY0p7MG2XwHc=
x-amz-request-id: RREA74NQ2G0ZT49A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 20:58:26 GMT
age: 3179
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 21:51:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kand-kbeauty.com/
199.34.228.164302 Found 342 B IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8034d4f24c03d933446750969e94501f
3b975fa8cdc36df85c1dc81c44018d38e2756117
932e461c544fc979c18150daca013b3bdbaf35c4391419336fecf9da45f4a318
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:25 GMT
Location: https://kand-kbeauty.com
Set-Cookie: publishedsite-xsrf=eyJpdiI6IjZicWVyejZsbURQMkJ6Vnoyako5dXc9PSIsInZhbHVlIjoiY2hwUFpuTk1heHo3RnhwV0ZKNldZWE5zT0NBWWRYeFY0R2J1XC9mNjRwQ0ZFY0g2SnZIREl3XC9UVUpoR29JejVRZGRia3U1aVVQZlNTV2I2WkM3NXZDSG5US0FtcUtjNmc0cGZnZVJFNUZNR3hFdStUUnBFMVZQTnNcL0xDQnU0YTgiLCJtYWMiOiIyMzYyZDcyNDQ4MmYxMWM1YTI5MWU1ODIyZTg4ZGIzYTVjMzFjM2I3N2Y4OWMzNDFhNzBkMzEwZWQ4MWRhZjM4In0%3D; expires=Wed, 19-Oct-2022 21:51:25 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IllYd0FyaWt6dXJtenB4VHpLQTdSWVE9PSIsInZhbHVlIjoieXhkeCttMGl1eHQzZHdBaytoTU5FbVJZVHR5RDBHXC9wQzM2M3JLRExwdVYyQXN5Sk0yTEZwVkdjYmViK1NYNCttR0k5aVNMU3drRTdGZ1JuMEZRUHdiTjErZWFnM2JcL2tJTVhEeCt2T3JHaVVZRmNIQ0s1UmRaUXZMVHpRTTlrbiIsIm1hYyI6IjhiNTU3OWRmYzhjZTZkOGQ0ZGVjYjM5NDJhNGFmY2I2M2ViZGNjZTZiNjhiN2I1M2MzOWE3OWZlYjU1YWI1MDAifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:25 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6Ik9VbGtoRE4xOEtCaXRPMXVROXFwbEE9PSIsInZhbHVlIjoiZGZkUnZpVVo0dWJnY3JVY2FcLzNCcElsakNPOUt1aW9CdnE5Q0V0UkpIZTBURHozRFwvREZZVzVXUmYzNmhydllraTNQNmhZclA1WFJkRUo1TjlTU3hGdk1WNnlYcUFoMEdYZjJPbTZ1Q09RQzFvOVc2a2ZSOUllWWlIVnI5akdDMiIsIm1hYyI6IjhjNjA3ZjQyYTE0MjUyMDNiZWFjZjIzNzVlZmQwMjNjOGYxNjBlYzk2ZmE4MDgzZDhlZWYyMjU1OTI1ZjMxMzEifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:25 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu67.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: d8dd926c8c74d9fa92b0d0ebe91aebd9
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8dc7e4e3b41c8a3fb8b5461e129bc6a0
49df61201298a8c8463221753621b2fc865e055d
e7cb6a71057b88ae4b3013c8a780ace28f10812d62f2ba66537dd45fafbc8e12
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7CB6A71057B88AE4B3013C8A780ACE28F10812D62F2BA66537DD45FAFBC8E12"
Last-Modified: Wed, 05 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Thu, 06 Oct 2022 03:50:51 GMT
Date: Wed, 05 Oct 2022 21:51:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 20:55:50 GMT
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dnv0QiMtnybeyvr6_gj8-l6SXzMontzRtAZy4Kvuzd6FzAFwsVWecA==
Age: 3336
kand-kbeauty.com/
199.34.228.164301 Moved Permanently 358 B IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f4db0443989d2a6536608db7c52416e5
d548d750462d7b999205e21653f44edc16a63501
36a6194865ff406b74b16722839b8addb6fe6ed40f4b3ebabcbde29c47a7f5ab
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 05 Oct 2022 21:51:26 GMT
Location: https://www.kand-kbeauty.com
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ikw5aVYzTmlyaGkwVTA5NE1OMEFUTnc9PSIsInZhbHVlIjoiakJtU1BtNFZMcmRcL1dabGVGUVpjM2E3QTdOOGpyUnlmMnh1U2JqeWxMTDc3OVZNZEE0M0JPektvUlBIOVAyOW5Sb2hmOXlISUk5RDQ4ekpmeVkrS0FNQnp4dEd0bnpSeTdSR0loRU9lK3ZsRXhKTkZtQ0ZcL1M3SDJaU1F1QVc0dyIsIm1hYyI6ImY4NmY0YmNiYzEzYjMxNzQwZWY0YWE4YWY2NWEyMWIxYjc5YTQ2MDY4NWViNWFkZmFkZGJiODAyNGFhZTFiNjcifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:26 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkxiTjFrVE50RDRFZlVYR0NPS1RnR3c9PSIsInZhbHVlIjoiUVh3YmFsUGFObnJvMlZiaG1xeUJ1Y0VDVEZNc1BFK081SVV1b0w2SzJUWGNWYllVWms4OFZwcWgrMUlmeGhTQnNPcG1rQU15OEd5RHFKZEt0V3g0c2FhWks2dStEalhBYlk0Zm5RczQ1VUdnc2x2KzFnTW1WdkVoZ25LcFVCT2wiLCJtYWMiOiJjNjE5ODA0OTM1OTdmYjFlZGNiNzc0NDYxMDk3YWRkNjAwMzg5YTE1MDRjNTJiZTI5ZjRjODM5NzkzMjRlOWYxIn0%3D; expires=Wed, 19-Oct-2022 21:51:26 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImxWdmxCZFBqb1B0QnJwT09KQzNoVkE9PSIsInZhbHVlIjoiaEhmR3o0SmNqMjZmcjJvdWhWdmR2K1N2alBLckpzM2VraXoxaWdGMFAxQWtNUmt1ZVZWeUxWUE9wSDhTQTJoMm9lMGZ1Q2VkUDNzdlZiaU85cHBQWENJWGtoeEZIdUdpT2dGdmVPUzB6djFqSkdHSFpKUzJUMWpUOGgxUFY2aG8iLCJtYWMiOiIzMTYyZGE5NDIyYjFjNWU5YmE4ZGViMGQyMjllZmRjMDJkYzE0YzJjY2VkNmEyYmIzZjIyZDJkNDY4MDUxOTM5In0%3D; expires=Wed, 19-Oct-2022 21:51:26 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn139.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: e850a19fcb0860458ba93f195603c387
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:26 GMT
Last-Modified: Wed, 05 Oct 2022 20:09:31 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.167.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.167.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WRAc+X/yHS9rvq3JfYBmrA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TSmTTI3PBs4s44W3IKH5CFIqSpo=
www.kand-kbeauty.com/
199.34.228.164200 OK 8.9 kB IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18719)
Hash e28efa7bc0ecf3f90894184f57834c3b
d81eeffa291e8ab83d5bbc103894ffcbc80b918e
7d5bd2762b714f57719dc8425f0a98b6fc9b22a3a4967855f1ba40a019535111
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:20 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; expires=Wed, 19-Oct-2022 21:51:27 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:27 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:27 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 32d793f457b501a97b49ee713d4da6be
Content-Encoding: gzip
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 1369879
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006687.441905,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (64282), with no line terminators
Hash 4204e7970c3000f76d8b4551eb84f772
ab466cb335d09874f07ef69cc41cfd1517df9df3
c7d3724efd7ee58c4e5a3a33bd68847f6a03df2cb84c1220d7d215677ba1d3a1
GET /app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 26 Sep 2022 19:03:21 GMT
x-rgw-object-type: Normal
etag: W/"05454a03ebeda68e1812a6dbf3b74b36"
x-amz-request-id: tx00000000000000a2fe462-006331f862-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 787442
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006687.442266,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22787
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Hash 1aedd91ec5ab26c8d56ec06533912c00
cebbdae9a5c667f76bbf3ca0afcfd67f96a244d6
d00feb0fc8e722e279adbd32bb715a7357a801127afe152f326e113a0e230fcd
GET /app/website/css/site.348ed5d4d0fd8c90d668.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"9d2dd98d61deb4cacb57697fb2a1b804"
x-amz-request-id: tx00000000000000f958eeb-00633b21b0-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ca837640b076da822e769273456dfe43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 187055
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006687.444229,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23170
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
age: 565966
x-served-by: cache-sjc10077-SJC, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 6330
x-timer: S1665006687.447906,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.df4e37d7bb374525cd84.js
151.101.85.46200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.df4e37d7bb374525cd84.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (50011)
Hash 48706a3e3a1894e528eb47476c2b6f4c
70e23d5cf3b3052367bbb964fefa9fc90c43573c
9e9bcdb49e75287775403673c28e73274e7b271083050c8d46a80f9089e76127
GET /app/website/js/runtime.df4e37d7bb374525cd84.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Oct 2022 15:42:15 GMT
x-rgw-object-type: Normal
etag: W/"bd104d9c218e2aefb769499566e1b83f"
x-amz-request-id: tx0000000000000124750cb-00633da62a-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.df4e37d7bb374525cd84.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: f7bc05f4586a1aaffa55d4125a91d245
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 22031
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006687.445370,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24732
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
151.101.85.46200 OK 67 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25511)
Hash 14ad40c1a43ace9b011a851702c93ecb
e9305b6f3a939584274b15a3f1c4fb5bf10645b0
9d4a8b77438e72d188022397e4bdf11b88fe72bc2c102dc0f9b6568b9fcf1c6f
GET /app/website/js/vue-modules.7951f3068d0f5401b2c2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:13 GMT
x-rgw-object-type: Normal
etag: W/"49ff92c44982a89cf5290643882beb23"
x-amz-request-id: tx00000000000000454d76f-0063292783-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.7951f3068d0f5401b2c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 4e4de176832166ae2fab2801dbf0f52d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 1358055
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006687.445589,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 66757
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.a6b1f0605c4665dccf23.js
151.101.85.46200 OK 151 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.a6b1f0605c4665dccf23.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 151 kB (150606 bytes)
Hash a518bea9c45067376ba8e1b7aaca417e
27487a65990fe26d95e95070d6b7a0deba2ac396
3edd7864714f245d451cbc5863ee83af18609f7eeef18c98bace8fdd342d7f5f
GET /app/website/js/languages/en.a6b1f0605c4665dccf23.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Oct 2022 16:12:17 GMT
x-rgw-object-type: Normal
etag: W/"e798e0ecdf8a983764ee60e2085b817e"
x-amz-request-id: tx000000000000010799b0f-00633c5bb7-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.a6b1f0605c4665dccf23.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 7374bc1d1690902caa277f1ad7c015dd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 106449
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006687.445816,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 150606
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.e6b9fd60b8285785e60548e02031667d.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.e6b9fd60b8285785e60548e02031667d.js
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Hash 47abca02848cd3b24101fba50f433323
0bffb42a09adb8cf93917c4872e08b067c118433
334be1536bf63a24e120bf60181694ba82d6847b84c1779d9ac1a1dab7c31c1e
GET /app/checkout/assets/checkout/imports.en.e6b9fd60b8285785e60548e02031667d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kand-kbeauty.com/
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Oct 2022 16:26:44 GMT
x-rgw-object-type: Normal
etag: W/"e6b9fd60b8285785e60548e02031667d"
x-amz-request-id: tx0000000000000123bec6a-00633db0b3-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.e6b9fd60b8285785e60548e02031667d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 19317
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1665006688.533461,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3515
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
151.101.85.46200 OK 317 B URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Hash 27ee0fccb172f6ed41222a495a62205c
dba3bf87197abf047d477bf26fd8530fa086f194
327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a
GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kand-kbeauty.com/
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 525736
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 6
x-timer: S1665006688.533679,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
151.101.85.46200 OK 4.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (5681)
Hash 595a9769e28e42b687d05be6e44ed1b1
ab07b4524f8b5c9efcc3c8eb408c015933f87b94
06d08e2bc2373f5fe3e0138ac069b6f9e644a9456ae7832a5d253e5ef7a75252
GET /app/website/js/41630.acde68362a4f85b8242f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"e3fdf96b41b353e0c37f1f9918024cf3"
x-amz-request-id: tx0000000000000109bb28a-00633b21b6-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.acde68362a4f85b8242f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 248948a0eebf38c535a9deb473b5f1b9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 158407
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006688.971243,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4152
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
151.101.85.46200 OK 4.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9463)
Hash 414d8373f1c7696806c33ab7299bf4dd
cd160cf499b27ba121c837c3202b8047ad83fb56
2e291b8826d1f4b2c17be73b5508acc3c8e23de8f83728fe90f3158d5445cc83
GET /app/website/js/49709.cb80a757b769d7ca4750.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"85314933e3dbc3506fb76dbbc18b9cb1"
x-amz-request-id: tx000000000000002699229-006324b375-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/49709.cb80a757b769d7ca4750.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: a1e9b5b80d2e42cf7319f9e882b9a88c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 1287182
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006688.972946,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4057
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4209)
Hash d0c3059bddab007ccee07c57336bba88
e0fc4e1f8089d3bae817d8ec888c151f95fd1402
f3db4c4c1c1698425a2e8a9f9aa971ef14ce88681219b227626a9c3dc1790c7e
GET /app/website/js/88857.6e34b40bfa10dd648375.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"9463f4be6c8d7a23f1a7f6a702ffedac"
x-amz-request-id: tx0000000000000026990a6-006324b373-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88857.6e34b40bfa10dd648375.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: b9fa93b1b68f4f1d898db568f1582457
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 755333
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006688.973162,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3472
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:51:27 GMT
Connection: keep-alive
cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
151.101.85.46200 OK 395 B URL HTTP/2 cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (857), with no line terminators
Hash 8d7fcccab55897af77b9e87a64f57b20
8fabb83941907077788025f05cb325c0c7340794
ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346
GET /app/website/css/home-page.330abfc8608ec69de0f5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a8b1be9-0062d074c4-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 995f38829174b97993a0ed18090ad16d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 1977391
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006688.975557,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (19908)
Hash f201fa985a8ebdce48c806e4f758582a
e03ed9757e25fd1f7649d2402623a8ba1f5b400b
9453697232ae9df8797a4aec6e547c62c95866ca5597a2feeefc2493eb8c48ab
GET /app/website/js/home-page.44e252f4ea49e6c88e3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Sep 2022 16:40:02 GMT
x-rgw-object-type: Normal
etag: W/"a9917ab68ed49d660f45db725ec853af"
x-amz-request-id: tx000000000000006aa3142-00632b3ebb-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.44e252f4ea49e6c88e3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 5f8e79841a71b39728ed4464187af8f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 1228132
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006688.977563,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6026
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:51:27 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 64f75285a1c968027510a5201a9c24ce
95292b421f917a3754796753e50765c37d729c1b
b6bf273545d1eb6e947b35f85f23831456026d6fde5275661a8caa992893a81e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:51:27 GMT
Last-Modified: Wed, 05 Oct 2022 20:26:36 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TTJJDxiLV90ifXtJU_QG3fax4g_hxEX_KOL0BaHu7OnmA45WBWofDA==
Age: 5091
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 64f75285a1c968027510a5201a9c24ce
95292b421f917a3754796753e50765c37d729c1b
b6bf273545d1eb6e947b35f85f23831456026d6fde5275661a8caa992893a81e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:51:27 GMT
Last-Modified: Wed, 05 Oct 2022 20:51:12 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2Yjaxoqv6Xy-KNevxJx0YhzlCwjZ-QG8XJ23C144rRE6orpyzeq-sw==
Age: 3615
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:51:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: 13fcd792-1fcc-44b5-aa9e-d2773a60fe77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHrbIAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5b5f5d781b9d651b68c04f2e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wfnbRpTKni8hbAmJXO9vdisV6ZPoRP-eBb3wP4RzPS7MlXvp7282dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 886
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23e10c01392e4958e4a4f19573290da9
59ab1c451c388f7b57da52bf518eff15e0c584ff
ece0b872f33166fcc2816595fdf1348664d985131bc943cd4a543524dede0274
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12752
x-amzn-requestid: 3c32a029-08d0-4f98-a0e0-48a7e05242b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sHXXIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-176be5177b67ddc068060b19;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 38BLK_SPdXrtERpTqLrMb0ScXokoyROXIJ74Zw0HrAV9hTGRd3o7dg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 887
etag: "59ab1c451c388f7b57da52bf518eff15e0c584ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5a5ee14d41747f46e71f04782e1a3d3
b0205176a58913f57056b91674097bfb58046e97
b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7385
x-amzn-requestid: f3b30c95-2f19-4d70-b358-ff7e1e1c56f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHJrIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5211c3087ea4f0023b32b284;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: uka14Zb4NhZEmseL9817VqWrplnl8Yrmnp3oTVs6OeMjdCLI89QoVg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 887
etag: "b0205176a58913f57056b91674097bfb58046e97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 51716
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/site.9ee3725f90747bec26e1.js
151.101.85.46200 OK 8.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/site.9ee3725f90747bec26e1.js
IP 151.101.85.46:0
Hash 83c37f49b9fb5eeb70a244a759a4ce0d
f2f4664206335b080db6a5608b463945e89de346
cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5
GET /app/website/js/site.9ee3725f90747bec26e1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Oct 2022 15:42:15 GMT
x-rgw-object-type: Normal
etag: W/"7578db12cb970d0994fc6baf93562d5c"
x-amz-request-id: tx000000000000011620973-00633da628-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.9ee3725f90747bec26e1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: c91bcd69f64fbffb855dbb52f4b28de0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:27 GMT
via: 1.1 varnish
age: 22030
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006687.446527,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 573013
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 887
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff
151.101.85.46200 OK 41 kB URL HTTP/2 cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff
IP 151.101.85.46:0
File type Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Hash ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e
GET /fonts/SQ_Market/sqmarket-medium.woff HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: font/woff
last-modified: Tue, 20 Sep 2022 22:41:04 GMT
etag: "632a4180-a1b8"
expires: Tue, 11 Oct 2022 10:23:38 GMT
cache-control: max-age=1209600
x-host: grn93.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:28 GMT
age: 732470
x-served-by: cache-sjc10054-SJC, cache-bma1663-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 3316
x-timer: S1665006688.146198,VS0,VE0
access-control-allow-origin: *
content-length: 41400
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-regular.woff
151.101.85.46200 OK 39 kB URL HTTP/2 cdn2.editmysite.com/fonts/SQ_Market/sqmarket-regular.woff
IP 151.101.85.46:0
File type Web Open Font Format, TrueType, length 39020, version 1.0\012- data
Hash 6d82eada1d3af65a01d7a535b15ed1cc
b473e899cde33d7f903c754729ee41b46229a1e7
5e094fc97ee2575583299cc73a332e742c43a80e5fefeb3579fe3c5108c535f7
GET /fonts/SQ_Market/sqmarket-regular.woff HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: font/woff
last-modified: Tue, 20 Sep 2022 22:41:04 GMT
etag: "632a4180-986c"
expires: Tue, 11 Oct 2022 11:05:18 GMT
cache-control: max-age=1209600
x-host: blu90.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:28 GMT
age: 729970
x-served-by: cache-sjc10058-SJC, cache-bma1663-BMA
x-cache: HIT, HIT
x-cache-hits: 4153, 1
x-timer: S1665006688.147408,VS0,VE1
access-control-allow-origin: *
content-length: 39020
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kand-kbeauty.com/
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:51:28 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.kand-kbeauty.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
www.kand-kbeauty.com/static/icons/payment-methods/applepay.svg
199.34.228.164200 OK 3.0 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/applepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Hash c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001ae660e-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 0f4a143075d748c17ea37966fd5ecb2b
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1939
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:51:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=8967e33c-0855-44c5-a02b-06638c25c692; Expires=Thu, 05 Oct 2023 21:51:28 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.kand-kbeauty.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.kand-kbeauty.com/static/icons/payment-methods/visa.svg
199.34.228.164200 OK 2.2 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/visa.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Hash 98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx000000000000033debbab-00631274b1-c033918-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 9d1875c5737999fdba4823935109fe9b
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kand-kbeauty.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.kand-kbeauty.com
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://www.kand-kbeauty.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
www.kand-kbeauty.com/static/icons/payment-methods/mastercard.svg
199.34.228.164200 OK 1.7 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/mastercard.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Hash 1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ac6ae7-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 3fcfedd039af397dab07cf952578a912
www.kand-kbeauty.com/static/icons/payment-methods/googlepay.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/googlepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Hash 2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001a5c24d-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn139.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 28ca601f881ae433e504910c441fbcef
www.kand-kbeauty.com/app/website/cms/api/v1/users/143208469/customers/coordinates
199.34.228.164200 OK 70 B URL HTTP/1.1 www.kand-kbeauty.com/app/website/cms/api/v1/users/143208469/customers/coordinates
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9752b06c768724a72741cf9388713596
3c05993fc47e53d1edaa9c03779565a7753f3a61
1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c
Analyzer Verdict Alert quad9 Sinkholed
GET /app/website/cms/api/v1/users/143208469/customers/coordinates HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ==
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:28 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; expires=Wed, 19-Oct-2022 21:51:28 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; expires=Wed, 19-Oct-2022 21:51:28 GMT; Max-Age=1209600; path=/
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 160edc752230cb7476b79c4a108c0a47
Content-Encoding: gzip
www.kand-kbeauty.com/static/icons/payment-methods/americanexpress.svg
199.34.228.164200 OK 1.2 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/americanexpress.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Hash 2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ac6a0d-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 4905ea5c188b40a0c258be177022f078
www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
199.34.228.164200 OK 201 B URL HTTP/1.1 www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ==
Content-Length: 83
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:51:28 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn5.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.kand-kbeauty.com/static/icons/payment-methods/discover.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/discover.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Hash 9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001ae6558-00628473fc-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn139.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 5d9f1a31f95ce0abce50f1e722b1c0e0
www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
199.34.228.164200 OK 893 B URL HTTP/1.1 www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with very long lines (893), with no line terminators
Hash 9dce70407464375bb30c5710f05d2dc0
88c38b5eff92871f7481fafbbb3bff3055d67ec7
46f46b93650188d3977fed568606b5893b390fdc49f562a14ca364963d5459e4
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ==
Content-Length: 78
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:51:28 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn146.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 893
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.kand-kbeauty.com/static/icons/payment-methods/jcb.svg
199.34.228.164200 OK 3.9 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/jcb.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Hash 32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001a8887b-00628473fd-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 900026a54c6d5961d3ad1a2f87f08bbe
www.kand-kbeauty.com/static/icons/payment-methods/cashapp.svg
199.34.228.164200 OK 1.4 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/cashapp.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Hash 4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:28 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000d958643-00629614fd-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 19f2dcdc35282580dcaa9346f669c887
www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/locations
199.34.228.164200 OK 94 B URL HTTP/1.1 www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/locations
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6cb4f09df469a94368c488bf99c961f8
a32c3423672a8e4ec46657a7696d8c645d78f8c3
28863f16ca048f7632a7abf573d91fc88bfa6c839a38885179336802f2d1691b
Analyzer Verdict Alert quad9 Sinkholed
GET /app/square-sync/published/users/143208469/site/744042070167250516/appointments/locations HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ==
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IldtczRuVVZuMVhGdHlPVlNZeXlZWkE9PSIsInZhbHVlIjoibEthTUh3bHFwallhakNsVkJlWk1HSFJOdVFEZmpOV25FQWVtTDh5OVwvODlEZ05ManJ2bm92MTFBdHcwejVJU0JIZkZINGQrbDh2ZjVlQlVrbjJsY0lMNkJPcm4yQmMzZEQzZDA1d21HMTluOXZJUkxQWnJyMFFNXC95amRXVGgzQyIsIm1hYyI6IjcwNzU2M2NhOTQ2NGIxY2Q3YThlZDJkZGE5ZTg3ODlmOTM3YTlhY2EwZDU5YzI5YThjYjZlYzc5YjQyZmJlMWYifQ%3D%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:28 GMT
Set-Cookie: square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; expires=Wed, 05-Oct-2022 23:51:28 GMT; Max-Age=7200; path=/
square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D; expires=Wed, 05-Oct-2022 23:51:28 GMT; Max-Age=7200; path=/; httponly
X-Host: grn81.sf2p.intern.weebly.net
X-Revision: 9530c2fdfbd4248776dda6e5a78dacb86c1764ab
X-Request-ID: 3af746391a7480972a6abe215180f122
Content-Encoding: gzip
cdn5.editmysite.com/app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
151.101.85.46200 OK 1.5 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (4255), with no line terminators
Hash 6c6746f6b5b559f5fd2dd01fb6dde18a
db7075ae65194fdca554a21e3be0d2589b4c984d
8cf100c2312a0fd4569db41d366be65210b75448465162f7ab89a704db02ce4c
GET /app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: s-maxage=604800
etag: W/"87462e4278e550ff86936446a4fe7a1a"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: e6f06fe8b50118021df4c0f68e19b33f92df5a4d
x-request-id: e9b63ddbd597bf6934c9a0d77a4a436e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1663-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665006689.784316,VS0,VE288
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1507
X-Firefox-Spdy: h2
www.kand-kbeauty.com/static/icons/payment-methods/afterpay.svg
199.34.228.164200 OK 2.1 kB URL HTTP/1.1 www.kand-kbeauty.com/static/icons/payment-methods/afterpay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (665)
Hash 260a26946c3308e835f83022e177e1aa
3ef5afcc903a2375bc686511214c5e9e535b2342
cb0d2b4c057e2dd0c0be626a3fc89c2fbfe23a8de627f2031d1c44de406ffc35
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/afterpay.svg HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:29 GMT
Content-Type: image/svg+xml
Content-Length: 2148
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "260a26946c3308e835f83022e177e1aa"
x-amz-request-id: tx000000000000001af9d1b-00628473f7-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn132.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 774e49d93f0bfd7e5180bf7eadf779c5
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css
151.101.85.46200 OK 393 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css
IP 151.101.85.46:0
Hash f0935782737336d7aedae7e9534d27be
34b49a0ffcd13e03ca2d1303d5a71773e2282362
728ed2ef57525be9b9a8541ffe47f7600ba08e3ce0646afce5b49736692f7745
GET /app/website/static/fonts/Square%20Market/Square%20Market.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:50 GMT
x-rgw-object-type: Normal
etag: W/"a7ddbe9e253a4f3a9c6de33cf4f3ce60"
x-amz-request-id: tx00000000000000b7d07bc-00626682c3-4d6022f-las
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dac0242964acdc08ef6cc16c666026a58a1e15a5
x-request-id: 118bb1c1a071abd6cc161598c41b7f5d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 766630
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.224189,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 393
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (15920)
Hash aeae4740ce9ca44afb45d241a6d7cf02
63c70a7ccc0218c61cf82048d8d1c9c6803ce1c0
73486eccc5e108672e81c0bd003e335f5df16d3e054ae3926cb11243094ebb69
GET /app/website/js/66828.7a1f2b6b3048c8a9abed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"cfc68333314856ff257312138eb8e7d0"
x-amz-request-id: tx00000000000000bee0010-0063331d49-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66828.7a1f2b6b3048c8a9abed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 8106d52edec8e55a0681b3b724dce240
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 712397
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 183
x-timer: S1665006689.249206,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
151.101.85.46200 OK 10 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (17020)
Hash 6d29cec60d1053f23cf97c994eb73a45
a29a50007be195639b28438e3e8fac66deaf7fb4
88645a58ed4ff84af06d664587985423e46e68a335ac68dd42db65fe011417d7
GET /app/website/js/9458.dfb54a3d2009837dfc1c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"74b08c80795cf6c4c2cd8979b88a585c"
x-amz-request-id: tx000000000000010617a82-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9458.dfb54a3d2009837dfc1c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 68cbcf8561fe2c55fbd959bb2eae33d9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.253911,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10254
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
151.101.85.46200 OK 3.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (10021), with no line terminators
Hash 0592b530cbf990977268f19f0ce0c027
e8a33134a639a676dda386f796b21bebd8a90511
4e0b9f188663c9d24bc3c665366dba35e2f46337c97ffb160de58ee765664292
GET /app/website/css/navigation-mobile.b78212d8d37b56895f14.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"8857de04e5bf7fff2d6541c8abb6106d"
x-amz-request-id: tx00000000000000bd3e41c-0063331d56-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 5a7c64583387578e4dd9db8ead97b0e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 712397
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.255194,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2999
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
151.101.85.46200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (30694)
Hash 324d82707a7157490d4e1a23ab3d0915
a2b2be87328fa1894aefeb42593106a7aad321db
f09187714bc26344c2f06bd8896fb0a4c3779d4fbf0486035381c837debf2fb3
GET /app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"c42f7160d4813844aa9c3d1d52fe51f1"
x-amz-request-id: tx000000000000010818d83-00633b018a-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.4492aebe016a3cf84ad3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 9efb546b4f39128ef88580e56749107b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 148597
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.256778,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18200
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
151.101.85.46200 OK 4.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (14043)
Hash 178758f917347be3cc16039638a3a080
1ebcaccefe2a24d321638fde0988ebba235e18df
e0fb3cf963ea543c17b0ea8d0ead49e0c389774758d0a1036098dfe0a22b4e44
GET /app/website/js/89814.7c33af088cddc4109e43.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"06d79aaa6a4d188323f29ce9534ab179"
x-amz-request-id: tx00000000000000bf2b936-0063331d4c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.7c33af088cddc4109e43.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 46f4336f14f055330c9ccccabefdc994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 712397
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.267342,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4338
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16366)
Hash 2cac664b5fcd18937498e65fced2cfb0
86a9c74dc43e77fe2e907dec4bcadd06e12e1238
61af8efb689db443c0cf4beec37d6ed8005fe8a15d5689922bf3f8a2c5282161
GET /app/website/js/63078.d8b67652f8a80e7ebc30.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"9381a58af2c4d899bf85a5d6dabfff07"
x-amz-request-id: tx00000000000000f90a704-00633b019a-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63078.d8b67652f8a80e7ebc30.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 583d0826dc59f81dced7357aba1f7027
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.270265,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
151.101.85.46200 OK 8.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22834)
Hash 59216768b8576418d667cecaa1b57c9e
7e299a69e55515b1e89f7f0e08d14917c360dd8f
1f1ad83672f2819c2b76fb5d8a02c0b483a77a1e781760064c92c40f9993fa0d
GET /app/website/js/3464.0e011b7da28b4dcc50f9.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"d1fff5f103d924ecf44e37f414dd7644"
x-amz-request-id: tx000000000000010617a85-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/3464.0e011b7da28b4dcc50f9.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: adf510b1c3dca3e607c242fdb0258334
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.271244,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8310
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
151.101.85.46200 OK 5.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (20997), with no line terminators
Hash cb23449d0e7a6f85177e66f9e4cb8b97
e6698cb203cbcc6490b181c9324ebc0d9947133b
2dd236f452096dd4066d3c457d91fa9d9304065bd99ef42eb1bd39071655f3cd
GET /app/website/css/69151.1d587d349a2e30b7c539.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"38535bbed5cc9591643d0bfd54dff7cd"
x-amz-request-id: tx000000000000010617dab-00633b0188-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 93054e479d6c96acfc98ad6df3f96045
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 169566
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.273730,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5080
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
151.101.85.46200 OK 9.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (20536)
Hash e5f819fd2471f0d39f40a424b6e738c3
025955df8e6f7816bdec557210b0b6e2569a56a9
80886528d1a068690cab927c342713be1cf493123535c3560909ffd0c85dd879
GET /app/website/js/69151.43baa48b8e2696afbaee.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"cc04044592d2e34cc614fa22b6ac2f54"
x-amz-request-id: tx00000000000000f7bb41c-00633b018f-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69151.43baa48b8e2696afbaee.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8872d53f1a9426ac16d95767d7b23df3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.276298,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9796
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (7232)
Hash 15a3b2ce336346214b5f64857c5d1519
6ba823f3ea963e92e32b0bbfadc2131a6e410bbe
6013ad42e817b64fee242eb28f954a90f16933f1c67a0ca1db586202ca1c54f9
GET /app/website/js/19384.efee8b71a6a648cb9204.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Sep 2022 18:33:20 GMT
x-rgw-object-type: Normal
etag: W/"aa1ab652fd9758b5b518b2a9fa053202"
x-amz-request-id: tx00000000000000c0e601f-0063336316-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/19384.efee8b71a6a648cb9204.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: fc502d8e34c167131b5c714a8eed0a1e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 694602
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.277448,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5005
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16809)
Hash 84c5d286b0f8559fa7dfece05a6d470f
70c6ad1f4fdbe1a000a2456e8c7f1447714b6f79
d14e896d3d64286851790eb7627c34757fdd5238c5fe28d4d6bd35176d9551bf
GET /app/website/js/28134.77d6819aef6675b6d037.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"7b6032abc58def0599a6d34df6d728be"
x-amz-request-id: tx00000000000000cb85c8d-006335dc37-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28134.77d6819aef6675b6d037.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 410c1612457aa0c225a78004c5722c86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 532320
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.281363,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5953
X-Firefox-Spdy: h2
www.kand-kbeauty.com/square.ico
199.34.228.164200 OK 6.5 kB URL HTTP/1.1 www.kand-kbeauty.com/square.ico
IP 199.34.228.164:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert quad9 Sinkholed
GET /square.ico HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:29 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a5c165-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 638333e5f7a68cf7de9beb7ce123bf21
cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
151.101.85.46200 OK 5.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (19438), with no line terminators
Hash b8add3c1c648f7e4f230d49593139bd3
d5ebfba29d9a40abafbc16d9b43c76413c72f35c
be3ad27c46cd758ac15573522384394ff0018e6b3f490e3547077c74ef75f46b
GET /app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"8b4ceee22aa43054751ec463b5144296"
x-amz-request-id: tx00000000000001077d03f-00633b21b3-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d6ae832b1c28c118f59abbbc4abc5b2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 187054
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.308126,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5220
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2379
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: sp=8967e33c-0855-44c5-a02b-06638c25c692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:51:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=8967e33c-0855-44c5-a02b-06638c25c692; Expires=Thu, 05 Oct 2023 21:51:29 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.kand-kbeauty.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
151.101.85.46200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (10185)
Hash ba2aca810f7b8482853e7d5d40b62776
a4b81ae91f35d9cff43145e40be912078f5d2eaf
cc34afd70a0bb32291a2be71f92beb22d281961649772b806d997511ab51a0da
GET /app/website/js/33182.694277c0f3aea942d6b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"fc698b0eddcf2e0d002759d3f7c1250a"
x-amz-request-id: tx00000000000003dbad805-0063210df8-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/33182.694277c0f3aea942d6b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: dd6054965014ba80d9fd7e89677c34d0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 1367904
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.376145,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3906
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/cart-1.f54767018cedd39bc7b4.js
151.101.85.46200 OK 32 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/cart-1.f54767018cedd39bc7b4.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9219)
Hash 14a1fa5989f8243ab0ea4f5d4a0213c2
065d77c28c9504a9181a52a7c582ccf76833c21a
5bc5196e219774017f9ccec027603d30cfaa454c2a1ac43a9c6a7e72d32262c2
GET /app/website/js/cart-1.f54767018cedd39bc7b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Oct 2022 16:12:16 GMT
x-rgw-object-type: Normal
etag: W/"9b551d0452d30267d7ed3f985238729f"
x-amz-request-id: tx0000000000000116060a2-00633c5bcc-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.f54767018cedd39bc7b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: c21a00539c32b1717b5e2c8a49e2dfe2
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 106429
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.375849,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32312
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
151.101.85.46200 OK 4.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (18914), with no line terminators
Hash 9c48deacca63997a018adc4d9057af6c
9a7a3c896c94810be3967b546e1c28deb945ebc3
32d2e1cbe1c50b9a78bf0d1c45d52b2354f43f2c60f7b4f0f6896e60467b0ad0
GET /app/website/css/62651.637819b958113e0a7acc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"224ec22bc5a895e36f855a2be31ecc0d"
x-amz-request-id: tx0000000000000105dcc27-00633b0184-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 357e837056e54c5d3d86777076e422d1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 154443
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.376225,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4794
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (13912)
Hash 493704f053d7437bdc89df0882cf81ed
084f2f1d43b5210e42f32e079008988d4fe8d2a4
a6cad1c76c4e7223ad170384bcd12a4bf47fc58544aed550287c67d7169c2255
GET /app/website/js/28962.d18168a4fef01bd4d15d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"370799bbaeff3ba460557bb19cbe82fd"
x-amz-request-id: tx00000000000000bd3d7a9-0063331d48-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28962.d18168a4fef01bd4d15d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 82213c86f96f032b754b4908844d5e55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 712397
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.376254,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4977
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
151.101.85.46200 OK 5.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (12428)
Hash c2c1ee3bb6fdfd4cd2e8dd94691ed5fa
8cba707131ee4535b7587d21dab4a372ff3d315f
e46b600635d77073913fe13797f1ebbd3e769cf1021833c503d1acaea6686cfc
GET /app/website/js/31083.4f8bf72e65310781cdc3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"779d3ba5eba2e36c5e1e5214df356c5a"
x-amz-request-id: tx0000000000000108194d0-00633b0193-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31083.4f8bf72e65310781cdc3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 3c476c4d944b58a3a179c7150d72d74a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.376237,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5225
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
151.101.85.46200 OK 9.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (24677)
Hash 251da6b85be6e25a29fac83d142e17a1
91db8c481d50f2515091ec4273f11bac20c91846
325457af8d2eafe9bc1e9e4ed949860ea388c180e687a5871a8ee79cd6ff0a64
GET /app/website/js/62651.3b34ab6bb4023a44208c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"ae704f34826303439556045a14365f92"
x-amz-request-id: tx0000000000000105dd0d4-00633b0189-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/62651.3b34ab6bb4023a44208c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 20fcae9c7ab5a4cb78cb8aa02145b21e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 169566
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.376206,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9367
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/10678.4a654ef0726f6e687942.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/10678.4a654ef0726f6e687942.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22743)
Hash b59595ad960b84995970f961143eac00
3335436f096c20045af55ee35a549c2c9df9b4c9
11c800423052f3a29e58d0bff93adeea6823e37dd467dcf2f77375d515f00909
GET /app/website/js/10678.4a654ef0726f6e687942.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Oct 2022 16:12:16 GMT
x-rgw-object-type: Normal
etag: W/"9300e16d867d81b2d4240340d2bf780a"
x-amz-request-id: tx000000000000011605242-00633c5bb9-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/10678.4a654ef0726f6e687942.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 3e38cb276d659fa9d954a115161f3023
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 82034
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.377102,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12729
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
151.101.85.46200 OK 5.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (22082), with no line terminators
Hash f44a367ff6f9cef7503e149284dda04e
64eb1ace475f0233b433fbdeaa899e342a1598f7
c12b02a74aaa8eb5569f06c3ab19a94901ce124edf917595d0926e327193e1af
GET /app/website/css/header-4.1541832b8fd135e7fdac.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 20:52:07 GMT
x-rgw-object-type: Normal
etag: W/"b3697b8d5ccf39c18678e88f0e95670f"
x-amz-request-id: tx00000000000000b2e563e-00633362e7-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 9e93f5b4898e059b6938a50a5d13f035
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 694270
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.377258,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5644
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js
151.101.85.46200 OK 29 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (32737)
Hash 02e82ade0a46bb828c8e21c1aa4388ec
049fe9154fc44fa0fd26325c3d3a0ef2404e7564
3af9294f31163424c81cafd5205a8eaac32051fb17e2d44f137f7a996030117f
GET /app/website/js/header-4.44530ebe5d0024415615.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"d7457d729041075183ddf5da7948ee8c"
x-amz-request-id: tx000000000000010618927-00633b0195-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.44530ebe5d0024415615.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: f7ff8dcb05330bc456a05991492aa2ff
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 151372
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.377247,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 28740
X-Firefox-Spdy: h2
www.kand-kbeauty.com/uploads/b/1e246f00-37e4-11ed-8939-f346e64c234c/icon_180x180_ios.png?width=180
199.34.228.164200 OK 1.5 kB URL HTTP/1.1 www.kand-kbeauty.com/uploads/b/1e246f00-37e4-11ed-8939-f346e64c234c/icon_180x180_ios.png?width=180
IP 199.34.228.164:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d8be0c0384d6eeb85cee70bbeb43d1a2
a888d5bb05ee142e88e436ecb7bfa71d2529b50a
a7656368755ba6c2edda9bbdf023d45ed32c867bb2966bddd954f91ef0364120
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/b/1e246f00-37e4-11ed-8939-f346e64c234c/icon_180x180_ios.png?width=180 HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006688.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:29 GMT
Content-Type: image/webp
Content-Length: 1464
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "SMha8BJGmcE/93XoF3NFxEaXGizOhighnhDD6mAhPuo"
Fastly-Io-Info: ifsz=1921 idim=180x180 ifmt=png ofsz=1464 odim=180x180 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx000000000000012774903-00633dfc61-c699baa-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: zd1ce
X-Storage-Object: d1ce996d4cd80b17d256822d2d17e10525157059aaaf8b0275a2947ad3130cca
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10043-SJC, cache-pao17468-PAO
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1665006689.201512,VS0,VE134
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu136.sf2p.intern.weebly.net
cdn3.editmysite.com/app/website/js/37832.66870b797268f21edaec.js
151.101.85.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/37832.66870b797268f21edaec.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4508)
Hash ddc0bfaef49014e65b9d92e6ff9723e6
d4578622a7ae9f703140871c5d6c7ea9999e33f0
c960a44cc17fa072e610a1976178b67a5b528bf8b5e826ad0bb74f33ae9e8d25
GET /app/website/js/37832.66870b797268f21edaec.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"0b65331d2e68bba60b869b7642a251b8"
x-amz-request-id: tx00000000000001074d784-00633b018a-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/37832.66870b797268f21edaec.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 8d584e71dd9667db00bb322b67e28809
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 169566
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.451212,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3630
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/70052.3ee23a130db65d2a12c1.js
151.101.85.46200 OK 3.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/70052.3ee23a130db65d2a12c1.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4698)
Hash 603aff4b3e6fef35fda18f4910f47f70
15e1373b6dd34d4c4076a4d43ebb42d9cba31769
3a257df22065a56993a15884c5dc7a74b5e4b2893c3d151c38fde767bd28d611
GET /app/website/js/70052.3ee23a130db65d2a12c1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"e9e05c141bc4d36144db788be251c0b3"
x-amz-request-id: tx00000000000000f7bb6f5-00633b0193-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/70052.3ee23a130db65d2a12c1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 41c37f0dbb9d295ba943859f5ca74d53
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.451308,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3843
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/72647.fcb519924cca9e217c0c.js
151.101.85.46200 OK 3.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/72647.fcb519924cca9e217c0c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (8245)
Hash 65ccb4c25ffbaba774d1b4ce59b417d1
1e25ed4eb3199cd6d14b14d0573140b79a6b311f
83eb82ddbfefd444042435954751f69541fba8529416344438135a814c209a21
GET /app/website/js/72647.fcb519924cca9e217c0c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:06 GMT
x-rgw-object-type: Normal
etag: W/"9c3b007fd26b4ec65092e2a726ed6313"
x-amz-request-id: tx00000000000000b9aaec6-006332ce40-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/72647.fcb519924cca9e217c0c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: 421bc8ca93db907cfcceee9b6c638c3d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 716868
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.451055,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3018
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/95251.1bcb1d2a1cdbc8ed883c.js
151.101.85.46200 OK 19 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/95251.1bcb1d2a1cdbc8ed883c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (27152)
Hash 99a62192b5a2a691aab6cb24103abb1e
b79bad9b2b1754bea074b48a7212d7d2dd93ea7a
eab3e3a3e88d705b726c9bdb37a4cc3fe51e28f70b6170c07e85f13f3238823b
GET /app/website/js/95251.1bcb1d2a1cdbc8ed883c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"cc357b83912cc531c4348c168a64fa79"
x-amz-request-id: tx000000000000010619f00-00633b01b1-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/95251.1bcb1d2a1cdbc8ed883c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 08f20f3322cacb5426a736f5b485468b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 192750
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.451129,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18744
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/services-list.f7ecdd6578b29303fa77.css
151.101.85.46200 OK 8.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/services-list.f7ecdd6578b29303fa77.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (39333), with no line terminators
Hash 1a09e27a27007e227a4242c6f742c4b5
017c6f6bd13e91e34370942ae029ea22853394b2
7a1edf0102e7a4429223a282afca42eb4f647ae652c902f9d7c2721a354de9b8
GET /app/website/css/services-list.f7ecdd6578b29303fa77.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"7f7a0dd18a1aa35fb346a7fe5fe1e709"
x-amz-request-id: tx00000000000001077d23d-00633b21b5-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d8cfcae15fe6ef41cad8050942bf3b06
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 185715
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.451763,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8108
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/31195.ea1a2146930210cae33a.js
151.101.85.46200 OK 3.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/31195.ea1a2146930210cae33a.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (12318)
Hash 6247f0edd236da4aab1d9529cfc99c20
c2c88aa57778dd94594035bcb37715661628678c
4a97fa94a6d19646e8e6675f6437ac3cd231b082fec625b101ef6d72e636462a
GET /app/website/js/31195.ea1a2146930210cae33a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"c2d88cb568b42c525bb9cda2ad67dffe"
x-amz-request-id: tx00000000000000f90ae50-00633b01a3-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31195.ea1a2146930210cae33a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 2614dec0bb5c50cf3645daf0fb9d3b2f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 192750
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.451686,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3361
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/77447.d4096d74534e6ca44c06.js
151.101.85.46200 OK 19 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/77447.d4096d74534e6ca44c06.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (57275)
Hash 9fc2811b6888c74f4a348842561f066a
0fdde81cca371fc35edd4d00198f0ac2cebd008e
d6a698d21c2f709af8041b09254d2109e7cc378e1e6d4c2ef96684dfd9f7ea2b
GET /app/website/js/77447.d4096d74534e6ca44c06.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:06 GMT
x-rgw-object-type: Normal
etag: W/"b519fd9c75cb740648f3473f559171c7"
x-amz-request-id: tx00000000000003dbad67a-0063210df7-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/77447.d4096d74534e6ca44c06.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f9b6ab250f065b71cd8de31aa0baf4798f1aa0d6
x-request-id: 39d9a848110590f8b0f0114074c229cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 1893107
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.452388,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18743
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/52571.646e5fb8e073667dc7f3.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/52571.646e5fb8e073667dc7f3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22996)
Hash dfceebd508f645061b3777ea9171ca16
2447b240e02aca59e165d750593a9664cb35e318
6cce77ca5b7951fa0e8b0febc60ab17c7cbff3e2e4c3c9a9e75d521ae3776707
GET /app/website/js/52571.646e5fb8e073667dc7f3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"114b95d3931dc7b87aaf998613e85db3"
x-amz-request-id: tx00000000000000da68fd7-006335dc26-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/52571.646e5fb8e073667dc7f3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 31f4a2740ef2bf8c914d0d7986f8f1f9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 531820
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.452812,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13118
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/services-list.dcef578a22d5b9620247.js
151.101.85.46200 OK 29 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/services-list.dcef578a22d5b9620247.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (26937)
Hash 127f05e471441b9d4d198eaf2b317590
bd0670298f21f31e7272a5e62b0b4c27527a508f
1808e866a44eb8a643944f7a58858be91b59a9b8c21f33d03acd1abdcc658c5b
GET /app/website/js/services-list.dcef578a22d5b9620247.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Oct 2022 16:12:16 GMT
x-rgw-object-type: Normal
etag: W/"d7f1b8a1424d762aa582378d1e140575"
x-amz-request-id: tx000000000000011819de3-00633c5bdd-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/services-list.dcef578a22d5b9620247.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 43ff5449a11664962961ab49c3a400aa
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 100647
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006689.452072,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29040
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/location-hours-side-by-side.3a91b4157539623ebb32.js
151.101.85.46200 OK 1.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/location-hours-side-by-side.3a91b4157539623ebb32.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (3020)
Hash db024dc7e8a10f3d0be40dd9d29f36b6
40d286b311b16f01622b5444a3e293b13dc8534a
b8c82cc30e2f4b2cf0fa89d61296cc246eb46997b14b55d2c7c65b03fb6442a1
GET /app/website/js/location-hours-side-by-side.3a91b4157539623ebb32.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:10 GMT
x-rgw-object-type: Normal
etag: W/"6945bb87e793f0d875eb049ca2fbbf83"
x-amz-request-id: tx00000000000003e0baecf-0063210e0c-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/location-hours-side-by-side.3a91b4157539623ebb32.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 838ca198815c7a37ae4a91e2f864eb38
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 77522
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.453080,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1070
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/location-hours-side-by-side.12149da4a5c52a0a0a41.css
151.101.85.46200 OK 640 B URL HTTP/2 cdn3.editmysite.com/app/website/css/location-hours-side-by-side.12149da4a5c52a0a0a41.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (1603), with no line terminators
Hash 9e295aebd4e0651284467592c1899a69
e1f12f688b749cebdbd97e502264391b6e36099c
183d452b038cfe94fb7f09895cdc6d30aa43262075c4ccb4f0281f722c532fc7
GET /app/website/css/location-hours-side-by-side.12149da4a5c52a0a0a41.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:18 GMT
x-rgw-object-type: Normal
etag: W/"e62e420d508bb5f6ec644a2bd03c584b"
x-amz-request-id: tx00000000000000d869a0f-006335dc25-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 97a85f17f474aef1c07d438756e96894
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 531820
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006689.453097,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 640
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
151.101.85.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (8710)
Hash 427c7fe2b3d549712100f6820b08efbd
c229680202f32a5d973fd8f91f4be59b9c050e28
d9ad555d0cc050b5522d23427dbb81b4be0bb3182e979e53359916e144f5d901
GET /app/website/js/26267.78a7b8e043fd38ce5bed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"da9c41584ada728a23d91b0505f40439"
x-amz-request-id: tx00000000000003e0b9c83-0063210df5-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26267.78a7b8e043fd38ce5bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: f26bc6b476269279cb2711ab775bd8cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 1358612
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006690.578629,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3577
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (18330)
Hash f2397a8edc8314d2ab89af5bef811d57
b88f044f6f2bbc9cdbdbcd6ac2a6829f0fc99f29
bf36d69af07442ee1664ede9c7069461ea97a92e299fc1ba6284c4b332e58ca0
GET /app/website/js/91272.1c5d597f56a343a39169.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca7b2a99099a151b51b4c15d1d2bc11"
x-amz-request-id: tx00000000000000bd5f4c2-0063331d4c-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/91272.1c5d597f56a343a39169.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: dc38a1708fb97f3ab8290ddcf3befc5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 712396
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006690.580512,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12604
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
151.101.85.46200 OK 16 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22595)
Hash 5a6cc2d02a3220f2d0c07ce8afe00735
a1f15e6a23aa71b8f0a554a7408373942c314238
de865be6736e5389d52ca365e09dbd414fdceb6a753c8b5dec34a650b8ff2a5a
GET /app/website/js/584.caaf0ad96373138bf188.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"1f1a99ca1c046e3862230cac549e8225"
x-amz-request-id: tx00000000000000d87dd9c-006335dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/584.caaf0ad96373138bf188.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 8e046d250cae6802ae7fc9a80c3a3dea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 532320
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006690.583019,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16069
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
151.101.85.46200 OK 6.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25632), with no line terminators
Hash b99bc0745e6201b918c78b0bf8e9de7b
e9fb8a3d15b933ae2f822db2e66fcc1712f7e2cc
729fcdb927673a30d1f50c66cae501b20f88be96cdecdd12784bfb0fb208bd05
GET /app/website/css/66670.b694d05e69f75f469d70.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"b3b4a5077e6334122ff50105eec7420c"
x-amz-request-id: tx00000000000000f90979b-00633b0188-c67eadd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 6a3957322cffe8b2790efd12d1babada
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 169566
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006690.585935,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6366
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
151.101.85.46200 OK 14 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16522)
Hash 83ee6769d19ebb77088fae2e871c6183
5f690d95fd04d9cc3b9216fa0b21637a4837479f
12113db4803a5fb421bb0dc3941a52159ad74ceb069f6fd050aa2e0c327e1921
GET /app/website/js/66670.a7a5bec786b65c6f06c6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"35476ff365f33e157ca81acd30b616b4"
x-amz-request-id: tx00000000000000f9098a6-00633b0189-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66670.a7a5bec786b65c6f06c6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 67863989620f35dba9e32f83e58603ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 194928
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665006690.586783,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13819
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/footer-6.d8806054f145ea9422fa.css
151.101.85.46200 OK 346 B URL HTTP/2 cdn3.editmysite.com/app/website/css/footer-6.d8806054f145ea9422fa.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (914), with no line terminators
Hash 502d545ffa2fa41de4e6110d71968e39
39af132417c94ef2c2c483d61500b0ee41570c9c
90b3e485ad1fb0ce7051c387d1163acbdae3c6fa94822efcb0086903ddafefd3
GET /app/website/css/footer-6.d8806054f145ea9422fa.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 02 Sep 2021 18:06:31 GMT
x-rgw-object-type: Normal
etag: W/"34365cdd8b8651ea2a6fd9f3ddc40ec6"
x-amz-request-id: tx00000000000003cd09de6-00631ff5a2-bfe27ea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f9b6ab250f065b71cd8de31aa0baf4798f1aa0d6
x-request-id: 73c032673147411a568943cdcd0275e0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 1895389
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006690.588006,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 346
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/footer-6.e861eeee2851245fb5e1.js
151.101.85.46200 OK 1.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/footer-6.e861eeee2851245fb5e1.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (6316)
Hash 72bcea59f64de5278dae2d560652b93d
23d4169e5058c1e3353b568764e1333835893c4c
144515bd1bc92522357e613836aff14ebcdd6217037c437811187172f7bd9599
GET /app/website/js/footer-6.e861eeee2851245fb5e1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:09 GMT
x-rgw-object-type: Normal
etag: W/"943426d592cd11e06c28f7966dffb02a"
x-amz-request-id: tx00000000000003dbadd6c-0063210dff-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-6.e861eeee2851245fb5e1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 0dc1645d91ef722d64353022d854e1a9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:29 GMT
via: 1.1 varnish
age: 1367568
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665006690.588959,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1783
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1838
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: sp=8967e33c-0855-44c5-a02b-06638c25c692
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:51:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=8967e33c-0855-44c5-a02b-06638c25c692; Expires=Thu, 05 Oct 2023 21:51:29 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.kand-kbeauty.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
199.34.228.164200 OK 79 B URL HTTP/1.1 www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Content-Length: 77
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:51:29 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu99.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
199.34.228.164200 OK 182 B URL HTTP/1.1 www.kand-kbeauty.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Content-Length: 89
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:51:29 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu93.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
cdn5.editmysite.com/app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-addresses?primary=1&include=location&valid=1
151.101.85.46200 OK 1.5 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-addresses?primary=1&include=location&valid=1
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (4101), with no line terminators
Hash fa2ff088b9b3bc10be7f382bccf69601
c0da0f5424df334d979533f6b74f9a68244b6333
797b5987714d13348ecf4a97ee09c5511aa34ece67ddf0d2ed3c78c8a3bdcaaa
GET /app/store/api/v23/editor/users/143208469/sites/744042070167250516/store-addresses?primary=1&include=location&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kand-kbeauty.com
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: s-maxage=604800
etag: W/"fce5c9949ecdb376e9c0072d5fa89929"
access-control-allow-methods: GET, HEAD
fullcache: h
x-revision: e6f06fe8b50118021df4c0f68e19b33f92df5a4d
x-request-id: 98a9be8c86e82c488826f2441df2eddd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 05 Oct 2022 21:51:30 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1663-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665006690.029573,VS0,VE202
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1454
X-Firefox-Spdy: h2
www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/classes-profile
199.34.228.164200 OK 84 B URL HTTP/1.1 www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/classes-profile
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0fac585468dd3168b02c10cdc67bb402
dfe5599eb70e48a91903067b972a7121f858bb56
ff3603b07bee8e232f13585ad64971ee41cf52407a1323ba4fefbc0eefe6c3b6
Analyzer Verdict Alert quad9 Sinkholed
GET /app/square-sync/published/users/143208469/site/744042070167250516/appointments/classes-profile HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:30 GMT
Set-Cookie: square-sync-csrf=eyJpdiI6IldvSGZ1OFRTN3p0clRRWlowOTlFUlE9PSIsInZhbHVlIjoiNTFcL0pGWXRiVXRlUmtxVFBockViVHh4ZStSM2VQRWR3T2UzZkdOaXROQnZOejJxU0YzTEl4eDc3aDJrcmU0RHpqd091SlNKV0tTYndhbFhyRnBJTU9kM3lHbjczTG5zVkRIVFlqcHFMeVJ5RFR5VkYxSno4ejBHeFdtTWdnNEFhIiwibWFjIjoiZmViYWMwYzcyYWQ4YzUyZTEyYzliODE4NmQ2ZjY1Nzk0MTZlNmJmYmEzZjU0NGYzMTUwMDIyOTI1MGRlZmE5MSJ9; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/
square-sync_session=eyJpdiI6Im5oTlE2elpVSlJuYlhITFUwMkNtYXc9PSIsInZhbHVlIjoiS2hqXC82ZFZEeVVLbE1ITlZXZDJJTGpYeVY4bDIrXC8yeFR3V0Q5eTdBaXZTRXMyWVVzaGt4YXBsbGIrMlpiVFZlQ1NkZFFVc1dFVzc0Y3RsdFFiU01LdEFzVHlybVwvNTN4b2tSd2JnRjFMMDRqUW1GOTJGc2lJSno5MG9wUko4RlUiLCJtYWMiOiJjNmJjMWY1YmQwMDNiM2Y2NTc2Njg0NjMxNzhkOTVmMTM2NWY2MzQ2NmE1YTM5ZTk2MTA0OGRkMzQ2MDQwMzVlIn0%3D; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/; httponly
X-Host: grn81.sf2p.intern.weebly.net
X-Revision: 9530c2fdfbd4248776dda6e5a78dacb86c1764ab
X-Request-ID: 41147ca5df6ee0075f9f6b888936b410
Content-Encoding: gzip
www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/business-booking-profile
199.34.228.164200 OK 425 B URL HTTP/1.1 www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/business-booking-profile
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with very long lines (703), with no line terminators
Hash 26f726eb03cad57535ca135801d96557
65f97e79e5e17f2a5f8d2e11e408f227c7e1b4ef
ae77b8f011c20293032989a5fd3bb54954fae2a1f8b10cb2308cc3d100037b80
Analyzer Verdict Alert quad9 Sinkholed
GET /app/square-sync/published/users/143208469/site/744042070167250516/appointments/business-booking-profile HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:30 GMT
Set-Cookie: square-sync-csrf=eyJpdiI6ImdLQ2kxVTJTazNhWjJyZHJ0bHZuYkE9PSIsInZhbHVlIjoiczlMTGN5bXlCcjRhZ3BrZ3FpaW14K05Zeit5NTA2ZXd3Z0w3Uys3bm5Id1VqVzhiVFRwWGRoeFRya1VUR016eUFZUG9Od2hkd25GbGx0cGtoczM1MHJTcmlISTNqcWNvOW9MZmFrblNPdEMwb0NcL25jdElhSHZWN2R3enpDTDhuIiwibWFjIjoiYTNmZDFiMWQ0MDQ5YWE3YjBiNWY3MGMwZDZiN2FiM2FiZDBlMjAxZTBjYjEyYzljYTUwNjI1NDAyYzUwZThjMiJ9; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/
square-sync_session=eyJpdiI6Im82ZWtBalVUQjhGM2NWQjJVcWNvUXc9PSIsInZhbHVlIjoiSTVIamNjVkVrRjRJcWxMSXVhU3hYMHZOUVNveGFOcER6YUlmXC9CUjZONnZtXC90SXN1dEQ4ZUU3QkJiNTJUTEM5XC8ydDZROXhhV2xkb2NtZzJRWlhpKzJnaVZYS2M0eDBXN2pGNW8rME9jZzlldU52MWJMNXZLZGlhV0tmMmFOQjgiLCJtYWMiOiJjNGY3ZTUxYTUzOTJjYWZmOTU2NjJlNDliYjdmOGZmZDE4NjY2MmE0YzcwZTBjOTQ3NjI4MTI0ZjJjYjQ4OWExIn0%3D; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/; httponly
X-Host: blu77.sf2p.intern.weebly.net
X-Revision: 9530c2fdfbd4248776dda6e5a78dacb86c1764ab
X-Request-ID: 40c5d8231f64b9b6d3c807abb95bac02
Content-Encoding: gzip
www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/staff-members/11ed37e41432bae6a9c1ac1f6bbbd01e
199.34.228.164200 OK 131 B URL HTTP/1.1 www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/staff-members/11ed37e41432bae6a9c1ac1f6bbbd01e
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1605ac3337fa87874ba3c025736a6a28
b14148fa0b184e038e0ce1e41f1eb8e1a90973c7
dd8fc9544f7f76253bb982f6a3068406b5374577c9c21a08614725e1cc32d991
Analyzer Verdict Alert quad9 Sinkholed
GET /app/square-sync/published/users/143208469/site/744042070167250516/appointments/staff-members/11ed37e41432bae6a9c1ac1f6bbbd01e HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:30 GMT
Set-Cookie: square-sync-csrf=eyJpdiI6IlcycXU3M0srakdHN3dJNlBLVUM5Y2c9PSIsInZhbHVlIjoiNWZ0RU5HbkVTWnpYbjRobHpGSWIrRmdEd3Nhc0gxc0Rub1ozb3Y5ckQ1dGFUWkFPQ1YxVWdBWk9UZWkrbDRlUnBzN0lQY05rMGhwQkx2eW9Sc1d0YXVrNWVGWkM5d25SOWtONWlFeVwvVFd1aitSSmpvcnZjaG92dmozdzRUSlYxIiwibWFjIjoiNGUwNzMyZTMyYjAzODU1YjJiOGYyYjAwM2I5MDFiNDE5NmQ5OTAzNmIxOGY0YzhhOGQ5ZGVjZWNlY2U0MzNjNSJ9; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/
square-sync_session=eyJpdiI6IjZcL1BPRHhUOWQxTlJucDE4T2lDYjR3PT0iLCJ2YWx1ZSI6IkYwejFFdStVTW1naG8yc1ZxSmNNUW8wNlVuTHhnRlUwSU56cUZPSTZsT09BUmlcL3p3K0c2ZlUybEJcL0JUV2RuNUU1a1UyRHZpUkY5dlN5UGoydkZsZk42YXpLTFBVQXAweEMwbWlBMVhtSFR3VEpBVTdpcTVsa0EyR0JIWFRuMVUiLCJtYWMiOiJiZjU1NmEwYzA2YmM5MjE4ZWQ0YzJmODJkMWU5NWNjMzJiZjhiNWIwYzdkZGVmMzRhYWRlZDE1ZmZkZTdhYTFkIn0%3D; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/; httponly
X-Host: blu84.sf2p.intern.weebly.net
X-Revision: 9530c2fdfbd4248776dda6e5a78dacb86c1764ab
X-Request-ID: ee0b2d238a6ef67387f89a6f3ca9e217
Content-Encoding: gzip
www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/services/11ed37e41432bae6a9c1ac1f6bbbd01e
199.34.228.164200 OK 4.6 kB URL HTTP/1.1 www.kand-kbeauty.com/app/square-sync/published/users/143208469/site/744042070167250516/appointments/services/11ed37e41432bae6a9c1ac1f6bbbd01e
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with very long lines (33673), with no line terminators
Hash aeb9f84082b588b1c8bf120db6535b99
4ae1454fda3cde5a4f3c6cbfd0794fba0f50dbab
18b106b193fa5ee02e19d487a07ab05e01e1dfed4acea4732c4ae7f2b1e770ad
Analyzer Verdict Alert quad9 Sinkholed
GET /app/square-sync/published/users/143208469/site/744042070167250516/appointments/services/11ed37e41432bae6a9c1ac1f6bbbd01e HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IjliU0JSQnNyK1VnQmJtRnhDUGtXZXc9PSIsInZhbHVlIjoiVnpoTFhkbk9MTTduRkV6S3VPVjVJQnlpUXFsZ0xKK0JNVERtZ2wxa1QwQjRGblFpVlRXUVJNYUhxeFRkd1Y5bUtJVDREbUFuckg3RnJkM3I2SjB1aDNuditmOElLVnVkdzVMalNVemNYSEFISEE4Ynp3TUNHY3RDdDgrbCtmbXUiLCJtYWMiOiJhMzVlYTVhMjgwZDM2ODg5NGU5ZDdhOTljM2U3NTBlNzZlYzY1MjU4MzgwN2JjNTZlNGY1N2NjYzAwZTU5MWUyIn0%3D; square-sync_session=eyJpdiI6InRtRmhBWEJBTW41NXRlQXJraWVScEE9PSIsInZhbHVlIjoiRkZ5QTZIaFRlTEpSaGVMYjVxenRjV3VwQlBGcDVHN1wvZnE3RjExMnU5dDlqcXpHXC9vaURxZERGb0pwN21cL09SQ1N0VWtnT01KZmwyTjYwTXpxNHVaN3dmcXFjZFFIbDZZZjBEZ0plRDVrMFpOMEFSMTYrdVZQTHo5MDNnTjJKa08iLCJtYWMiOiI1NDZmZjM1YjViNmVjMzY4YjdiYjdhNGY2NTk1NWI3MjZkYjUyOWU3NzZhMjI2MTc1YzIxY2M1NTk0NzM4NmQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:30 GMT
Set-Cookie: square-sync-csrf=eyJpdiI6IlZneU1SUjFrM0ZCbG82eDFkWEsxd1E9PSIsInZhbHVlIjoiZmZlQW0rQVM3TmUxUkdNOGhNc05GYytcL2hcL2lXVlpmUkZ5aXN3N3V4eUJjWHhSbVJmSXN5MnNBb2dIM3paZ3VlVEs3cFwvSnA1c0ZaM3NwXC96U3ptK21uNXNqNFc5S2pnS2Q4XC9LaVwvY015d3JPakoyMEpMN0xPUFdXaUpDaWszY3MiLCJtYWMiOiI1ZjMxNzQ2ZjBkNzI5N2M3ZDYyY2RlMTQ2NzAwNzhmNjA5YzM1MjNmZTkzZWY3MGQxZGVlMWU5YWMxZTg2NzljIn0%3D; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/
square-sync_session=eyJpdiI6IjY1MUNHUWhQcHZyazZZSG54Mkxhcmc9PSIsInZhbHVlIjoiNTJUTzZVYjZ3OEdaSkZKemMxS0NLb0N2ZXljMzZBVHlwd1JxcFdqMmlqWFpHMmlSQWRPUVJ6c2FnR0pGU05rQjBYUWhjeHBuR2prYmozWXFRZUJsZW92dXM2SnlOWHN1cEdiZWNYUnNUR05vYm1xbEdUMUdndVRneEJhZmI5RisiLCJtYWMiOiJhZjdiZjE2OTNmZWZkNjljMTcxNmE2YTE5YmM4YzEyMjYyYzNlOGJjOTJlNDBmMjE5NTc0YWZkMmZhMDYyMzQ2In0%3D; expires=Wed, 05-Oct-2022 23:51:30 GMT; Max-Age=7200; path=/; httponly
X-Host: blu72.sf2p.intern.weebly.net
X-Revision: 9530c2fdfbd4248776dda6e5a78dacb86c1764ab
X-Request-ID: 2a849838fffb314d9496f7b735b971b5
Content-Encoding: gzip
www.kand-kbeauty.com/app/website/cms/api/v1/users/143208469/customers/locale
199.34.228.164200 OK 36 B URL HTTP/1.1 www.kand-kbeauty.com/app/website/cms/api/v1/users/143208469/customers/locale
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 84d8976e69ede075d29893d5a4edb32e
0d93241406b90b37202e0a9a4547159983e58a0d
4b3b556e9891c1d9bd2d7722fd46a43822113e738daf981ab4972a6bc18cea53
Analyzer Verdict Alert quad9 Sinkholed
GET /app/website/cms/api/v1/users/143208469/customers/locale HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0=
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6IjU1Y2hTMzg3SllCdDh2YzNzTXF4WEE9PSIsInZhbHVlIjoiYUZ3Mm9FUkl4RkdWVEVzYWVxT3pwREs2eXROUjErdTFxRERYODNxZDdvTmd1ditFNEIzeHFkeElPZ0ZGUndiYmJLc1hwZXZQWlhkM3JVbjZUT0xBS2JGTm1WYmtMNDZwVVhJRDZ0dFNYOTErVHkzVXh3UFkzMmV6aGE4K3Voc0siLCJtYWMiOiIyMzA5NjYwMDZiYzRjZGM2ZWI3NTgwNTRkMTFmYjY0ZGM5MTA2ODMxZTY4ZWRjMTY2MDdkOWMxM2I5YTIzOWFkIn0%3D; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IjJyQ0hcL0lQRHBRaUY1MmNwQVh0bEFnPT0iLCJ2YWx1ZSI6IituZjY3c1Q0ZkNFT3RTcU1DXC81QlpSSkw5S0RwZEczOHBuUk44NVo2T2NHTUpHeWNOSytmQ0l1UW9INEtvUlhuY2ZtMmxUNTk1REN3K0RnQXhMcE9VMlcreVc3TWNRSWhKZ3RQNG1rek5NZGlWK1F2Y2V3ZFl3QXdVeGJUbDVONSIsIm1hYyI6IjFhYmJlMmMzY2UxYzdiMGI0ZmMzNGI4YzY5OWY1MDYwN2RmYmU1MTc5OGFlZDI1MmZhYmFjNDIzNDI0MWVmOTUifQ%3D%3D; square-sync-csrf=eyJpdiI6IldvSGZ1OFRTN3p0clRRWlowOTlFUlE9PSIsInZhbHVlIjoiNTFcL0pGWXRiVXRlUmtxVFBockViVHh4ZStSM2VQRWR3T2UzZkdOaXROQnZOejJxU0YzTEl4eDc3aDJrcmU0RHpqd091SlNKV0tTYndhbFhyRnBJTU9kM3lHbjczTG5zVkRIVFlqcHFMeVJ5RFR5VkYxSno4ejBHeFdtTWdnNEFhIiwibWFjIjoiZmViYWMwYzcyYWQ4YzUyZTEyYzliODE4NmQ2ZjY1Nzk0MTZlNmJmYmEzZjU0NGYzMTUwMDIyOTI1MGRlZmE5MSJ9; square-sync_session=eyJpdiI6Im5oTlE2elpVSlJuYlhITFUwMkNtYXc9PSIsInZhbHVlIjoiS2hqXC82ZFZEeVVLbE1ITlZXZDJJTGpYeVY4bDIrXC8yeFR3V0Q5eTdBaXZTRXMyWVVzaGt4YXBsbGIrMlpiVFZlQ1NkZFFVc1dFVzc0Y3RsdFFiU01LdEFzVHlybVwvNTN4b2tSd2JnRjFMMDRqUW1GOTJGc2lJSno5MG9wUko4RlUiLCJtYWMiOiJjNmJjMWY1YmQwMDNiM2Y2NTc2Njg0NjMxNzhkOTVmMTM2NWY2MzQ2NmE1YTM5ZTk2MTA0OGRkMzQ2MDQwMzVlIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 05 Oct 2022 21:51:30 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IkZ2Sk1zYXcrdStCRUVvRis5UmhMZ2c9PSIsInZhbHVlIjoibUxxckExWWgwR1l5T3V1TW1ENkYyMTBFSG1UVURMTjFyRW9sWUdmd2h6STRHb1I3Q0k2TGJMd2RaUmhXcUxXdzdkRU9jVDFRd1ZJWmR5S2g2TmpJcUF5SElvY3REQk81N3pGQkdRN2VpR3FBUjlRbk9BNnBHdTV0ejdaenlrcVoiLCJtYWMiOiIxMGNlYmM2MDUzMzA3MTY3ZmEzMTQyMTMxMGQ2YzY0OThkNTJjZTEwODZlMzllZTNmOTkyZGExMzhkNzk5NjRmIn0%3D; expires=Wed, 19-Oct-2022 21:51:30 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InJqZVBFSGdkOVdCUlQ4dXRIRU9PZ2c9PSIsInZhbHVlIjoiRG9Va0E2NXRCWHhDbGdBM2RSRFRrY3VYQjdjejQyK3o5VmpSc2luSFhkeGFEZmZpcGxMekh1dFwvemlwV2VMQldHNkZ2bmN0YU9VdDhxaTZ2eXVTTUpYdjN3aTJVZkNhaTVhSTR3OUJPV3R3TDMzQ3Q4SGJnNjE3SUo4Y3lVbHF1IiwibWFjIjoiN2ZjZGQwOTk4MmZmMzNkMjliNWM1NTlmZDI4MWZiOWY5ZDk1MzAzOWI5Nzg0OGU0ZjhhZjRlMDI0OWFhMzllNiJ9; expires=Wed, 19-Oct-2022 21:51:30 GMT; Max-Age=1209600; path=/
X-Host: blu81.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: 1e671c351fc3e3352d1d51587b9fde57
Content-Encoding: gzip
www.kand-kbeauty.com/app/website/square.ico
199.34.228.164200 OK 6.5 kB URL HTTP/1.1 www.kand-kbeauty.com/app/website/square.ico
IP 199.34.228.164:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert quad9 Sinkholed
GET /app/website/square.ico HTTP/1.1
Host: www.kand-kbeauty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Cookie: publishedsite-xsrf=eyJpdiI6ImhYSXdjQ3NoN1lINWY4dzFZZjcyRFE9PSIsInZhbHVlIjoidEQxR2ZLVWJLZW5YV2EzeXcyRlZvTEpqOGNFMFNWNjhzQlVSZTMweUJ2dGFud3pvbzk5RER3OGMyY0NHZjlIckxRVUQ2V2ZPdUhBdWxkaVZCMlpiN2xLdDJkZE1jOW5wVzdBelhhakFxeDFpVGltMmIySTBVWHozOVllUU9RZUoiLCJtYWMiOiI3ZDEwM2ZmYWRhYzhmNmUxMzA0ZTJjNTE0MjI4NWQyZWRlN2QyOWE4OWUyOTllMTkyOWQzY2YwNjUwNmE2NDRhIn0%3D; XSRF-TOKEN=eyJpdiI6InJqZVBFSGdkOVdCUlQ4dXRIRU9PZ2c9PSIsInZhbHVlIjoiRG9Va0E2NXRCWHhDbGdBM2RSRFRrY3VYQjdjejQyK3o5VmpSc2luSFhkeGFEZmZpcGxMekh1dFwvemlwV2VMQldHNkZ2bmN0YU9VdDhxaTZ2eXVTTUpYdjN3aTJVZkNhaTVhSTR3OUJPV3R3TDMzQ3Q4SGJnNjE3SUo4Y3lVbHF1IiwibWFjIjoiN2ZjZGQwOTk4MmZmMzNkMjliNWM1NTlmZDI4MWZiOWY5ZDk1MzAzOWI5Nzg0OGU0ZjhhZjRlMDI0OWFhMzllNiJ9; PublishedSiteSession=eyJpdiI6IlBwTEhpTXFkOTZsR0tPQXBjR0hQUHc9PSIsInZhbHVlIjoiV1NpS0Voc01JOHN6UVVrNGtHNFhcL29DSzIwZXZtS2U5SWtGMTl4bWlZdEF0cENRbHl3R0FVeGdPZXExR2cxUWxaNFwvcVpTaHlmdzY4SkpKVzNtQVNjM1JcL0h6OTZqdDhPXC9pU0VRRW5VaVwvOEZlemFGK2loZzFCQnpPTEpIc0k3QSIsIm1hYyI6IjUwYzNiYTcxN2ZjNTQ3MTY2MTAwOTg3ODNlMTNmNGFkMjA2OGQxZmY2Y2JkYzM4NTJkOTc5NzhhMzMwMjVlZjkifQ%3D%3D; _snow_ses.8866=*; _snow_id.8866=b3d6a339-f495-41be-a339-038712c7280d.1665006687.1.1665006689.1665006687.01349796-a0fd-4d82-951c-3fdb71db6939; websitespring-xsrf=eyJpdiI6IkZ2Sk1zYXcrdStCRUVvRis5UmhMZ2c9PSIsInZhbHVlIjoibUxxckExWWgwR1l5T3V1TW1ENkYyMTBFSG1UVURMTjFyRW9sWUdmd2h6STRHb1I3Q0k2TGJMd2RaUmhXcUxXdzdkRU9jVDFRd1ZJWmR5S2g2TmpJcUF5SElvY3REQk81N3pGQkdRN2VpR3FBUjlRbk9BNnBHdTV0ejdaenlrcVoiLCJtYWMiOiIxMGNlYmM2MDUzMzA3MTY3ZmEzMTQyMTMxMGQ2YzY0OThkNTJjZTEwODZlMzllZTNmOTkyZGExMzhkNzk5NjRmIn0%3D; square-sync-csrf=eyJpdiI6IlZneU1SUjFrM0ZCbG82eDFkWEsxd1E9PSIsInZhbHVlIjoiZmZlQW0rQVM3TmUxUkdNOGhNc05GYytcL2hcL2lXVlpmUkZ5aXN3N3V4eUJjWHhSbVJmSXN5MnNBb2dIM3paZ3VlVEs3cFwvSnA1c0ZaM3NwXC96U3ptK21uNXNqNFc5S2pnS2Q4XC9LaVwvY015d3JPakoyMEpMN0xPUFdXaUpDaWszY3MiLCJtYWMiOiI1ZjMxNzQ2ZjBkNzI5N2M3ZDYyY2RlMTQ2NzAwNzhmNjA5YzM1MjNmZTkzZWY3MGQxZGVlMWU5YWMxZTg2NzljIn0%3D; square-sync_session=eyJpdiI6IjY1MUNHUWhQcHZyazZZSG54Mkxhcmc9PSIsInZhbHVlIjoiNTJUTzZVYjZ3OEdaSkZKemMxS0NLb0N2ZXljMzZBVHlwd1JxcFdqMmlqWFpHMmlSQWRPUVJ6c2FnR0pGU05rQjBYUWhjeHBuR2prYmozWXFRZUJsZW92dXM2SnlOWHN1cEdiZWNYUnNUR05vYm1xbEdUMUdndVRneEJhZmI5RisiLCJtYWMiOiJhZjdiZjE2OTNmZWZkNjljMTcxNmE2YTE5YmM4YzEyMjYyYzNlOGJjOTJlNDBmMjE5NTc0YWZkMmZhMDYyMzQ2In0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 21:51:30 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a5c165-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu81.sf2p.intern.weebly.net
X-Revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
X-Request-ID: b787d130af5b68902bf713a472905815
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7e608cc7972e6d5494e74ecd575acfb4
809daede6b9bc0692080ab57214a4252f1a50c09
ca2789df28488df5442b1eb1a7d436c65a255178f6b1c82d7efb4b1a0bfe7f3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:31 GMT
Server: ECS (amb/6B85)
Content-Length: 471
www.editmysite.com/ajax/apps/generateMap.php?elementid=deb61840-44f7-11ed-a760-b91795eb7c3b&map=google&ineditor=0&width=auto&point=1&control=3&scalecontrol=1&height=350px&zoom=10&zoomScale=70&lat=33.295769&long=-111.900482&pincolor=%23000000&pincontrastcolor=%23ffffff&styles=%5B%7B%22featureType%22%3A%22poi%22%2C%22elementType%22%3A%22labels.text%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22poi.business%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22road%22%2C%22elementType%22%3A%22labels.icon%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22transit%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%5D&touch=1&forcemapdrag=1
74.115.50.67200 OK 12 kB URL HTTP/1.1 www.editmysite.com/ajax/apps/generateMap.php?elementid=deb61840-44f7-11ed-a760-b91795eb7c3b&map=google&ineditor=0&width=auto&point=1&control=3&scalecontrol=1&height=350px&zoom=10&zoomScale=70&lat=33.295769&long=-111.900482&pincolor=%23000000&pincontrastcolor=%23ffffff&styles=%5B%7B%22featureType%22%3A%22poi%22%2C%22elementType%22%3A%22labels.text%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22poi.business%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22road%22%2C%22elementType%22%3A%22labels.icon%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22transit%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%5D&touch=1&forcemapdrag=1
IP 74.115.50.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827)
Hash 7b65996b3cb6e0971ff7ed8007001521
0f18b99da975e625669027fca7922a927af205d1
b3cb0971acfbb8f824db8380c41f63f23641c0227429cf5afba09e8975ea92da
GET /ajax/apps/generateMap.php?elementid=deb61840-44f7-11ed-a760-b91795eb7c3b&map=google&ineditor=0&width=auto&point=1&control=3&scalecontrol=1&height=350px&zoom=10&zoomScale=70&lat=33.295769&long=-111.900482&pincolor=%23000000&pincontrastcolor=%23ffffff&styles=%5B%7B%22featureType%22%3A%22poi%22%2C%22elementType%22%3A%22labels.text%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22poi.business%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22road%22%2C%22elementType%22%3A%22labels.icon%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%2C%7B%22featureType%22%3A%22transit%22%2C%22stylers%22%3A%5B%7B%22visibility%22%3A%22off%22%7D%5D%7D%5D&touch=1&forcemapdrag=1 HTTP/1.1
Host: www.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kand-kbeauty.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:51:31 GMT
Server: Apache
X-Host: blu82.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 12034
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-designer=IDGDBNAK; Domain=editmysite.com; Path=/
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
142.250.74.106200 OK 55 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
IP 142.250.74.106:0
File type ASCII text, with very long lines (2460)
Hash 0f4c10cdd9706d6c98e50a47290a1dd6
cf00c34da10b91c5fd088fb4b24dfd8f81bee80b
28f6150b1b09bbe5e37c6f1e224aee3b4e84f7ee63ab8140bfc88fdbd36f4767
GET /maps/api/js?v=3&client=gme-weeblyinc1 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 05 Oct 2022 21:51:31 GMT
expires: Wed, 05 Oct 2022 22:21:31 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55025
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=16
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.163200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.163:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Wed, 05 Oct 2022 21:51:32 GMT
expires: Wed, 05 Oct 2022 21:51:32 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:51:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type gzip compressed data, max compression\012- data
Hash 3d41aac6d02feb1fde7283494b19108a
fe3ffb2ab31753daea33fb55bf4b4ace0a6061e7
53c33db0ad6ee509db0ac63ac17d1a529fa2e24686e9212cab7566ade6c98505
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.editmysite.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 8244
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2