Report - qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068

Report Overview

Submitted URL
qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068
IP
23.227.38.65
ASN
#13335 CLOUDFLARENET
Submitted
2022-10-17 12:44:57
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-09T05:13:18Z	673 B	1.2 kB	216.58.207.226
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-09T07:43:12Z	1.2 kB	1.4 kB	173.194.73.155
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	2.3 kB	1.1 kB	31.13.72.36
p.yotpo.com	6355	2014-12-10T11:21:01Z	2023-03-09T05:22:48Z	5.2 kB	2.3 kB	3.11.149.33
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	1.6 MB	34.120.237.76
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-09T13:58:16Z	682 B	1.1 kB	142.250.74.130
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-09T09:24:51Z	929 B	1.4 kB	142.250.74.3
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	1.0 kB	54.230.245.100
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	1.6 kB	28 kB	104.18.32.68
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	5.5 kB	15 kB	23.36.76.226
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	1.4 kB	62 kB	216.58.207.195
sessions.bugsnag.com	793	2017-12-08T08:32:15Z	2023-03-09T09:09:24Z	2.1 kB	1.4 kB	35.190.88.7
11382587.fls.doubleclick.net	unknown			674 B	1.3 kB	142.250.74.70
cks3.amplifiedcdn.com	unknown	2022-07-03T05:15:26Z	2023-03-09T06:27:59Z	426 B	42 kB	194.242.11.186
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.115
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	6.3 kB	13 kB	142.250.74.3
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-09T08:41:37Z	773 B	558 B	216.239.34.36
staticw2.yotpo.com	6769	2014-05-09T07:00:46Z	2023-03-09T05:22:46Z	3.4 kB	66 kB	95.101.97.70
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	365 B	82 kB	142.250.74.168
r1ebaqinnw-dsn.algolia.net	unknown			1.9 kB	58 kB	108.163.154.58
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-09T05:17:26Z	361 B	2.7 kB	54.230.111.8
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	1.6 kB	3.8 kB	93.184.220.29
cdn.shopify.com	2327	2012-06-22T20:37:14Z	2023-03-09T05:14:34Z	3.6 kB	52 kB	104.16.255.71
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T12:17:45Z	455 B	22 kB	142.250.74.10
monorail-edge.shopifysvc.com	2944	2019-08-29T20:44:35Z	2023-03-09T05:14:42Z	920 B	2.4 kB	104.16.254.71
qublivre.ca	unknown			898 B	85 kB	23.227.38.65
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-09T12:47:31Z	489 B	1.7 kB	143.204.55.118
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-09T12:40:49Z	368 B	67 kB	143.204.55.68
app.backinstock.org	12850	2014-03-18T12:43:14Z	2023-03-09T08:25:27Z	402 B	28 kB	172.64.165.28
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	35.83.91.138
ckjs.3.cartkitcdn.com	unknown	2022-01-18T01:07:13Z	2023-03-09T06:28:00Z	400 B	1.2 kB	194.242.11.186
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-09T13:53:17Z	356 B	21 kB	142.250.74.174
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	1.0 kB	1.4 kB	142.250.74.164
api.1.amplifiedcdn.com	unknown	2022-07-08T21:12:54Z	2023-03-09T06:28:00Z	459 B	1.3 kB	194.242.11.186
d1um8515vdn9kb.cloudfront.net	unknown	2021-04-28T22:35:25Z	2023-03-09T17:03:18Z	777 B	1.0 kB	54.230.245.90
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-09T05:09:57Z	357 B	28 kB	31.13.72.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-17	medium	amplifiedcdn.com	Sinkholed

JavaScript (52)

	URL	Size	First Seen	Last Seen
	connect.facebook.net/en_US/fbevents.js	104 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:32:54 Last Seen2023-03-10 11:21:25 Times Seen1 Hash fc54574585f50444175254018516a7dc f81716cb0d40612c5e7d875ca636ae668dfbc476 df95c359e3559c219087fcb7d390b577cbd6577c0338d18644bd275149c62a86 Loading...

	vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:41 Last Seen2023-03-17 12:55:02 Times Seen1 Hash d92066afca578ed14865977d9feac035 2272d154325335dd33ffed8b26929039c6561771 fc200422a2125ba3391e529347524b6596dc8eb4cbb545e7db65ecde73f5bb28 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	1.4 kB	2023-03-07	2024-04-15
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-15 18:34:45 Times Seen12800 Hash abc891b70b393796c81222993ce80d32 08c79a8fc025a206aabc9695679beade1344f3c5 500bfcd620073934aa2e99d5bdcae6ee44bc87c161e75e77f89ce2d08580e2d3 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	57 B	2023-03-10	2024-02-06
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2024-02-06 22:05:03 Times Seen31 Hash 14f62a17008c2f110f0c0bebe813ac3e 59e2447b0fcf17f95f3263ad154bdad9375cfa56 527e3f5de6f03848fb43dcf0957d0bbb3a9738756929051feb4ef11ded66a699 Loading...

	cdn.shopify.com/shopifycloud/web-pixels-manager/0.0.164/esm/browser.js	32 kB	2023-03-10	2023-03-12
Pretty URL cdn.shopify.com/shopifycloud/web-pixels-manager/0.0.164/esm/browser.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:02:34 Last Seen2023-03-12 14:26:27 Times Seen1 Hash 3f9097e06e833b7b44d7fc1e25959b12 f663a7d9d9a5b7a1f034a3e7e3d97c04b07966b2 b34a7582863d7a2d824f3b18a4c4df040fa1a3313720cf9d4370e6670f5146fd Loading...

	www.googletagmanager.com/gtag/js?id=G-3LV7FX14ZE&l=dataLayer&cx=c	217 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-3LV7FX14ZE&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash 8d3ab1f92b87945311024913028077e9 b6cd5180d8816347892012f7ef968b32466df9e3 2b2c78ba541d13ef2e93a60f31c7dd98d2fbfde1f0cb0fe660617f0fa25f922d Loading...

	www.google-analytics.com/plugins/ua/ec.js	2.8 kB	2023-03-07	2024-04-24
Pretty URL www.google-analytics.com/plugins/ua/ec.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-24 19:10:50 Times Seen1644 Hash 7b430c6350a59a7cf22b9adeccba327b b48d3c289bcb6809bb52fffd8f013055ed6bcd65 058ed961bfe422af7bfc65865f4c08531ec8ace995f8a1ec560a46581cb7712c Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	256 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash 296f4251b1c214e3d2da5ae09f9541a4 3802830d704a2824e4a6989759599a470a49705f 42d10d7cefaf82c4af67b1f105c195db55edb37d014216b5ee1af4fc6812f2b3 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 09:38:17 Times Seen37088713 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js	10 kB	2023-03-07	2024-01-11
Pretty URL cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js IP 104.16.255.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-01-11 06:16:06 Times Seen19 Hash 31f7157147c634311e7c45d5549f1e6e c2fdb6c09124506b5ee132b04cff2b085bfefd58 ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021 Loading...

	static.hotjar.com/c/hotjar-2652130.js?sv=7	4.6 kB	2023-03-10	2023-03-10
Pretty URL static.hotjar.com/c/hotjar-2652130.js?sv=7 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash bf39952c6d3261bd1155946ff6406a79 a047c00a1fafab278ddce2de4c82991a726d029a c5ec5f60eb7af2bfab7dff30f2dc79baf2044b11268c6068d4b2bbac78b32c52 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5LXLXGX	232 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5LXLXGX IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash 9af1bb2eb7f4f281b8ae6c3d496cb70b 07e7ea7542eeaf5f73a1dba160e8132a51a92c69 4c10bb7922dc5a9c62c2b66084b4624024c596c519c824eded3262052057f530 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.js	450 kB	2023-03-10	2023-03-10
Pretty URL staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.js IP 95.101.97.70 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash ef29ea224674db72977b4091bf3a5c77 83c5485eab2183306b30c173a73d6ed5886c776f 9f6f2078ea753d8cd9d7c7071152509b6119b35dc3bc5905bbfff696838adb4d Loading...

	cks3.amplifiedcdn.com/ckjs.production.min.js?unique_id=qublivres.myshopify.com&shop=qublivres.myshopify.com	119 kB	2023-03-07	2023-03-17
Pretty URL cks3.amplifiedcdn.com/ckjs.production.min.js?unique_id=qublivres.myshopify.com&shop=qublivres.myshopify.com IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:13 Last Seen2023-03-17 10:31:31 Times Seen1 Hash 5a6eb0797ebc9b137a15c6db7d921933 583d27f1980792aee63aba341119741e8ad9a747 195268f3dd7936e90a942144681ff3ad611a0e26acfb2dafc072459e7ea1541a Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	109 B	2023-03-07	2024-04-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-26 05:52:59 Times Seen15359 Hash 43b90ba5f5581c05150263863086ef4f 3c11fb6be2f2fdd4c2eb57bc7373668541bc359d a57dcbfb170a8db671c576acfa2164ba79e12dc323d910084d6a13aa1c87a2ea Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	707 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash 1befb1d2964e700f7c91e18124ce8695 6ee4489c175c3ee388c9b2f7b4adbc4a95d71c67 97f3d701f25cef8578763ef8e1b22849e28df40725e5cc84c0f5c96076f76891 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	48 B	2023-03-07	2024-04-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-26 05:52:59 Times Seen15366 Hash 23203b335edb084a990c2a96821d581d 0c0ae3117ccfaf2dacab70c98939df347923d4db 15052a94a912ce722866c44ff093237c10192080f51cdeddaa291bffefdc54c2 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	315 B	2023-03-08	2023-03-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:17:23 Last Seen2023-03-26 12:40:05 Times Seen2 Hash 52d14a2868b40942c3abb4d64489bee7 96d80d122ae889aa6aa127b0c1cfd4011d414f22 aae28cb95280d61932353f0e898ce551ff329bd0f819d563ebcbccb43ba04600 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	4.7 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:52 Last Seen2023-03-10 10:50:52 Times Seen1 Hash 13d9b02345a97348a39f5e7b2c46f5ca b51b60c747fca907904fdb140b691b7596eab853 e1172cc816f1a54ac332f5dcb920dcb742b1a6a54222cc7d467c344b66984a62 Loading...

	cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js	8.3 kB	2023-03-07	2024-02-14
Pretty URL cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-02-14 13:18:44 Times Seen8836 Hash 6b8069ce486b54ede24b5fc50520a1be d9c70c45b0857585ce94b03b9bf5e819412830c7 65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f Loading...

	cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/runtime.js?v=101389922364810948871656338707	1.5 kB	2023-03-07	2024-02-14
Pretty URL cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/runtime.js?v=101389922364810948871656338707 IP 104.16.255.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:08 Last Seen2024-02-14 09:18:54 Times Seen207 Hash 3e509b6fbb60e3bacdc070373e53e258 56db7694481b23ce9e42709dcf12ca13cf279662 7e549f1fcfab734025757f85babfcf8a8f2eef7e88aae11c61d5b4900f2fa166 Loading...

	d1um8515vdn9kb.cloudfront.net/files/jquery191.min.js?gemv=1665125144253	92 kB	2023-03-08	2023-03-11
Pretty URL d1um8515vdn9kb.cloudfront.net/files/jquery191.min.js?gemv=1665125144253 IP 54.230.245.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:48:02 Last Seen2023-03-11 15:39:34 Times Seen1 Hash 78aa29c1e9f487757d5c719143571db8 5f0e060f2c4eb2e3e42c3957b474b748a9c658b1 1968d238314d4dcca8dd6872322847f027887e5d5c586da25ea7b4d076687775 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	191 B	2023-03-07	2024-04-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-26 05:52:59 Times Seen15317 Hash 1d05e584f988e88e4a66e8e3e6985024 9e1b08af9ab019e2bebeadd3bc9a927dd0424b31 bd2d219e2ac4290121dc9a900e62db77920e2f756c3b68ee4b35d898b77b833b Loading...

	cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js	38 kB	2023-03-07	2024-02-14
Pretty URL cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js IP 104.16.255.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2024-02-14 13:18:45 Times Seen12094 Hash 188e908791a38f8009be607ded10faeb 479a406ab01702ebd808e018930ee48b623ee447 87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	573 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 527d2e2df6b0e4ea2b087cea44ddefe8 7e8e3479650d7022c14b5c293ee3b8c5299971e7 a052c2658f2bbd901cac6b07f1a85e9aa0c5296467cbcead1443d30630b7112a Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	255 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 691d0d8d7a08410241fbae87c809cd40 315fa5c4885e347db028f8e799af5e48cfd32658 a829220bd84b75c1102968d58e2835d07bd2087cb64a184763780a6d1e60cf4f Loading...

	cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js	60 kB	2023-03-08	2023-03-10
Pretty URL cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:17:23 Last Seen2023-03-10 12:26:34 Times Seen1 Hash d5540bcaf06ae97eb43ecd708f3eba63 47d9e14774247d20d8e3363601da83898efdc713 8e1f494d117f4f4397ef187947841d475fb48b3d6b2c2dc78ed4dd2dad31dcd9 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	455 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 75781a58aed0a0f0601f5762cafd88ce 58ca8c0a9dee18d86ab3c82016c8c41c3f4f9e97 0886ac3590660e2d61232766e5b5da1dc94a18ee09095f148c4ce25af0cd5690 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	107 B	2023-03-07	2024-04-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-26 05:52:59 Times Seen15240 Hash ec808fd262cccac29ea8d9cb3bee4211 234d5f55ed60e3eb8e4cd0bf11ffafa29fc5c821 c420dd42c68731e178c1f045fb41d1dc545aa9649982a35feea70e6afa1bbabf Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	442 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 133c5f059169a93d9c3aa3597ca096ea f5707298d395263c9848b4c14521a57e07389316 bf055579d3392b3cdc0b4c5bb6288d71612a31b05f5e2e03052870defe4a98f3 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	759 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 2daacf576c63907a7295e9105e812f0f ee0777b5760dfee860e5ffe916eed14564343e6e 8444f2804eefd2fd5dca055b03df4d14c4c0a7b517abd10f4738d8b424b23cb1 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	610 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash cc8f9a7d3400789ba0df5c8f78235c81 171c2589f2d05c0ff3e3667e3a7a05dbc740c477 f58331bb2b8448fcb15c71502a1ab2061275ea4e0bff92485c2694f9298fffe8 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	1.2 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 9977ca65fa205d2dd2faf36a7ba2693c 78170a9ef0142e5688015bd64d742edb9528bca7 1476a6bdb36a2acf0bb2a1cb84e9104978b9e040b464e6bf330245a45b4fb643 Loading...

	d1um8515vdn9kb.cloudfront.net/files/gempagev2.js?v=1.0	4.9 kB	2023-03-10	2023-03-10
Pretty URL d1um8515vdn9kb.cloudfront.net/files/gempagev2.js?v=1.0 IP 54.230.245.90 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 14:50:23 Times Seen1 Hash 8022531fdc3bc21585a48443510c6ee6 cad3163d7f8ea64537ce99192d7d02976fc5660b c1055bb39ab62cf8a2cebb039e401f21fb1f003d7356581c404dbfd06030c7f3 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	1.2 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 0a75598e365f5f9de15c0ba193a33f3b b9950ae378f8d0b4038d514fb9faa6fb8e9f9bf9 3df3a01950d576d1afaa11fa53a1eafba870ec097cd9dd3100e609d7cdc6231f Loading...

	app.backinstock.org/bis/widget/46041_1652154877.js?v=6&shop=qublivres.myshopify.com	108 kB	2023-03-10	2023-03-10
Pretty URL app.backinstock.org/bis/widget/46041_1652154877.js?v=6&shop=qublivres.myshopify.com IP 172.64.165.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 4a5aa2f27339517b4c26ff9738e4f345 3048226f0860b62dc53845e1258cc3bf601ff460 2fa12e96167cd13ea5e46308d7b4a7b8372b9ae940fd71ba9db018de8f00bec3 Loading...

	cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js?v=133021050396413373161656338696	510 kB	2023-03-10	2023-03-10
Pretty URL cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js?v=133021050396413373161656338696 IP 104.16.255.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 81b6f5311e68f015577b076f56a77825 2ae674f6bdda44bd6102e17dc856590377a53d8f 925400a92465acdac10900d583516f8ea3f2c44b1d8d54b0c22ee4d4766a8f7f Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	13 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 91f67dc0d7b695195c229740543ad850 58a625ac5324e26629fc48417bcff9ed249b82ae 149342d2ae40a12a464e0eef836b952f72ed267263af3986bf672b450f35eee7 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	69 B	2023-03-07	2024-04-26
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:52 Last Seen2024-04-26 05:53:00 Times Seen12598 Hash 503d4cb00f7eb6b181388b81ecf4d071 9581bc09e75ed264a27d36c706f6247f3402d795 aeb766b45893494c63e5b737ff9459d383deef177b949fc76a8aa2f54efe03a9 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	309 B	2023-03-08	2024-04-18
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:01:00 Last Seen2024-04-18 12:28:13 Times Seen271 Hash 63ee546b929e8f40b0c783864a4b04a0 b45366d27f91f2d30c041259e4317a8bcaf800f9 e3c1174a773b56b9277c682968d2a7f66d4bbb6961dc980feaf3893d11b00701 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	8.1 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 82f3e3818a4a347dd9bc62c437969356 a80dc96da8be99fc108e4ad7f462dd5af4e6aa02 ffbf9889395289fafc2c328dd61537e90ee1432db65c6b7951d146e75f548bf3 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	1.5 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 8502a72a0a3c87fe5e34ae3dc346f6f7 15813a297aa556232cab45dba7a717115c35d408 22a7ceefe7cd76e121cbfeade9d2672b17049fc47cc91adce90d8cb2280f4505 Loading...

	cdn.shopify.com/s/trekkie.storefront.e695302c3cd17296c85e559451c496db44e32e17.min.js	80 kB	2023-03-07	2023-08-04
Pretty URL cdn.shopify.com/s/trekkie.storefront.e695302c3cd17296c85e559451c496db44e32e17.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:44:05 Last Seen2023-08-04 20:11:40 Times Seen3 Hash a4376891c0ee7cb40eecab676a302b07 2662559471c0bee24a1d10d5cd38b0dc53c1f13e 3d3c842221b7ca9085396e43668203fdf9408c3db3eeb23541e0c999a6321ea7 Loading...

	www.googletagmanager.com/gtag/js?id=G-906Z0K9JPY&l=dataLayer&cx=c	228 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-906Z0K9JPY&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 8fa0fb89815c68719cf40276229cc19c 79a4fdbd2c458717931f01d89abda32fe32b3288 7b087335fcaecda29d0ac6a4dcbf4f9cafe738706cbdc9bba9b64d26450b21c9 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	59 B	2023-03-07	2024-04-13
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2024-04-13 21:39:08 Times Seen811 Hash 48b8ac7d353d2d787022c4e1b7264eec 73a95e5a39315c7bd8081d8d14083370c90b4ba0 104264e0887dc96d33b9d2d3dae3842a269d5b1dc678305b8a5c9c88f2b1ca0a Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	96 B	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash ce9163e1f383da58aff233b86c76c9e4 50569ec968153e2740c383ef42dc38798f38dad1 9ae260afa0ecfb83943660de124d05193a6087d631c7a3208b9e05259904b97b Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	102 B	2023-03-07	2024-04-09
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:13 Last Seen2024-04-09 21:15:15 Times Seen89 Hash cd00c50a0680344505fb3d7bfe1531a4 3f49cb9eb9d32d51bc26197abb36415abdfa6a3c 44912749f3886bd5bb2fb4ac0dd0e12f33a84f25e2d254b88d712b30fe718a06 Loading...

	qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068	1.0 kB	2023-03-10	2023-03-10
Pretty URL qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 IP 23.227.38.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash d5e7b1b4841ef5f67fcd7aa1f7390f60 ed0e3973b7130c248e053394b3f098c04b34f304 24207702736ea5aa9023fa5baa571d465a0adfa601cd48747dc9e92b58aab4d6 Loading...

	connect.facebook.net/signals/config/1605221339538233?v=2.9.85&r=stable	300 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/1605221339538233?v=2.9.85&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash 1c92c3e0d133b9a462bfef9090e6015d 0abd6c74bed0ccfee2e6eb1104d26b66cdf9e65e b0c4d4538a622dc6bdae89e628a6d2231c7ff26edf76c00e9ebd57d7e2d80e97 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 774c66033d9ae6aa0f1d8c42dafc1a4d	262 B	2023-03-10	2023-11-03
Pretty Observations First Seen2023-03-10 10:50:53 Last Seen2023-11-03 12:22:27 Times Seen3 Hash 774c66033d9ae6aa0f1d8c42dafc1a4d 9545dec8349a8f752b40bf39f1d417c99c30456d 969593e3cd979b303e37749aa4bc1820a1e68c644b056fa6ad9fce76b59d9d7d Loading...

	#2 Eval - be007bec5a832596f95a828c2103529d	68 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 10:50:53 Last Seen2023-03-10 10:50:53 Times Seen1 Hash be007bec5a832596f95a828c2103529d 7e567248e2ef3532dcb3ae77f15284114dd1dbb2 b579d3ee82d9d7cf0a38d3c748b8e3cc42732859dba354e386e455fec1e56b7c Loading...

HTTP Transactions (119)

URL IP Response Size

qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068

23.227.38.65

301 Moved Permanently

155 B

URL HTTP/1.1
qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068
IP
23.227.38.65:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, ASCII text, with no line terminators
Size
155 B (155 bytes)
Hash
3b9d8f2b25861b96b0ff9d3697114c78
02f05fdfbed95ed302eb1c378a0817da68956038
c6f7625156a9ba27033fb1637f90739ffc6e0222879fa25dafcba9281cc7ae7c

HTTP Headers

GET /products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 HTTP/1.1
Host: qublivre.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 17 Oct 2022 12:44:25 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 195
X-Sorting-Hat-ShopId: 56317935812
X-Storefront-Renderer-Rendered: 1
Location: https://qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
Access-Control-Allow-Origin: *
X-ShopId: 56317935812
X-ShardId: 195
Vary: Accept
Server-Timing: processing;dur=9, db;dur=4
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,europe-west1,gcp-europe-west1
X-Request-ID: a6672ab8-9075-4e42-b82a-3129a9a903c7
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRGwpRaYNgEL9VecG3%2BLaph91OAI%2BlFeQ9mzBRzR6jo%2FcQjdD1qMyNHGOPEqPoxdGLGfFf0g0D4fASxPFOP7QgXsKK%2BljiGES0Yafu2IpQvi6c8kFkwT0VgcNr9j"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75b92021bfa3b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 17 Oct 2022 11:51:05 GMT
Expires: Mon, 17 Oct 2022 12:09:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ivqCbgofDFg0u19Xa7VhXqgIsGcciKmEmTO6z6PZKjT6GehiWk-XBw==
Age: 3200

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10ab470535c002d333b4f27d38b51091
ed3b0850c5d75881de410f7e8ca35e012e38bd38
31d6655d048ec8a62e00125766fea65cde04beae0b11f12ce7f722c9a5f7e232

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "31D6655D048EC8A62E00125766FEA65CDE04BEAE0B11F12CE7F722C9A5F7E232"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14931
Expires: Mon, 17 Oct 2022 16:53:16 GMT
Date: Mon, 17 Oct 2022 12:44:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8774
Expires: Mon, 17 Oct 2022 15:10:39 GMT
Date: Mon, 17 Oct 2022 12:44:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: GhE7l1ZuY0iUUjF8PwBgyhqyoOeyu8nVQ4mVUS+RMAs7M6yszMR2IAN+2+nAwzBovwx+b0OYZj8=
x-amz-request-id: 045YM1VH5BGET2XM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 17 Oct 2022 12:35:27 GMT
age: 538
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 17 Oct 2022 12:44:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc82da27b2e0f08253cbedb5d53919e7
f1c02a411d86347d61ee0568a7d2c7fc78631b81
4ce363d99d7d30757814c3daf1e27bf7059f7a31da3443fd92e12f1a3cf49c60

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4CE363D99D7D30757814C3DAF1E27BF7059F7A31DA3443FD92E12F1A3CF49C60"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21591
Expires: Mon, 17 Oct 2022 18:44:16 GMT
Date: Mon, 17 Oct 2022 12:44:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 17 Oct 2022 12:07:43 GMT
Cache-Control: max-age=3600
Expires: Mon, 17 Oct 2022 12:34:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W5QY07ZE_GpdDk9i23fGKwVBEUGGqU39k8baRxDP2fWsGo4a_oBPrg==
Age: 2203

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e4fb755d60e07b21b9622d1a0cc91426
8f990238b34279f3cf00db7fe95f5d206fcb4d36
51b75a1fd7ea5aeb42ac3e19e26ec747ab741671d252c8507febae8bbc22da5c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4992
Cache-Control: max-age=161132
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Etag: "634d0d17-1d7"
Expires: Wed, 19 Oct 2022 09:29:58 GMT
Last-Modified: Mon, 17 Oct 2022 08:06:47 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc82da27b2e0f08253cbedb5d53919e7
f1c02a411d86347d61ee0568a7d2c7fc78631b81
4ce363d99d7d30757814c3daf1e27bf7059f7a31da3443fd92e12f1a3cf49c60

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4CE363D99D7D30757814C3DAF1E27BF7059F7A31DA3443FD92E12F1A3CF49C60"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Mon, 17 Oct 2022 18:44:16 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06fef56888fe14d4806fa2c86571334a
480e9889f9c790b748d1402f43d7cf46bc43924a
9d038d200fe262d44ecc922f8dd742956452e6ca77d12db96ce7758ab465015a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D038D200FE262D44ECC922F8DD742956452E6CA77D12DB96CE7758AB465015A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Mon, 17 Oct 2022 15:21:06 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06fef56888fe14d4806fa2c86571334a
480e9889f9c790b748d1402f43d7cf46bc43924a
9d038d200fe262d44ecc922f8dd742956452e6ca77d12db96ce7758ab465015a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D038D200FE262D44ECC922F8DD742956452E6CA77D12DB96CE7758AB465015A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Mon, 17 Oct 2022 15:21:06 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06fef56888fe14d4806fa2c86571334a
480e9889f9c790b748d1402f43d7cf46bc43924a
9d038d200fe262d44ecc922f8dd742956452e6ca77d12db96ce7758ab465015a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D038D200FE262D44ECC922F8DD742956452E6CA77D12DB96CE7758AB465015A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Mon, 17 Oct 2022 15:21:06 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06fef56888fe14d4806fa2c86571334a
480e9889f9c790b748d1402f43d7cf46bc43924a
9d038d200fe262d44ecc922f8dd742956452e6ca77d12db96ce7758ab465015a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D038D200FE262D44ECC922F8DD742956452E6CA77D12DB96CE7758AB465015A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Mon, 17 Oct 2022 15:21:06 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fbacb75040eb8a8678cf11f10b8cfa2f
26c77b34d23f80371b04f728d8570f19c78523ce
43d4052f98d987ecb85f487fa9e908ea80cf81f98c1d0338b6f46e65b7b5334a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fbacb75040eb8a8678cf11f10b8cfa2f
26c77b34d23f80371b04f728d8570f19c78523ce
43d4052f98d987ecb85f487fa9e908ea80cf81f98c1d0338b6f46e65b7b5334a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06fef56888fe14d4806fa2c86571334a
480e9889f9c790b748d1402f43d7cf46bc43924a
9d038d200fe262d44ecc922f8dd742956452e6ca77d12db96ce7758ab465015a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D038D200FE262D44ECC922F8DD742956452E6CA77D12DB96CE7758AB465015A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Mon, 17 Oct 2022 15:21:06 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js

104.16.255.71

200 OK

3.6 kB

URL HTTP/2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10175), with no line terminators
Size
3.6 kB (3620 bytes)
Hash
145eabdbbd99824105f1ea22e2da4677
6636d1adb0138763c6e828870c3cef3b5cd26977
adc7415f365e997965c02fc9df4788a9d322242443f78d1749d1264b8fc7e6da

HTTP Headers

GET /shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js>; rel="canonical"
server-timing: imagery;dur=23.948, imageryFetch;dur=23.705
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 42d14b07-daf9-4d3e-b81b-79fd8c13a1a7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 01:43:44 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CkMU3AqdfIbW2wTzWf8cyhyUiOCkZtSi3uwz2qgIyhPieKXIgIb1C%2BH3%2BIQGypGoiCd%2Fba57xbx%2FFDtblwaIHmud5HD%2FTn9YUfYBS7QpPpvXTBjlg%2B%2FSIGcDnbhIHkH%2FQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029fe89b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5LXLXGX

142.250.74.168

200 OK

81 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5LXLXGX
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (12724)
Size
81 kB (80891 bytes)
Hash
a5ac20456ecd88ace3f5ce6da0a2cc65
81678f0ccdd02482beadbc44a75efeaec99bb76e
bd5aa1fab04341d4c5411094faec6a4b12fbfbcdc5764044bb4805ae8fedc296

HTTP Headers

GET /gtm.js?id=GTM-5LXLXGX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 17 Oct 2022 12:44:26 GMT
expires: Mon, 17 Oct 2022 12:44:26 GMT
cache-control: private, max-age=900
last-modified: Mon, 17 Oct 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80891
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2

216.58.207.195

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

HTTP Headers

GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 22:37:02 GMT
expires: Wed, 11 Oct 2023 22:37:02 GMT
cache-control: public, max-age=31536000
age: 482844
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068

23.227.38.65

200 OK

80 kB

URL HTTP/2
qublivre.ca/products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068
IP
23.227.38.65:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4817)
Size
80 kB (80517 bytes)
Hash
13cf0319f8ccbd9e95017625f7800287
a1b39d4ecd741b2fb4496f88dcec338c2a35dbc9
0d47a32f4a11bd1c4a6ff137fb60e76edce8520dda445fc32b98c4acd2c86639

HTTP Headers

GET /products/quallez-vous-faire-de-tout-cet-argent?variant=41081408848068 HTTP/1.1
Host: qublivre.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 195
x-sorting-hat-shopid: 56317935812
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=4071c21a-7030-4ca4-a1ab-19bc913570b6; path=/; expires=Mon, 17 Oct 2022 13:14:25 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Tue, 17 Oct 2023 12:44:26 GMT; secure; HttpOnly; SameSite=Lax
localization=CA; path=/; expires=Tue, 17 Oct 2023 12:44:26 GMT; SameSite=Lax
_orig_referrer=; Expires=Mon, 31-Oct-22 12:44:26 GMT; Domain=qublivre.ca; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068; Expires=Mon, 31-Oct-22 12:44:26 GMT; Domain=qublivre.ca; Path=/; HttpOnly; SameSite=Lax
_y=c116cbdf-5378-4615-8e35-756d312eb80f; Expires=Tue, 17-Oct-23 12:44:26 GMT; Domain=qublivre.ca; Path=/; SameSite=Lax
_s=08286386-be52-4890-800b-28f2416ad6e1; Expires=Mon, 17-Oct-22 13:14:26 GMT; Domain=qublivre.ca; Path=/; SameSite=Lax
_shopify_y=c116cbdf-5378-4615-8e35-756d312eb80f; Expires=Tue, 17-Oct-23 12:44:26 GMT; Domain=qublivre.ca; Path=/; SameSite=Lax
_shopify_s=08286386-be52-4890-800b-28f2416ad6e1; Expires=Mon, 17-Oct-22 13:14:26 GMT; Domain=qublivre.ca; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:d0b2490ae597ce3b60e061ffeed467e5
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 56317935812
x-shardid: 195
vary: Accept
content-language: fr
server-timing: processing;dur=510, db;dur=79, parse;dur=4
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: be6cceec-27d9-4e75-ae38-65609ab5d4db
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6skw%2B%2FzKO%2FIEV6RT25%2BnSlawA5m0%2FzGCSTY9lhnkj6S6U97Rjq6JZ63GvmBjLEf%2F3GBkuTi3XdjY0sDQwx4jiANT01RM1Ox9Ncn0gapGHF2y54ySDmAzxt0YVk7m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b920252cf3b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size
22 kB (21724 bytes)
Hash
c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 22:37:08 GMT
expires: Wed, 11 Oct 2023 22:37:08 GMT
cache-control: public, max-age=31536000
age: 482838
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
605901c6e42550516f2f8f55bdb77e58
d766e9a80c7c8b461f5e68fc383ca892c1e23307
39c2931465cffbe0f394c2dd1bed1833da893915af6c0dcb5a63939369909cf5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.css?v=81933216666290387121656338696

104.16.255.71

200 OK

39 kB

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.css?v=81933216666290387121656338696
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (39550)
Size
39 kB (38750 bytes)
Hash
f0de1b6746b5d3e6ee4290fb17b52576
1d9912af386ffe186e51238ef229be11b2389ef0
41b8e9830465e102876b9bfab97e9fe9741a41c26b465fea938d53b823c0d3b2

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.css?v=81933216666290387121656338696 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.css>; rel="canonical"
server-timing: imagery;dur=127.521, imageryFetch;dur=115.604
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: aa783c7e-55da-4681-a2e0-f0cb5bf1b16e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 02:04:22 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nuD6SFXyrhWAQNdxRDEm2zA0EXH1WRkNp6pcjq2Re0fjnlxsTOD7hrgZkKkU4NmY54s5ZD3N5euvmIqbo9onApYzZu%2B%2FMDvEXkoaYlJVcsmWCROXmU1kdQutWflDAvEmrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029ecc7b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
88794c73a5a0da0b314f69d35139f693
09033cf490e4e032633ffb77b7b0bad430e9977c
fe9210f696595527e1f2aaf00adf5effeedb33610faf314102e21fdac6f4b66c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE9210F696595527E1F2AAF00ADF5EFFEEDB33610FAF314102E21FDAC6F4B66C"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19430
Expires: Mon, 17 Oct 2022 18:08:16 GMT
Date: Mon, 17 Oct 2022 12:44:26 GMT
Connection: keep-alive

fonts.googleapis.com/css2?family=Barlow:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500;1,600;1,700;1,800&display=swap

142.250.74.10

200 OK

22 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Barlow:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500;1,600;1,700;1,800&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
22 kB (21625 bytes)
Hash
e05b5d3b780cd17ffc9c418f1b846ab2
6f0b04c668b4391285b3a844ec1c96d59f637148
6336f05e53e41fbcfa64e62b5ccaea408accd469626962c229540d3904b164ac

HTTP Headers

GET /css2?family=Barlow:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 17 Oct 2022 12:44:26 GMT
date: Mon, 17 Oct 2022 12:44:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

monorail-edge.shopifysvc.com/unstable/produce_batch

104.16.254.71

200 OK

0 B

URL HTTP/2
monorail-edge.shopifysvc.com/unstable/produce_batch
IP
104.16.254.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 219
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://qublivre.ca
access-control-max-age: 86400
x-request-id: eb0eab60-c635-4eac-92e6-a55d421c3b66
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bo1DfXyvs1IV9yYBV5gS3NcJZlNXQiQ6ZuWi5K6axjhPoHxts7iNuNK7Ak0dSxnZmgInGGc1OQBSvqrRI7XsP33mtg8BzO%2FLziGa%2BW2sJ9XROYfjOpFGGH3vX83wjYILVY2y3Oae1Oe0%2FB611CU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75b9202c9a6ab50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
88794c73a5a0da0b314f69d35139f693
09033cf490e4e032633ffb77b7b0bad430e9977c
fe9210f696595527e1f2aaf00adf5effeedb33610faf314102e21fdac6f4b66c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE9210F696595527E1F2AAF00ADF5EFFEEDB33610FAF314102E21FDAC6F4B66C"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19429
Expires: Mon, 17 Oct 2022 18:08:16 GMT
Date: Mon, 17 Oct 2022 12:44:27 GMT
Connection: keep-alive

monorail-edge.shopifysvc.com/unstable/produce_batch

104.16.254.71

200 OK

0 B

URL HTTP/2
monorail-edge.shopifysvc.com/unstable/produce_batch
IP
104.16.254.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 609
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://qublivre.ca
access-control-max-age: 86400
x-request-id: f43001a0-6473-416f-aa6c-dca3274b5262
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9rhbF2mwOF1rVSBWJnp%2FFv3v2Qgyx22DZO4rOheowkcnClwWINAJY9IAD9v4fIsgIMIVUJ%2FVLRff%2BLGrQd5Q%2By%2B3T6tqkkD81RfHZSsBKZr5ReHGhCRTXxjfUp62c1xL1PiPkGOKDLr4TOKPgA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75b9202c9a77b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1cbc1b2d02f4c3778ceb3243be442f07
f70657c957752a8eb29577c8107ed7859f4e6b8b
5db924d69c6d155c77dafe8a090f70f36d482973c3eb0b71c39ba26f29c9af53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 09:46:52 GMT
Expires: Sat, 22 Oct 2022 09:46:51 GMT
Etag: "f70657c957752a8eb29577c8107ed7859f4e6b8b"
Cache-Control: max-age=420743,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b9202d1a99b524-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

24 kB

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
24 kB (23792 bytes)
Hash
f12aa7d264545cc6bf76cae3948941b5
15ca1b46f72ced4fb216e6a93d9e1853282260af
c88985fbbf5016961eea8af84fd9af9547157e755bb09ce02ec731c0ca6016e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 09:46:52 GMT
Expires: Sat, 22 Oct 2022 09:46:51 GMT
Etag: "f70657c957752a8eb29577c8107ed7859f4e6b8b"
Cache-Control: max-age=420743,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b9202d1aacb4e8-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1cbc1b2d02f4c3778ceb3243be442f07
f70657c957752a8eb29577c8107ed7859f4e6b8b
5db924d69c6d155c77dafe8a090f70f36d482973c3eb0b71c39ba26f29c9af53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 09:46:52 GMT
Expires: Sat, 22 Oct 2022 09:46:51 GMT
Etag: "f70657c957752a8eb29577c8107ed7859f4e6b8b"
Cache-Control: max-age=420743,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b9202d7a0ab521-OSL

sessions.bugsnag.com/

35.190.88.7

200 OK

0 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://qublivre.ca/
Origin: https://qublivre.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1cbc1b2d02f4c3778ceb3243be442f07
f70657c957752a8eb29577c8107ed7859f4e6b8b
5db924d69c6d155c77dafe8a090f70f36d482973c3eb0b71c39ba26f29c9af53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 09:46:52 GMT
Expires: Sat, 22 Oct 2022 09:46:51 GMT
Etag: "f70657c957752a8eb29577c8107ed7859f4e6b8b"
Cache-Control: max-age=420743,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b9202d7f09fab4-OSL

sessions.bugsnag.com/

35.190.88.7

200 OK

0 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://qublivre.ca/
Origin: https://qublivre.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sessions.bugsnag.com/

35.190.88.7

202 Accepted

21 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a

HTTP Headers

POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: bd5db2f0963c73efc4e6800256eb4579
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-10-17T12:44:32.079Z
Content-Length: 435
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 197c9419-a5bb-412e-896b-7d8307108a93
content-type: application/json
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sessions.bugsnag.com/

35.190.88.7

202 Accepted

21 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a

HTTP Headers

POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: bd5db2f0963c73efc4e6800256eb4579
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-10-17T12:44:32.128Z
Content-Length: 435
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 2e897dc0-331c-4276-83ed-2013ac429313
content-type: application/json
date: Mon, 17 Oct 2022 12:44:27 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1cbc1b2d02f4c3778ceb3243be442f07
f70657c957752a8eb29577c8107ed7859f4e6b8b
5db924d69c6d155c77dafe8a090f70f36d482973c3eb0b71c39ba26f29c9af53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 09:46:52 GMT
Expires: Sat, 22 Oct 2022 09:46:51 GMT
Etag: "f70657c957752a8eb29577c8107ed7859f4e6b8b"
Cache-Control: max-age=420743,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b9202f9dfab524-OSL

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ba24fe119574a206bf5056e49481f
3f3d311e4c02e4f05c1c2242437fd030a3968944
b682f0a5928407fb79cbffd3612288dd20ab2c54fd2e0a6b74439a53b5952d90

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

11382587.fls.doubleclick.net/activityi;src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068?

142.250.74.70

200 OK

403 B

URL HTTP/2
11382587.fls.doubleclick.net/activityi;src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (517), with no line terminators
Size
403 B (403 bytes)
Hash
d196a7a87e25326c9f6cbee714410a1f
f5674402132687889eaba9bf40daf54899f79665
1be74020472ee9496e05a1c71ef4d90cec97893f9004e86592df67754b6eed3e

HTTP Headers

GET /activityi;src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068? HTTP/1.1
Host: 11382587.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 403
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 17-Oct-2022 12:59:27 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ba24fe119574a206bf5056e49481f
3f3d311e4c02e4f05c1c2242437fd030a3968944
b682f0a5928407fb79cbffd3612288dd20ab2c54fd2e0a6b74439a53b5952d90

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6317
Expires: Mon, 17 Oct 2022 14:29:44 GMT
Date: Mon, 17 Oct 2022 12:44:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6317
Expires: Mon, 17 Oct 2022 14:29:44 GMT
Date: Mon, 17 Oct 2022 12:44:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6317
Expires: Mon, 17 Oct 2022 14:29:44 GMT
Date: Mon, 17 Oct 2022 12:44:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6317
Expires: Mon, 17 Oct 2022 14:29:44 GMT
Date: Mon, 17 Oct 2022 12:44:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ae5b65-3d0a-4d73-8a6b-e8f407db78a1.jpeg

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ae5b65-3d0a-4d73-8a6b-e8f407db78a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5613 bytes)
Hash
89156fccf0d7e65c0ac1467e63207bdb
0c7f5be7be8d6c21d0542eb4014d560eb0aae1ec
54316b96c831d7b77fffadb7a3c7a9370d6cbe59428f5ccf89490da25e40dd7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ae5b65-3d0a-4d73-8a6b-e8f407db78a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5613
x-amzn-requestid: bffac0a6-d874-4928-838d-7f702ca7ae24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5VGpJoAMFVNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d5-2a58b7c6018952bc0967def4;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vBmUmkb1lqOcX03ln9YzL38v1HdvkWBwYjRnImNtnQYsgc5maPnlhQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 22:10:15 GMT
age: 52452
etag: "0c7f5be7be8d6c21d0542eb4014d560eb0aae1ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60670b74-cf10-4a50-84e4-68196c7d5bcc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5918 bytes)
Hash
e1c457c02b82a34aeeec8bb629e056f3
3d005eb7e3d67146ccd8fb05bec9861bb2d1ff40
74c380e47dd259bfb19ed8edd7a2525b3cc5eebcd87161532c02825863d5350a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60670b74-cf10-4a50-84e4-68196c7d5bcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5918
x-amzn-requestid: f74468b9-e76a-42bc-93b8-43a13ee1377e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z-lVgHxKoAMFYfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6348e8ef-1d009d4b6be5915b02807b2e;Sampled=0
x-amzn-remapped-date: Fri, 14 Oct 2022 04:43:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZlwUluWX5l0L2Z71b1GAtd1RZ8ZSfm9DuFZvtly45MgicYYZTqXuQw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 17 Oct 2022 09:40:44 GMT
age: 11023
etag: "3d005eb7e3d67146ccd8fb05bec9861bb2d1ff40"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

47 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2295171-3655-4c87-967e-93929cfbe388.gif
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 296 x 148\012- data
Size
47 kB (47445 bytes)
Hash
9bf9e33e3af0d4d836c05e01ca6ad82f
f910325edfff69b904fc94cc224a60c5b3950658
4cda0563a6b23d5a3644f5dc86d9a20809861cdd8e74c1fb489ecc40f9127a43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2295171-3655-4c87-967e-93929cfbe388.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 47445
x-amzn-requestid: 0edccf3a-7dff-4336-8428-339151a4543b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5JHgVIAMF8YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d3-424b2b46288a0dbc2676271b;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sc4VZGoHqi-3Gz62g3oE_Wrdr6JiSqFMRVqcQqRCRgThw_oj_RWFSw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 22:28:58 GMT
etag: "f910325edfff69b904fc94cc224a60c5b3950658"
content-type: image/gif
age: 51329
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F422a9652-e769-4c08-9ec2-00690294f54d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8646 bytes)
Hash
f35bae393b42a022d312d2060b68dd1c
e02d0d7941d160da8086337ec85a9459d9ab16bf
a1565ad87910c81a9289e88d2bdfc8885f34b935ab81633daea51b9f82ff3280

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F422a9652-e769-4c08-9ec2-00690294f54d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8646
x-amzn-requestid: 909442e4-6b16-43de-9bf7-d0248f40b28c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZhQUBEDoIAMFRww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633d2db3-075c54cc2fdfe35a5fe0af5e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 07:09:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j9PmAkRYoxPzf8L7aZZdw0mbA_TZClGurAgX3XHE5st6sjeQn4uh-g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 17 Oct 2022 06:12:35 GMT
age: 23512
etag: "e02d0d7941d160da8086337ec85a9459d9ab16bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e0224bc-3141-475c-88f3-48e2d36f204f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6352 bytes)
Hash
ddd17c7d44a2e136710171f237ded665
577a22b126e54bfe0e4e4ce26b0fb866bc7fe007
b1327c4f33db5488ae49b1c2f7d5b49804d4245fd0bd92c41005b9045281f2a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e0224bc-3141-475c-88f3-48e2d36f204f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6352
x-amzn-requestid: c0479303-34b2-45d8-b794-4b83003312ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHjNXE81IAMFWaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c7f22-702cee0d437cbdc349efa2e8;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 22:01:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eT73QK1fx-IvCFC2OGRnsLRxjaEkC2w-HZr5ri2D4NRBESTD5ktWrQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 22:23:46 GMT
age: 51641
etag: "577a22b126e54bfe0e4e4ce26b0fb866bc7fe007"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

1.5 MB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57cc9e14-e4d3-48c4-a056-d13d96008e85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
1.5 MB (1533742 bytes)
Hash
78bccc731d9aec529604e6a78f8dd62a
07ca0730cfbb059faa84051c37c06b7309c0f40d
68b235ce9ced657a6b05e4b2761f8f089951fbc66ba56555350328d6fdbb28c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57cc9e14-e4d3-48c4-a056-d13d96008e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 1533742
x-amzn-requestid: 08622fbf-b5da-463d-93b0-2658eec7f963
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhKFDKIAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-1fe827a352aced1614638272;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tURfDDYAWPP1lNDt0zEjlfl0On0v9_jOlaOM5491WSjY4UFvETM0pA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 14:05:18 GMT
age: 81549
etag: "07ca0730cfbb059faa84051c37c06b7309c0f40d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r1ebaqinnw-dsn.algolia.net/1/indexes/shopify_products_released_at_desc/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW

108.163.154.58

200 OK

7.6 kB

URL HTTP/1.1
r1ebaqinnw-dsn.algolia.net/1/indexes/shopify_products_released_at_desc/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW
IP
108.163.154.58:0
ASN
#32613 IWEB-AS

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (35416), with no line terminators
Size
7.6 kB (7590 bytes)
Hash
fdcfa0810462a26d44770d155dfe0ae5
7ab88c9b21e06297a96d6ce390449201b2a7dd61
b3e0664e25a61e9f2d3d2bb2e67572ebdf92813cdce3d3f0fff72c9a83b3c3cc

HTTP Headers

POST /1/indexes/shopify_products_released_at_desc/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW HTTP/1.1
Host: r1ebaqinnw-dsn.algolia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 286
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Alg-PT: 1
Accept-Encoding: deflate, gzip
Cache-Control: no-store
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Disposition: inline; filename=a.txt
Content-Encoding: gzip

r1ebaqinnw-dsn.algolia.net/1/indexes/shopify_products/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW

108.163.154.58

200 OK

5.0 kB

URL HTTP/1.1
r1ebaqinnw-dsn.algolia.net/1/indexes/shopify_products/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW
IP
108.163.154.58:0
ASN
#32613 IWEB-AS

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (19993), with no line terminators
Size
5.0 kB (5021 bytes)
Hash
22a73015b815917cce6c52d2ecc4c944
569d91f57d41420388d61059ccb1e575203ec511
d869ae5f4971e9533c83a3126a1d06aa1c1261e255fbd6b269e0a97248aad3f5

HTTP Headers

POST /1/indexes/shopify_products/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW HTTP/1.1
Host: r1ebaqinnw-dsn.algolia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 168
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Oct 2022 12:44:27 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Alg-PT: 1
Accept-Encoding: deflate, gzip
Cache-Control: no-store
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Disposition: inline; filename=a.txt
Content-Encoding: gzip

adservice.google.com/ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

142.250.74.130

200 OK

402 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (516), with no line terminators
Size
402 B (402 bytes)
Hash
53edb045fb5ce61c216154ea9e358f82
6e31dc4ecbaaaca78b87c7d90fdb24a613094925
8f05d95f99451c394341ec4c8800bf48086f0ea0bc1c1d6faa40e8e405a8314f

HTTP Headers

GET /ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11382587.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 402
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6809539bccb0517a5f375737f4f7fdc1
1c6e104e96b0e8effbbdffd6ebe9bdfc64b72e6f
33d9c06d64e617731224f7328d8485377e68b840ad27eee5c919f67a2b20ddee

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

216.58.207.226

200 OK

177 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
177 B (177 bytes)
Hash
9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0

HTTP Headers

GET /ddm/fls/i/src=11382587;type=remar0;cat=qub-l0;ord=7345437703588;gtm=2wgaa0;auiddc=294014403.1666010673;~oref=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
expires: Mon, 17 Oct 2022 12:44:28 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
270b7f60f9251fee908f20c2f4dfbb5c
d6c0ec036123f05f4e9f8d24de24bb34b632eefe
f4171fe23d3c196bf4339bc124742cb1e54f014b6fde0ecbfe83fc999cb9c8df

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5663
Cache-Control: max-age=163608
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Etag: "634d1425-1d7"
Expires: Wed, 19 Oct 2022 10:11:16 GMT
Last-Modified: Mon, 17 Oct 2022 08:36:53 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
270b7f60f9251fee908f20c2f4dfbb5c
d6c0ec036123f05f4e9f8d24de24bb34b632eefe
f4171fe23d3c196bf4339bc124742cb1e54f014b6fde0ecbfe83fc999cb9c8df

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5663
Cache-Control: max-age=163608
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Etag: "634d1425-1d7"
Expires: Wed, 19 Oct 2022 10:11:16 GMT
Last-Modified: Mon, 17 Oct 2022 08:36:53 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 17 Oct 2022 12:41:09 GMT
expires: Mon, 17 Oct 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 199
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6809539bccb0517a5f375737f4f7fdc1
1c6e104e96b0e8effbbdffd6ebe9bdfc64b72e6f
33d9c06d64e617731224f7328d8485377e68b840ad27eee5c919f67a2b20ddee

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27029 bytes)
Hash
24e72797c2387d3949fd48bff0869138
9987f23f7289affffb99587c703c95d4448f0d3c
ff6231326f473d1d8e7999bde0bb9c34aedd5e47aefdceb94629c75c771984f1

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: vgV550+7TG4iGsTjm8OkmzfHuZq5AL3Y+Law2L5t+v1DOoJ9SWdVA5QbLner2/2NnmM/d5zRaN4lCtvEp2RhUg==
content-length: 27029
x-fb-trip-id: 1904183273
date: Mon, 17 Oct 2022 12:44:28 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-906Z0K9JPY&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=153263126

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-906Z0K9JPY&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=153263126
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-906Z0K9JPY&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=153263126 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3LV7FX14ZE&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=1075239990

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3LV7FX14ZE&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=1075239990
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3LV7FX14ZE&cid=899522112.1666010673&gtm=2oeaa0&aip=1&z=1075239990 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
270b7f60f9251fee908f20c2f4dfbb5c
d6c0ec036123f05f4e9f8d24de24bb34b632eefe
f4171fe23d3c196bf4339bc124742cb1e54f014b6fde0ecbfe83fc999cb9c8df

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5663
Cache-Control: max-age=163608
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Etag: "634d1425-1d7"
Expires: Wed, 19 Oct 2022 10:11:16 GMT
Last-Modified: Mon, 17 Oct 2022 08:36:53 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d837f3cb96682233e75c306cb19d4df9
556a207325324f1a4bda5c988281693dcffc1546
ae80b9a17044e32efd5f8cec06aab70ace5867043e490b22a5033d2dcaaa6923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d837f3cb96682233e75c306cb19d4df9
556a207325324f1a4bda5c988281693dcffc1546
ae80b9a17044e32efd5f8cec06aab70ace5867043e490b22a5033d2dcaaa6923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&gjid=1422506511&_gid=1524342952.1666010673&_u=YCDAgEIJAAAAAEAAICB~&z=1218110825

173.194.73.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&gjid=1422506511&_gid=1524342952.1666010673&_u=YCDAgEIJAAAAAEAAICB~&z=1218110825
IP
173.194.73.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&gjid=1422506511&_gid=1524342952.1666010673&_u=YCDAgEIJAAAAAEAAICB~&z=1218110825 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://qublivre.ca
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&gjid=835137307&_gid=1524342952.1666010673&_u=YCDAgEIJBAAAAEgCICB~&z=2118669616

173.194.73.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&gjid=835137307&_gid=1524342952.1666010673&_u=YCDAgEIJBAAAAEgCICB~&z=2118669616
IP
173.194.73.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&gjid=835137307&_gid=1524342952.1666010673&_u=YCDAgEIJBAAAAEgCICB~&z=2118669616 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://qublivre.ca
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html

143.204.55.118

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
143.204.55.118:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.0 kB (1044 bytes)
Hash
f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41

HTTP Headers

GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Tue, 04 Oct 2022 09:28:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xBf6mShpvsu2J5yhIADs9fSm4r5ri1xwSAmG1d8kYG_hh7fafvjbOw==
age: 1134980
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2652130.js?sv=7

54.230.111.8

200 OK

2.1 kB

URL HTTP/2
static.hotjar.com/c/hotjar-2652130.js?sv=7
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3790)
Size
2.1 kB (2083 bytes)
Hash
3ac74b4b2b7f69edfcad27bc40a353e3
b682ee63586df443ceb07797f5c40973dd32025b
c22da5ac814b718ce2b0160f2e9eedb4d47b995187f97ea978f41e3ca5df3a2c

HTTP Headers

GET /c/hotjar-2652130.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 17 Oct 2022 12:44:28 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/bf39952c6d3261bd1155946ff6406a79
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xa77uN1yPJ3WXun8XLFZFTEjr2rAcwsT16wjg-TfgahQMvmhqcXQ1Q==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d837f3cb96682233e75c306cb19d4df9
556a207325324f1a4bda5c988281693dcffc1546
ae80b9a17044e32efd5f8cec06aab70ace5867043e490b22a5033d2dcaaa6923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

108.163.154.58

200 OK

44 kB

URL HTTP/1.1
r1ebaqinnw-dsn.algolia.net/1/indexes/shopify_products_released_at_desc/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW
IP
108.163.154.58:0
ASN
#32613 IWEB-AS

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (64535), with no line terminators
Size
44 kB (44446 bytes)
Hash
e8f12d2b2edd0a4024725769a41b4963
1972cfe236cd4e0b64130d33b3ac50b3beffb8c8
2dc91b1b037c597b8b12c612872d7273d21ce8dd1f1472d1a817cba2a2b155e5

HTTP Headers

POST /1/indexes/shopify_products_released_at_desc/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.10.4)%3B%20Browser%20(lite)&x-algolia-api-key=a5dfd64b9ee2f2afbd8bb3db6753ec95&x-algolia-application-id=R1EBAQINNW HTTP/1.1
Host: r1ebaqinnw-dsn.algolia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 285
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 17 Oct 2022 12:44:28 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Alg-PT: 9
Accept-Encoding: deflate, gzip
Cache-Control: no-store
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Disposition: inline; filename=a.txt
Content-Encoding: gzip

region1.analytics.google.com/g/collect?v=2&tid=G-3LV7FX14ZE&gtm=2oeaa0&_p=1444165506&_gaz=1&cid=899522112.1666010673&ul=en-us&sr=1280x1024&ir=1&_eu=Q&_s=1&sid=1666010672&sct=1&seg=0&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&dt=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-3LV7FX14ZE&gtm=2oeaa0&_p=1444165506&_gaz=1&cid=899522112.1666010673&ul=en-us&sr=1280x1024&ir=1&_eu=Q&_s=1&sid=1666010672&sct=1&seg=0&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&dt=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-3LV7FX14ZE&gtm=2oeaa0&_p=1444165506&_gaz=1&cid=899522112.1666010673&ul=en-us&sr=1280x1024&ir=1&_eu=Q&_s=1&sid=1666010672&sct=1&seg=0&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&dt=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://qublivre.ca
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

script.hotjar.com/modules.db0fd5db80f832174879.js

143.204.55.68

200 OK

66 kB

URL HTTP/2
script.hotjar.com/modules.db0fd5db80f832174879.js
IP
143.204.55.68:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
66 kB (66081 bytes)
Hash
5278d8852118d6fae8702063aa272573
0b0e8baf26f0a099de93c6cce4d1b12ca477e44f
d22ef2d8958060808ba772ac8c99cac155100dcdbfde3e6d654275fe5b03ed08

HTTP Headers

GET /modules.db0fd5db80f832174879.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 66081
date: Mon, 17 Oct 2022 08:42:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5278d8852118d6fae8702063aa272573"
last-modified: Mon, 17 Oct 2022 08:41:52 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MM1SaQo2taZOYTbXKn8kyQGlG5wqgU9FnPN78nR66uRmbz3m2QV7tA==
age: 14542
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4968b6ba4593c5a26ff6f56a60231029
ec4d98794f75aad9181a0aa7a4f0488de726a557
522aab87cbb3b9a8f4d0fc55cf2ff30094ffb327937f3fc235db48e7b8f2fa0a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4968b6ba4593c5a26ff6f56a60231029
ec4d98794f75aad9181a0aa7a4f0488de726a557
522aab87cbb3b9a8f4d0fc55cf2ff30094ffb327937f3fc235db48e7b8f2fa0a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&_u=YCDAgEIJAAAAAEAAICB~&z=2111971066

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&_u=YCDAgEIJAAAAAEAAICB~&z=2111971066
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-1&cid=899522112.1666010673&jid=981806803&_u=YCDAgEIJAAAAAEAAICB~&z=2111971066 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&_u=YCDAgEIJBAAAAEgCICB~&z=979326005

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&_u=YCDAgEIJBAAAAEgCICB~&z=979326005
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-158568984-6&cid=899522112.1666010673&jid=698238683&_u=YCDAgEIJBAAAAEgCICB~&z=979326005 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 17 Oct 2022 12:44:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1605221339538233&ev=ViewContent&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673721&cd[content_ids]=%5B7017926033604%5D&cd[content_type]=product_group&cd[content_name]=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20-%20papier&cd[content_category]=Livres&cd[currency]=CAD&cd[value]=24.95&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97850-E5F7-457D-DE36-EAA7CD74943F&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1605221339538233&ev=ViewContent&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673721&cd[content_ids]=%5B7017926033604%5D&cd[content_type]=product_group&cd[content_name]=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20-%20papier&cd[content_category]=Livres&cd[currency]=CAD&cd[value]=24.95&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97850-E5F7-457D-DE36-EAA7CD74943F&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1605221339538233&ev=ViewContent&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673721&cd[content_ids]=%5B7017926033604%5D&cd[content_type]=product_group&cd[content_name]=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20-%20papier&cd[content_category]=Livres&cd[currency]=CAD&cd[value]=24.95&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=2&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97850-E5F7-457D-DE36-EAA7CD74943F&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 17 Oct 2022 12:44:28 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673720&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97847-60A4-4400-399E-3FC55D18767F&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673720&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97847-60A4-4400-399E-3FC55D18767F&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673720&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&eid=e5f97847-60A4-4400-399E-3FC55D18767F&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 17 Oct 2022 12:44:28 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673719&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&tm=1&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673719&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&tm=1&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1605221339538233&ev=PageView&dl=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068&rl=&if=false&ts=1666010673719&sw=1280&sh=1024&v=2.9.85&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1666010673718.1061309089&it=1666010673328&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 17 Oct 2022 12:44:28 GMT
X-Firefox-Spdy: h2

staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/rich_snippet

95.101.97.70

200 OK

65 B

URL HTTP/2
staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/rich_snippet
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
3a7e5bd5961dfc8364ea2f051b68c185
c282926b0d551a87e48ed685f2f0e8f63fd0a50a
38b88c3afa48075f0d24e459e15d7fb00f5bb29a83dbe8fc48d83076b5491f73

HTTP Headers

POST /batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/rich_snippet HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 329
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"3a7e5bd5961dfc8364ea2f051b68c185"
x-request-id: 39054d8ece7c6ba82dcca1c5c11b15c3
x-runtime: 0.050648
content-length: 65
cache-control: public, max-age=10795
date: Mon, 17 Oct 2022 12:44:29 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=MISS, edge; dur=22, origin; dur=143
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: https://qublivre.ca
X-Firefox-Spdy: h2

staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/bottomline

95.101.97.70

200 OK

339 B

URL HTTP/2
staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/bottomline
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (955), with no line terminators
Size
339 B (339 bytes)
Hash
f3bbbd4c53faf9d76d6ff3724b844562
09685736de7e80924506503a9e02eb1851d60d63
497479f14b79649ca996d60c9c2e46d1f5b0a41e84bb4e121bdb17429f71fecf

HTTP Headers

POST /batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/bottomline HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 355
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"f3bbbd4c53faf9d76d6ff3724b844562"
x-request-id: 2e4651b7c51ea8cf139f20a91151a3fd
x-runtime: 0.055654
content-length: 339
cache-control: public, max-age=10800
date: Mon, 17 Oct 2022 12:44:29 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=MISS, edge; dur=24, origin; dur=147
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: https://qublivre.ca
X-Firefox-Spdy: h2

staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/main_widget

95.101.97.70

200 OK

4.2 kB

URL HTTP/2
staticw2.yotpo.com/batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/main_widget
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (21723), with no line terminators
Size
4.2 kB (4152 bytes)
Hash
af8fb801ea4e53564b0aac001fa37203
8372472b84d3ef369e5923f7e9e23a6e1e0c2a3c
3a51167f82fa05f07b7c5f18380657d965814c7d08fd69c7acf9a08d31317f54

HTTP Headers

POST /batch/app_key/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/domain_key/7017926033604/widget/main_widget HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 294
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"af8fb801ea4e53564b0aac001fa37203"
x-request-id: a8f38e84f752425dd388b473f43b516d
x-runtime: 0.114786
content-length: 4152
cache-control: public, max-age=10792
date: Mon, 17 Oct 2022 12:44:29 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=MISS, edge; dur=40, origin; dur=209
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: https://qublivre.ca
X-Firefox-Spdy: h2

staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.css?widget_version=2022-10-06_07-58-33

95.101.97.70

200 OK

44 kB

URL HTTP/2
staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.css?widget_version=2022-10-06_07-58-33
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65423)
Size
44 kB (43967 bytes)
Hash
379ccfbfbc0e8b773bcc9571df44a37b
9964048fbf3501b8ffae9082f0e2b8a9da02859d
4f8b62e72d2e6724009d47d03a19f367f48a392f4904425906685f5c9e1082a7

HTTP Headers

GET /LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.css?widget_version=2022-10-06_07-58-33 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"379ccfbfbc0e8b773bcc9571df44a37b"
x-request-id: 3e6277e4ee822c7f3eb0833078680fcb
x-runtime: 0.125681
content-length: 43967
cache-control: public, max-age=10793
date: Mon, 17 Oct 2022 12:44:29 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=201, origin; dur=218
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 18:53:39 GMT
expires: Tue, 10 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 582650
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

staticw2.yotpo.com/assets/yotpo-widget-font.woff?version=2022-10-06_07-58-33

95.101.97.70

200 OK

12 kB

URL HTTP/2
staticw2.yotpo.com/assets/yotpo-widget-font.woff?version=2022-10-06_07-58-33
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 12288, version 1.0\012- data
Size
12 kB (12288 bytes)
Hash
652f1f8f7ffd92a8fc5b8b1ea66dcca3
e79b5a779aa32ecb953d7c182744653b577b6000
ded3cc824f7bd6d490d247ad247bc13cd3205f3dca15e6afa78610dc8a4d1143

HTTP Headers

GET /assets/yotpo-widget-font.woff?version=2022-10-06_07-58-33 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://staticw2.yotpo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff
content-length: 12288
last-modified: Thu, 06 Oct 2022 09:02:02 GMT
etag: "633e998a-3000"
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 24 Oct 2022 12:44:29 GMT
date: Mon, 17 Oct 2022 12:44:29 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

staticw2.yotpo.com/sessions/sign_in_url

95.101.97.70

200 OK

189 B

URL HTTP/2
staticw2.yotpo.com/sessions/sign_in_url
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
189 B (189 bytes)
Hash
ee46dd7cc8bd975ac1678c6e7309bef5
04c477ae3e2dfb78bb592d4cde1df0ef197d94b2
0549ba1031c5b791cd71124a49dd034635a12db7f8a24bac91229206561ab5b8

HTTP Headers

GET /sessions/sign_in_url HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"ee46dd7cc8bd975ac1678c6e7309bef5"
x-request-id: 284c2535db361bae9649dbf3d9ecc79b
x-runtime: 0.001824
content-length: 189
cache-control: private, must-revalidate, max-age=0
date: Mon, 17 Oct 2022 12:44:29 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=37, origin; dur=108
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: https://qublivre.ca
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9a7d448d1c06f1b2a5c44b00aba1ad39
722975ac9281be0bacb12ae053acbc81168abcc3
066e668411dd7aeb7a7fc9240f8118571dc7a273e0ac085e83df706162270da2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89005
Date: Mon, 17 Oct 2022 12:44:29 GMT
Etag: "634bf26c-1d7"
Expires: Tue, 18 Oct 2022 13:27:54 GMT
Last-Modified: Sun, 16 Oct 2022 12:00:44 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pa-8UwLSDEcSw3_nThat7YMoMTq0F_xP8zAZcVanjHeiSqthf8nN7w==
Age: 5230

p.yotpo.com/i?e=pv&page=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010673942&tid=370950&vp=1280x939&ds=1268x4075&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=pv&page=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010673942&tid=370950&vp=1280x939&ds=1268x4075&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=pv&page=Qu%27allez-vous%20faire%20de%20tout%20cet%20argent%20%3F%20%E2%80%93%20QUB%20livre&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010673942&tid=370950&vp=1280x939&ds=1268x4075&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=e82a48ec-caa7-4cca-691f-1316ff4f95fb; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:29 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

p.yotpo.com/i?e=se&se_ca=reviews&se_ac=loaded&se_la=no_reviews&se_pr=2022-10-06_07-58-33&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRhdGFfc291cmNlIjoiZGVmYXVsdCJ9&dtm=1666010674317&tid=781081&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=se&se_ca=reviews&se_ac=loaded&se_la=no_reviews&se_pr=2022-10-06_07-58-33&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRhdGFfc291cmNlIjoiZGVmYXVsdCJ9&dtm=1666010674317&tid=781081&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=se&se_ca=reviews&se_ac=loaded&se_la=no_reviews&se_pr=2022-10-06_07-58-33&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRhdGFfc291cmNlIjoiZGVmYXVsdCJ9&dtm=1666010674317&tid=781081&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=764b014c-9414-4601-7c48-91093fce07ca; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:29 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

p.yotpo.com/i?e=se&se_ca=reviews&se_ac=loaded&se_la=review&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsInJldmlld19pZCI6W10sImNvdW50X3Jldmlld3MiOjB9&dtm=1666010674316&tid=458340&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=se&se_ca=reviews&se_ac=loaded&se_la=review&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsInJldmlld19pZCI6W10sImNvdW50X3Jldmlld3MiOjB9&dtm=1666010674316&tid=458340&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=se&se_ca=reviews&se_ac=loaded&se_la=review&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsInJldmlld19pZCI6W10sImNvdW50X3Jldmlld3MiOjB9&dtm=1666010674316&tid=458340&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=84fe680e-d86b-447e-5e07-a1d364049c01; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:29 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

p.yotpo.com/i?e=se&se_ca=pictures_in_reviews&se_ac=loaded&se_la=media&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImltYWdlc19pZCI6W10sImNvdW50X3BpY3R1cmVzIjowLCJ2aWRlb3NfaWQiOltdLCJjb3VudF92aWRlb3MiOjB9&dtm=1666010674300&tid=114424&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=se&se_ca=pictures_in_reviews&se_ac=loaded&se_la=media&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImltYWdlc19pZCI6W10sImNvdW50X3BpY3R1cmVzIjowLCJ2aWRlb3NfaWQiOltdLCJjb3VudF92aWRlb3MiOjB9&dtm=1666010674300&tid=114424&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=se&se_ca=pictures_in_reviews&se_ac=loaded&se_la=media&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImltYWdlc19pZCI6W10sImNvdW50X3BpY3R1cmVzIjowLCJ2aWRlb3NfaWQiOltdLCJjb3VudF92aWRlb3MiOjB9&dtm=1666010674300&tid=114424&vp=1280x939&ds=1268x5131&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=746411a4-bd9a-462f-7f54-abb9f698858d; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:29 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
979c11fbc426836d86941f9793c24be1
1cd064b371090c889bf70a26daf1ee622fbc482f
b85ca22062de4c6dd2d69cb0e3c67acc9c15528e4ce7b2de216db7a461c4ea05

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85CA22062DE4C6DD2D69CB0E3C67ACC9C15528E4CE7B2DE216DB7A461C4EA05"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8846
Expires: Mon, 17 Oct 2022 15:11:55 GMT
Date: Mon, 17 Oct 2022 12:44:29 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
12b93253342ef79319d9a856542cea83
ede33a35db73e8233d44cf218cc76356113cf0ea
e90ca31359946a420abf71d61e4fa863985075bd0357e7fc29e957d9377272c7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1425
Cache-Control: max-age=111151
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 12:44:29 GMT
Etag: "634c57cb-118"
Expires: Tue, 18 Oct 2022 19:37:00 GMT
Last-Modified: Sun, 16 Oct 2022 19:13:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280

app.backinstock.org/bis/widget/46041_1652154877.js?v=6&shop=qublivres.myshopify.com

172.64.165.28

200 OK

27 kB

URL HTTP/2
app.backinstock.org/bis/widget/46041_1652154877.js?v=6&shop=qublivres.myshopify.com
IP
172.64.165.28:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32766)
Size
27 kB (27054 bytes)
Hash
47768b081299053a028dd16ac9461b08
3b0f11e0fdf8c888fe589a6f19f49816aea1820d
00a9993c0ea826d68767d540bbf63e98f3fa08ad86a5ece04ed116bbdaff495e

HTTP Headers

GET /bis/widget/46041_1652154877.js?v=6&shop=qublivres.myshopify.com HTTP/1.1
Host: app.backinstock.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: text/javascript; charset=utf-8
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
p3p: CP="Not used"
x-frame-options: ALLOWALL
etag: W/"171d88422276d0d335d85eb9c7d71f74"
last-modified: Tue, 10 May 2022 03:54:37 GMT
cache-control: public, max-age=2629746
x-request-id: 6e90e7be-a0ec-4074-9ea5-f278ea559f32
x-runtime: 0.137911
strict-transport-security: max-age=63072000; includeSubDomains
cf-cache-status: HIT
age: 639341
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=skkDSVD1yVOaHP9cUdhtJ%2B2wlB5pB%2Bq6Pv6lmCaQipty1q%2BPVbUoxQAARTnnjeDSnLnQajnTgWLYvjmYGtRB7XTkmxak8K738Hz82u0craA8GSg7sGjyL2odgkRSyLaaHcvQAcAs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b9203d2ded768c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cks3.amplifiedcdn.com/ckjs.production.min.js?unique_id=qublivres.myshopify.com&shop=qublivres.myshopify.com

194.242.11.186

200 OK

41 kB

URL HTTP/2
cks3.amplifiedcdn.com/ckjs.production.min.js?unique_id=qublivres.myshopify.com&shop=qublivres.myshopify.com
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (31984)
Size
41 kB (41404 bytes)
Hash
aeba0b6ae3751158aeddc728b61f412f
c5896e4420d704f5d332297b971dd41e51b87fc2
16e579435871c1cc5df10acd0e7000df976e069a52e5c1db3e5b6b9e8e9d7735

HTTP Headers

GET /ckjs.production.min.js?unique_id=qublivres.myshopify.com&shop=qublivres.myshopify.com HTTP/1.1
Host: cks3.amplifiedcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:29 GMT
content-type: application/x-javascript
server: BunnyCDN-NO-830
cdn-pullzone: 621561
cdn-uid: 216bca79-88d7-4cad-80a6-fd8f6dc11de3
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=180
last-modified: Mon, 17 Oct 2022 12:44:29 GMT
x-bo-server: ASB-206
x-downloadsize: 119426
x-bo-origindownloadtime: 37
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/17/2022 12:44:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 127ead3fd9bd91a4d09abf9465c13826
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b6b2f834593981dba1864427e37a0e85
36169cd57a1080da976225f886ac8d21684f88b0
6927767dd78c7b24fdc7928f320ced954f826735eb5e8e3a919b5d418895d1e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6927767DD78C7B24FDC7928F320CED954F826735EB5E8E3A919B5D418895D1E7"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3814
Expires: Mon, 17 Oct 2022 13:48:04 GMT
Date: Mon, 17 Oct 2022 12:44:30 GMT
Connection: keep-alive

p.yotpo.com/i?e=se&se_ca=star_rating&se_ac=loaded&se_la=product_page&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRvbWFpbl9rZXkiOlsiNzAxNzkyNjAzMzYwNCJdLCJjb3VudF9wcm9kdWN0cyI6MSwiZGF0YV9zb3VyY2UiOiJkZWZhdWx0In0&dtm=1666010675236&tid=940501&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=se&se_ca=star_rating&se_ac=loaded&se_la=product_page&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRvbWFpbl9rZXkiOlsiNzAxNzkyNjAzMzYwNCJdLCJjb3VudF9wcm9kdWN0cyI6MSwiZGF0YV9zb3VyY2UiOiJkZWZhdWx0In0&dtm=1666010675236&tid=940501&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=se&se_ca=star_rating&se_ac=loaded&se_la=product_page&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTcsImRvbWFpbl9rZXkiOlsiNzAxNzkyNjAzMzYwNCJdLCJjb3VudF9wcm9kdWN0cyI6MSwiZGF0YV9zb3VyY2UiOiJkZWZhdWx0In0&dtm=1666010675236&tid=940501&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:30 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=7465cf54-9f90-427b-5d40-3c1bba33bd39; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:30 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

p.yotpo.com/i?e=se&se_ca=star_rating&se_ac=shown&se_pr=7017926033604&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010674611&tid=058821&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068

3.11.149.33

200 OK

35 B

URL HTTP/2
p.yotpo.com/i?e=se&se_ca=star_rating&se_ac=shown&se_pr=7017926033604&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010674611&tid=058821&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068
IP
3.11.149.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /i?e=se&se_ca=star_rating&se_ac=shown&se_pr=7017926033604&se_psk=7017926033604&se_va=LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy&cx=eyJwdl91dWlkIjo1MDAzMDgwOTd9&dtm=1666010674611&tid=058821&vp=1280x939&ds=1268x4189&vid=1&duid=75e1daab8854cf08&p=web&tv=js-0.13.2&fp=1326250463&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fqublivre.ca%2Fproducts%2Fquallez-vous-faire-de-tout-cet-argent%3Fvariant%3D41081408848068 HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:30 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=67b722e2-aeb1-4ebc-7f3d-6dbad14dd6dd; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Tue, 18 Oct 2022 12:44:30 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/desktop_logo.svg?v=63483648460177315301656338645

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/desktop_logo.svg?v=63483648460177315301656338645
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/desktop_logo.svg?v=63483648460177315301656338645 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/desktop_logo.svg>; rel="canonical"
server-timing: imagery;dur=60.998, imageryFetch;dur=59.351, imageryProcess;dur=0.084;desc="image"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0ee77404-4d89-437a-be5f-86648592ba45
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 00:31:12 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CPsFU9HVJx9IFx2pHngGpeLWhWJBtdSiUPnC73iSlP6JNHuAL%2Bjgc2apv7HoqDSnS9jH1buMkmIxcp3pkhHax6fUGGA%2FdTEzqYEgcBkOIM4lwbP4G5NKRS9XssSLv7oVfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029ccadb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/runtime.js?v=101389922364810948871656338707

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/runtime.js?v=101389922364810948871656338707
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/runtime.js?v=101389922364810948871656338707 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/runtime.js>; rel="canonical"
server-timing: imagery;dur=78.384, imageryFetch;dur=76.883
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e3633633-5692-4515-827e-33ab3a845464
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 04:01:53 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BavPok1R5mdOVsVGqK4C%2BbRaYJdGn5VfsTFDI6GWF6uwthGMo%2FZptu%2Bv1TtKCJFPNnY%2FNsOlbjiz3fy%2BLaasxBLcfnGdCaeblY7MezhhF%2BxP8oMgYCy9OCmRXXFzz2raXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029dcb9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
server-timing: imagery;dur=21.340, imageryFetch;dur=21.135
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1f28c208-951a-41a1-80fa-d2090995d4b1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 07 Oct 2022 13:35:50 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcrxDfQipJbdzrWUm7%2F6wil1XG%2B6YpOqufpBD8EpHCpGxXP7nvrXvPg7erZXmWgOnsGFGbQxSR8I%2BnK2r7Q7q7qjEp7xRqMgNON%2B6JaDSSYkAwkUl%2BuhvL931NoqMxLyQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029de65b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.83.91.138

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.91.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vV4mQgXI6AdUpMLjfi+k3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UQiBcoGLr43jujQ22IvpN7Zm0Js=

staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.js

95.101.97.70

200 OK

0 B

URL HTTP/2
staticw2.yotpo.com/LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.js
IP
95.101.97.70:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /LgCCWVPzAs6GxMXlZQMSSKCWZjq8uriioW1RsZRy/widget.js HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"ece8006d3c96124afcf5972483ea9214"
x-request-id: 3a2c62eb1239de68710777b5cfc0db56
x-runtime: 0.031361
cache-control: public, max-age=10800
date: Mon, 17 Oct 2022 12:44:28 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=236, origin; dur=123
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

api.1.amplifiedcdn.com/micro/api/sites?unique_id=qublivres.myshopify.com

194.242.11.186

200 OK

0 B

URL HTTP/2
api.1.amplifiedcdn.com/micro/api/sites?unique_id=qublivres.myshopify.com
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /micro/api/sites?unique_id=qublivres.myshopify.com HTTP/1.1
Host: api.1.amplifiedcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:30 GMT
content-type: application/json
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 848730
cdn-uid: 216bca79-88d7-4cad-80a6-fd8f6dc11de3
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, Token, Auth-Token, Email, access-control-allow-origin, pusher-client-token, No-Obf, CK-REQUEST-ID, CK-REQUEST-APP, Link, Current-Page, Page-Items, Total-Pages, Total-Count
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: https://qublivre.ca
access-control-expose-headers: Link, Current-Page, Page-Items, Total-Pages, Total-Count
access-control-max-age: 1728000
cache-control: public, max-age=180
etag: W/"020376a6535455e1945a3f1cff9f5529"
via: 1.1 vegur
x-request-id: fad1b5d3-ac57-4e98-98e8-ea240cb9de88
x-runtime: 0.011527
strict-transport-security: max-age=63072000; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/17/2022 12:44:30
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a08cc8c7ad2f99a302a72f65ff202153
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/template.product.chunk.4ab15.js?v=162804670778071856851656338815

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/template.product.chunk.4ab15.js?v=162804670778071856851656338815
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/template.product.chunk.4ab15.js?v=162804670778071856851656338815 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/template.product.chunk.4ab15.js>; rel="canonical"
server-timing: imagery;dur=214.162, imageryFetch;dur=82.872
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 96fe12de-5768-41c2-8270-6ab2c5ea646d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 04:04:42 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F9HxXUkZpL3CbSKt6Zg%2FbmbDmU9jc4%2B%2BXtCnHY2hklnF9o%2FywOXjBU3P53iKcFvZSGusSOGV0wV7cNiYGfPwLR0U76zxxY%2BxymfJSUI%2Bp8R%2BvJe1Pry5fxn4ogJc4%2BohEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029dcbdb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js?v=133021050396413373161656338696

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js?v=133021050396413373161656338696
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js?v=133021050396413373161656338696 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/layout.theme.chunk.29893.js>; rel="canonical"
server-timing: imagery;dur=250.079, imageryFetch;dur=50.593
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 21462240-bd85-4698-acde-414ff8f6fc23
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 06 Oct 2022 03:13:25 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i6XGFgK6RTiW6eMD8Qe%2FqQjury8E7qUCyQ4pF2NQ5vPGyb3NyB8SMX4WRRq9iTYyfDvAFyVpcyJ3QiXp0iwHg187dRUMhmY7jd5tJ0eWj3h6%2Bis4i5LnUxFzC6ATesPDdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029ecc9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

d1um8515vdn9kb.cloudfront.net/files/jquery191.min.js?gemv=1665125144253

54.230.245.90

200 OK

0 B

URL HTTP/2
d1um8515vdn9kb.cloudfront.net/files/jquery191.min.js?gemv=1665125144253
IP
54.230.245.90:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /files/jquery191.min.js?gemv=1665125144253 HTTP/1.1
Host: d1um8515vdn9kb.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 07 Oct 2022 06:47:07 GMT
last-modified: Tue, 04 Oct 2022 07:57:58 GMT
etag: W/"78aa29c1e9f487757d5c719143571db8"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Hs5x9NqvRNEI1DPN8ejLhDICLX3H8VLU9dCpuh3DRqOUG8iujzOd8A==
age: 885442
X-Firefox-Spdy: h2

ckjs.3.cartkitcdn.com/ckjs_get_version?client_version=23

194.242.11.186

200 OK

0 B

URL HTTP/2
ckjs.3.cartkitcdn.com/ckjs_get_version?client_version=23
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ckjs_get_version?client_version=23 HTTP/1.1
Host: ckjs.3.cartkitcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://qublivre.ca
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 685326
cdn-uid: 216bca79-88d7-4cad-80a6-fd8f6dc11de3
cdn-requestcountrycode: NO
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=180
etag: W/"22667c8cb48935e28d1e037572ef5df4"
via: 1.1 vegur
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
p3p: CP="Not used"
access-control-request-method: *
x-request-id: 74a104dc-50a2-49b5-b019-ee42837e5d89
x-runtime: 0.003434
strict-transport-security: max-age=63072000; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/19/2022 21:58:38
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e56e99703fe3bce751a274cbb99d9e54
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

d1um8515vdn9kb.cloudfront.net/files/gempagev2.js?v=1.0

54.230.245.90

200 OK

0 B

URL HTTP/2
d1um8515vdn9kb.cloudfront.net/files/gempagev2.js?v=1.0
IP
54.230.245.90:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /files/gempagev2.js?v=1.0 HTTP/1.1
Host: d1um8515vdn9kb.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 06:46:08 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 17 Oct 2022 12:43:04 GMT
cache-control: max-age=300
etag: W/"8022531fdc3bc21585a48443510c6ee6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8nVKYblpr5fWp4iS-tkCpwV22qiS4yGbNOCw_09jb86CLKQMk-bBHQ==
age: 82
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/plus-styles.css?v=170248547204922718651656693764

104.16.255.71

200 OK

0 B

URL HTTP/2
cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/plus-styles.css?v=170248547204922718651656693764
IP
104.16.255.71:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/files/1/0563/1793/5812/t/287/assets/plus-styles.css?v=170248547204922718651656693764 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qublivre.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 12:44:26 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0563/1793/5812/t/287/assets/plus-styles.css>; rel="canonical"
server-timing: imagery;dur=43.269, imageryFetch;dur=42.278
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 40fb9b03-7a1c-4431-ae69-e0200f2ed84c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 04:04:41 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pSsT%2F7lyBM6O535H1zoyXc4B9t5cG3P%2BzZ7pcGOaEuOgD4%2F2nVSBwn70HZDhllgEswTkOpvoGb1qrHqlTSVA%2BCpGvGx2hzEWQqMltKUWuV4RnShuV%2B2IebXZlUk%2B0K97Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b92029ecd0b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations