bookzonez.com/registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33
104.18.200.15301 Moved Permanently 0 B URL HTTP/1.1 bookzonez.com/registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33
IP 104.18.200.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33 HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 08:05:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 02 Sep 2022 09:05:58 GMT
Location: https://bookzonez.com/registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7444be632cd7b4f7-OSL
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 07:41:42 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 52lVHPM42MiyvfE-Gfkntf3Ob-g0UR_ezV9bZ5FVb0TradRNWV9JJQ==
Age: 1457
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Fri, 02 Sep 2022 09:12:02 GMT
Date: Fri, 02 Sep 2022 08:05:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b0PSzMh5AjqUaLyD26f3ETvQpLGWt22xdet4mpUnOy-kOn9BncYiCA==
age: 24642
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 08:05:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 07:38:16 GMT
Expires: Fri, 02 Sep 2022 08:14:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 24-dbcp0un71yykt62FT1chQM5rSDWtEcspDjEjCcqEf5-bET_fyrg==
Age: 1663
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:05:59 GMT
Last-Modified: Fri, 02 Sep 2022 06:34:59 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.40.152.118101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.152.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3AmXDENto/bzCuEWvupJZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4AmuuSb9DJ0k3VGR9gY3Wg9H7e8=
bookzonez.com/img/logos/books/min/bookzonez.png
104.18.199.15200 OK 2.1 kB URL HTTP/2 bookzonez.com/img/logos/books/min/bookzonez.png
IP 104.18.199.15:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash 11ac4f9cc2af7e49d3aa8c02605e1cea
de8f8d9bae84345ad426dbc69f8328cbb57a5e25
434f2667b42978ed666dd868677d104dc5f4e10f7c590d852171792cc583f0a2
GET /img/logos/books/min/bookzonez.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 2117
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-845"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a6d570af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/da.png
104.18.199.15200 OK 352 B URL HTTP/2 bookzonez.com/img/flags/min/da.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash ac122dcf0c9d72093852a94df3f69001
c808192d8f1befd3ccc20b4063d903e6b9f62062
95253486ae74b2987697e95e810fb4e2c5866e7290d3e8c3bfa64b33ed7fb76b
GET /img/flags/min/da.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-160"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a7d5d0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/es.png
104.18.199.15200 OK 344 B URL HTTP/2 bookzonez.com/img/flags/min/es.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 029b93b89bb93e4dec432acb2aa95499
53822ca2aa8828b3dce57d9fbe8c025cdce3f1ac
d0326c79a8e173153873aa2b31581b54aebc0bcbf4ab2d55807f5d84098d523b
GET /img/flags/min/es.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 344
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-158"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a7d5f0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/ar.png
104.18.199.15200 OK 428 B URL HTTP/2 bookzonez.com/img/flags/min/ar.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 4e110e39a343e4d63fe179ee1878a808
a09c49969d0fb253614f3e7bb2206151177b40c6
d42be6e56327fef927abfcdbed9a90ff588ed85eb7dc6d4fd977f23484b53776
GET /img/flags/min/ar.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 428
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-1ac"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a6d5c0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/fr.png
104.18.199.15200 OK 369 B URL HTTP/2 bookzonez.com/img/flags/min/fr.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 77723db0c670fe456d47c49b1edda010
b958d026f0d196c538600e85a2d05ce1fb9f5cd8
3f414502d6c48e571dd4baf8bfbdf6fb5dabdd791cf6c789a0264806b314ca58
GET /img/flags/min/fr.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 369
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-171"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a7d600af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/en.png
104.18.199.15200 OK 545 B URL HTTP/2 bookzonez.com/img/flags/min/en.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 83e5633f13d8eed97aaad89c42bda148
f98ebc926c3bdbdcb58ad2854aaa533226fabaae
e6cf87f6b6f6c3cd542a6156d69257c1dba10b58fa034d291bcf83b1713938e9
GET /img/flags/min/en.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 545
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-221"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a6d5b0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/de.png
104.18.199.15200 OK 364 B URL HTTP/2 bookzonez.com/img/flags/min/de.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash dd6833f4d45b73bb67785c3235c9ea5c
1a1147ea7a1d9767f9b2bdb3640152a9014c660a
21f38ae028adb9455c66a185775d4ea208add60aae4e4f2376f57227a48756a7
GET /img/flags/min/de.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 364
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16c"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a7d5e0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/it.png
104.18.199.15200 OK 367 B URL HTTP/2 bookzonez.com/img/flags/min/it.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 78490d64712a3d85eb3d33109632a977
ad97c780ac07f52e56f2292591b37c32c575ff76
0663f724002541f06390415b77e85ac575e7a37d6e4cbc560ac6f73df3a952eb
GET /img/flags/min/it.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 367
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d7d0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/no.png
104.18.199.15200 OK 397 B URL HTTP/2 bookzonez.com/img/flags/min/no.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 37de62b530e99e86f8786099b2dca8c3
f505131ad7b0e731b2b31ad9308d5cd4ee622a9c
f59e4cf0fa6ee21a54ba82946499f611b0333a1fc15e55590567a812d464b6fb
GET /img/flags/min/no.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 397
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-18d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d800af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/nl.png
104.18.199.15200 OK 310 B URL HTTP/2 bookzonez.com/img/flags/min/nl.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash cc26ac6ad68e968750752c0cde0d6892
dd4896be40309671612c6deee312da6fab236ced
e188f98c3d1c722d93cf24bb7c2561584a6fc3ea2d1ab35a7fd52b3bbb2188cd
GET /img/flags/min/nl.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 310
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-136"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d7f0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/ja.png
104.18.199.15200 OK 367 B URL HTTP/2 bookzonez.com/img/flags/min/ja.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash bdd62e57f4e74564569eb30db687fdc7
fba840b0b651ff0ea564f44ab3c71ae7f7c64e31
4f5019eb975755b20517d6cf20e32ab0730389f47752bc252537e9c8d4942983
GET /img/flags/min/ja.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 367
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d7e0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/pl.png
104.18.199.15200 OK 321 B URL HTTP/2 bookzonez.com/img/flags/min/pl.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash c310e7ff6567b10c61a3a02387fc3687
157fb1dca4970513f57945d29c5e1b7253635c27
804dd30e6b7acf54c88fc492844d920a4cd85964bbf5d59bb5684a279e377f1f
GET /img/flags/min/pl.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 321
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-141"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d820af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/pt.png
104.18.199.15200 OK 407 B URL HTTP/2 bookzonez.com/img/flags/min/pt.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 215e6c09ff86c0a60c97ff966c4bbd82
aa22d321174ec605630b69ccd65373c3ed619c71
2af22923899eea4a4997481bae73840ab2f4294798b85509f3cb63c05fe68e2c
GET /img/flags/min/pt.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 407
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-197"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a8d890af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/zh.png
104.18.199.15200 OK 349 B URL HTTP/2 bookzonez.com/img/flags/min/zh.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 0c6d1ad678de1c3807a7c832a014466e
9d8239ecc96b38f374fa066ee45091ed14adf200
0242f535f7ee0cc26bd88cc9f807ece4a6d70129303b902a232b38c58e66ef51
GET /img/flags/min/zh.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 349
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-15d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a9d950af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/logos/books/min/bookzonez_dark.png
104.18.199.15200 OK 2.1 kB URL HTTP/2 bookzonez.com/img/logos/books/min/bookzonez_dark.png
IP 104.18.199.15:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash 11ac4f9cc2af7e49d3aa8c02605e1cea
de8f8d9bae84345ad426dbc69f8328cbb57a5e25
434f2667b42978ed666dd868677d104dc5f4e10f7c590d852171792cc583f0a2
GET /img/logos/books/min/bookzonez_dark.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 2117
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-845"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6aadab0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/img/flags/min/sv.png
104.18.199.15200 OK 389 B URL HTTP/2 bookzonez.com/img/flags/min/sv.png
IP 104.18.199.15:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash feb548aeac88795159e9ed7ec2690710
cb3ef0069bf1d1e35f2bf65d385e3b8ad1f389ef
6f96fc8f9f474e8b8a6a82ed9bb5e22e19c6c5921fd363bb903fa693dfb9447a
GET /img/flags/min/sv.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 389
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-185"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a9d930af6-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 54471
expires: Wed, 23 Aug 2023 08:06:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nCfiyPiwzaQADEed2edr51yRJ8ef2SQgYuwjdt3Fgtgp%2F5yp2IWJfh7gWW2Wsl%2B%2FpkI4a1I71hpOsA%2BwXdGCishCr0vYEau0NEykJ0adXB7mw5Aar48wp3QvgzR3wXEkxM6aFUEr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7444be6b1f9a1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bookzonez.com/img/assets/secure_logos.png
104.18.199.15200 OK 19 kB URL HTTP/2 bookzonez.com/img/assets/secure_logos.png
IP 104.18.199.15:0
File type PNG image data, 320 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a0be0bcce73bae4247c5392efa2aa31
14c86aaebbba124ae2660c0d54c9df2585680b0e
d3b3674117613a2f82760267d6cc3e7d6d0f36d78163d9caaa3a49e5c68f6b0a
GET /img/assets/secure_logos.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 18919
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-49e7"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a6d590af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/feb20-cvv.png
104.18.199.15200 OK 548 B URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/feb20-cvv.png
IP 104.18.199.15:0
File type PNG image data, 116 x 74, 8-bit colormap, non-interlaced\012- data
Hash e7d042f4b98daa473b199795980e9ae7
67deb8d9d5f844766106af10c7b78e973ed632f0
2edc483bc738ee4e84219c31e674c3f5999776135682e97a332f96ed9ae6eb0c
GET /theme/Master/SubscriptionPages/img/assets/feb20-cvv.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 548
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-224"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a6d5a0af6-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
216.58.211.10200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
IP 216.58.211.10:0
Hash 92e00510c9572febe1c49a5159ded6f0
1e676a13a1ac49fdf7e6723260270e932f2f7c91
e10ac18a62800c4f67fd1e68321932da10a7cb7f71186cf60c82306f2ab0306c
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
142.250.74.72200 OK 55 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
IP 142.250.74.72:0
File type ASCII text, with very long lines (3152)
Hash 06b28295fe81fc12bf1fe6367f607922
f8db9fe62c85af0103676a8ac37757c6589edfcf
5cd555c1655f15abf94fa2603055582fe7f09171cbe625d9af6358ffa5e67591
GET /gtm.js?id=GTM-MMPL24Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 08:06:00 GMT
expires: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55122
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/webfonts/fa-solid-900.woff2
104.21.63.54200 OK 50 kB URL HTTP/2 use.fontawesome.com/releases/v5.0.13/webfonts/fa-solid-900.woff2
IP 104.21.63.54:0
File type Web Open Font Format (Version 2), TrueType, length 50372, version 1.0\012- data
Hash 8a8c0474283e0d9ef41743e5e486bf05
1ba4dd60af529d1a72d0e57467c3bc0bbb728a4d
cbbca7d9888b4a9eab7d479756d2924f9b067fd38dab376797029df741f96ee4
GET /releases/v5.0.13/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: font/woff2
content-length: 50372
x-amz-id-2: H7Eq/s7LF8pb7gAvbzxOFvJvqYXMk9rAgjBo9GMHWlB8Najafyg+HWA0q/MFpp5ECBiW8OHSdHY=
x-amz-request-id: MVZT1XS9A2CWCQ47
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:47 GMT
etag: "8a8c0474283e0d9ef41743e5e486bf05"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 751697
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bhdIe3LeB%2FFiPc4rOPYeh7jPwaYRBzPjW7sLc4Qnj1OQrb19p9As3kJ%2FM0Rjg%2FSntKBboUnTuo3clyfpTyQyztFkX2MY8Ee27sfogvzx0JSN0CmzxMb9BtdN1psacfc1Dx%2FA2gOb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7444be6c89f9b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:30:58 GMT
expires: Thu, 31 Aug 2023 19:30:58 GMT
cache-control: public, max-age=31536000
age: 131702
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/js/vendor/emerchant/browser-variables.js
104.18.199.15200 OK 8.1 kB URL HTTP/2 bookzonez.com/js/vendor/emerchant/browser-variables.js
IP 104.18.199.15:0
Hash 1936a19d82182e3be9bea593447c3508
9eb265a9618c0b340e769dfaa34748d47d805d97
ce84e82a29dbae1eb63d39f30018b08ee66a8fadbd40497d568b0f4c49166997
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/emerchant/browser-variables.js HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 31 Aug 2022 16:53:37 GMT
etag: W/"630f9211-1d1"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6acdcf0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:31:02 GMT
expires: Thu, 31 Aug 2023 19:31:02 GMT
cache-control: public, max-age=31536000
age: 131698
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
216.58.211.10200 OK 735 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 216.58.211.10:0
Hash 384bcbf19d8b04044429277e59a72df0
d8df8a19ead52cb79b02e61dddf257a5dd4de79d
456e26787cd49657cb652cf7ce1c5ca55e6e6a833e4c0bfdd970d3fe87c3086d
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Hash 16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:07:35 GMT
expires: Tue, 29 Aug 2023 21:07:35 GMT
cache-control: public, max-age=31536000
age: 298705
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data
Hash aca09278214a7e267c0498cdd36ce416
ab7def30380e8f14e6064a9fd3c7dca6769ad85d
feb9617bd3fcda1a52cbf8539985fddac2aaab0e6df8dbdac21ec3e9a179a4be
GET /s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17020
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 20:02:34 GMT
expires: Tue, 29 Aug 2023 20:02:34 GMT
cache-control: public, max-age=31536000
age: 302606
last-modified: Tue, 19 Apr 2022 18:51:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30696, version 1.0\012- data
Hash 459f6ec5f7a3d471017b70571cd93b33
c0049988a0fec891b59a5f8941b5f74093197e68
d809e5e194d9762855a81f8e4002da916b66a81ddc4b3fbdaf770ce4aa0fb560
GET /s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:38:23 GMT
expires: Wed, 30 Aug 2023 17:38:23 GMT
cache-control: public, max-age=31536000
age: 224857
last-modified: Tue, 26 Apr 2022 16:09:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-music.png
104.18.199.15200 OK 11 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-music.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 58b9b2be8030e7f2c4b780c6cc3fd455
6800dd81ef59e75dff8400e9fe2e7659fd947ef0
a83a7503187881bc7a76d93e6370db81bb55f4a61cc002282d98956ef5a3616c
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-music.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 11269
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-2c05"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c586e0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-video-camera.png
104.18.199.15200 OK 12 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-video-camera.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f56e51d73d3143c35a33715c0ef8cb7
c126962f5e76920b63b5ca48554085e6092bf5ee
f5d93398a861dd75fdfefbc842262d18b502700ae1cf4f98feee8fa69e255d86
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-video-camera.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 12437
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-3095"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c586b0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js
104.18.199.15200 OK 111 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js
IP 104.18.199.15:0
Size 111 kB (110588 bytes)
Hash 4d062b5f7fbfb8d285b81052d86d1f73
b3ca86bc1fe914c636c7deac958cf869d7d41784
c4a2a0617317163c8cbc1329be9a87b65fcf50b0e46e5b99dd4365a0c629c051
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: W/"630f920d-435fc"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6aadaa0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-gamepad.png
104.18.199.15200 OK 16 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-gamepad.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 0835a9d8f33c5738d14f691d686178d5
890020b3c276df4af14ff7413c3fc7933ebe45e1
98e619a1eba6b96ae469dccb0126f6fb1e08cfbc4ce233d9d51974680d2c5be1
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-gamepad.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 15583
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-3cdf"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c586f0af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/bg/grizzly-background.jpg
104.18.199.15200 OK 404 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/bg/grizzly-background.jpg
IP 104.18.199.15:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop 22.0 (Macintosh), datetime=2021:02:11 10:06:17], progressive, precision 8, 1024x768, components 3\012- data
Size 404 kB (403660 bytes)
Hash e514ede0dbdfad48b03bb707928e06d1
ab2230c8dd429f523e33ce068b284cb2a47b72fa
60ee051d77d13712a09ed1a13417a67e6260ca51119132048dc7a5601d6a9292
GET /theme/Master/SubscriptionPages/img/bg/grizzly-background.jpg HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/jpeg
content-length: 403660
cf-bgj: h2pri
etag: "630f920d-628cc"
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
x-fruit: banana
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c58690af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-book.png
104.18.199.15200 OK 6.4 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-book.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash beaba51a19f609cef46f0312802c3080
c9afbaa0ecc114892eba313bd4e72fe6f0cf58d9
3eaadcdc6636317c487fd1556cecb723847bfd43b581adafe43caf67241eae93
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-book.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 6417
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-1911"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c58750af6-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-gym.png
104.18.199.15200 OK 9.1 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-gym.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 13f9e87b02cc3e90a44ccaf11a9bc2e1
e499e9086d3c75440790f05cb90c45b249d8f20f
4aa8bdc7ad60f3e02283b73db27283f6391c52a80c490ef6feafd3eb9fae70fb
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-gym.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 9134
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-23ae"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c58710af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-close.png
104.18.199.15200 OK 7.8 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-close.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d011bbe41685f7060d6c3227fcf0fe4
7d7717ef1aae9591e1364c4a70e8e07877f2488c
b1449f84f6e84dbb4bfe84b57d0a61bad18bdeabf0803dd8a475bca255d63a0c
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-close.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 7825
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-1e91"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c58760af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-multiscreen.png
104.18.199.15200 OK 7.5 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/assets/grizzly-icon-multiscreen.png
IP 104.18.199.15:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash a30a8c4add86ea42d0eec9660a2d1c04
166f532da76342da0ad7a8db6aef38fad78a0b50
1ade0baa348e6919ef436e1085232055e53d9812684f501f6537ef4630b1cd12
GET /theme/Master/SubscriptionPages/img/assets/grizzly-icon-multiscreen.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 7543
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-1d77"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6c58780af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/img/placeholders/grey.png
104.18.199.15200 OK 1.9 kB URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/img/placeholders/grey.png
IP 104.18.199.15:0
File type PNG image data, 120 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 00b4a0e1255eb0c5b4d3a7ce798c975c
30217f58f0d78e5306c6d53e99c893f9715560c4
1de3af656ef34e4ee4675d72c6f456b6cd22c2bfa25343cea2f373ec37b4c6f9
GET /theme/Master/SubscriptionPages/img/placeholders/grey.png HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: image/png
content-length: 1861
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: "630f920d-745"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6d29750af6-OSL
X-Firefox-Spdy: h2
bookzonez.com/iojs/5.5.0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
104.18.199.15200 OK 76 kB URL HTTP/2 bookzonez.com/iojs/5.5.0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 104.18.199.15:0
Hash 2d94e9c11ebf5857f9fc8337b5a4a2ca
04a0b7334487d8f760befa174f60e8e32362127f
5fe7fb0fd232048d654855d80408f8b155d6bdde419e5771e736a2cff39409fa
GET /iojs/5.5.0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-cache, private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
x-fruit: banana
last-modified: Fri, 02 Sep 2022 08:06:00 GMT
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6dca380af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/webfonts/fa-regular-400.woff2
104.21.63.54200 OK 12 kB URL HTTP/2 use.fontawesome.com/releases/v5.0.13/webfonts/fa-regular-400.woff2
IP 104.21.63.54:0
File type Web Open Font Format (Version 2), TrueType, length 12188, version 1.0\012- data
Hash 33f727ccde4b05c0ed143c5cd78cda0c
0654fee7e908814ecc3baf36bfc556520f491c17
1b4c97a2809cdb53153139544e1f5db34e4917c8f01d2dd94cb9519e24e1ab3c
GET /releases/v5.0.13/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: font/woff2
content-length: 12188
x-amz-id-2: DGuuDiOGEjN+L0ADBrDRTHuSU5FHqoEjwAwFjDFkBN1BUWCx89DpHauzZwmEngQ+bZ20mwy1SJA=
x-amz-request-id: SY46B45STK5B6EKN
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:47 GMT
etag: "33f727ccde4b05c0ed143c5cd78cda0c"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ajJ0jM7rUXgZcAf0%2B9BBYaHKaYrUw7gJR6xNpHEmntqEXQBw8AluCHnjoyZ9%2FTc0AxzhV2EnZMZhv3x0QFQHqmOSVGqvt1bU9ag5j0QusXeM8zL7RWd9wMFYx85B4PUVX2tkeRWx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7444be6cba47b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1f07fe791fb5d2862a3b3f31ba49410
f494b1311d77e169b49dc951d9f193d5522bc180
1b1f4e3d9a9d762454107266114ed572cf7b9aa8bf6000b2f393983311aa2a63
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:00 GMT
Last-Modified: Fri, 02 Sep 2022 07:42:29 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
mpsnare.iesnare.com/star
54.195.39.4101 Switching Protocols 0 B IP 54.195.39.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bookzonez.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ji0qqVFOWvuAlp9piQmmmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 02 Sep 2022 08:06:00 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: ntb2eWi8IBgjEjHPX2OMmxjFYuo=
Upgrade: WebSocket
cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
54.230.245.209200 OK 18 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
IP 54.230.245.209:0
File type ASCII text, with very long lines (58159)
Hash 208999c2bfaa80353f3f37c256fd3a3d
b980b8388a475167ed9c0bf908275e5ed6b9df0e
f01fc32845b584dea4dffebe4aaa74979b46798398de2cc98a4263d1bfbf5cf5
GET /libs/amplitude-5.8.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18497
date: Sun, 29 May 2022 06:25:02 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 06 Dec 2019 21:57:52 GMT
etag: "208999c2bfaa80353f3f37c256fd3a3d"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: JayGW0K7hcKEk8hUb5nZ1QRH3tobN7O9
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vxEmcu8VQQJwjUHTdtEw4_8hkLMMXm3UCV4t944M9QyNssOr4lU1fA==
age: 8300459
X-Firefox-Spdy: h2
script.hotjar.com/modules.07ac9b8d187d510db456.js
143.204.55.96200 OK 65 kB URL HTTP/2 script.hotjar.com/modules.07ac9b8d187d510db456.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48715)
Hash fff5770f0de5c66c4269264cf792ec05
39fdb897caaa4b3d6baaee51c84f6d4ffda5e055
5a4eb0540987c1ad47a0f9080596d4476cb659f503c0b9ab0e5dddd54221deeb
GET /modules.07ac9b8d187d510db456.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65413
date: Tue, 30 Aug 2022 12:30:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "fff5770f0de5c66c4269264cf792ec05"
last-modified: Tue, 30 Aug 2022 12:29:33 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ELVkUlZ0BPgBcVwiXArcSL9OPRus1ZPzQ0uS5_h0rQM3KitMc940Wg==
age: 243353
X-Firefox-Spdy: h2
bookzonez.com/subscriptions/checkoutaff/grizzly-directX
104.18.199.15200 OK 32 kB URL HTTP/2 bookzonez.com/subscriptions/checkoutaff/grizzly-directX
IP 104.18.199.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3682), with CRLF, LF line terminators
Hash ea8e80f97cc59a97c37c0a0517d511e6
7c6d60189db6dce7251e7aee3459aec20f02c32d
20ca420453635a1cb12614bf126652afeb835abcfea4268424c0f70f6fbcf088
Analyzer Verdict Alert fortinet Phishing
GET /subscriptions/checkoutaff/grizzly-directX HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDWVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:05:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: CakeCookie[lang]=eng; path=/; secure
CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; expires=Wed, 07-Sep-2022 08:05:59 GMT; Max-Age=432000; path=/; secure
CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; expires=Wed, 07-Sep-2022 08:05:59 GMT; Max-Age=432000; path=/; secure
CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D; expires=Wed, 07-Sep-2022 08:05:59 GMT; Max-Age=432000; path=/; secure
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: DYNAMIC
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be67596e0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
mpsnare.iesnare.com/time.mp3?nocache=0.9988890323859626
54.195.39.4206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.9988890323859626
IP 54.195.39.4:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.9988890323859626 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 02 Sep 2022 08:06:00 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash 0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a
GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e4cNdRg4IGgVGls37vyUfDpox2rhpZuYpw1UvKhCq9IZEAWZv3wXMw==
age: 4404774
X-Firefox-Spdy: h2
mpsnare.iesnare.com/time.mp3?nocache=0.724187382968703
54.195.39.4206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.724187382968703
IP 54.195.39.4:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.724187382968703 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 02 Sep 2022 08:06:01 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
mpsnare.iesnare.com/5.5.0/logo.js
54.195.39.4200 OK 418 B URL HTTP/1.1 mpsnare.iesnare.com/5.5.0/logo.js
IP 54.195.39.4:0
File type ASCII text, with very long lines (377)
Hash 9b2a0d39e29f18111a7f8d67d0013d31
abc8030d3e9c6486b6ddae3cbbeac81caebf55c4
3191ddc68bc0b16b80e03ced55d8ab1a7fa73b82c636099bb9dd477bbc1825d0
GET /5.5.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 08:06:01 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Sat, 02 Sep 2023 08:06:01 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
vc.hotjar.io/sessions/916387?s=0.25&r=0.06471388330486127
54.230.111.70204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/916387?s=0.25&r=0.06471388330486127
IP 54.230.111.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/916387?s=0.25&r=0.06471388330486127 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Fri, 02 Sep 2022 08:06:01 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QW7XypwbsmEIfky89KNASfjPUvOmJ9zLFJ8olHeUinv_A3ou1gtqKQ==
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
54.195.39.4101 Switching Protocols 0 B IP 54.195.39.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bookzonez.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gz4eOc3LbU4vVu/XvjdB/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 02 Sep 2022 08:06:01 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: Mfd+j6DGAm6ufjyHhxLmvRHhJZs=
Upgrade: WebSocket
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 02 Sep 2022 08:49:34 GMT
Date: Fri, 02 Sep 2022 08:06:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 02 Sep 2022 08:49:34 GMT
Date: Fri, 02 Sep 2022 08:06:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 02 Sep 2022 08:49:34 GMT
Date: Fri, 02 Sep 2022 08:06:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 36615
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 37715
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 36291
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d848f7606889b048b6334e70d8a5e0
85239ef4f2fee8d3345e599bc942cab63ff3aaf6
da6cf33b440b51f72a70f309d62fd581aed246b6a78b8f329fa3899db15ff86d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5889
x-amzn-requestid: 42237574-f86e-4ece-b986-6d0c5910fcc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMVgHajoAMFmXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112756-48ff9d98464cf3c9680d97b4;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:42:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _7BBSlQQucoO5poncTYuX4fcmS4WFg3UcVFXalckGCCNFKJ0h5UpsQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:06:51 GMT
etag: "85239ef4f2fee8d3345e599bc942cab63ff3aaf6"
content-type: image/jpeg
age: 35950
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 37715
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e10519422b7ff91c72bcf2234cea36cf
63cff2232383d9d7f2371d1f60cf7923b629fc82
71a4bfc0031e0f6152c441f4bf413c6e953f38a587a95900f3a6c63beecafb4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12204
x-amzn-requestid: 5293c66e-68d3-472a-a6d2-69f161262f26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMLDGK6oAMFTzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112713-66d01d9c2d12d55c465c5108;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:41:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6b6K6qPPzI8g3_MADZH84JtcPaDP00roz3A-6QEpbUY3boLIPOatjg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:49:06 GMT
age: 37015
etag: "63cff2232383d9d7f2371d1f60cf7923b629fc82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=484108713&cid=210837065.1662105960&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662105959&sct=1&seg=0&dl=https%3A%2F%2Fbookzonez.com%2Fsubscriptions%2Fcheckoutaff%2Fgrizzly-directX&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=484108713&cid=210837065.1662105960&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662105959&sct=1&seg=0&dl=https%3A%2F%2Fbookzonez.com%2Fsubscriptions%2Fcheckoutaff%2Fgrizzly-directX&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=484108713&cid=210837065.1662105960&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662105959&sct=1&seg=0&dl=https%3A%2F%2Fbookzonez.com%2Fsubscriptions%2Fcheckoutaff%2Fgrizzly-directX&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://bookzonez.com
date: Fri, 02 Sep 2022 08:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 24da99bbb6147610a3cb3ea7b826a240
5314c5d75d0cab943686cafea7dc6b4066871056
aff69a9dd0a19991fc9cafa62778c5b8382961f7ac0af625a9d714ce8721ff0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 08:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Noto+Sans
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 216.58.211.10:0
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
104.18.199.15200 OK 0 B URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css
IP 104.18.199.15:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/grizzly-basic.css HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
vary: Accept-Encoding
etag: W/"630f920d-55b4"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a5d300af6-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
IP 216.58.211.10:0
GET /css?family=Raleway:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33
104.18.199.15302 Found 0 B URL HTTP/2 bookzonez.com/registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33
IP 104.18.199.15:0
GET /registration?theme=grizzly-directX&v_id=519bd43f-bc29-7b6a-fd09-9d7c59de832f&capo=dHVybmh1Yi5uZXQ=&entityId=2&info=eyJ1c2VybmFtZSI6InF3ZXJycjU0MzIxQGdtYWlsLmNvbSIsInBhc3N3b3JkIjoicXdlcnR5In0=&page=grizzly-direct&clickid=631126a980642a00012813ca&pubid=e1b43ef7&a_aid=852akasb33 HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 02 Sep 2022 08:05:59 GMT
content-type: text/html; charset=UTF-8
location: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
cf-ray: 7444be64ee180af6-OSL
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
strict-transport-security: max-age=0; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; expires=Fri, 02-Sep-2022 12:05:59 GMT; Max-Age=14400; path=/; secure; HttpOnly
CakeCookie[pubid]=ZTFiNDNlZjc%3D; expires=Sat, 02-Sep-2023 08:05:59 GMT; Max-Age=31536000; path=/; secure
CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; expires=Sat, 02-Sep-2023 08:05:59 GMT; Max-Age=31536000; path=/; secure
CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; expires=Sat, 02-Sep-2023 08:05:59 GMT; Max-Age=31536000; path=/; secure
CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; expires=Sat, 02-Sep-2023 08:05:59 GMT; Max-Age=31536000; path=/; secure
CakeCookie[lang]=eng; expires=Sat, 02-Sep-2023 08:05:59 GMT; Max-Age=31536000; path=/; secure
CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDWVn3d3yEzzz; expires=Wed, 07-Sep-2022 08:05:59 GMT; Max-Age=432000; path=/; secure
CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; expires=Fri, 09-Sep-2022 08:05:59 GMT; Max-Age=604800; path=/; secure
CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; expires=Fri, 09-Sep-2022 08:05:59 GMT; Max-Age=604800; path=/; secure
CakeCookie[password2]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
CakeCookie[transactionid]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
CakeCookie[selectedplan]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
CakeCookie[rememberme]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
CakeCookie[Naid]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
CakeCookie[viewplans]=209; expires=Sun, 04-Sep-2022 08:05:59 GMT; Max-Age=172800; path=/; secure
x-frame-options: ALLOWALL
x-fruit: banana
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 216.58.211.10:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/11/2021 06:00:03
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: cea030c76c962c96131d358c07275645
cdn-cache: HIT
cf-cache-status: HIT
age: 12193847
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7444be6b1b53b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 216.58.211.10:0
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css
104.18.199.15200 OK 0 B URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css
IP 104.18.199.15:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
vary: Accept-Encoding
etag: W/"630f920d-5fcc"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6a5d2e0af6-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Yanone+Kaffeesatz
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Yanone+Kaffeesatz
IP 216.58.211.10:0
GET /css?family=Yanone+Kaffeesatz HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP 216.58.211.10:0
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 216.58.211.10:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/css/all.css
104.21.63.54200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.0.13/css/all.css
IP 104.21.63.54:0
GET /releases/v5.0.13/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bookzonez.com
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/css
x-amz-id-2: HJ4MEFkn/6ab2JtM+bbcfHv4ZaKe9K6BhvEdI6cOqkGTFGbQlB+1sPqa7ah9aWPUQPyJOboNhps=
x-amz-request-id: 3KKN3CPW96YB18XV
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:31 GMT
etag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 12309957
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ba58k9mWwBpIAN08UE0tgwt5oDOP2cjE3MJJwK8GG%2BM7Lw4pc64lxxg0do%2Bdk5NZosBlgy3aQcLk6K3Odz22aoTLBMZgVoFT6zRK%2BnY1bnibJPWlB%2F4RhPnWUDg8xDAc9xGsCXcy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7444be6b1804b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bookzonez.com/iojs/5.5.0/logo.js
104.18.199.15200 OK 0 B URL HTTP/2 bookzonez.com/iojs/5.5.0/logo.js
IP 104.18.199.15:0
Analyzer Verdict Alert fortinet Phishing
GET /iojs/5.5.0/logo.js HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Sat, 02 Sep 2023 08:06:00 GMT
cache-control: private, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
x-fruit: banana
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6e4af50af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:200,300,400
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:200,300,400
IP 216.58.211.10:0
GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 216.58.211.10:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 08:06:00 GMT
date: Fri, 02 Sep 2022 08:06:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookzonez.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/checkoutValidation.min.js
104.18.199.15200 OK 0 B URL HTTP/2 bookzonez.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/checkoutValidation.min.js
IP 104.18.199.15:0
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/validation/min/checkoutValidation.min.js HTTP/1.1
Host: bookzonez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bookzonez.com/subscriptions/checkoutaff/grizzly-directX
Cookie: CAKEPHP=7j1sugjq38vpcshp66ogefhhjv; CakeCookie[pubid]=ZTFiNDNlZjc%3D; CakeCookie[a_aid]=ODUyYWthc2IzMw%3D%3D; CakeCookie[clickid]=NjMxMTI2YTk4MDY0MmEwMDAxMjgxM2Nh; CakeCookie[page]=Z3JpenpseS1kaXJlY3Q%3D; CakeCookie[lang]=eng; CakeCookie[userStep]=Q2FrZQ%3D%3D.sbIZDGVn3d3yEzzz; CakeCookie[username]=Q2FrZQ%3D%3D.8fVNTycl2NnxET3mqsiQOIRqqrNiaj4%3D; CakeCookie[password]=Q2FrZQ%3D%3D.8fVNTyEu; CakeCookie[viewplans]=209; CakeCookie[partnerDomain]=Q2FrZQ%3D%3D.7edMVDQ9iIi4DW%2Bs8w%3D%3D; CakeCookie[partnerDomainPlan]=Q2FrZQ%3D%3D.sbAYDg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 08:06:00 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: W/"630f920d-240e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: REVALIDATED
expires: Fri, 02 Sep 2022 12:06:00 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7444be6acdd40af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2