Overview

URL rayn9960.wixsite.com/upholdlogin
IP199.15.163.155
ASNWix.com Ltd.
Location United States
Report completed2022-09-27 18:20:40 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 rayn9960.wixsite.com/upholdlogin Phishing
2022-09-27 2 rayn9960.wixsite.com/upholdlogin Phishing
2022-09-27 2 rayn9960.wixsite.com/upholdlogin/_partials/wix-thunderbolt/dist/clientWorke (...) Phishing
2022-09-27 2 rayn9960.wixsite.com/upholdlogin/_api/v2/dynamicmodel Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS frog.wix.com (13) 5452 2016-04-07 19:33:42 UTC 2022-09-27 09:10:54 UTC 107.21.25.69
mnemonic passive DNS ocsp.sectigo.com (3) 487 2018-12-17 11:31:55 UTC 2022-09-27 15:13:10 UTC 104.18.32.68
mnemonic passive DNS www.wix.com (1) 18092 2012-12-26 17:13:41 UTC 2022-09-27 08:20:43 UTC 199.15.163.128
mnemonic passive DNS static.wixstatic.com (1) 5648 2013-06-07 16:55:33 UTC 2022-09-27 05:46:05 UTC 34.102.176.152
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 13:22:33 UTC 34.120.237.76
mnemonic passive DNS rayn9960.wixsite.com (5) 0 2022-09-27 05:16:56 UTC 2022-09-27 18:20:25 UTC 199.15.163.155 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-27 12:08:14 UTC 93.184.220.29
mnemonic passive DNS siteassets.parastorage.com (2) 6331 2018-06-12 13:05:15 UTC 2022-09-27 05:46:05 UTC 151.101.85.91
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 35.163.147.190
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 14:55:40 UTC 143.204.55.35
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:52:25 UTC 23.36.76.226
mnemonic passive DNS static.parastorage.com (17) 5943 2017-10-08 09:28:46 UTC 2022-09-27 16:13:10 UTC 151.101.85.91
mnemonic passive DNS ocsp.globalsign.com (2) 2075 2012-05-25 06:20:55 UTC 2022-09-27 05:00:30 UTC 104.18.21.226


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 199.15.163.155

Date UQ / IDS / BL URL IP
2022-10-02 16:26:47 +0000
0 - 0 - 0 camsite.wixsite.com/vienasmith177 199.15.163.155
2022-09-29 00:11:17 +0000
0 - 0 - 0 officekuu.wixsite.com/altohouse 199.15.163.155
2022-09-27 18:20:40 +0000
0 - 0 - 4 rayn9960.wixsite.com/upholdlogin 199.15.163.155

Last 5 reports on ASN: Wix.com Ltd.

Date UQ / IDS / BL URL IP
2022-12-06 02:18:57 +0000
0 - 0 - 1 slaveconsultancy.co.uk/ 185.230.61.173
2022-12-05 22:09:40 +0000
0 - 0 - 1 irs-profile-financialpayment.com/ 185.230.61.173
2022-12-05 07:44:19 +0000
0 - 0 - 2 fb-labs.com/ 185.230.63.171
2022-12-05 01:25:30 +0000
0 - 0 - 2 www.correodelmaestro.com/publico/html5022016/ (...) 199.15.163.138
2022-12-04 23:36:53 +0000
0 - 0 - 2 www.correodelmaestro.com/publico 199.15.163.138

Last 1 reports on domain: rayn9960.wixsite.com

Date UQ / IDS / BL URL IP
2022-09-27 18:20:40 +0000
0 - 0 - 4 rayn9960.wixsite.com/upholdlogin 199.15.163.155

No other reports with similar screenshot



JavaScript

Executed Scripts (48)


Executed Evals (1)

#1 JavaScript::Eval (size: 90, repeated: 1) - SHA256: 3cd43d86dbeebf58e30163f3ef7c74c46e2fe76a90d971094e18ef0f07de2883

                                        workaround.getRequireFunction = () => typeof require !== 'undefined' ? require : undefined
                                    

Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /upholdlogin HTTP/1.1 
Host: rayn9960.wixsite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.15.163.155
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 27 Sep 2022 18:20:29 GMT
Content-Length: 0
Connection: keep-alive
location: https://rayn9960.wixsite.com/upholdlogin
strict-transport-security: max-age=3600
x-wix-request-id: 1664302829.5636826902594127372
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVg6ziUdApsXuvLrb25A0tjf,m0j2EEknGIVUW/liY8BLLseIu4dGXwqDk+m1otFKtK9sl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalvY1vypYZ/OUph55M9V/CEQXwAdRo6WzNtNsX7l/CZDt47roueMW2LExEL9f/3OmfA==,2UNV7KOq4oGjA5+PKsX47Cebg/dr1fCoZUOp3aXV2e68ZDY613cHYLbuhNMgAom1,7npGRUZHWOtWoP0Si3wDp94MfOHtAIkmxdX9Nr5vS+w=,xTu8fpDe3EKPsMR1jrheENU3Zw0G/MyPN4ZVIKBWL18=,UCXqFoU+MbsWXjA74cRbHWbrV7GsnqUMdzLhOMYrHTTn0JfUFk76wlPKR+LBG9YOfYnMSsnxk+tAw1bXSN7pKA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: TS016e3841=01d72e6d16ee2bbf6dc06db1abf2d439fb246cc6782074d79660434bbe488cd9c75c4aed217280fda749fb6320655930941f1bca16; Path=/; Domain=.wixsite.com; SameSite=none; Secure


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 18:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZtPFGZGYoof-xHDljF1lI9oWHq3FXMn-qUeFBrWC8UBg07aqr7UJ9g==
Age: 299


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6745
Expires: Tue, 27 Sep 2022 20:12:54 GMT
Date: Tue, 27 Sep 2022 18:20:29 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jBq0MRZ8KT-e_2L0gy7gN91Rt5U1BC8c36czocqMhEumQv3vruN-RA==
age: 32176
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 18:20:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 18:20:30 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 12:31:07 GMT
Expires: Sun, 02 Oct 2022 12:31:06 GMT
Etag: "a9c5c34043bb4fa1c163cb1bfbec6555ebe5ce46"
Cache-Control: max-age=410435,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751640eefab3b509-OSL

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 18:10:46 GMT
Expires: Tue, 27 Sep 2022 19:04:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yPgLlVqFoUPu3aHWHUYBdR6y8y7dXeCMmUAZGcLek-MrWFP9uXMVOw==
Age: 584


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /unpkg/react@16.14.0/umd/react.production.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-max-age: 3000
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: W/"63d498e143f421cc44dfb64f22fef270"
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciexeHcfy36aNagyZbZBL0eWIHlCalF7YnfvOr2cMPpyw==,aVxMblM8KFG3we5NLvyVc0g5Kz7nWLaChx0hkFXPsQ8ghGES6Jsix+7j8qfOfk1L
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1660710573.6746456715006120999
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 3603792
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 20820
x-timer: S1664302830.479162,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4703
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (574)
Size:   4703
Md5:    98af04861581703b8f33819f777e19f5
Sha1:   68333056e788b1276646537149661537143ddc8a
Sha256: 9b4dce05c51788fcb566e1b8bbfc8f9df48249035b9d2cb8633011b7bd26c5dc
                                        
                                            GET /services/third-party/fonts/user-site-fonts/fonts/26091050-06ef-4fd5-b199-21b27c0ed85e.woff2 HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/octet-stream
                                        
last-modified: Tue, 17 Apr 2018 11:10:57 GMT
etag: "adefa22d63c85887c8b1a434ccd6afeb-1"
x-amz-version-id: LyS3RoQEhoS65ThKNJ05SMC6e6eU301O
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1663041563.8279727465306123312
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 1408346
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 3422
x-timer: S1664302830.479146,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18212
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Size:   18212
Md5:    f6d461ea1dd535b05e21e1bc477b99cb
Sha1:   09990f428b4c8b3d16fe5420c039ba2b8f9ed270
Sha256: d493e43a39a2c5a022d4a1295f952f22079088c74dece36e94f2f8a760648819
                                        
                                            GET /upholdlogin HTTP/1.1 
Host: rayn9960.wixsite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.15.163.155
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
link: <https://static.parastorage.com/>; rel=preconnect; crossorigin;,<https://static.parastorage.com/>; rel=preconnect;,<https://static.wixstatic.com/>; rel=preconnect; crossorigin;,<https://static.wixstatic.com/>; rel=preconnect;,<https://siteassets.parastorage.com>; rel=preconnect; crossorigin;,
etag: W/"86954e7c9cfa2e684cf66668d38f4253"
content-language: en-US
strict-transport-security: max-age=3600
age: 43418
server-timing: cache;desc=hit, varnish;desc=hit, dc;desc=84
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVjr8KiPMWxMKJyxi9PrDYzt,m0j2EEknGIVUW/liY8BLLrC01ptYXsMHWXBWBuBw+5rJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalpMBxaFp3kL+OZwgo3yklsO0ms/af+LU2HaTcsynIDmI3GX0iPZPKDaH5e7jn73PPA==,2UNV7KOq4oGjA5+PKsX47JdvXMS3AygoHtHdwcGikntYgeUJqUXtid+86vZww+nL
vary: Accept-Encoding
x-wix-request-id: 1664302830.1646827405065230350
set-cookie: ssr-caching=cache#desc=hit#varnish=hit#dc#desc=84; Max-Age=20; Expires=Tue, 27 Sep 2022 06:17:11 GMT XSRF-TOKEN=1664302830|vcYnWcSnLCLV; Path=/; Domain=rayn9960.wixsite.com; Secure; SameSite=None TS016e3841=01d72e6d16b696d1721210a18605945546a31943e97e1338f953a4d8e6ed4be0b3fd4219d1bdca28fe7df171f4bc0318f56a53071e; Path=/; Domain=.wixsite.com; SameSite=none; Secure
cache-control: private,max-age=0,must-revalidate
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (33145)
Size:   123048
Md5:    91c175020e3de5f0efead89e99fa3fe9
Sha1:   bc857bf80e49b730fde49d7e59d1f21fb593708b
Sha256: 454c7b088367dcf975c08c703977e3d1800cc648b54a251820b6d3fce9069273

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2 HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/octet-stream
                                        
access-control-max-age: 3000
last-modified: Tue, 17 Apr 2018 11:11:01 GMT
etag: "ef4257ccfa0fce4d914b23a28aa6fdf4-1"
x-amz-version-id: ZJhEgw5338rDGW18OcyggGHIv4bi5qCO
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjMXxQm1EY0IGoQ+Aul+AXR,aVxMblM8KFG3we5NLvyVc/5LLToOojZxL2HBjY1XAnAghGES6Jsix+7j8qfOfk1L
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1661314701.163749006954913129
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 3155121
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 8586
x-timer: S1664302830.479346,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17216, version 1.0\012- data
Size:   17216
Md5:    fc02a3c78cac0f6ab99c6c19f004d02d
Sha1:   7bcc73042c63c86637084549daad26aed3621d64
Sha256: 0ddce0e617794fd30b60e5c829fe12b9d7eeba14e561e7d89da5fcaf2fe900c3
                                        
                                            GET /services/tag-manager-client/1.427.0/siteTags.bundle.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 25 May 2021 09:37:42 GMT
etag: W/"74b64900831a2e814a8ff0cdedcf80cb"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVcyzve4L4qo9dv8TvlcgmZhMQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1661824722.2696518981706122520
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 2611348
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1330
x-timer: S1664302830.494654,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3858
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11168)
Size:   3858
Md5:    5d436a29345aa2e8c4a824fa19f4ecc7
Sha1:   2b479a24b7f7bc5d556f93a0599bbe7104acf467
Sha256: 242529af773ec259f51763a104f5d5ef45715558d932b1b91ff39680269a783f
                                        
                                            GET /services/wix-perf-measure/1.1042.0/wix-perf-measure.bundle.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Sep 2022 10:21:30 GMT
etag: W/"72cd3e3e90088aa5acd84acd0d7346c6"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciexeHcfy36aNagyZbZBL0eWIHlCalF7YnfvOr2cMPpyw==,aVxMblM8KFG3we5NLvyVc5a79avpR2DZCk9xnuoLql1jPZTuGyYqVhtmEIgJUb4w
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1663237935.0068719354608228454
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 1065449
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1381
x-timer: S1664302830.495203,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11956
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (41116)
Size:   11956
Md5:    eff084a5748e8e0f2a7ec583b470a688
Sha1:   ebbf9733448bb4ce7f5666a8ab387776e721d8f0
Sha256: bc5d488a06103bf405f79c3f7915e4bfd713b27c9cd9406c98e6885e4238b037
                                        
                                            GET /services/third-party/fonts/Helvetica/Fonts/60be5c39-863e-40cb-9434-6ebafb62ab2b.woff HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/x-font-woff
                                        
last-modified: Tue, 17 Apr 2018 11:11:07 GMT
etag: "30bfa073c86da82d47b52b7a0b6ad7cd-1"
x-amz-version-id: W5svUYdYeE8Wa5N08G9xYp0mppomYy9N
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVc0Sqk9+MZwtm2RdjD28LmUcQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1663722627.84715108382391628478
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 743279
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664302830.489957,VS0,VE1
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41912
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 41912, version 1.0\012- data
Size:   41912
Md5:    d8c0392b3457463203e1b2626d6afcb8
Sha1:   2920e91b1e6ad09a5e10cd3ac4505dd51632acba
Sha256: 50ad4a31758eb64034f919ee807237c096849b68ad59a02b7c8c2d0b5b9e3ab3
                                        
                                            GET /services/wix-thunderbolt/dist/main.c5638ec5.bundle.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 21 Sep 2022 17:27:36 GMT
etag: W/"df358bd040d73452ae279d3653cdeafc"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjMXxQm1EY0IGoQ+Aul+AXR,aVxMblM8KFG3we5NLvyVcz/fYSfKbw6+xesuKQMt4UgghGES6Jsix+7j8qfOfk1L
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1663824217.16495813882154021883
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 518181
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1381
x-timer: S1664302830.495644,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 46872
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47703)
Size:   46872
Md5:    f615a48c63f72ced1ffaa88c693949a3
Sha1:   48ba587ee3598ef2e6f3f1fbe6d277a8b069b93e
Sha256: ef37ba0b0cda23655a8befab2c3fb237c1782970dd96f79a32337545b1ded10e
                                        
                                            GET /unpkg/react-dom@16.14.0/umd/react-dom.production.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-max-age: 3000
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: W/"c5abc87541fe6bb0f43f22af475a8b20"
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: MISS
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjMXxQm1EY0IGoQ+Aul+AXR,aVxMblM8KFG3we5NLvyVc5a79avpR2DZCk9xnuoLql1jPZTuGyYqVhtmEIgJUb4w,2iuX5LYwvZa9CoGaG8ZUZvXUmO4KBKqzjgIswcHRALzRCwr84Nz1VO5QQDgRekZ8
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1660319648.637600530053453129
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 3983181
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 20912
x-timer: S1664302830.493190,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 36048
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (682)
Size:   36048
Md5:    c88aca3ce8fd7ec85ff55d835e476dcc
Sha1:   66f5f5ddcff30e3b7425ca4995c27ab19fee025f
Sha256: c2c5ce710d0420daa825ffff8ade4628c84ab0dad9c066d356e91c47f5dec485
                                        
                                            GET /unpkg/lodash@4.17.21/lodash.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sun, 21 Feb 2021 02:37:42 GMT
etag: W/"9becc40fb1d85d21d0ca38e2f7069511"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjMXxQm1EY0IGoQ+Aul+AXR,aVxMblM8KFG3we5NLvyVc5a79avpR2DZCk9xnuoLql1jPZTuGyYqVhtmEIgJUb4w
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1661228868.541712333382513129
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 3150187
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1774
x-timer: S1664302830.499316,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25102
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4143)
Size:   25102
Md5:    9661f391f69ddbf1e8bbf879c1c69660
Sha1:   60e78567cd82d5dec158be4ae4d365f45412fb36
Sha256: 59fe3fa5daacb2b18c734a563d4e8e9df1f51eb24672249ca4962f3132149191
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1911
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 18:20:30 GMT
Last-Modified: Tue, 27 Sep 2022 17:48:39 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 18:20:30 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 22:33:44 GMT
Expires: Sat, 01 Oct 2022 22:33:43 GMT
Etag: "10fb03500d75170536343086030060567a7c6f5c"
Cache-Control: max-age=360192,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751640f1ff1ab509-OSL

                                        
                                            POST /ca/gsatlasr3dvtlscah22021 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 18:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "5D769D23C06425A4BE670EAF8A0AA322F8DF6D97"
Expires: Wed, 28 Sep 2022 05:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1830
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751640f36ebfb523-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    69ade453aaf3e9bbe420b34473368218
Sha1:   49f9b0803933241b1e9f6e0f4429794a774b9beb
Sha256: c9b79e0de92711210ae0edfa685aa9414e456d658c839f0572ebc7c683056c87
                                        
                                            POST /bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84&microPop=84&is_cached=true&msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&session_id=e38960a5-a877-4f45-9814-06aedb66b460&ish=false&isb=false&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&caching=hit,hit&pv=visible&pn=1&v=1.11033.0&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&st=2&ts=47&tsn=828 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            GET /pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214bcded7-0066-7c35-14d7-466cb3f09103%22%3A%22222%22%7D&beckyExperiments=specs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.loadHighQualityImagesAboveFold%3Atrue%2Cspecs.thunderbolt.carmi_simple_mode%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.maskImageCSS%3Atrue%2Cspecs.thunderbolt.chat_landing_page%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.1824.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&fileId=5bb698cf.bundle.min&freemiumBanner=true&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&module=thunderbolt-features&originalLanguage=en&pageId=f4d26a_5b67c72b0cadc849ba171c098db9fdf5_12.json&quickActionsMenuEnabled=false&registryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.9660.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.9660.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.233.0&siteId=7274c3aa-39d5-49b4-a903-d0277f7970e1&siteRevision=12&staticHTMLComponentUrl=https%3A%2F%2Frayn9960-wixsite-com.filesusr.com%2F&useSandboxInHTMLComp=true&viewMode=desktop HTTP/1.1 
Host: siteassets.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-expose-headers: age,via,x-cache-status,X-cache-status
etag: W/"39f8-jZDAIPEakqHQvMa1Dr96fXgLcEY"
content-encoding: gzip
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR377Ji1Fj75RrqDfb1RLKWox8,/SoSYmefJLK2hiZpy2XaYlN1tYMUtM33SkDcJDaLDqlk8wpCZTi5fJ6xlwcitpUE,ZUT6NeJ/NsDmQ9DMGnwT1DHaxnLjIPaAd00Njsn4g3Ma0sM5c8dDUFHeNaFq0qDu,Awf+EL8DXagxrUUrGnf8jEmca52A7Nshl6kXTKjoWe7LfHfKexOSCyV++/78pOLB,osV03DUdKaEVOGwoQFgPYl7ich+iEDq2OU8Wb8/LLPk=,sQ19iEk473qMiaixh4sAToO04rpJvK1+GDL4pka67c8=,iBbQiGD/KHXK9aAdGfH8dngrfnuqBVhMt+lTIYzyJYSP5FwBCqPE37IZtke8SBap,sQ19iEk473qMiaixh4sAToO04rpJvK1+GDL4pka67c8=,X0+kt7XXQOUL1jfJ/HiBIoCmSEhm47aLex8L19749Y4yW/cdACPYX9dM+XvKiyUVxZ990ZXMv506CbptdyktZ3YkB512uqv0nUiR/yLScidWd3xniMsr1HjrszKGvMzr,sQ19iEk473qMiaixh4sATqTt9DvghOfoYKrjK073WXc=,sQ19iEk473qMiaixh4sATvcssT3j3SnDSWfVusGfIdM=,tznMqpp3e1oucszW+OT1FNEfIMchofdwBfYHYQ5ZfWiaaTaB/IkVRXJHylWVyRK926+QbsULlHevJYQ/xseq71iB5QmpRe2J37zq9nDD6cs=
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
x-wix-request-id: 1664302830.5269196694693152471
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 0
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664302830.479349,VS0,VE258
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3988
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (14824), with no line terminators
Size:   3988
Md5:    fb3c46b0252cb88c584b277a9f368fd1
Sha1:   6d7446caa828d91232f2297ccd7b7325a0d5831d
Sha256: 4648d56d8efb216645d9f8573afa429d3ae3e1b4984fd3386706f26693857ee1
                                        
                                            GET /pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214bcded7-0066-7c35-14d7-466cb3f09103%22%3A%22222%22%7D&beckyExperiments=specs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.loadHighQualityImagesAboveFold%3Atrue%2Cspecs.thunderbolt.carmi_simple_mode%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.maskImageCSS%3Atrue%2Cspecs.thunderbolt.chat_landing_page%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.1824.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&fileId=5bb698cf.bundle.min&freemiumBanner=true&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&module=thunderbolt-features&originalLanguage=en&pageId=f4d26a_29f439ba70a72fc68904e096c4978c2a_12.json&quickActionsMenuEnabled=false&registryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.9660.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.9660.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.233.0&siteId=7274c3aa-39d5-49b4-a903-d0277f7970e1&siteRevision=12&staticHTMLComponentUrl=https%3A%2F%2Frayn9960-wixsite-com.filesusr.com%2F&useSandboxInHTMLComp=true&viewMode=desktop HTTP/1.1 
Host: siteassets.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-expose-headers: age,via,x-cache-status,X-cache-status
etag: W/"cc0e-v6jGt/SuKfZqPy2sT4rWLBOoj5o"
content-encoding: gzip
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR374oY2zU79pEAhejviKsJzGd,/SoSYmefJLK2hiZpy2XaYlN1tYMUtM33SkDcJDaLDqk9b7GAVXr+rrCOUE3yrtTa,ZUT6NeJ/NsDmQ9DMGnwT1A1wFCPgiO03HszvSVztcEMa0sM5c8dDUFHeNaFq0qDu,Awf+EL8DXagxrUUrGnf8jGcvwhHn3wnvaPltho58HcJUWmt7Q0mtD95d630NBTYN,osV03DUdKaEVOGwoQFgPYhi0V0slUEBqdsG7CHR2fUg=,iBbQiGD/KHXK9aAdGfH8dk/cFqK7pbFDfkfkBP6sWudXzPtrF6I3U6yo2iHAWMyV,sQ19iEk473qMiaixh4sATu/UMWyEZnIKAcMJL0eEOO0=,sQ19iEk473qMiaixh4sATpDMBPvI9+jwGsd5YjSu6Gk=,X0+kt7XXQOUL1jfJ/HiBIoCmSEhm47aLex8L19749Y4yW/cdACPYX9dM+XvKiyUVuo0MJawuEoBOrYMqbLRRM24vcBAacRuefwohzRe3nWxYgeUJqUXtid+86vZww+nL,sQ19iEk473qMiaixh4sATvz0ltkG4p9cDsVcqv2zSVw=,tznMqpp3e1oucszW+OT1FNEfIMchofdwBfYHYQ5ZfWip6XyjoFoBASwaDYxlz5hmsHex5MXDR4apzA//1TDFhQ==
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
x-wix-request-id: 1664302830.536105801484192523313
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 0
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664302830.488875,VS0,VE257
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8092
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (52199), with no line terminators
Size:   8092
Md5:    1d00c8364fdb7b7b8e65a4c6e7e79e7b
Sha1:   f8a7ca05938f917f391f1ca91c16dd5b2f2f5852
Sha256: bf4cb59c7151f10d4cddbfcd0ffc89a37f435a5ac3606701b085286b706977fc
                                        
                                            POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84&microPop=84&et=1&event_name=Init&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&pn=1&sessionId=e38960a5-a877-4f45-9814-06aedb66b460&siterev=12-__siteCacheRevision__&st=2&ts=57&tts=838&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin%3F&v=1.11033.0&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_brandId=wix HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84&microPop=84&et=12&event_name=Partially%20visible&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&pid=zmb79&pn=1&sessionId=e38960a5-a877-4f45-9814-06aedb66b460&siterev=12-__siteCacheRevision__&st=2&ts=93&tts=874&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin%3F&v=1.11033.0&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_brandId=wix HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            GET /services/wix-thunderbolt/dist/page-features.508fbd14.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 13 Sep 2022 14:20:04 GMT
etag: W/"0e18676c6372b30da54f0174b8bc0a96"
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjEM4kaaS6QH/itsJwI9pla,aVxMblM8KFG3we5NLvyVc0Sqk9+MZwtm2RdjD28LmUcQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1663136564.7391023752586317693
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 1223415
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1111
x-timer: S1664302831.775251,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5921
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16956)
Size:   5921
Md5:    bc10431974f8c445fbc8ec4a840a7b63
Sha1:   ed387485844f3b04be263838f99d96307017bdd9
Sha256: a260d49d5b6e1e8616e19c075439685a059ffabdf9fedd966019de755394e5b3
                                        
                                            GET /services/wix-thunderbolt/dist/ooi.abdee6a1.chunk.min.css HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
last-modified: Sun, 07 Aug 2022 12:11:32 GMT
etag: "432b9077e3ff1d767b54c5c53ae9f36d"
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjEM4kaaS6QH/itsJwI9pla,aVxMblM8KFG3we5NLvyVcyzve4L4qo9dv8TvlcgmZhMQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1660016248.9985928042152130443
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 4428212
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 507
x-timer: S1664302831.776077,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   30
Md5:    432b9077e3ff1d767b54c5c53ae9f36d
Sha1:   e133337ffd7d46cc308fe473348f2284b9f8e454
Sha256: 3e9f8fb461eb0eeb330ac7e96d53391b0d37e0e02f16541c32c5a31d5aec7185
                                        
                                            GET /services/wix-thunderbolt/dist/ooi.353be548.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Mon, 15 Aug 2022 18:55:47 GMT
etag: W/"d14db0d087e4b2847eea446fdb3d9990"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcgrlbPwrfJgfFY+bZe/zFVAWIHlCalF7YnfvOr2cMPpyw==,aVxMblM8KFG3we5NLvyVc5a79avpR2DZCk9xnuoLql1jPZTuGyYqVhtmEIgJUb4w
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1660614079.903632573130026724
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 3711292
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1119
x-timer: S1664302831.777535,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3584
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9498)
Size:   3584
Md5:    852af16f41a6cf338476df85b86e8ab1
Sha1:   24e4b1c6245a1340d8cc8634d6fc543eb59eab03
Sha256: 1e5285712696c89b60f96f9927ea13fecd0fa1590af596ba41fd8f7feb7b3abb
                                        
                                            GET /services/wix-thunderbolt/dist/captcha.ff763fa8.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sun, 28 Aug 2022 14:09:04 GMT
etag: W/"5ac55c590717fa11374288c903cd71c9"
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1661846323.0476548133087122521
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 2607074
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1186
x-timer: S1664302831.781223,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 470
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (673)
Size:   470
Md5:    6672f362cdd184e3733068c5cd5fed9e
Sha1:   a07b6a11570c2a975956d9410ea2decb0d655920
Sha256: b6279a590406470a2bdb6c37152baa7e68dc7dcdf96be20a307ed030b342e720
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 18:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "C8BBBA24D951F4AFC74B1BBFDFEEE2B498CBEB1C"
Expires: Wed, 28 Sep 2022 05:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 930
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751640f4482db523-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    f9930cc390e4d7ef11db202af76d0282
Sha1:   407c3523e08c1cb604f8ed613f37577cbcd56f6b
Sha256: 4cc3b734f7f33528ae4cf32a82ad392a5fb53f8f8ba0e577366767327ee6d1ee
                                        
                                            GET /services/wix-thunderbolt/dist/dashboardWixCodeSdk.f18da2da.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Tue, 20 Sep 2022 07:59:56 GMT
etag: W/"816569845db6f44e7a50cecbc3e7c13b"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1663680911.39115044438315728478
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 641054
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1226
x-timer: S1664302831.785429,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4613
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14237)
Size:   4613
Md5:    b5070edf340abe80072043db2dfba8b5
Sha1:   e1fe4b824809e43673f7d7a41255484dbbe075d1
Sha256: 1b5adca3c9ec4cf9de45506a9cbf9b1dd87e0f8c59f404772ee802d001cce56b
                                        
                                            GET /services/wix-thunderbolt/dist/wix-code-sdk-providers.562019cf.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Tue, 20 Sep 2022 13:29:51 GMT
etag: W/"f596e52e939de0b8475abd08d3f13399"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjV0TBmJ+uLPQ4OZPC1VSMH,aVxMblM8KFG3we5NLvyVc1XEV11U4uj6EySGMcOeW2gfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1663680911.45814950357355426662
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 622049
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1231
x-timer: S1664302831.787893,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4194
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11281)
Size:   4194
Md5:    035d84ae737b937eb4b737f205db824a
Sha1:   4adbe230f6e7024e877a978bd5f753cce61e7baf
Sha256: 4c39ccad8f92cea44dd9491b301fea9a8ec8ff59da54d0fba506e064fadd9993
                                        
                                            POST /bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84&microPop=84&is_cached=true&msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&session_id=e38960a5-a877-4f45-9814-06aedb66b460&ish=false&isb=false&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&caching=hit,hit&pv=visible&pn=1&v=1.11033.0&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&st=2&ts=47&tsn=828&name=partially_visible&duration=1664302828068&pageId=zmb79 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            GET /services/wix-thunderbolt/dist/siteMembersWixCodeSdk.e49c7904.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Sep 2022 13:29:50 GMT
etag: W/"57f6b11aa7e6325ce31fe8af6e3f22fc"
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVcyzve4L4qo9dv8TvlcgmZhMQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1663680911.552150439674283128478
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 622047
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1230
x-timer: S1664302831.794420,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 581
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1044)
Size:   581
Md5:    50febd77eda678c05ed658f88124777c
Sha1:   e8a5a65df1fb568aa2bfcf9c34542516ab22d5b0
Sha256: 4bb0a6b0cd6239d4195d2e99ce6cbf1e0f52ec0aa1c7841d67e8b9263c0b2eb1
                                        
                                            GET /services/wix-thunderbolt/dist/siteMembers.b65de5b5.chunk.min.js HTTP/1.1 
Host: static.parastorage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.91
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Thu, 22 Sep 2022 10:59:19 GMT
etag: W/"8bc24f6ab70cac586f2c7b4c9e10befb"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: MISS
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciexeHcfy36aNagyZbZBL0eWIHlCalF7YnfvOr2cMPpyw==,aVxMblM8KFG3we5NLvyVcz/fYSfKbw6+xesuKQMt4UgghGES6Jsix+7j8qfOfk1L,2iuX5LYwvZa9CoGaG8ZUZtiaMmWW3HKnhev3+m/WgSMb22hw+rrL7Sv5J7XAoaDT
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1663844952.95196653277932128455
accept-ranges: bytes
date: Tue, 27 Sep 2022 18:20:30 GMT
age: 457878
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1154
x-timer: S1664302831.797032,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9730
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34841)
Size:   9730
Md5:    60a251bd37a333ce28e218bd59665be4
Sha1:   c42d62123cf35e1d04489212a1ad005256c0048e
Sha256: cab764a0ea70d918551d83e3cf185560e78f40d42553fb61daf9f4395ad14520
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uJMTMCp3KpTttcgwKoCm9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.163.147.190
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H0vaHymuS8CHYKcZM5Pos7yfBAA=

                                        
                                            POST /site-members?_msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_av=thunderbolt-1.11033.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1530&_lv=2.0.985%7CC&_mt_instance=HDwsIHtTqGYNDgUjgRKih2p7Gk_m9ma6kVG9tnYeUFY.eyJpbnN0YW5jZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwic2lnbkRhdGUiOiIyMDIyLTA5LTI3VDE4OjIwOjMwLjM2MloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjUyYmU1ZDY5LWQ4MzgtNGMxNC1hMjQ0LThmZjIwYzMxZjRhMCIsInNpdGVPd25lcklkIjoiZjRkMjZhMzAtZDgxOC00YjQ1LTliZmEtYjk0MzBmNTdmODllIn0&_visitorId=52be5d69-d838-4c14-a244-8ff20c31f4a0&_siteMemberId=undefined&bsi=3e31f470-d1a0-4366-80bd-8b4981380c9c%7C1&src=5&evid=698&biToken=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&context=undefined&ts=750&viewmode=undefined&visitor_id=52be5d69-d838-4c14-a244-8ff20c31f4a0&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16643028287740 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         199.15.163.128
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
content-length: 1061
last-modified: Thu, 26 Aug 2021 10:27:52 GMT
etag: "61276ca8-425"
strict-transport-security: max-age=120 ; includeSubDomains
x-seen-by: wmgbEcS9zOENaefw7bU4YYcp/9pCaCjrrLmwlTQca9s=,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVgHksEAcEU3i3z2VtrFiMTQ,m0j2EEknGIVUW/liY8BLLhe/Ft074qYAt5jyfc2Z/bHQYjEJxCMSl2Cb+N3EkeV+
x-wix-request-id: 1664302831.0816838818442623446
x-content-type-options: nosniff
expires: Tue, 04 Oct 2022 18:20:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
server: Pepyaka/1.19.10
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 67 x 67, 8-bit colormap, non-interlaced\012- data
Size:   1061
Md5:    b4969a03721c2ebaadc1e542b3461b8f
Sha1:   37ab2c35ea395cc8aefb4059021f31dcae10de4e
Sha256: cab6a0e77f4caebf5c69408dc4218f6c69d24eb65ca6c20ad8b798a68649bc20
                                        
                                            GET /upholdlogin/_api/tag-manager/api/v1/tags/sites/62ff6fe8-0928-4ba1-9864-c6b506dfcdd3?wixSite=false&htmlsiteId=7274c3aa-39d5-49b4-a903-d0277f7970e1&language=en HTTP/1.1 
Host: rayn9960.wixsite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization: HDwsIHtTqGYNDgUjgRKih2p7Gk_m9ma6kVG9tnYeUFY.eyJpbnN0YW5jZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwic2lnbkRhdGUiOiIyMDIyLTA5LTI3VDE4OjIwOjMwLjM2MloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjUyYmU1ZDY5LWQ4MzgtNGMxNC1hMjQ0LThmZjIwYzMxZjRhMCIsInNpdGVPd25lcklkIjoiZjRkMjZhMzAtZDgxOC00YjQ1LTliZmEtYjk0MzBmNTdmODllIn0
content-type: application/json
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/upholdlogin
Cookie: svSession=124e723d2f55f2fb4fcb40227542017da53cbb6fdafc20ba91ec3d0241cf2452921543fbf98193202113ecbdd55c4e4d1e60994d53964e647acf431e4f798bcd7f673c33dd906c05f48f0c660d24d0cf2b57ecd6d6b3ce8b7232f8e1593701209819f9aa82a74251b68a59bffca5cc9526d983264966f9e490054f37e3e26c42acf0c0c507a398745d5f66fc1ecc54a8; TS018b0365=01d72e6d16f031f56d6807fee8580484b9d77994640750e1df09c620f1e06e791ef6a9a03d1d7710a7112333952babc8b99a28cb04; ssr-caching=cache#desc=hit#varnish=hit#dc#desc=84; XSRF-TOKEN=1664302830|vcYnWcSnLCLV; hs=233832541; bSession=3e31f470-d1a0-4366-80bd-8b4981380c9c|1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         199.15.163.155
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
content-length: 450
etag: W/"1c2-kxe0C3s2slQLwG2osTHOiiWvZ98"
pragma: no-cache
cache-control: no-store, no-cache
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVh1barLJKujxInqgar/Uu8I,m0j2EEknGIVUW/liY8BLLiaqgLZ5wJhGoafsxbw4j/XJftmKrOReD3ukbbas4YDo,rXUceJIlvIg2Ftogbhjv0G+7XEPkbu9oiClgKEI4l4iLePVIuYt12InYj19RclMJwjmskH3shEbt4DpRNU2mpw==,7npGRUZHWOtWoP0Si3wDp42mP8T8SpDjic3LNj1uVLw=,MDFDoTqjWxpWhAuWfTm+PE2i/pSfCn/TJm1TK0SP5JfDpk6/FM3baQKp85GMTljFxF9sBKGDU1v3j2nA7B/n+g==,xTu8fpDe3EKPsMR1jrheEF2aeso2UvIcwnTuRVryW3M=,xTu8fpDe3EKPsMR1jrheEELwwAgI9hD5Q0R9QqzLIck=,mvxQ9qSAmY38asKjFCcmG7L4WpncDueqertg/XgBXbI3gmuYobHwuoIv7CRl7CALM3K91XfHvvJq7fZFTUhAAA==
x-wix-request-id: 1664302831.046682776023164063
x-content-type-options: nosniff
set-cookie: fedops.logger.defaultOverrides=%7B%22paramsOverridesForApp%22%3A%7B%22challenges-web-business-manager%22%3A%7B%22is_rollout%22%3Atrue%7D%2C%22challenges-web-business-manager-pages-categories%22%3A%7B%22is_rollout%22%3Atrue%7D%2C%22challenges-web-business-manager-pages-list%22%3A%7B%22is_rollout%22%3Atrue%7D%7D%7D; Max-Age=60; Path=/; Expires=Tue, 27 Sep 2022 18:21:31 GMT TS016e3841=01d72e6d164105e5e71990d20262d5dbe29b9e597fbd11adb65370359b72bf20408bcaf9258ad338fa60271bf6d1e147d974f75190; Path=/; Domain=.wixsite.com; SameSite=none; Secure
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (450), with no line terminators
Size:   450
Md5:    8182384f93820b99dd4bb43e88e65be4
Sha1:   9317b40b7b36b2540bc06da8b131ce8a25af67df
Sha256: 594ae1fb979282c1741d53beb89e4ca3450d3c96e66999eed6f74b09a30f1a78
                                        
                                            POST /bpm?_msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_av=thunderbolt-1.11033.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1619&_lv=2.0.985%7CC&_mt_instance=HDwsIHtTqGYNDgUjgRKih2p7Gk_m9ma6kVG9tnYeUFY.eyJpbnN0YW5jZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwic2lnbkRhdGUiOiIyMDIyLTA5LTI3VDE4OjIwOjMwLjM2MloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjUyYmU1ZDY5LWQ4MzgtNGMxNC1hMjQ0LThmZjIwYzMxZjRhMCIsInNpdGVPd25lcklkIjoiZjRkMjZhMzAtZDgxOC00YjQ1LTliZmEtYjk0MzBmNTdmODllIn0&_visitorId=52be5d69-d838-4c14-a244-8ff20c31f4a0&_siteMemberId=undefined&bsi=3e31f470-d1a0-4366-80bd-8b4981380c9c%7C1&src=72&evid=520&widgetsList=%5B%5D&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16643028288591 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /bpm HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1793
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 18:20:31 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 22:33:44 GMT
Expires: Sat, 01 Oct 2022 22:33:43 GMT
Etag: "10fb03500d75170536343086030060567a7c6f5c"
Cache-Control: max-age=360191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751640f6be62b509-OSL

                                        
                                            GET /media/f4d26a_78ff372a921f4f6c8d55e414d1304a61~mv2.jpg/v1/fill/w_976,h_456,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/uphold.jpg HTTP/1.1 
Host: static.wixstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.176.152
HTTP/2 200 OK
content-type: image/webp
                                        
server: openresty/1.21.4.1
date: Tue, 27 Sep 2022 18:20:31 GMT
content-length: 98498
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
vary: Accept
wix-tracer: 2FMXGQUSRlFuwbrm4kSGeDIhT6I
x-seen-by: image-manipulator-5cdc794f79-zfprn
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   98498
Md5:    80538682099665ce48cd539de02f2afc
Sha1:   d3d7e946bfafef6c96d83056590037e23131aed6
Sha256: 3ed3b3d280d88b5ff4aeee81c0b922c7cbfe02fa929fb095d68aa930add57cb6
                                        
                                            POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84&microPop=84&et=33&event_name=page%20interactive&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&pid=zmb79&pn=1&sar=1280x1002&sessionId=e38960a5-a877-4f45-9814-06aedb66b460&siterev=12-__siteCacheRevision__&sr=1280x1024&st=2&ts=1031&tts=1812&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&v=1.11033.0&vid=52be5d69-d838-4c14-a244-8ff20c31f4a0&bsi=3e31f470-d1a0-4366-80bd-8b4981380c9c|1&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&wor=1280x1024&wr=1280x939&_brandId=wix HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /pa?_msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_av=thunderbolt-1.11033.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1818&_lv=2.0.985%7CC&_mt_instance=HDwsIHtTqGYNDgUjgRKih2p7Gk_m9ma6kVG9tnYeUFY.eyJpbnN0YW5jZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwic2lnbkRhdGUiOiIyMDIyLTA5LTI3VDE4OjIwOjMwLjM2MloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjUyYmU1ZDY5LWQ4MzgtNGMxNC1hMjQ0LThmZjIwYzMxZjRhMCIsInNpdGVPd25lcklkIjoiZjRkMjZhMzAtZDgxOC00YjQ1LTliZmEtYjk0MzBmNTdmODllIn0&_visitorId=52be5d69-d838-4c14-a244-8ff20c31f4a0&_siteMemberId=undefined&bsi=3e31f470-d1a0-4366-80bd-8b4981380c9c%7C1&src=76&evid=1109&pid=zmb79&pn=1&viewer=TB&pt=static&pa=editor&pti=zmb79&uuid=f4d26a30-d818-4b45-9bfa-b9430f57f89e&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16643028290572 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /bpm HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2600
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:31 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2506
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 18:20:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2506
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 18:20:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2506
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 18:20:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2506
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 18:20:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2506
Expires: Tue, 27 Sep 2022 19:02:18 GMT
Date: Tue, 27 Sep 2022 18:20:32 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 62025
etag: "1a26007f761e439db575fb80fb403031260aecf4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    5274e770cb5a704916c8965659709f4a
Sha1:   1a26007f761e439db575fb80fb403031260aecf4
Sha256: e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 74495
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:00 GMT
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
age: 74492
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5319
Md5:    46e31aa06b8e86a9a5f9ba1cc3feca08
Sha1:   75df3341e30281fcbf78c7074980356fdf0be8e2
Sha256: d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbde62996-d83a-4f97-a8ad-f7719aff0bff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7701
x-amzn-requestid: 63bfd7b5-f18e-4396-99a8-fb24dee1ee0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGCmmGswoAMF2zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324af6-04fa1b18525182b7213f844c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:59:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DiTKUZCtnzzWsLnaX07RzIFfcP2_SiKqzETIMe3RoXWnQOBaB8BhmQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:14 GMT
age: 62118
etag: "2f7876bd0e4b52aa04ccf1c2a45359156eaefb97"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7701
Md5:    9ff2dbdbf6d450f0d9774777b3c5aa6e
Sha1:   2f7876bd0e4b52aa04ccf1c2a45359156eaefb97
Sha256: 4c2184b8150834adf1e9ec807f3175b6fcd574920a98c857db2cfb01b78da2fe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 74485
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 60162
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6390
Md5:    14218a43c5e5bbce546735a780c8ccce
Sha1:   61676358cdbb2373bc644e66f8a84fbc8cc5daf6
Sha256: 905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
                                        
                                            POST /bpm HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1833
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:32 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /bpm?_msid=62ff6fe8-0928-4ba1-9864-c6b506dfcdd3&vsi=56e1f0da-ec06-444b-a151-a815a7c57358&_av=thunderbolt-1.11033.0&isb=false&ts=3030&tsn=3811&dc=84&microPop=84&caching=hit%2Chit&session_id=e38960a5-a877-4f45-9814-06aedb66b460&st=2&url=https%3A%2F%2Frayn9960.wixsite.com%2Fupholdlogin&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=zmb79&isServerSide=false&is_lightbox=false&is_cached=true&is_sav_rollout=0&is_dac_rollout=0&v=1.11033.0&_brandId=wix&_siteBranchId=undefined&_ms=3811&_lv=2.0.985%7CC&_mt_instance=HDwsIHtTqGYNDgUjgRKih2p7Gk_m9ma6kVG9tnYeUFY.eyJpbnN0YW5jZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiNjJmZjZmZTgtMDkyOC00YmExLTk4NjQtYzZiNTA2ZGZjZGQzIiwic2lnbkRhdGUiOiIyMDIyLTA5LTI3VDE4OjIwOjMwLjM2MloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjUyYmU1ZDY5LWQ4MzgtNGMxNC1hMjQ0LThmZjIwYzMxZjRhMCIsInNpdGVPd25lcklkIjoiZjRkMjZhMzAtZDgxOC00YjQ1LTliZmEtYjk0MzBmNTdmODllIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16643028310513&tti=1811&tbt=241&iframes=0&screens=3&countScripts=24&startTimeScripts=1039&durationScripts=683&mttfbScripts=13&attfbScripts=28&tbdScripts=332656&countImages=1&startTimeImages=1667&durationImages=123&mttfbImages=500&attfbImages=500&tbdImages=99045&countFonts=4&startTimeFonts=1038&durationFonts=90&mttfbFonts=48&attfbFonts=53&tbdFonts=104020&entryType=loaded&duration=1809&ttlb=782&dcl=1272&transferSize=72398&decodedBodySize=302255&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=3e31f470-d1a0-4366-80bd-8b4981380c9c%7C1&ssrDuration=452&ssrTimestamp=1664259412074&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:33 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            POST /bpm HTTP/1.1 
Host: frog.wix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1298
Origin: https://rayn9960.wixsite.com
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         107.21.25.69
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 18:20:33 GMT
server: nginx
access-control-allow-origin: https://rayn9960.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

                                        
                                            GET /upholdlogin/_partials/wix-thunderbolt/dist/clientWorker.5e69808f.bundle.min.js HTTP/1.1 
Host: rayn9960.wixsite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rayn9960.wixsite.com/upholdlogin
Cookie: svSession=124e723d2f55f2fb4fcb40227542017da53cbb6fdafc20ba91ec3d0241cf2452921543fbf98193202113ecbdd55c4e4d1e60994d53964e647acf431e4f798bcd7f673c33dd906c05f48f0c660d24d0cf2b57ecd6d6b3ce8b7232f8e1593701209819f9aa82a74251b68a59bffca5cc9526d983264966f9e490054f37e3e26c42acf0c0c507a398745d5f66fc1ecc54a8; TS018b0365=01d72e6d16f031f56d6807fee8580484b9d77994640750e1df09c620f1e06e791ef6a9a03d1d7710a7112333952babc8b99a28cb04; ssr-caching=cache#desc=hit#varnish=hit#dc#desc=84; XSRF-TOKEN=1664302830|vcYnWcSnLCLV; hs=233832541
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         199.15.163.155
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
content-length: 146200
accept-ranges: bytes
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-origin: *
age: 134686
cache-control: public, max-age=7776000, immutable
content-encoding: br
etag: W/"d14a88bc3301d94b1a59ac45bd94b063"
last-modified: Fri, 23 Sep 2022 20:21:39 GMT
timing-allow-origin: *
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache-status: HIT
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVh1barLJKujxInqgar/Uu8I,m0j2EEknGIVUW/liY8BLLiqhbNx8IyWlPsD+XTdJuRQeGdLDLXwpLd0CTVHPbfOd,zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
x-varnish: 327036418 187861341
x-wix-request-id: 1664302830.5126826357131520185
x-content-type-options: nosniff
set-cookie: TS016e3841=01d72e6d164105e5e71990d20262d5dbe29b9e597fbd11adb65370359b72bf20408bcaf9258ad338fa60271bf6d1e147d974f75190; Path=/; Domain=.wixsite.com; SameSite=none; Secure
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /upholdlogin/_api/v2/dynamicmodel HTTP/1.1 
Host: rayn9960.wixsite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rayn9960.wixsite.com/upholdlogin
Connection: keep-alive
Cookie: ssr-caching=cache#desc=hit#varnish=hit#dc#desc=84; XSRF-TOKEN=1664302830|vcYnWcSnLCLV
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         199.15.163.155
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 18:20:30 GMT
access-control-allow-origin: *
strict-transport-security: max-age=3600
age: 43418
server-timing: cache;desc=hit, varnish;desc=hit, dc;desc=84
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVgHksEAcEU3i3z2VtrFiMTQ,m0j2EEknGIVUW/liY8BLLn3pJ6os+jMZl8eSiOUhV8yPfR5Gq0aOvPi6ADB6Ij8Q,2d58ifebGbosy5xc+FRalpMBxaFp3kL+OZwgo3yklsO0ms/af+LU2HaTcsynIDmI3GX0iPZPKDaH5e7jn73PPA==,2UNV7KOq4oGjA5+PKsX47DqoJjHVRyWyU7cPvGkhRo9YgeUJqUXtid+86vZww+nL
cache-control: no-cache, no-store
vary: Accept-Encoding
x-wix-request-id: 1664302830.3536825334273928571
set-cookie: hs=233832541; Path=/; Domain=rayn9960.wixsite.com; HTTPOnly svSession=124e723d2f55f2fb4fcb40227542017da53cbb6fdafc20ba91ec3d0241cf2452921543fbf98193202113ecbdd55c4e4d1e60994d53964e647acf431e4f798bcd7f673c33dd906c05f48f0c660d24d0cf2b57ecd6d6b3ce8b7232f8e1593701209819f9aa82a74251b68a59bffca5cc9526d983264966f9e490054f37e3e26c42acf0c0c507a398745d5f66fc1ecc54a8; Max-Age=63158400; Expires=Fri, 27 Sep 2024 18:20:30 GMT; Path=/upholdlogin; Domain=rayn9960.wixsite.com; Secure; HTTPOnly; SameSite=None TS016e3841=01d72e6d16f031f56d6807fee8580484b9d77994640750e1df09c620f1e06e791ef6a9a03d1d7710a7112333952babc8b99a28cb04; Path=/; Domain=.wixsite.com; SameSite=none; Secure TS018b0365=01d72e6d16f031f56d6807fee8580484b9d77994640750e1df09c620f1e06e791ef6a9a03d1d7710a7112333952babc8b99a28cb04; path=/upholdlogin; SameSite=none; Secure
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing