Overview

URL trk.klclick3.com/ls/click?upn=L77urZ4Je3HT0rBCFCTX9J0psxKfV5F5m0dXrijrDjQ9s4PZWV9Q5Tbt1ZlSQaSrlprJayIxOvVHqufGj49duLIs15Eg8DFoTREZFiRNOd8EapxlG-2FeB-2BwCz42pnFw36wWqd_PiFkA1yWZtQBZBPYlJLTlhjCB407eMLQosmYZz1-2FhUqEPmVIH8Dp-2F9mofJrFzTs6lZ4PJtIAQnZY0y-2Fp1f1cBpe7cV2kj8A0Eycxz7FMgXtM21qWnPlS5BJbz33DXHaWoqSf8frn66I2LL8k9WSxfvj-2BAOgHUqasaWMZA7R9L9t-2BpeRwKfAVZIZJ6LEyO21mBZGFRAajUEcuaiSRsPqxXkJ3-2FMey60aX2i-2BOR38cybOVWbeG3YtdKekHyemZPsbQQmVB6GaAQPV97nCvwH15ugj-2BiOhdOTvSDXTsnp3Gf-2BL-2Fvi-2FEQPp0u3uS55RLXslnQfHofGUprrX4i383Xvtx5QwX4zQSEpML-2BfJx1nGN586Q97cPUYN-2BLLGeExzFMoJlqWzEI4COU6KEcLfPEkcHXQ-3D-3D
IP54.230.111.17
ASNAMAZON-02
Location United States
Report completed2022-09-23 13:00:43 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (47)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS thanhhd.com (2) 256970 2017-07-01 06:20:53 UTC 2022-09-14 16:15:03 UTC 108.61.217.122
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-23 06:12:15 UTC 172.64.155.188
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-23 04:40:04 UTC 192.124.249.23
mnemonic passive DNS shop.app (1) 3696 2020-04-15 21:27:58 UTC 2022-09-23 06:03:41 UTC 23.227.38.33
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:49:01 UTC 34.160.144.191
mnemonic passive DNS ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2022-09-23 08:34:06 UTC 93.184.220.29
mnemonic passive DNS analytics.tiktok.com (5) 1182 2020-02-29 13:09:05 UTC 2022-09-23 04:38:36 UTC 23.36.79.32
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-23 04:02:43 UTC 34.120.237.76
mnemonic passive DNS api.fastbundle.co (3) 219767 2021-11-11 10:02:28 UTC 2022-09-23 08:02:24 UTC 172.67.164.11
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 07:14:46 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS trk.klclick3.com (1) 17450 2022-01-31 06:07:14 UTC 2022-09-23 12:53:22 UTC 54.230.111.95
mnemonic passive DNS pixel.retter.ai (8) 322521 2021-12-06 11:51:39 UTC 2022-09-19 23:52:23 UTC 23.88.5.229
mnemonic passive DNS www.oliverandrain.com (1) 0 2018-01-19 12:58:55 UTC 2022-09-15 04:41:20 UTC 23.227.38.74 Domain (oliverandrain.com) ranked at: 180383
mnemonic passive DNS fonts.shopifycdn.com (2) 5049 2018-05-10 18:25:54 UTC 2022-09-23 05:01:00 UTC 104.16.255.71
mnemonic passive DNS static.klaviyo.com (6) 4056 2018-04-18 09:49:37 UTC 2022-09-23 05:53:31 UTC 151.101.86.133
mnemonic passive DNS p.alocdn.com (2) 6360 2016-10-23 02:48:10 UTC 2022-09-23 00:01:26 UTC 52.33.198.133
mnemonic passive DNS oliver-and-rain.pxf.io (1) 0 2022-03-13 07:31:34 UTC 2022-07-18 12:18:37 UTC 35.201.76.231 Domain (pxf.io) ranked at: 62217
mnemonic passive DNS ajax.googleapis.com (1) 12905 2014-10-18 20:16:48 UTC 2022-09-23 09:03:58 UTC 216.58.207.234
mnemonic passive DNS oliverandrain.attn.tv (2) 0 No data No data 104.18.6.131 Domain (attn.tv) ranked at: 59216
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-23 09:30:10 UTC 172.217.21.162
mnemonic passive DNS cdn.xopify.com (1) 204435 2019-10-04 10:26:03 UTC 2022-09-22 14:12:36 UTC 104.21.83.61
mnemonic passive DNS geolocation-db.com (1) 237326 2019-10-31 01:19:14 UTC 2022-09-23 09:38:35 UTC 159.89.102.253
mnemonic passive DNS cdn.shopify.com (18) 2327 2012-06-22 18:37:14 UTC 2022-09-23 04:58:45 UTC 104.16.255.71
mnemonic passive DNS static-tracking.klaviyo.com (2) 4414 2021-12-02 15:31:51 UTC 2022-09-23 05:59:29 UTC 151.101.86.133
mnemonic passive DNS productreviews.shopifycdn.com (1) 9519 2014-11-24 12:01:19 UTC 2022-09-23 06:40:43 UTC 104.16.255.71
mnemonic passive DNS utt.impactcdn.com (1) 8800 2021-03-02 19:42:51 UTC 2022-09-23 10:47:05 UTC 35.186.249.72
mnemonic passive DNS d2z0bn1jv8xwtk.cloudfront.net (2) 0 2016-10-20 11:21:33 UTC 2022-09-22 17:43:01 UTC 54.230.111.54 Unknown ranking
mnemonic passive DNS www.facebook.com (1) 99 No data No data 157.240.200.35
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-23 12:12:56 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS oliverandrain.com (1) 180383 2017-09-23 18:04:08 UTC 2022-09-22 12:17:40 UTC 23.227.38.65
mnemonic passive DNS cdn.judge.me (3) 13895 2015-10-21 12:03:17 UTC 2022-09-23 10:55:55 UTC 82.102.27.18
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-23 12:23:56 UTC 142.250.74.164
mnemonic passive DNS d275fvz7g8rvo.cloudfront.net (1) 0 2022-04-20 13:56:52 UTC 2022-09-23 10:14:46 UTC 54.230.245.168 Unknown ranking
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-23 04:34:37 UTC 157.240.200.14
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-23 04:33:56 UTC 142.251.1.157
mnemonic passive DNS s.adroll.com (8) 2553 2012-06-27 18:27:26 UTC 2022-09-23 06:02:39 UTC 143.204.55.84
mnemonic passive DNS formbuilder.hulkapps.com (1) 24328 2017-09-05 06:42:42 UTC 2022-09-23 04:54:11 UTC 172.67.73.117
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-23 04:33:31 UTC 142.250.74.72
mnemonic passive DNS code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2022-09-23 04:34:38 UTC 69.16.175.42
mnemonic passive DNS events.attentivemobile.com (1) 4579 2017-09-14 06:58:51 UTC 2022-09-23 08:25:00 UTC 104.18.15.235
mnemonic passive DNS cdn.attn.tv (3) 4920 2019-02-05 08:41:07 UTC 2022-09-23 08:21:20 UTC 143.204.55.59
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-23 05:06:18 UTC 142.250.74.3
mnemonic passive DNS r3.o.lencr.org (17) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.76.226
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 44.237.163.41
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.17

Date UQ / IDS / BL URL IP
2022-12-04 12:02:01 +0000
0 - 0 - 1 trk.klclick3.com/ls/click?upn=7jAVH-2FGiAnMuD (...) 54.230.111.17
2022-12-03 05:43:17 +0000
0 - 0 - 45 proddfil.d13fef04zvgit6.amplifyapp.com/2-fact (...) 54.230.111.17
2022-11-21 17:42:05 +0000
0 - 0 - 3 trk.klclick3.com/ls/click?upn=fciypmZWF8msewC (...) 54.230.111.17
2022-11-18 16:17:18 +0000
0 - 0 - 2 navigator.d1pe40kai4h8dz.amplifyapp.com/conne (...) 54.230.111.17
2022-11-14 15:09:33 +0000
0 - 0 - 4 tours.specia1.com/t/888/hl/?t=42425&aid=11544 (...) 54.230.111.17

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-07 00:08:36 +0000
6 - 0 - 0 secrud.us/M&T/login.php?online_id=0faf126e5f2 (...) 18.223.162.162
2022-12-06 23:55:31 +0000
6 - 0 - 1 widnows.net/landing/form/e7791f04-05c7-47be-a (...) 3.248.140.141
2022-12-06 23:54:51 +0000
0 - 0 - 2 dev3598.d2qe1a38az16o2.amplifyapp.com/ 143.204.55.114
2022-12-06 23:52:16 +0000
0 - 0 - 0 email.sap-downloads.com 54.183.0.47
2022-12-06 23:36:08 +0000
0 - 0 - 1 t.anmdr.link/43404/6802/0/?aff_sub4=_bucket&a (...) 54.230.111.50

Last 5 reports on domain: klclick3.com

Date UQ / IDS / BL URL IP
2022-12-04 12:02:01 +0000
0 - 0 - 1 trk.klclick3.com/ls/click?upn=7jAVH-2FGiAnMuD (...) 54.230.111.17
2022-11-27 03:11:47 +0000
6 - 0 - 0 trk.klclick3.com/ls/click?upn=vOliN4zKxIqe3X8 (...) 54.230.111.70
2022-11-21 17:42:05 +0000
0 - 0 - 3 trk.klclick3.com/ls/click?upn=fciypmZWF8msewC (...) 54.230.111.17
2022-11-07 15:23:20 +0000
0 - 0 - 2 trk.klclick3.com/ls/click?upn=V6KqEiR8ysypDF5 (...) 18.244.114.2
2022-11-05 19:39:43 +0000
0 - 0 - 1 trk.klclick3.com/ls/click?upn=RbUrxzYafWx74de (...) 54.230.111.95

No other reports with similar screenshot



JavaScript

Executed Scripts (72)


Executed Evals (1)

#1 JavaScript::Eval (size: 447, repeated: 1) - SHA256: 23a5a729eba5d4fc073c6394045a079e2f9361e9769bb04fa46c5980db7cb5f8

                                        var dcCart = {
    "note": null,
    "attributes": {},
    "original_total_price": 0,
    "total_price": 0,
    "total_discount": 0,
    "total_weight": 0.0,
    "item_count": 0,
    "items": [],
    "requires_shipping": false,
    "currency": "USD",
    "items_subtotal_price": 0,
    "cart_level_discount_applications": [],
    "checkout_charge_amount": 0
};
var dcOriginalSubtotal = 0;


var dcCustomerId = false;
var dcCustomerEmail = false;
var dcCustomerTags = false;

var dcCurrency = '${{amount}}';
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 62, repeated: 1) - SHA256: 328f4d0a65c71ab7e50c30f15800f4b0823daa5e887f65637ba007bf3bdc59d5

                                        < !DOCTYPE html > < html lang = en > < head > < /head><body></body > < /html>
                                    


HTTP Transactions (140)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8029
Expires: Fri, 23 Sep 2022 15:14:20 GMT
Date: Fri, 23 Sep 2022 13:00:31 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 12:14:07 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ujuhyk91dTleQoVP2AyGONkKST4TJ2rCjddYeaDMEuZXvJxJb8GpFQ==
Age: 2784


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17595
Expires: Fri, 23 Sep 2022 17:53:46 GMT
Date: Fri, 23 Sep 2022 13:00:31 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ++wcobXiyYdxccgJ2EcqqDSRpM9lfUoQolxcYSzPB98GB9MnMzfvVeOFmGXbTiP9YRBQzZLztQA=
x-amz-request-id: PEG33GT5YYSMBTBG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 12:44:26 GMT
age: 965
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 23 Sep 2022 13:00:31 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:31 GMT
Etag: "632c8c69-1d7"
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4RLhMWlb_PtRY9CGCAOLrCER1a83Xpk001pfqSP0bk0BSdgGfRLQMA==

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 12:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 12:27:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 806YGlLjykeDD8yv3YTRk-NcWmt1F3sSaCJNOllZoLu6Ey8tfSF52Q==
Age: 3430


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 157
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:32 GMT
Last-Modified: Fri, 23 Sep 2022 12:57:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ls/click?upn=L77urZ4Je3HT0rBCFCTX9J0psxKfV5F5m0dXrijrDjQ9s4PZWV9Q5Tbt1ZlSQaSrlprJayIxOvVHqufGj49duLIs15Eg8DFoTREZFiRNOd8EapxlG-2FeB-2BwCz42pnFw36wWqd_PiFkA1yWZtQBZBPYlJLTlhjCB407eMLQosmYZz1-2FhUqEPmVIH8Dp-2F9mofJrFzTs6lZ4PJtIAQnZY0y-2Fp1f1cBpe7cV2kj8A0Eycxz7FMgXtM21qWnPlS5BJbz33DXHaWoqSf8frn66I2LL8k9WSxfvj-2BAOgHUqasaWMZA7R9L9t-2BpeRwKfAVZIZJ6LEyO21mBZGFRAajUEcuaiSRsPqxXkJ3-2FMey60aX2i-2BOR38cybOVWbeG3YtdKekHyemZPsbQQmVB6GaAQPV97nCvwH15ugj-2BiOhdOTvSDXTsnp3Gf-2BL-2Fvi-2FEQPp0u3uS55RLXslnQfHofGUprrX4i383Xvtx5QwX4zQSEpML-2BfJx1nGN586Q97cPUYN-2BLLGeExzFMoJlqWzEI4COU6KEcLfPEkcHXQ-3D-3D HTTP/1.1 
Host: trk.klclick3.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.230.111.95
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
content-length: 109
location: http://www.oliverandrain.com?_kx=xhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%3D.YnabTx
server: nginx
date: Fri, 23 Sep 2022 13:00:32 GMT
x-robots-tag: noindex, nofollow
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IzAG8O5_FKRm70i7pUC8WjvB9RTYZqd_hYyfB1gWd-u8PoV5MIg0mA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   109
Md5:    ae62763d0ff204a9149ffaebe301f771
Sha1:   fae2948a21f78e9b775d39c211cad7bd7407a201
Sha256: 254e7df1274c917489e2ca154cd817f7487b10b36961fd93d215fcd6dac4f4e2
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A/xIfyF7+khaoaKof/FBMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.237.163.41
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fX29coJPtW6vjq9IqxOtgRYRMsU=

                                        
                                            GET /?_kx=xhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%3D.YnabTx HTTP/1.1 
Host: www.oliverandrain.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         23.227.38.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 23 Sep 2022 13:00:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 217
X-Sorting-Hat-ShopId: 56320229544
X-Storefront-Renderer-Rendered: 1
Location: https://oliverandrain.com/?_kx=xhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%3D.YnabTx
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 56320229544
X-ShardId: 217
Vary: Accept
Server-Timing: processing;dur=11, db;dur=3
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,europe-west1,gcp-europe-west1
X-Request-ID: 99ca2b30-3623-4538-9575-0179b9bbc657
X-Download-Options: noopen
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjdXBjRacdEm4Rk%2BbmbyN7I1OJrSaFulqQS59%2By9auWSS86DeGp5CXZQ9i7q%2Bs1wsdgo%2B1wyuNMP1cp2bh2JZ7Go9i%2FZgxMT0gBKqJh%2F7J3gC5bRtFsPYuM3tU5KMUgez4%2BWRR9%2Bog%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74f376c1bb1ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   150
Md5:    04cf0bb3459d5eaf64ae0c3ef238cb6c
Sha1:   8420e8e12ffa9fa66070946eddaf1ccb4d049245
Sha256: e41c33f73af6f07d157056ffb142efb9250cda773c109f8d1d5676e547e18e45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "70654F852AE9DB337F36F0755B989C4ED925D19034F7A9354D61E6A0426A7374"
Last-Modified: Thu, 22 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21553
Expires: Fri, 23 Sep 2022 18:59:46 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            GET /?_kx=xhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%3D.YnabTx HTTP/1.1 
Host: oliverandrain.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         23.227.38.65
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
x-sorting-hat-podid: 217
x-sorting-hat-shopid: 56320229544
x-storefront-renderer-rendered: 1
set-cookie: secure_customer_sig=; path=/; expires=Sat, 23 Sep 2023 13:00:33 GMT; secure; HttpOnly; SameSite=Lax localization=US; path=/; expires=Sat, 23 Sep 2023 13:00:33 GMT cart_currency=USD; path=/; expires=Fri, 07 Oct 2022 13:00:33 GMT _orig_referrer=; Expires=Fri, 07-Oct-22 13:00:33 GMT; Domain=oliverandrain.com; Path=/; HttpOnly; SameSite=Lax _landing_page=%2F%3F_kx%3DxhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%253D.YnabTx; Expires=Fri, 07-Oct-22 13:00:33 GMT; Domain=oliverandrain.com; Path=/; HttpOnly; SameSite=Lax _y=29d248d8-c483-495d-a3f9-da842c7258d1; Expires=Sat, 23-Sep-23 13:00:33 GMT; Domain=oliverandrain.com; Path=/; SameSite=Lax _s=798464db-86c8-49f4-b6d9-bbce8836025e; Expires=Fri, 23-Sep-22 13:30:33 GMT; Domain=oliverandrain.com; Path=/; SameSite=Lax _shopify_y=29d248d8-c483-495d-a3f9-da842c7258d1; Expires=Sat, 23-Sep-23 13:00:33 GMT; Domain=oliverandrain.com; Path=/; SameSite=Lax _shopify_s=798464db-86c8-49f4-b6d9-bbce8836025e; Expires=Fri, 23-Sep-22 13:30:33 GMT; Domain=oliverandrain.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:941031f66c662988615b93b83d9e385f
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 56320229544
x-shardid: 217
vary: Accept
content-language: en
server-timing: processing;dur=17, db;dur=9
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: 9525a129-83e1-452d-8c2b-3241fe551bfe
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SoXIX%2FrxxWIL5a2OUN090dxta%2Fytka6zqaQ%2BtVoc5YuMxsZPJY4h8WS%2BNhbkEwxhErBPSBCJBHhdmhxUv7wU6SDwYJP3%2FqsQBnpBYatj0epDtZ7eBbAUWAHsGUb4lb3RTlBD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c358741c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3135), with CRLF, LF line terminators
Size:   36681
Md5:    73e600b8991628637001eed25abd7029
Sha1:   23fc4eaa785a6cb79af906d64c9ee1fba7351a64
Sha256: 716982021ff5f0699078d4d0df33cd11bf91b0038f5049ee94540d1195064673
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/section-collection-list.css?v=70863279319435850561652856854 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/section-collection-list.css>; rel="canonical"
server-timing: imagery;dur=71.741, imageryFetch;dur=70.869
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: cb51c163-6200-4d26-b0d5-11de70c2942a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:34:59 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MLTqbLNq7r4FXXgHyRkD2ykUB%2BJH4VLNYRGVbm89YBp6eoAeJDZZjgkAzrgZ8ZIHmdenT02A3eJwLKVn9fLDk0txfPX48%2FKw3y6PfGMCgHW6NhLd8LMNvksNGNHTzyKMUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53958fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (926)
Size:   853
Md5:    b810d364d3a206ecc5de479029186621
Sha1:   d7d2d39fa8ae4ef04ccdff25558b2cd06931c454
Sha256: 2a6b53c2989df75df0dfcf4aea7ca94d2a78b9df70b2f34b552e09d20ac704a9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6089489A3E456D5CB0552344E094D2C8DB9C872BB998937DFFD11D54E23874F5"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Fri, 23 Sep 2022 17:23:03 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/base.css?v=33648442733440060821652856873 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/base.css>; rel="canonical"
server-timing: imagery;dur=71.720, imageryFetch;dur=64.335
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 76d8863d-5ff0-4d30-8419-81ed0750bf52
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 02:36:22 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EKJWSc1NnfEQ4XDQk%2F2JB43cxR%2F2xZAERFfYapgliEYPmiGFt4wyyJn9qW%2BmROGSI%2FJ%2F1fbsz8liukWJEShObm1JzmkmcvcpEWLuXPAE8h9gY%2FTGjucMbntSFIDQ4DhGdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5597ffac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50785)
Size:   9475
Md5:    78f301f8ed4e9f51175435f28da8002e
Sha1:   72b7d2c32244e5392aae7f9e0074fabde069232a
Sha256: 7e7bb7fec4ba5f42e886b9e2f1e845f3cfb2d0b65e529f0e8753668b9a8be5aa
                                        
                                            GET /shopify_v2.js HTTP/1.1 
Host: cdn.judge.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         82.102.27.18
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: keycdn-engine
date: Fri, 23 Sep 2022 13:00:33 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"3cabea3e0a39035d15d6b6fca52f7c43"
x-request-id: 57ed50ee-44eb-4ed6-bab6-8e405091db83
x-runtime: 0.019453
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/shopify_v2.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   92240
Md5:    5b9e2ecaf63807d7d71f2f31fb6bc25e
Sha1:   79a10faba898a6c8fcc0ade4f3fb81f4f77e7034
Sha256: d9f80f60322b7fa3bd7a63582338e6e70ea49d160448b900b1805107465f54a5
                                        
                                            GET /helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=b2xpdmVyYW5kcmFpbi5jb20&hmac=edd2f474a2c602ee0260f5bf6767750fcfbb43548814a4c54447f263153cfe40 HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
content-length: 19252
cf-ray: 74f376c5adfa1bfa-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 249386
cache-control: max-age=2629800, immutable
last-modified: Tue, 06 Sep 2022 10:18:28 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
server-timing: imagery;dur=28.422, imageryFetch;dur=28.133
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,us-east1
x-request-id: 71f4e534-d7f4-4f83-a482-606b378e74ca
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JXmfGtZXTnwix3%2B1K%2B752j8ehWhADBSNFxkilibIkZM9ouzql0r3h3LLsimTvej1tKdTKrQWG1inzTTkCWVBgXCXJ0dfEoCbGzxgTVdZdyRJBqPQblvqnHtu6ykx7wbwbEMfFrEJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19252, version 1.0\012- data
Size:   19252
Md5:    3081ae959e35d7dfa394138443e9095e
Sha1:   fe093fe9ca22a15354813c912484945a36b79146
Sha256: de60693f31597c2ec2c1bd972d15900b6bb7be2bcc19db7b71bd171469b7dbe0
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/component-slider.css?v=120997663984027196991652856845 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/component-slider.css>; rel="canonical"
server-timing: imagery;dur=65.801, imageryFetch;dur=64.306
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a470344a-8127-4f05-b2f3-b3a020096578
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 25 Aug 2022 23:48:01 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aq1sEKiijfULDNOHvYPruKLuOtdbRtR0lI9ZVeHCIAXIQvl13FtI%2B78jVaQffI2UhjgkaDBn%2BaEiq2jm7Uo0Ubp0ZVjkrcF5pEZvV48u%2FZ60dI75vXKwUDv13ZOqZkZBsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53955fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7735)
Size:   1984
Md5:    e27394d4e9aa364c72d58cc3d3e7a186
Sha1:   c266d4cfdb3d56ee17f3e828a9c0b426d6854601
Sha256: 99e7d88ef4e9c5886c1e745081e0033a366214a7941adde9001fee691346e888
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "42ABC265A713D8F4ACD69FA633909EBE1098E3DC9ABD10B8CE3E3ABC26855628"
Last-Modified: Wed, 21 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Fri, 23 Sep 2022 15:40:37 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2920
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:33 GMT
Last-Modified: Fri, 23 Sep 2022 12:11:53 GMT
Server: ECS (amb/6B97)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, s-maxage=31536000, max-age=3600, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js>; rel="canonical"
server-timing: imagery;dur=31.586, imageryFetch;dur=31.440
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 038c05c3-d876-4ab9-bde9-3b45b569b193
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 02:05:31 GMT
cf-cache-status: HIT
age: 2458501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OU9RppIrC2%2B%2BDTC64QniKzBW0fEGeu9ZgMSbjO%2BW2GWvlETdWgrMWZUU1gIlvKs6k2JxOJRQbVP7VJXZ%2FdQVHRBFD2kOxseq8QZdaoI%2B36Ieom4dzi1oB9DFbW2EUY4Jww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5c9ccfac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59400)
Size:   19290
Md5:    b676e3641cf4453dbbb50688a457a605
Sha1:   fd17fbe38e7b87eb51a9ba118b27c6e939df22b4
Sha256: 146d18a8ddeb95c28d89c2d00ccf294df8e40d249f3b973a5506618c7cc4ff07
                                        
                                            GET /gtag/js?id=AW-382247578 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 13:00:33 GMT
expires: Fri, 23 Sep 2022 13:00:33 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62488
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4962)
Size:   62488
Md5:    e88654a0b1b7aa77867088909e1b5b5b
Sha1:   82bab961bf9c0ee4cdd0e568303cb4f01876eb8e
Sha256: 1f0e5bb67131101811dfb1f59472a2c9797c5f576ffb99e31d3ab00691f9b4de
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2?h1=b2xpdmVyYW5kcmFpbi5jb20&hmac=09db68582465d9fa2cf99e2812d72a71295a7004b89960592de537a444754bcb HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
content-length: 19852
cf-ray: 74f376c5ae001bfa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=2629800, immutable
last-modified: Fri, 26 Aug 2022 03:23:45 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
server-timing: imagery;dur=24.963, imageryFetch;dur=24.632
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-central1,us-central1
x-request-id: 5bff1f23-8386-4119-9f53-e29271da6088
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vXBhpyzYBPs40tM0Po%2B%2B3iI4tqvBBVPyOD85BDK1%2FfcBOKoGNhbew8DcIWubWSRay6VBXkNRpaIlOsc1ry2c3o1usviFKx3y7BF%2FyqhpTD%2FSsX5c92GOSC3TeqcEigd9m5cWR5aA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19852, version 1.0\012- data
Size:   19852
Md5:    a86e6e76d05ed7d44b43e7c71ee28168
Sha1:   972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14
Sha256: b8dc428785cf4b6552754379b1e3d10e1741e11c19518c53834c3fd69688d6f1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6189
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:33 GMT
Last-Modified: Fri, 23 Sep 2022 11:17:25 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/details-disclosure.js?v=153497636716254413831652856869 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/details-disclosure.js>; rel="canonical"
server-timing: imagery;dur=114.350, imageryFetch;dur=113.456
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 862b3afb-5751-40c5-8739-752c02d19785
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 02 Sep 2022 09:48:09 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OLPQ0gcRNObJ82IHDyMBSVmxG9BvXIDplORfYDZ9a2W%2Bio4Q7EuAP0ABQxf%2F5XGYaZ9I7RNPV32VkYuWimuIXqNNSwIjKA0z8t66xI1QtDY%2BzV17qXqCKXMY0wsMdA5x1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c599a4fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1074
Md5:    f7960109d450a6d3fe25b2caf4a73b5a
Sha1:   832b21288a4aa78ab49b495c0f08d91a1b7eb24b
Sha256: e57e5e5f673c90fc93219d941f2d61cec495fe5ce77e05d1a94e1e56c62f3b94
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/component-image-with-text.css?v=106189373233589105561652856853 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/component-image-with-text.css>; rel="canonical"
server-timing: imagery;dur=74.444, imageryFetch;dur=72.483
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0e48b4f7-94e4-424b-b02c-9b62cafbaee8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 23 Sep 2022 00:21:30 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DfF69irHccYdNcf7%2BOBUS2jIWXHPL%2BpoJZdfhNc8Jliet%2BbpXiCyxjYkL5GNyUdPI0UzgCH4ZDtbAVbsiZpHb6Pb8rP2aYr%2BwbEUp%2FbgLtwYNQpFr4uk0HI0MM%2FWVDAsoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5395afac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8271)
Size:   116559
Md5:    e4cafdf1454bfa416d5c504665cbcdc6
Sha1:   b9fc0633d37073c2f4ca0cb5df2ba6f7289e64cc
Sha256: f97a41dc4d279592fd97844015357817e335fac600db884d1fb7899b03f509cb
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/compiled_assets/scripts.js?7139 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/compiled_assets/scripts.js>; rel="canonical"
server-timing: imagery;dur=56.783, imageryFetch;dur=55.048
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1c609df0-9827-4a81-a399-731c0e773bda
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 22 Sep 2022 23:57:45 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x7YhFiiyHwX0Dd3%2ByO%2F25IgHWMRb5%2F1F5FWrxZxmgLVodVFGHaoyqnp%2FJXRZffsXZeYmwBiLi%2BJlv3lnm1K%2Bh%2FFL1YlD3eFGTYM9t0XrZ8%2BY7%2FddtcbDxVrREMRduc5RDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53953fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   129643
Md5:    99f85fa02c2d6e5daf9a9dabb6a1286a
Sha1:   c652ee8e31f2fd4576270ddf53063502bedfdd48
Sha256: 95b9efe139332ecb4407c9c16baaa388a179e41f2fdf2072431464614cab082e
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/global.js?v=24850326154503943211652856852 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/global.js>; rel="canonical"
server-timing: imagery;dur=83.923, imageryFetch;dur=81.024
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9fb18a48-aa98-42d3-b6e9-62d956899985
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 05:39:11 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=isBIDc%2BZwx%2FavZQP4Nl4FuTLxNTMqDu2MPjhlQcfbwpWi2Rmlt6ctfNULJ9J72A2D%2BjPTx2rgOGOpzuvwPMZSwFumEXl3F%2B2JRRsO6mxG8YxtSjNqMGCfTHq5GqgACzx%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5597afac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   8046
Md5:    8c323d6713d75c8e2f3caa2818c625fc
Sha1:   e4d1a1a39124205c51cf8815d3d8e4a79480274c
Sha256: e88a0a7db6aedfecab03d375e63c167a05dae2f8f0cfd77861bf974cfd4cc450
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FC53CD1B8B680D143B07A0461490CF10567CC5394EF08B63830865030C51E4A"
Last-Modified: Wed, 21 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11389
Expires: Fri, 23 Sep 2022 16:10:22 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive

                                        
                                            GET /shopify_v2.css HTTP/1.1 
Host: cdn.judge.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: keycdn-engine
date: Fri, 23 Sep 2022 13:00:33 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"4e68400bd9fbd44370a6b2971507e4d9"
x-request-id: d6d24282-82a8-4ec8-9fb8-32654c60aa31
x-runtime: 0.008561
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/shopify_v2.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13685
Md5:    f92625d2197a314265c420ce0bf7adab
Sha1:   e798dfaa373b2321f34ac5706eb2c710b50eaefa
Sha256: 3ece1904f64cc341a5e4af4ab1680e466c895883de090dcc163c27322ffea04e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5069
Expires: Fri, 23 Sep 2022 14:25:03 GMT
Date: Fri, 23 Sep 2022 13:00:34 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/predictive-search.js?v=31278710863581584031652856854 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/predictive-search.js>; rel="canonical"
server-timing: imagery;dur=165.919, imageryFetch;dur=164.821
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8c385da8-bcc9-4e8c-a6d4-9f806fc0d65e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 01:51:36 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9uJ6FOUEwDIA%2BkviwVxWQ1pJcN4p2TxDFY63RMuaHyKah7WMtlR83U9kyVrpyRXCehK%2FNXxeHfFeyGn513USF9zkBQkP8VEiFdgVSh%2Fedn9jt5WkVZ8QsSYwg42mDOL3cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53960fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2251
Md5:    0f4ea58225f90ba388d4afc0bca16f32
Sha1:   d397064f31474fa12b1a7244b9f0db659fa8f3c4
Sha256: 07657238af192c3f2124eeda72135cddd3fa660d104f1ae4dee1c2d3935cec5a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5069
Expires: Fri, 23 Sep 2022 14:25:03 GMT
Date: Fri, 23 Sep 2022 13:00:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1808
Md5:    3ce852b2b81c9c3a13a2f8a03577cf31
Sha1:   a69808e895e4d5af40b33ebbe80c09ba01df6803
Sha256: d368222db1b5e0ac6a576e83e84cc9d795c453d3ccd4fffdfd43697445718d52
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BF0EE303BBC1D1D8899F3CBD6EA72EF954FD97B1F0261E5D651E3BD60CBE12CD"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11785
Expires: Fri, 23 Sep 2022 16:16:58 GMT
Date: Fri, 23 Sep 2022 13:00:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    b877ead4a15221fdd278ef27f281a7ec
Sha1:   48c10714503e8dfdd3e3c3d39b919ef2792f0d15
Sha256: f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8497
x-amzn-requestid: ab65ba93-aad5-4845-b471-c50c14057c47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvqujEsIoAMF8sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632957f6-6d4635bf713fd25147948c7b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:04:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SZ6p5NLxuGUoEOZujwPbDGwUO0dZgiITud8RWOaSW_VciGRgBidY2A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
age: 62673
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8497
Md5:    7606ff88f05062b66970d9805f38987a
Sha1:   d47db5fcd83023b4a8de40a47d4510e183de387a
Sha256: 20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5ur411n5hU7eWb68iExZCUrhpCybRyTBHCi72ra8dS2kd3UhW8sb1A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:59:00 GMT
age: 54094
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8029
Md5:    02a682b4703bb9d6381c762726c05531
Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:05:08 GMT
age: 53726
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:04:45 GMT
age: 53749
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5340
Md5:    3b318ea5c36d2b22b925f7dfe382df5f
Sha1:   0264e73c4cfff0bb255757c7e1c760a5ad3ece80
Sha256: 0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/section-image-banner.css?v=176487564440668880141652856844 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/section-image-banner.css>; rel="canonical"
server-timing: imagery;dur=146.484, imageryFetch;dur=144.535
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3b4e605d-e73e-48df-be66-01aad79cea05
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 03:34:59 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CrCiHs1%2FLR%2B3fqc%2Bzig0TjEyCPf5qajaXJ6XaClmrI3Bg3jCTN46XiYrAXIjJBzMknr0VhNMCSmByMrbPhkkyUXRARkwcwqekWH%2BUdyTiIuV9gU7bFMYefArEJr7B%2FMY%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c599a5fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7303)
Size:   26380
Md5:    87da7d28de4e3b47c111b304ec31ad6f
Sha1:   2d1a9f0ba45a18eafb50e4201585d29f066af644
Sha256: 5d69353c3f15cad74e2aec39289986a5cf4c4dcfc426045b72d35e8e9de0b890
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FC53CD1B8B680D143B07A0461490CF10567CC5394EF08B63830865030C51E4A"
Last-Modified: Wed, 21 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11388
Expires: Fri, 23 Sep 2022 16:10:22 GMT
Date: Fri, 23 Sep 2022 13:00:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4280
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:34 GMT
Last-Modified: Fri, 23 Sep 2022 11:49:14 GMT
Server: ECS (amb/6B91)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF58677C80F35E38327B2798ADEA22FCB67A7CCE362ECE03E36724C7CA6E72AC"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3936
Expires: Fri, 23 Sep 2022 14:06:10 GMT
Date: Fri, 23 Sep 2022 13:00:34 GMT
Connection: keep-alive

                                        
                                            GET /onsite/js/klaviyo.js?company_id=SKFL8c&shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
etag: W/"70f0ac4a2634a2c6a238406578ae14d7"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 53427
x-served-by: cache-lga21980-LGA, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663938034.331356,VS0,VE1
vary: Accept-Encoding
x-resp-is-stale: true
content-length: 918
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1145
Md5:    38bc8e0931b0c6de832e605722d94fcf
Sha1:   f531f0a374b01f16fe4dc7829463e28816926323
Sha256: 3ab43ca90c07acfaefbe30a92a803014e3507697176f2545e9db577852b91e37
                                        
                                            GET /onsite/js/klaviyo.js?company_id=SKFL8c&shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"70f0ac4a2634a2c6a238406578ae14d7"
Cache-Control: max-age=0
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 304 Not Modified
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"70f0ac4a2634a2c6a238406578ae14d7"
age: 53427
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1663938034.350692,VS0,VE0
vary: Accept-Encoding
x-resp-is-stale: true
X-Firefox-Spdy: h2

                                        
                                            GET /onsite/js/runtime.9cd397946fb95e52b7a0.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: uGl51W3BXfl+mitxv7Qq3p8mB/Y0PHoOGfj1TmWSlxW+21xiVmIrKXrFwg+q7R83YmSnK6PmA9A=
x-amz-request-id: RBVKCTQMRG92EQHW
last-modified: Tue, 20 Sep 2022 18:42:20 GMT
etag: "01c133786f488c1b88bc99974667424e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: n44gHQ1hsMB_uBA64WYGXzsDhaIAvE_E
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 53439
x-served-by: cache-lga13620-LGA, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17133
vary: Accept-Encoding
content-length: 8076
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19473), with no line terminators
Size:   8076
Md5:    a0b33e3435e5549768fb53093fa009cd
Sha1:   d1d2a6b4b7194486225947ff577ef390b47c48c2
Sha256: 345adc35078549a0c6f295b3c18336b1df50618901f7833937fd33612a3ea45d
                                        
                                            GET /onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: IlT6kPnA9ssToQg2br24zjaYpouwzHuGVmlqFIP+L8Pw+7i15Yy2jhHVcSD2xOHx5RWAdZWRMJE=
x-amz-request-id: FDHRXCM9F36M1V2Y
last-modified: Thu, 22 Sep 2022 20:56:47 GMT
etag: "af06dc05c43c0e0ef631aa6578eb2b20"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: nWL.VwGMlkCnpf2w6hy7LSuPMY5QeZrD
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 2632
x-served-by: cache-lga21967-LGA, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1165
vary: Accept-Encoding
content-length: 13237
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34307), with no line terminators
Size:   13237
Md5:    ac1e18ce6cac8daaaef31bed3c074515
Sha1:   8ea498fa5964d40d6e9d771a57b2c2d4951c7a83
Sha256: 7c027fff21e5b62a108e839ed90d91b856969e798318524b06faf4232c490544
                                        
                                            GET /onsite/js/fender_analytics.9bd929e66a2449a7cdc1.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: 36f/ps//h2tsvtsRUgp6Mk8LzgnmM0HKjWkeHSxHbhGWZ7W/4R77UIFLmwMJGAxxLaUgzekp6vo=
x-amz-request-id: V3VGV2WY5XZ8QSWT
last-modified: Fri, 26 Aug 2022 20:33:40 GMT
etag: "d48fad1b3f959b474b934ed39d9ba542"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: DxlKU8PAW5Z2L0V.1wRK5LqPR2sBWhOg
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 2633
x-served-by: cache-lga21973-LGA, cache-bma1628-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 883
vary: Accept-Encoding
content-length: 10605
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27584), with no line terminators
Size:   10605
Md5:    0f29e4f1e3f2addc67e4852883ecf694
Sha1:   5c059b2980e9c5356fdc0b2c727a3a86c320c5a9
Sha256: 2949ec27afb5fb53e7bba607529a9529a8c75a4d71dcbea074b88dd679f1b8c9
                                        
                                            GET /onsite/js/static.444020cd426b0bea12c1.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: NVmB6Kd0YFo9iCmGx+yu+eOqiC5jqbz25AtCBJn8Vs1Hbf0QGGXROARgd05prVYM5kfCwyQJ2xk=
x-amz-request-id: EYA39404SA8WM76Q
last-modified: Thu, 18 Aug 2022 15:05:14 GMT
etag: "1774dcfd43ae7a477e554d4266bbaa8e"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ep5t_kHI_qKbZWWytxIKzh5j3YAjdqHx
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 2633
x-served-by: cache-lga21968-LGA, cache-bma1628-BMA
x-cache: HIT, HIT
x-cache-hits: 57, 887
vary: Accept-Encoding
content-length: 5219
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12428), with no line terminators
Size:   5219
Md5:    8a51385137b20bdfcace3e12a6e9981f
Sha1:   b291ae4859ec56be11f24617f556db2be626d1f6
Sha256: 60157d9b98c625ee91011c3c06ee76809c5ac9225554e26a891462e8ed39c77d
                                        
                                            GET /onsite/js/klaviyo.js?company_id=YnabTx&shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
etag: W/"d58b178310f2dcd6b7669f66727b5b96"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 23 Sep 2022 13:00:34 GMT
age: 2554
x-served-by: cache-lga21945-LGA, cache-bma1627-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663938034.335894,VS0,VE88
vary: Accept-Encoding
content-length: 917
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2028)
Size:   917
Md5:    36b281245c31235d38c7cd84c05fc0d8
Sha1:   a39876f04331bed958c83beaa86e67cd28dc5ad1
Sha256: c62e2e26a99066f2009e83828cf90838454d3e08fc36ab2de380d872d3ab9dac
                                        
                                            GET /onsite/js/klaviyo.js?company_id=YnabTx&shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"d58b178310f2dcd6b7669f66727b5b96"
Cache-Control: max-age=0
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 304 Not Modified
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"d58b178310f2dcd6b7669f66727b5b96"
age: 2554
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663938034.442018,VS0,VE0
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   24115
Md5:    f6b1bc94ef0ea40754b799d2a6c97314
Sha1:   7c6af505773147bd531a9fa57eb65a2514a65131
Sha256: 58b734a94fb2e3715ba920042633abbda9af7ee2e17deb21faa46488728ad2f2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8A0308BB9C1C9F98DE773D2953AF4C1E44C581C420C1939325F2F95C908DE832"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11005
Expires: Fri, 23 Sep 2022 16:03:59 GMT
Date: Fri, 23 Sep 2022 13:00:34 GMT
Connection: keep-alive

                                        
                                            GET /embed/loader.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: productreviews.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
vary: Accept-Encoding
p3p: CP="Shopify does not support P3P."
x-robots-tag: noindex,nofollow
cache-control: max-age=300, public
etag: W/"a3812189666813b6f4ab0c83f9df0be9"
x-request-id: 66e9cb5f-9968-4425-bdb6-b60cceeb1c30
x-runtime: 0.003525
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: origin-when-cross-origin
content-security-policy: default-src https: 'self'; font-src https: data: 'self'; frame-ancestors https: *.myshopify.com; img-src https: data: 'self'; object-src 'none'; script-src https: 'unsafe-eval' 'strict-dynamic'; style-src https: 'unsafe-inline'; upgrade-insecure-requests
server-timing: processing;dur=5, socket_queue;dur=1.513, edge;dur=1.035, util;dur=0.0
x-dc: gcp-us-central1,us-east1,gke
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aRJSyC3H7e0W40F%2F3%2BLQL3A2w6uypYunWd7XyILfCVs324rlOaMMZ3WImIIRMpNnSaQEHL2SUDM2anNdo9FfPFWIoiQR9g4PzFuplopTTISXEhqd%2FWee7yM%2FObE4Z%2FWxudZQ%2BRarH%2FBl3NaVuzJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376caad2dfabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   933
Md5:    a222ec273f9e2d1ea873214b1179c490
Sha1:   29448d90a08a768f53b5e3f400571a113469648b
Sha256: 144ecf8319b33f8018bf07703355f782cd0284bc9b7c32587a773e5f4fd127e6
                                        
                                            GET /assets/installed.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: cdn.judge.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
content-type: application/javascript
                                        
server: keycdn-engine
date: Fri, 23 Sep 2022 13:00:34 GMT
content-length: 58
last-modified: Fri, 06 Jul 2018 02:42:15 GMT
cache-control: public, max-age=7776000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/assets/installed.js?shop=oliver-and-rain.myshopify.com>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   58
Md5:    6fc296050f821889fe424c584881a130
Sha1:   e155e4644cad89b47fd2bbab7d9b43b7ec528e2c
Sha256: 83dc6eeccb2573139da6b7058f1e8c4029d532c9da639294ea15d39d2fd1a04d
                                        
                                            GET /i18n/pixel/events.js?sdkid=C82L13MCNF3IRC5H5EA0&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209231300340ADE86231BA4F421D1B0
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465bbead019ffc3eb784253c5e33477eb98bf3e0d60ae55374d2a814cdab9a5497f827bdaa64cf6398dede6a7f1521889fea
content-encoding: gzip
expires: Fri, 23 Sep 2022 13:00:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 13:00:34 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=0, origin; dur=109
x-origin-response-time: 109,23.36.79.28
x-akamai-request-id: 394c8676
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   57954
Md5:    e32e3c5f5e9ed1a49a3ab5813ed1d7c6
Sha1:   369be2597f6812e25b38e0bef16b46efaf4c54e9
Sha256: c5f63187c8b9cf40ea3fe8657da98bbee4302a1ce5fdac69d24babcd74289541
                                        
                                            OPTIONS /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://oliverandrain.com/
Origin: https://oliverandrain.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.88.5.229
HTTP/2 204 No Content
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:34 GMT
access-control-allow-origin: *
access-control-allow-method: POST
access-control-allow-headers: Content-Type,access-control-allow-origin,content-encoding
access-control-max-age: 2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8318
Md5:    49114a9abba03219819dbcef3af5e1de
Sha1:   5082613acc632165e3c54c6f54aa774257c9b78e
Sha256: 1b67c3773d901c5272e6904760ba0fc18c284d6a192ea2d0da34fc9a6a69797d
                                        
                                            GET /app/public/discounts-combine/discounts-combine.js?shop=oliver-and-rain.myshopify.com&shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: thanhhd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.61.217.122
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 23 Sep 2022 13:00:34 GMT
Last-Modified: Fri, 23 Sep 2022 07:14:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632d5cbc-14f29"
Expires: Sun, 23 Oct 2022 13:00:34 GMT
Pragma: public
Cache-Control: max-age=2592000, public, must-revalidate, proxy-revalidate
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   10882
Md5:    c8e8aede1f0a9b65fa40a785a427e29f
Sha1:   547bf3e54edbb45051746d29abfe9a3301c4374e
Sha256: 83845b4129687d9c542e895e1209ba5a1045ff408252899a781ea0ec832481a9
                                        
                                            GET /i18n/pixel/config.js?sdkid=C82L13MCNF3IRC5H5EA0&hostname=oliverandrain.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 2022092313003421BF1F4C744ED4215892
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b87960a0733184373b08d32ba2dad096350275c460345190a879a1212aca04264e40ed1fd662498a3245abf95f1777a3c
content-encoding: gzip
expires: Fri, 23 Sep 2022 13:00:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 13:00:34 GMT
content-length: 1883
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=101
x-origin-response-time: 101,23.36.79.28
x-akamai-request-id: 394c8a37
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (3948)
Size:   1883
Md5:    103fb72275f63429b65967913ae3d063
Sha1:   f16c304d764f3a8ffc3cf4a6063f76b8137f6e6a
Sha256: 2e2dc1052054a142543c71444a0ceee21b35d9e3d8435436d506353487d74460
                                        
                                            GET /jquery-2.2.4.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.42
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
content-encoding: gzip
content-length: 29811
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-14e4a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663938034.dop214.sk1.t,1663938034.cds227.sk1.hn,1663938034.cds214.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32065)
Size:   29811
Md5:    82885772205f23cd59e25a221521b059
Sha1:   96ed36f45544295f28df1ab251e7e38faceeff0e
Sha256: 8e85465daae15b31a1837a4112cf920c1eeec7a5c189595651b3a53cb9b97215
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 754
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220923130034C96E9A90389AD152FBB1
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b845ac3ac4213815465c704c31ba33b40ee45dc6f59bc7ae44a40e80d3f63758b202f8f5f6fa60b09542db476095604f0
expires: Fri, 23 Sep 2022 13:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 13:00:35 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=12, cdn-cache; desc=MISS, edge; dur=7, origin; dur=107
x-origin-response-time: 107,23.36.79.28
x-akamai-request-id: 394c8b76
X-Firefox-Spdy: h2

                                        
                                            GET /assets/js/xo-gallery-masonry.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: cdn.xopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.83.61
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 13:00:35 GMT
last-modified: Wed, 13 Apr 2022 14:44:34 GMT
vary: Accept-Encoding
etag: W/"6256e1d2-21dbb"
expires: Fri, 30 Sep 2022 13:00:34 GMT
cache-control: max-age=604800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xIMgeAC9ds%2BNzgdLLurMSgYsPBXVvWKzGLzgTz6GY6Ro%2B0e2U4kxaPk%2B7SSVbu3hqvhrRnlDRNDaBtcE2zbEzXaAWGI76XpKgNOYn0fNzUmkedRt0ihZWo5j%2FKjO5ccHxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376caab50b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65392)
Size:   46331
Md5:    c7154a6e900eb0e169d7282fda8645c5
Sha1:   75c9509f747967a0d42b405166566edbec45a5d0
Sha256: 7582a14ffad6709f5c02fb6e40ead31ff1c2f2fb87b36a7e17992e069e91561e
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 788
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209231300344AB62A71AD5902213677
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b8ef990c511ebb99d2a39ecd42c4bbff5d193546ceaff9a485c73c13c16f940db62c31442eaa4aba1167c7329343da6f9
expires: Fri, 23 Sep 2022 13:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 13:00:35 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=38, cdn-cache; desc=MISS, edge; dur=20, origin; dur=188
x-origin-response-time: 189,23.36.79.28
x-akamai-request-id: 394c8b62
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:35 GMT
Last-Modified: Fri, 23 Sep 2022 11:27:56 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /i18n/pixel/identify.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220923130034F32A2C5E487CC754380A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb3db49c777b53f0869cfbbab6a47b28ff0c35215741cfa0d85272019333ccfe2f4fbfe49db4078ac19a5e3b4877dedce7af4af67e7657fc8d1d34fa98e2a01ab9
content-encoding: gzip
x-origin-response-time: 14,23.218.220.146
x-akamai-request-id: c9fa847.394c8a14
expires: Fri, 23 Sep 2022 13:00:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 13:00:34 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-146.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=14, inner; dur=2
x-parent-response-time: 124,23.36.79.28
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   50632
Md5:    d73588a907e45fda74e2cd5a1a89aabe
Sha1:   7358393ad2dc81699e1bc4cab5eed3b38f6b35c8
Sha256: 3c4df0c6d7e7ad586e44b6b25f9f1aad8ef40a182d6e66e5fda7177c5cde891b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /oliver-and-rain.myshopify.com/online_store_script.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: d275fvz7g8rvo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.168
HTTP/2 200 OK
                                        
content-length: 1490
date: Thu, 22 Sep 2022 16:25:23 GMT
last-modified: Tue, 23 Aug 2022 20:25:08 GMT
etag: "d4468686871ab6fd731e0e7300d3cee6"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: URhCHZClJ6YkRYHFTedSwwLeIB-WFupzU4nYNN7ZUSUgaulUQF-qyw==
age: 74113
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (320)
Size:   1490
Md5:    d4468686871ab6fd731e0e7300d3cee6
Sha1:   0a398e5d2c7ffa9e4a526a7d5cf2cfed48e36d3c
Sha256: 023f0fd7215fabb7b6989d36e1240ab46e9e6b78d1fef66ad3d7bc7765b423d4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
x-fb-rlafr: 0
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: tx6QTX9X2c9BIrhTswbQN6v+PGz7r5m9nG+buf8d0DRr1DX8GSiVFsILAglYfSTnyId2I6T+a5gt4D2ROT4BHw==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Fri, 23 Sep 2022 13:00:35 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26839
Md5:    9ecd89752214ef749272eef344b9089a
Sha1:   70a58a49c08934265ee34c74efb01d6b3124095d
Sha256: f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 23 Sep 2022 13:00:35 GMT
expires: Fri, 23 Sep 2022 13:00:35 GMT
cache-control: private, max-age=3600
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15693
Md5:    890f716858b5f72587e47c5eca121cb5
Sha1:   91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
Sha256: 7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
                                        
                                            GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.234
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 02:30:15 GMT
expires: Fri, 22 Sep 2023 02:30:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 124220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32077)
Size:   33951
Md5:    fd2b58574f9637ba7ef639267349d848
Sha1:   6eda5ea93f549ceb5693f6f1c038893fa56a510d
Sha256: 75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:35 GMT
Last-Modified: Fri, 23 Sep 2022 11:27:56 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/Ocnq7IXmpds HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-111676764-1&cid=795552180.1663938035&jid=429543739&gjid=432114151&_gid=1339675848.1663938035&_u=YGBAgEABBAAAAE~&z=514746721 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://oliverandrain.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 23 Sep 2022 13:00:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /A2850262-318e-4873-b419-80f89f6173ec1.js HTTP/1.1 
Host: utt.impactcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.249.72
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdsNv4Wt_-acB9y0y1x480mIBHS9txw9gwaaf2WGaof0IfiedpFA45F4W0HFgib98EILYI0tFrW05PgMdaj-ogcAcw
x-goog-generation: 1656052551398067
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13158
content-encoding: gzip
x-goog-hash: crc32c=rXQW1Q==, md5=6CJ3ZXUKbGaK8/5SqKpUgQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 13158
server: UploadServer
date: Fri, 23 Sep 2022 13:00:35 GMT
expires: Fri, 23 Sep 2022 13:05:35 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Fri, 24 Jun 2022 06:35:51 GMT
etag: "e8227765750a6c668af3fe52a8aa5481"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (42749), with no line terminators
Size:   13158
Md5:    e8227765750a6c668af3fe52a8aa5481
Sha1:   dab7421d5f3dc125a5d03e8c07d436821ba6fea9
Sha256: 08c0181da1afac1cb3c778feb57ec96c451eeb4fda14cacde2a076b988afd802
                                        
                                            POST /s/gts1d4/Ocnq7IXmpds HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   34459
Md5:    77e698eba2026915850cb7ab0c15c786
Sha1:   a30ed365471835c798456a9f86f430c0b2e9f88e
Sha256: 3ba9cd8635a7dcc3301b9c7571d433724c8f07cdf066b75fbc4103269f8b9dc7
                                        
                                            GET /async/preload/edaee91939318eb0748f983d887f1486.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: d2z0bn1jv8xwtk.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.54
HTTP/1.1 200 OK
                                        
Content-Length: 383
Connection: keep-alive
Last-Modified: Wed, 15 Dec 2021 16:27:01 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 23 Sep 2022 13:00:36 GMT
Cache-Control: max-age=86400
ETag: "2e0f558b69a92515ebef37b8705ee4fc"
X-Cache: RefreshHit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p9zThjzieT1niJspdBwfI1-73jbMn54xk3BfZGIpy9P_xTtryxhB_A==


--- Additional Info ---
Magic:  ASCII text
Size:   383
Md5:    2e0f558b69a92515ebef37b8705ee4fc
Sha1:   a465cc352826455cde586ae70bb6ffade15d3e20
Sha256: 2dc2689da0d65eccb1bf2c63b14458a3a50e3a6b7ae64f0f471f794a1d3a9c5f
                                        
                                            POST /e?v=4.16.5_0de3c966c0&pd=https%3A%2F%2Foliverandrain.com%2F%3F_kx%3DxhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%253D.YnabTx&u=4664ef57cb5e40b5b05f13331076d84c&c=oliverandrain&ceid=A0c&lt=1663938034878&tag=modern&cs=2707048828&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1663938034886 HTTP/1.1 
Host: events.attentivemobile.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         104.18.15.235
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 23 Sep 2022 13:00:35 GMT
content-length: 0
x-envoy-upstream-service-time: 3
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74f376d30d10b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /tag/4-latest/unified-tag.js?v=4-latest_3b93675d1a HTTP/1.1 
Host: cdn.attn.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.59
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 22 Sep 2022 00:23:19 GMT
x-amz-version-id: 01qC9tvhn5J.GvgDVvYztsrzSqxZKxEW
server: AmazonS3
content-encoding: gzip
date: Fri, 23 Sep 2022 12:56:03 GMT
cache-control: public, max-age=300
etag: W/"990cbbaecaf586833483a3d852d1f9ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r-zF8dxZrjeA7AFV_k6b2XWhunWTQ02Hid1EBt4YGYA4DFUMx-1Bjg==
age: 278
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   30887
Md5:    58ad1ce07a80c32abf7916b2fba1a189
Sha1:   0e99a6b60fc8733aae3a20947d2e83d4434be58a
Sha256: 4a82c3b9f8c50b19f7cee70cabe925acd3c070c297bbc1946db353080c4ea8b4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:35 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 02:29:48 GMT
Expires: Thu, 29 Sep 2022 02:29:47 GMT
Etag: "c0396ca6892b96a676391690d7deb5be2e8e9539"
Cache-Control: max-age=479951,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f376d369d8b503-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:36 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 02:29:48 GMT
Expires: Thu, 29 Sep 2022 02:29:47 GMT
Etag: "c0396ca6892b96a676391690d7deb5be2e8e9539"
Cache-Control: max-age=479950,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f376d50c28b503-OSL

                                        
                                            GET /growth-tag-assets/client-configs/oliverandrain.attn.tv.js HTTP/1.1 
Host: cdn.attn.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.59
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 0
last-modified: Mon, 17 Dec 2018 20:59:49 GMT
content-encoding:
x-amz-version-id: kGJjc2HxNgGNuk_7UqP1h9o.liqWLb8I
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 22:54:20 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Kau-0eSwtj0g0Ar0xOowY4JGLLmLJjOCpT5tjM9HqFZKeKVRle8TA==
age: 50778
X-Firefox-Spdy: h2

                                        
                                            GET /oliverandrain/dtag.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: cdn.attn.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.59
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:36 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 03:13:46 GMT
etag: W/"e99e0a7e89c10a4495ff0d3ed521d72c"
cache-control: public, max-age=120
x-amz-version-id: .5eXBW03wL86opZWIvWBQY22WQ92wUSy
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h9_K0mb25xlz-3qphO7Q0xX1u6R2N0QSax7gJ1r6bk8qtWfctUiZ8A==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8876), with no line terminators
Size:   3726
Md5:    c25ad9247374fbaf45ca55a4023b8e65
Sha1:   857ee3650ec14fb67b83f7df9f9c58e6f6056b0b
Sha256: d6583e0933a2a017a40e6b24fc6a0cc51142ec04da0aa2a164e7784ef5d03655
                                        
                                            POST /app/public/discounts-combine/new-discounts-combine.php HTTP/1.1 
Host: thanhhd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 334
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         108.61.217.122
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Fri, 23 Sep 2022 13:00:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   34219
Md5:    a6bb03f38f8cbc39bb54616981bd2e3c
Sha1:   77ec438b19a7db6b8f56be8ee2f1268e36f19af8
Sha256: 364396155eebc0454a2a29f2d4d89742ed91b6d774a9dc901c40af37a19f6684
                                        
                                            POST /unrenderedCreative?v=4.16.5&r=&id=4664ef57cb5e40b5b05f13331076d84c&pv=1&l=https%3A%2F%2Foliverandrain.com%2F%3F_kx%3DxhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%253D.YnabTx&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms HTTP/1.1 
Host: oliverandrain.attn.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://oliverandrain.com
Content-Length: 29
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.6.131
HTTP/2 204 No Content
                                        
date: Fri, 23 Sep 2022 13:00:36 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
x-envoy-upstream-service-time: 3
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74f376d5cb6cb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /async/main/8ede0252489ca2896e0a30b4afeb9d334cc908a7.js HTTP/1.1 
Host: d2z0bn1jv8xwtk.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.54
HTTP/1.1 200 OK
                                        
Content-Length: 24564
Connection: keep-alive
Date: Thu, 08 Sep 2022 00:58:14 GMT
Last-Modified: Wed, 15 Dec 2021 16:27:01 GMT
ETag: "0d8955c81e88adcb4a9822375bf8df56"
Cache-Control: max-age=86400
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: C6euzbwpqinh4XLqtdGO7uiOA0qy61zGnoKVt8U9KGGS6cDZF7n-WQ==
Age: 1339343


--- Additional Info ---
Magic:  ASCII text, with very long lines (24564), with no line terminators
Size:   24564
Md5:    0d8955c81e88adcb4a9822375bf8df56
Sha1:   8ede0252489ca2896e0a30b4afeb9d334cc908a7
Sha256: bdaf83e1a7658b6aff4656e3fe1a2f18f718d8371eaf8d4df00cc978f6e2e105
                                        
                                            GET /j/roundtrip.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 21:24:31 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: Vddx38ZQKv1IbZ14KTosCACMGBmCuRF1
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 23 Sep 2022 12:22:41 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"ce41fb88f59dfd9edbd6253effb535a4"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 2276
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pvm49Vnz8cifd5Qc9Fe8DvPEi35i22RtDQzdgEb-hc7wIjADR3ajkw==


--- Additional Info ---
Magic:  ASCII text, with very long lines (1096)
Size:   16917
Md5:    cdc1509b78fb548643392a6919a4ad6f
Sha1:   6fdf59e351a2e7fade5eeb661a0871ea12db0a7b
Sha256: 58c2118995d5680b9d664ef499babf4b1b7fff2ec59a9bf56eabebe8fde5b4dd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/382247578/?random=1663938034682&cv=9&fst=1663938034682&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Foliverandrain.com%2F%3F_kx%3DxhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%253D.YnabTx&tiba=Organic%20Baby%20Clothes%20%7C%20Oliver%20%26%20Rain&auid=746460429.1663938033&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.162
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 13:00:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1110
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 23-Sep-2022 13:15:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1333
Md5:    62c0f31c99e3ab65f1102519287320fc
Sha1:   735ccdf8beab2d61fd9b22b26d95fbf4a046f966
Sha256: 542e648eeddfa979a1c62038ecbbe23aab3e33bde67a579bf92b244d68f745eb
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-111676764-1&cid=795552180.1663938035&jid=429543739&_u=YGBAgEABBAAAAE~&z=1353888323 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 13:00:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /j/exp/WXGGPPV5UZBDTCDHXBY4TY/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
                                        
Content-Length: 0
Connection: keep-alive
Date: Thu, 22 Sep 2022 20:49:28 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 58269
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yWQtvqOYiTkBXGjf-lPXGFcvt1rX3mdRATERTEVafDSX0M9ZQbU4sg==

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Fri, 23 Sep 2022 13:00:37 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 22 Sep 2022 23:17:16 GMT
Expires: Fri, 23 Sep 2022 23:17:16 GMT
ETag: "a7c2b4a768e87f3b035ea3e4405479d07317afee"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    c5a0c42ca46cc6993a1af7f1a9366f03
Sha1:   a7c2b4a768e87f3b035ea3e4405479d07317afee
Sha256: 390895681ff9a7fe4a653467f343c86c37c1d0b9e07b33abf62792fadb0e9a93
                                        
                                            GET /j/exp/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 17:25:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: VS8aSrwndm.MeiNnyJ10ruHH56v74CIF
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 23 Sep 2022 02:46:41 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 37467
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Rv5u_zWSVMAAyJmLfGAWf0mYFqlkypKWMtYP9a0dlHMNbl16M628eQ==


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   28
Md5:    5816cced8568d223aa09d889f300692b
Sha1:   95cab5e474d7391762c3da5c7dc50fcf05df529f
Sha256: f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
                                        
                                            GET /j/pre/WXGGPPV5UZBDTCDHXBY4TY/JQJF7VQ4SFEIXGN4X3HZJC/fpconsent.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
                                        
Content-Length: 0
Connection: keep-alive
Date: Thu, 22 Sep 2022 20:49:28 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
Age: 58269
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a8R2bxzTzxyiLFlnmwYdebURZzgsvfyRR9BDCaGwhN6eKB5dntHDEw==

                                        
                                            GET /j/pre/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 22 Sep 2022 21:45:50 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 54926
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y1-hQ14pkYbjL692qaNn2WX4-QESo7_GQJx2fcvnOGJxBipZRdiTHQ==

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tr/?id=873491332831983&ev=PageView&dl=https%3A%2F%2Foliverandrain.com%2F%3F_kx%3DxhC7XNbMiJ9QVuJRpWcisPQCjupFKGrcGLRzEybeKHY%253D.YnabTx&rl=&if=false&ts=1663938035996&sw=1280&sh=1024&v=2.9.83&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1663938035995.909536151&it=1663938034678&coo=false&eid=6a6f81a9-665E-43E1-B5F5-2FF3EB5BC28C&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Fri, 23 Sep 2022 13:00:37 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 107343
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64471)
Size:   244156
Md5:    4ea74090bcb9dc94f4da7633173c2365
Sha1:   df662ccee3174a433b28cafd305e057faeb5bea6
Sha256: 08698ea8b21dffe511d34d5b9fe946cb808c354cfdd247fbc54d06507500ee28
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 13:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 13:00:37 GMT
Last-Modified: Fri, 23 Sep 2022 12:20:54 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0rJXfhlRto9h85iy6CnI0kfJF-5j-lWNG9n5Hpo3TAl2C_YDYyWtPw==
Age: 2384

                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 360957
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:35 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (437), with no line terminators
Size:   437
Md5:    c678a21c7e12113ec8672a9ac934d441
Sha1:   6abed01b37be978f2976e49f6f1488c84003f04b
Sha256: 2e841b91c32a6a48ae4cc4e423f3fdcf0d7d9d2545c84c0f037f3da5bb38ab21
                                        
                                            GET /j/consent_tcfv2.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 19:41:48 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 44sIT20LqRj70wQHqyIoOw7etYYdjkbK
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 23 Sep 2022 12:58:16 GMT
Cache-Control: max-age=300, must-revalidate
Etag: W/"0a7d0ea8d7d31b07e925fe340acf431b"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 142
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Tk8SlBWrPTOWfA8yF9unVHc_W6x3g0rKhHYZdC9oa-DGpASdMNnKig==


--- Additional Info ---
Magic:  data
Size:   55459
Md5:    c1470373359fa428983cbffcdb9c45e0
Sha1:   fa8b0350ff81601dbd3c29d147ccc9b143f6e834
Sha256: 604a98f4c6b96a60941166774a028082e2d425b7769360dfed6f237932cacae0
                                        
                                            GET /i/favicon/nextroll-32x32.png HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1615
Connection: keep-alive
Last-Modified: Mon, 28 Jun 2021 18:19:21 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: eTpwxbAIDHDUN.4tfrROIgU_pzKN9Xh0
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 22 Sep 2022 21:55:12 GMT
Etag: "403a0a7dcf2d617e7ea852bfb9d11945"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 54334
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8OqmegVW8AB04Lx_XlO0_ew_s13RjjkPT1NSloepEdRGgko9xiw7cQ==


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size:   1615
Md5:    403a0a7dcf2d617e7ea852bfb9d11945
Sha1:   c4b81037ee9e0fb2543b806193112811459ea199
Sha256: bcaf0e3f087296133e0a996ee3d289a8d1a690147c93e0ab62019b505e6f9355
                                        
                                            GET /j/pre/WXGGPPV5UZBDTCDHXBY4TY/JQJF7VQ4SFEIXGN4X3HZJC/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 16:26:39 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: AdRc72he6T_hbkxYdrGWpbsWP3WMLIay
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 23 Sep 2022 13:00:38 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"33ed216ef4569e95a97e55fb39d91d38"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: RefreshHit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: G8n7jE_exNnuOf2QpOFh-TasrQSklFGOHcoV3mUUhkTgS-FnIYfSVw==


--- Additional Info ---
Magic:  ASCII text, with very long lines (531)
Size:   1812
Md5:    3d34b16e6752e641a0b74171aacbc857
Sha1:   4fc84124835bcef8bfca544f80913eda4e52232a
Sha256: 1377dd2286e025d42906dee7e217cfd9ffea080b82527077e08a7ec7d867cbfe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea09a2e-db97-4846-b5c4-9bc0e69977bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13000
x-amzn-requestid: 7b2f1a90-cedc-403b-bdb0-f763b5bef824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2VOWGHXIAMFzXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c025b-74a08e472ef8b1227c0447e3;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 06:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l_CJpV9GPUzzbt8msOu-qQdwK9-vP5S-nHsgRPpwbue0Mf6FiBrEQA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
etag: "06f5f63e681d711bd68626805c5dd2b902ebf9cf"
age: 62679
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13000
Md5:    634db5bfe2b27e608c3f3518b0c44ebb
Sha1:   06f5f63e681d711bd68626805c5dd2b902ebf9cf
Sha256: 935d3442ed37fe78df5fe40fac87ca00466a3e19ef3c72a80dae17ffbcacd45d
                                        
                                            GET /shopifycloud/shopify/assets/shopify_pay/storefront-c3e4eac7336b5ab7e89c5cd0db5100f5ba2e4b3a27e2f359bfcd7a8f59232a09.js?v=20220906 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c3e4eac7336b5ab7e89c5cd0db5100f5ba2e4b3a27e2f359bfcd7a8f59232a09.js>; rel="canonical"
server-timing: imagery;dur=20.930, imageryFetch;dur=20.693
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3195bedc-b275-43be-a503-e892735edbc7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 08 Sep 2022 20:04:18 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pr9Lg%2BLAqJdRWx%2FYGohzjvQP%2Bl%2FcY6%2FY4mhWQRZmEef%2FL6dIVu9IAiyEDgT3PTyffLjbG%2BoN%2BfB0ecU00D2TTZAuJUI5xL758nWCCb%2FTUhVhyqSAxOzGdH75HARPoRmBYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53d3ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/component-rating.css?v=24573085263941240431652856866 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/component-rating.css>; rel="canonical"
server-timing: imagery;dur=147.937, imageryFetch;dur=146.925
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0629ded9-62d3-449b-95c6-07ab4370d87f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 02 Sep 2022 08:41:01 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2Bgrce4KEx13Bvp%2Fcg0x3R0LEHT5efcaesTLwHYzjC2XMtheUGDKTOrF9dnIQTyGjWsSqDajeqxJtF4dPpEy6DDPhiCJbpM86E%2B7KFuzkBd3RzcXJ52mbnAW%2FL8Xmh9cSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5395bfac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/cart-notification.js?v=146771965050272264641652856842 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/cart-notification.js>; rel="canonical"
server-timing: imagery;dur=77.871, imageryFetch;dur=76.664
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f2499620-0aca-4670-b5ab-94424eabcada
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 00:01:48 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1uzkvX4S42szqHQi6anVsv0h5LtZdCD6VZ4e8tkgWKSMmIG0NqFKjX9emVF4Nt0zzuSKERfSk%2BEenLv2844Cp7lanV9bsyyetG49B6YtWgwzAnR8C%2Btw4tPH2Oma%2BjnHEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5899cfac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 277
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:34 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/sfxpz7gf/a/etarget/p.gif?label=EDAEE919-3931-8EB0-748F-983D887F1486uuid=f5392995-0e3a-4dd2-bcbb-18fb49691302 HTTP/1.1 
Host: p.alocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.33.198.133
HTTP/2 302 Found
content-type: image/GIF
                                        
date: Fri, 23 Sep 2022 13:00:37 GMT
server: nginx/1.18.0
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
set-cookie: uuid=f4dfcfba-8a2e-41e6-a74c-85cef6c5bdc8; domain=.alocdn.com; path=/; expires=Sat, 23 Sep 2023 13:00:37 GMT; secure; SameSite=None
location: /c/sfxpz7gf/a/etarget/p.gif?label=EDAEE919-3931-8EB0-748F-983D887F1486uuid%3Df5392995-0e3a-4dd2-bcbb-18fb49691302&tdc=1&url=https%3A%2F%2Foliverandrain.com%2F
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 358456
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:36 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js>; rel="canonical"
server-timing: imagery;dur=16.984, imageryFetch;dur=16.819
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 771fb89a-7b18-40f0-ba71-4fa98b5866f9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 26 Aug 2022 01:56:14 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BuzjQiuhQCOxKtNdlF8HaK%2FEY3jrpe1o%2FSxFYFGpHJHS3v2WxebVml4TM5aJEew47%2BPaIdO3lC66HIfL1VWV3QwI%2FsyDrBx8dwM%2BxNgV%2FL6DJ1VFUv1OOxqbZDY%2BVo0wHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c56d79b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/component-slideshow.css?v=87432719022228681551652856870 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/component-slideshow.css>; rel="canonical"
server-timing: imagery;dur=81.454, imageryFetch;dur=80.402
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ecfce3f-065b-49e5-94fa-875a77aa25c0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 01:39:59 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7jeLsyqhSgImvGaMIOVzAAUEIiX0URJVQLwNRAffG6Gl93f%2B4jn4GYrMse8VSY3PCndNLYw3X8cOsqfGTmQnYwcuP6WOLJ3D9lkTlw0HVrcVj9O%2BfqcIp%2FZ66EZXoVmDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53957fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/details-modal.js?v=4511761896672669691652856868 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/details-modal.js>; rel="canonical"
server-timing: imagery;dur=124.321, imageryFetch;dur=123.527
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ff9f8c63-1b74-4716-b3d0-0a93a9e6e304
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 00:56:16 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MFhT2FQdezmO96e31C9jw2Mk66M6nnsCdHUEM6e%2BoALJWUYbp%2FHMWYHZym9PPgTW%2FM7DMqTL2g0GgTKYx3IxRBNltywWr5xgAg0GDsJctEs5QakwnO9nUY4bmWicfUilKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53954fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /react-src/static/css/main.min.css?rgn=548069 HTTP/1.1 
Host: api.fastbundle.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.164.11
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
last-modified: Thu, 22 Sep 2022 13:10:35 GMT
etag: W/"632c5ecb-1ff"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XiiIYo%2Fib%2BASkh5xP5d01urYBJT7kOqJdxij3CR9MN6SiKipVQtKIz2TUXiq%2BNaPw41zYpbu%2FteKpT2DxVKh7AmCsGDQmihmud%2FFF%2B%2BwI77E%2ByE2z7FlRPJCCeH9Hp5HfnBs8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f376c5bb731c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /xur/13878 HTTP/1.1 
Host: oliver-and-rain.pxf.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://oliverandrain.com
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         35.201.76.231
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
access-control-allow-origin: https://oliverandrain.com
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 23 Sep 2022 13:00:35 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=b71f8da5-3b3f-11ed-8f3a-a33daf96dfc9; Domain=.pxf.io; Path=/; Secure; Max-Age=62208000; Expires=Thu, 12 Sep 2024 13:00:35 GMT; HttpOnly; SameSite=None irtps=1; Domain=.pxf.io; Path=/; Secure; Max-Age=86400; Expires=Sat, 24 Sep 2022 13:00:35 GMT; HttpOnly; SameSite=None
date: Fri, 23 Sep 2022 13:00:35 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 3880
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:36 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 18255
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:37 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/component-card.css?v=72805245582035824971652856868 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/component-card.css>; rel="canonical"
server-timing: imagery;dur=85.065, imageryFetch;dur=83.769
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0f746b47-0a34-4351-9551-9454a1ea3384
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 02:02:45 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4yruP%2Be9fcmLkV2QtcHJSKe8vn9rIF8Pj7zSlYRec0AQvbiaLDQt1pvG1b6giDTDOCb9pnE9LtegZsRD6Ess9fGenXdpA2WlUPvjGvgpneXnAjTEWFFnwuZ015k4Jw4EuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c53959fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /skeletopapp.js?shop=oliver-and-rain.myshopify.com HTTP/1.1 
Host: formbuilder.hulkapps.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.73.117
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
last-modified: Tue, 23 Aug 2022 09:12:49 GMT
etag: W/"63049a11-fa7"
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zsSddhSHMSL9DPcMPSjfcQIknmE%2BgOUQzT8VrySlFWVzNmzHny9BKBFOJXvsuUDfg9ngqHbtP1gr%2FecCxiEXpCqqIn6Usgni5bA%2Fkp1Af6Hpi8eFFgRyULihaeWErdKCqJNtpSZft1ZuLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f376ca1ee0b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /json/ HTTP/1.1 
Host: geolocation-db.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Origin: https://oliverandrain.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         159.89.102.253
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx/1.14.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:34 GMT
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /react-src/static/js/main.min.js?rgn=548069 HTTP/1.1 
Host: api.fastbundle.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.164.11
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
last-modified: Thu, 22 Sep 2022 13:10:35 GMT
etag: W/"632c5ecb-2de7f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3R18JntX1LKhiwVTg1oPdLJHlC4ro4ZEtmF5sXPRBQR3ylE0qPyLU2N%2BFxUZCLrycTAfBhg%2FPRnnfSIUiTAyXinB4UfWQBbmdvRLJq7bIzFPfUwnLbldVlHG0lzByqCSfPL6Tg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f376c5dbc41c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /d/?attn_vid=4664ef57cb5e40b5b05f13331076d84c HTTP/1.1 
Host: oliverandrain.attn.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Origin: https://oliverandrain.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.6.131
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 23 Sep 2022 13:00:36 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74f376d2ff7ab50b-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 221
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:40 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /pay/session?v=1 HTTP/1.1 
Host: shop.app
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Origin: https://oliverandrain.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.227.38.33
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Fri, 23 Sep 2022 13:00:34 GMT
x-sorting-hat-podid: -1
vary: Accept-Encoding, Accept, Origin
access-control-allow-origin: https://oliverandrain.com
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-frame-options: DENY
x-robots-tag: noindex
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' 'unsafe-inline' blob: https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; img-src 'self' https:; font-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com; object-src 'none'; frame-src 'self' https://*.shopifycs.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com
set-cookie: _pay_session=GbfaPActkVRl%2B78cn%2FE3%2FZMwyuQIkFPWrMYYti1XtHH%2BF2U9f7mXu0De82Y0%2F2a3Gb0lklDpQrrl2qG90kfEL41kdAG4kv0ASVO278rlIztx8bMcuPmqW4u9njYrcl%2F7FPMpnmAqr%2ByYiYvDgmstbsaY68ikkoCH9bg3pN%2FOFUFm6UXgDFuoRQNP8A0GWY%2BeTz3h0w%3D%3D--i0U%2BB%2B0X4sOhLGdJ--DkVyvZWMXD2OO%2FiUv%2B9M%2BA%3D%3D; path=/; secure; HttpOnly
x-request-id: 1c07965d-5dff-48e2-9a71-60ad0eba966e
x-runtime: 0.004388
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xLvw7NgkdFmCda054i763nWP3tfmBGIU9jQWlmrmjYesvvEItmLSuDUj8Hh83%2FL%2B1hWHInZsSjLpKJ%2FkrZyTqMcEPhNfbI0Mrtp7M6nrRnd8vkkL2ppCtAEb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c85bebfac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0563/2022/9544/t/19/assets/section-footer.css?v=83777583229853969691652856875 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/2022/9544/t/19/assets/section-footer.css>; rel="canonical"
server-timing: imagery;dur=109.022, imageryFetch;dur=107.530
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6b034c19-1a5b-4e90-b210-a1e33508ed24
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:34:59 GMT
cf-cache-status: HIT
age: 249387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cJ7QVtcnS3TjBG3%2Ft4voGngN%2BlE5bVGPLlwgX8ynaLoBXCRuseXMgfBIvGNTN74uixgLbnRZuRX0DHs1KczJXdi7T0cY%2FlJi%2F0O2HEqScW%2BT7xIeDXUiA0O7gQb%2Ba0Qx5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f376c5395efac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/sfxpz7gf/a/etarget/p.gif?label=EDAEE919-3931-8EB0-748F-983D887F1486uuid%3Df5392995-0e3a-4dd2-bcbb-18fb49691302&tdc=1&url=https%3A%2F%2Foliverandrain.com%2F HTTP/1.1 
Host: p.alocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Connection: keep-alive
Cookie: uuid=f4dfcfba-8a2e-41e6-a74c-85cef6c5bdc8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.33.198.133
HTTP/2 200 OK
content-type: image/GIF
                                        
date: Fri, 23 Sep 2022 13:00:37 GMT
server: nginx/1.18.0
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
set-cookie: uuid=f4dfcfba-8a2e-41e6-a74c-85cef6c5bdc8; domain=.alocdn.com; path=/; expires=Sat, 23 Sep 2023 13:00:37 GMT; secure; SameSite=None _ep=1663938037; path=/; expires=Fri, 23 Sep 2022 13:00:37 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /pixel HTTP/1.1 
Host: pixel.retter.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oliverandrain.com/
Content-Type: application/json
Origin: https://oliverandrain.com
Content-Length: 19865
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.88.5.229
HTTP/2 200 OK
content-type: text/plain
                                        
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 13:00:39 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /scripts/service.js?shop=oliver-and-rain.myshopify.com&rgn=548069 HTTP/1.1 
Host: api.fastbundle.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oliverandrain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.164.11
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 13:00:33 GMT
last-modified: Sat, 17 Sep 2022 15:27:49 GMT
etag: W/"6325e775-d10dd"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lztiIAdSNUnVqGBRNUEjYvQRGXAmEdccF%2B4QUXF%2BmBgApv3zgBdH6YjUn0n8zDsEQkJebSSkn6UdihPw%2BNtZRuuAdU5BRhGxhED2zlAB9hKfjEjGHjXOhQ1FigohP5FTxof%2B8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f376c5fbe01c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---