www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f
23.227.38.74302 Found 0 B URL HTTP/1.1 www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f
IP 23.227.38.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f HTTP/1.1
Host: www.nativepath.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 25 Jan 2023 16:38:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 136
X-Sorting-Hat-ShopId: 1401585725
X-Frame-Options: DENY
Location: https://www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f
X-Shopify-Stage: production
Content-Security-Policy: frame-ancestors 'none'; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=b77a5090-9cc4-42d2-a578-9997903e5e54
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=b77a5090-9cc4-42d2-a578-9997903e5e54
X-Dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
X-Request-ID: b77a5090-9cc4-42d2-a578-9997903e5e54
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1LPsIQm3WLzakTAmVVE%2FppbgT0bqVOdHPEw6hNdW3AYM7aBg%2FL1vcWjhCQ1z%2B%2BFEmbyJbRb3xFCt1Bg8w2KJCAMRI6tgES3PG6hWSNugzeMjEz9oWUGmi7egWWBcMHYeIpBzrg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: cfRequestDuration;dur=289.999962
Server: cloudflare
CF-RAY: 78f27049ac56b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6333
Expires: Wed, 25 Jan 2023 18:23:53 GMT
Date: Wed, 25 Jan 2023 16:38:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8770
Expires: Wed, 25 Jan 2023 19:04:30 GMT
Date: Wed, 25 Jan 2023 16:38:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 16:35:13 GMT
content-type: application/json
age: 187
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4321
Expires: Wed, 25 Jan 2023 17:50:21 GMT
Date: Wed, 25 Jan 2023 16:38:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2jtTaFOEv7+fpKKp61Qhn8Sj1PETmo+vB2U7ay7X6gzlCagGdInJ1sKeknmEorcZ9xdC3OekoKg=
x-amz-request-id: 2J5P6DF90N8CXHH7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 15:48:37 GMT
age: 2983
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 16:38:20 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b72cab8b62372edb4f06d31051cdd5dc
df9f6209ee85e9b2ac5dc494ffd90037b77d4408
fddfb926ae3f64a242a07809d300868d3ce9db72f18e978d26cc0ef8d0f498ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDDFB926AE3F64A242A07809D300868D3CE9DB72F18E978D26CC0EF8D0F498ED"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 25 Jan 2023 22:38:20 GMT
Date: Wed, 25 Jan 2023 16:38:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 15:48:59 GMT
age: 2962
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b72cab8b62372edb4f06d31051cdd5dc
df9f6209ee85e9b2ac5dc494ffd90037b77d4408
fddfb926ae3f64a242a07809d300868d3ce9db72f18e978d26cc0ef8d0f498ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDDFB926AE3F64A242A07809D300868D3CE9DB72F18E978D26CC0EF8D0F498ED"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Wed, 25 Jan 2023 22:38:20 GMT
Date: Wed, 25 Jan 2023 16:38:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8185
Expires: Wed, 25 Jan 2023 18:54:46 GMT
Date: Wed, 25 Jan 2023 16:38:21 GMT
Connection: keep-alive
push.services.mozilla.com/
50.112.247.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 50.112.247.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ucd2PQfK4cMGog7tbIhXIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g4yypt0PB8ub7iqd1Ozy83SrfrE=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 354e9cbda8c1193b5eea9e65b26317a6
6ceb7ec51042b7d36d79a068e0b82ae130fa762d
5d88a5d9403cc7e839dba0313b4525afafc46d818a6c1add9971f661c8cb5df9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D88A5D9403CC7E839DBA0313B4525AFAFC46D818A6C1ADD9971F661C8CB5DF9"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8178
Expires: Wed, 25 Jan 2023 18:54:40 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 354e9cbda8c1193b5eea9e65b26317a6
6ceb7ec51042b7d36d79a068e0b82ae130fa762d
5d88a5d9403cc7e839dba0313b4525afafc46d818a6c1add9971f661c8cb5df9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D88A5D9403CC7E839DBA0313B4525AFAFC46D818A6C1ADD9971F661C8CB5DF9"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8178
Expires: Wed, 25 Jan 2023 18:54:40 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 354e9cbda8c1193b5eea9e65b26317a6
6ceb7ec51042b7d36d79a068e0b82ae130fa762d
5d88a5d9403cc7e839dba0313b4525afafc46d818a6c1add9971f661c8cb5df9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D88A5D9403CC7E839DBA0313B4525AFAFC46D818A6C1ADD9971F661C8CB5DF9"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8178
Expires: Wed, 25 Jan 2023 18:54:40 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 354e9cbda8c1193b5eea9e65b26317a6
6ceb7ec51042b7d36d79a068e0b82ae130fa762d
5d88a5d9403cc7e839dba0313b4525afafc46d818a6c1add9971f661c8cb5df9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D88A5D9403CC7E839DBA0313B4525AFAFC46D818A6C1ADD9971F661C8CB5DF9"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8178
Expires: Wed, 25 Jan 2023 18:54:40 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/blueimp-md5/2.10.0/js/md5.js
104.17.24.14200 OK 2.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/blueimp-md5/2.10.0/js/md5.js
IP 104.17.24.14:0
Hash c372385403820e19b6a31491bb4e7997
a279f394494893aabd5b1527878b2926139b90bd
036e2b7bba7575e66923835bf1455a8eac0861b7e5035dc3e17d722f0601b3f1
GET /ajax/libs/blueimp-md5/2.10.0/js/md5.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 2194
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8b-2129"
last-modified: Mon, 04 May 2020 16:06:35 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1631126
expires: Mon, 15 Jan 2024 16:38:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQ8wnS6kfDQV92ONpK16%2BkRKYsctGaeecDtKXGfhQDBV9IbkhVf3cwuoeJds6IvvcMz9IXwnQpMTX3gLBTIzGEiMhhnZouPLG%2Feg5SdcUCQjG%2FUmbrQ9Eb9U7%2B6rvp6thidOQ1hR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78f27053da34b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn-3.convertexperiments.com/js/10034728-10032750.js
23.32.106.113200 OK 22 B URL HTTP/2 cdn-3.convertexperiments.com/js/10034728-10032750.js
IP 23.32.106.113:0
File type ASCII text, with no line terminators
Hash c4c171fe9accc64a8655faa144d53247
ca495de21aab0cc70544b2c8aa1031b8ee4b0373
122381611f85dd259faf09b253aedf5dcfc0a883331ce15cff7eda7ba4cbc059
GET /js/10034728-10032750.js HTTP/1.1
Host: cdn-3.convertexperiments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 22
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=289
date: Wed, 25 Jan 2023 16:38:22 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-975591848
142.250.74.168200 OK 66 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-975591848
IP 142.250.74.168:0
File type ASCII text, with very long lines (4061)
Hash 6ce6e064c539ce7cd2b1d55accc41a2f
709c9f8227cd78b352884477652570e0439b0d77
3a758bb96cd73be672d4b14b0170291925048e944449d11d35eae78c2dc8b8e9
GET /gtag/js?id=AW-975591848 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 25 Jan 2023 16:38:22 GMT
expires: Wed, 25 Jan 2023 16:38:22 GMT
cache-control: private, max-age=900
last-modified: Wed, 25 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 354e9cbda8c1193b5eea9e65b26317a6
6ceb7ec51042b7d36d79a068e0b82ae130fa762d
5d88a5d9403cc7e839dba0313b4525afafc46d818a6c1add9971f661c8cb5df9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D88A5D9403CC7E839DBA0313B4525AFAFC46D818A6C1ADD9971F661C8CB5DF9"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8178
Expires: Wed, 25 Jan 2023 18:54:40 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0014/0158/5725/files/logo_blue_f84a97fa-f16a-4d7c-ae70-547029aa856f.png?36651
23.227.60.200200 OK 2.8 kB URL HTTP/2 cdn.shopify.com/s/files/1/0014/0158/5725/files/logo_blue_f84a97fa-f16a-4d7c-ae70-547029aa856f.png?36651
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash f528b5a646cbd46cf80431cdeaa4a40e
b42b341dddc85c4b76bd4fa39fe363845e2bcc45
42a95dd29a448801bbf00a6575116c96f3700976cd1fa80e64d190f8a66ed9d4
GET /s/files/1/0014/0158/5725/files/logo_blue_f84a97fa-f16a-4d7c-ae70-547029aa856f.png?36651 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: image/webp
content-length: 2770
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0014/0158/5725/files/logo_blue_f84a97fa-f16a-4d7c-ae70-547029aa856f.png>; rel="canonical"
source-length: 4369
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 6d1c9ace-e1c4-4173-8846-4e83a6b45947
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 20 Jan 2023 13:57:18 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5N350Li3YASX3ZH6a5hRXXTl%2F0Pf%2BpLaon5vkDJbJ%2F8stGx66df4dNUI5YT2S1lEEf3tphwP9DHM%2BUvde%2FzOT45CQ118clu2d%2F0jZdARKsZWGpCyTC6QO854FYr4w5hDDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=144.131, imageryFetch;dur=67.218, imageryProcess;dur=75.874;desc="image", cfRequestDuration;dur=142.999887
server: cloudflare
cf-ray: 78f27053cbadb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7343790d1a01f169a2c56e32d9d8d4e3
afed1e0f5d371e6a00e5d61db0a07444a5a04e2d
92a226de284cc4771191094f7f159b910e08b4334d65f7791d8c2ca78423c3b2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 16:38:22 GMT
Last-Modified: Wed, 25 Jan 2023 15:41:08 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uMvBn_l7KBpr0X7decUpsi4RCrkaYwrIIw-XH894sWrG2VeS-po0lA==
Age: 3434
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f58683f0b081eb375b3db4812c43cf80
fdf1aa73019d23605c9f7030783954ab2b3e8f69
1617ada62108d5264d101af715f3f54b937ed8e9a4fa54310d9c58b6b4087e6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1617ADA62108D5264D101AF715F3F54B937ED8E9A4FA54310D9C58B6B4087E6B"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Wed, 25 Jan 2023 22:37:30 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29267743434097b4f1b0693aabb076c4
9577126d74228f40457e57a661a91d3cf422b704
7064fbc83035ddf442f8d69504689479b79bcbcde9737ce9f936733c18a8055e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7064FBC83035DDF442F8D69504689479B79BCBCDE9737CE9F936733C18A8055E"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Wed, 25 Jan 2023 22:38:19 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0014/0158/5725/products/Probiotic-82-CFU-1_1_3526aea5-b1c4-444a-b107-a01ff10df95c_small.png?v=1655996448
23.227.60.200200 OK 3.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0014/0158/5725/products/Probiotic-82-CFU-1_1_3526aea5-b1c4-444a-b107-a01ff10df95c_small.png?v=1655996448
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 94da1006e55bf88644ef74a1fb897ab6
e701258c4dc763c8d1d0c0bc9e3ce8161c77303d
fba0373d2985fa0e024fc922e37b2e56886e0ce016a69bcac01816966cc4d796
GET /s/files/1/0014/0158/5725/products/Probiotic-82-CFU-1_1_3526aea5-b1c4-444a-b107-a01ff10df95c_small.png?v=1655996448 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: image/avif
content-length: 3231
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0014/0158/5725/products/Probiotic-82-CFU-1_1_3526aea5-b1c4-444a-b107-a01ff10df95c_small.png>; rel="canonical"
source-length: 568589
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 92e58632-967c-452a-864b-6b3c5b967ffa
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 14:45:11 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lcoqZkzJg4XocNxikLzP3yJ%2BlPNWPQhJm2kG%2FqslfKd5HCQ36oFvInJloUyJ9wAwLn5mWfhmPJnKNVaA1%2BURl9by5wEvjJ1nHyqiYbrnQCsXQENXSvM2%2F9GJ%2FEswRRUWuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=238.289, imageryFetch;dur=60.582, imageryProcess;dur=175.515;desc="image", cfRequestDuration;dur=503.000021
server: cloudflare
cf-ray: 78f27053ebd5b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fb.nativepath.com/rd/jpx.php?sid=569&transid=&ate=
23.92.16.147200 OK 0 B URL HTTP/1.1 fb.nativepath.com/rd/jpx.php?sid=569&transid=&ate=
IP 23.92.16.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd/jpx.php?sid=569&transid=&ate= HTTP/1.1
Host: fb.nativepath.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSFL%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=a951488f-5b43-440c-9f14-99eb00e2294a; _s=543de64d-e15f-4841-a839-f595576e9622; _shopify_y=a951488f-5b43-440c-9f14-99eb00e2294a; _shopify_s=543de64d-e15f-4841-a839-f595576e9622; _orig_referrer=; _landing_page=%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 16:38:22 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Server: Apache
www.healthyclix.com/rd/jpx.php?sid=599&transid=&ate=
23.92.16.147200 OK 0 B URL HTTP/1.1 www.healthyclix.com/rd/jpx.php?sid=599&transid=&ate=
IP 23.92.16.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd/jpx.php?sid=599&transid=&ate= HTTP/1.1
Host: www.healthyclix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 16:38:22 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Server: Apache
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18876
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18876
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18876
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18876
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 16:38:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 67825
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb6c1403a1d3c878c08ccaf17f8b3d0a
7596b783e0da5fba63c49374933eccffc223d729
1524dbef51237950d4a14a0e2e053fad933dd92ee0831e2de5c45513122f1d58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6026
x-amzn-requestid: 4b05d7f7-783f-4a79-9eed-bbbeb53bc677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRQ-QHmZIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d061f4-721f473c5c8dadd163ca7689;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 22:55:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uuhyzrUcYv-zqjLZvGNYsUuAhCW2vkKpEhQQKlmfSgHDtKz0jD2PNQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 23:18:31 GMT
age: 62391
etag: "7596b783e0da5fba63c49374933eccffc223d729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
23.227.60.200200 OK 20 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19843), with no line terminators
Hash 447417271cfa3a7f546e25b27840a708
7ef501b6d92df88c255e797837efdf854b4e791d
c907e6dbd6e1034a4e741c3d23c0bc2828e2470bc9223f9449419c82b44c2fe1
GET /shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b374934e-1755-4089-b3fe-f336fbd60772
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 17 Jan 2023 11:27:34 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YprrwwBJDyWmaGtpJJ4omGfC8oeoubbywlYjMPocpBBEt6jMwd7oVsr4F4Oi6XCuTtdkG%2BZfyqSUwYObDgg98S6G8jnhWV4Ulu4nsHExQ8bPMz8ucDJlCmtvx96skEMn3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=3375.158, imageryFetch;dur=30.633, cfRequestDuration;dur=167.000055
server: cloudflare
cf-ray: 78f27053c92fb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f
23.227.38.74302 Found 32 kB URL HTTP/2 www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f
IP 23.227.38.74:0
Hash 6c007d456a3561fc23f4d3f1187136e1
d24fd37f959ed4fbf32a7c5cddd0225e583d3020
10584c4b19f981117e217e2c4ac23afb18edcd1f572bf93a269d9ad132e47b3c
GET /1401585725/orders/3d3c356f5c833ce046f14942af5d55e1/authenticate?key=ff918f72adb7f6d471ab86791e6d856f HTTP/1.1
Host: www.nativepath.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:21 GMT
content-type: text/html; charset=utf-8
location: https://www.nativepath.com/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1
x-sorting-hat-podid: 136
x-sorting-hat-shopid: 1401585725
x-frame-options: DENY
x-shopid: 1401585725
x-shardid: 136
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVZtWmpreE9HWTNNbUZrWWpkbU5tUTBOekZoWWpnMk56a3haVFprT0RVMlpnWTZCa1ZVIiwiZXhwIjoiMjAyMy0wMi0xNVQxNjozODoyMS4xMDRaIiwicHVyIjoiY29va2llLm9yZGVyIn19--8db9e26f5d977ea578ef88a60f1dc287c865cb10; path=/1401585725/orders/3d3c356f5c833ce046f14942af5d55e1; expires=Wed, 15 Feb 2023 16:38:21 GMT; secure; HttpOnly; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSFL%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=nativepath.com; path=/; expires=Thu, 26 Jan 2023 16:38:21 GMT; SameSite=Lax
_y=a951488f-5b43-440c-9f14-99eb00e2294a; Expires=Thu, 25-Jan-24 16:38:21 GMT; Domain=nativepath.com; Path=/; SameSite=Lax
_s=543de64d-e15f-4841-a839-f595576e9622; Expires=Wed, 25-Jan-23 17:08:21 GMT; Domain=nativepath.com; Path=/; SameSite=Lax
_shopify_y=a951488f-5b43-440c-9f14-99eb00e2294a; Expires=Thu, 25-Jan-24 16:38:21 GMT; Domain=nativepath.com; Path=/; SameSite=Lax
_shopify_s=543de64d-e15f-4841-a839-f595576e9622; Expires=Wed, 25-Jan-23 17:08:21 GMT; Domain=nativepath.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=edddc64c-96c6-48dd-b9b9-0c8379526bb4
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=edddc64c-96c6-48dd-b9b9-0c8379526bb4
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: edddc64c-96c6-48dd-b9b9-0c8379526bb4
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RCS%2B9SHY04maa9jIDIbprUcgAkC61IQ5BknQ9BuI4%2FlDpZOBho9RzJfwkkfdb%2FlUtTOjGYNc8bZofbx3NgvG5Y8AUYwI%2FH3DX0FAJIS%2Bv8A6Dv%2B4usi7o7SqOJNCzsJaoNfLMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=480.999947
server: cloudflare
cf-ray: 78f2704cdb39b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js
23.227.60.200200 OK 312 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32768)
Size 312 kB (311780 bytes)
Hash 4da205a45d80465ca099b44c3016628c
0a23d38bc471e4cf560724b9d6fa6df8410df3e9
feab9383c2c5e4db772f21e0207fcb1ebe2c44ea35624f9c4c7e3f77c7e846f5
GET /shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2476c193-ab47-4645-8fc2-e7bf2970318e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 12 Dec 2022 13:11:24 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yq7mSwUZyAa0RKfH82I6TqXMRQtmMpAvQsjKxXOxxJqnaJayzsG7ng4dabxU33ygcJi21h02xEJr3UwKySVnfDYpDlsSghbF2VkHFajiYsxZKc3MAZdz0TZR48jo2LlXnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=37.498, imageryFetch;dur=37.258, cfRequestDuration;dur=128.000021
server: cloudflare
cf-ray: 78f27053d959b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91b2e12a39dc4f63b9d52e8800cce1f2
42d5b4b4a091778d98c351f0002d8656449d0243
d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNys5GDKoAMFdbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 22:06:36 GMT
age: 66706
etag: "42d5b4b4a091778d98c351f0002d8656449d0243"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30923), with no line terminators
Hash 957d65dfa972893511879b4d2abce54b
a0106f59c171c72c527a88cc3b06263af186a5c4
24cae1a14856e2642826fe9d960b0e61ae60fa45a778ec61f2b7d862dc3af603
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13270
server: CloudFront
date: Wed, 25 Jan 2023 16:38:23 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 26 Jan 2023 15:01:24 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2LHEWBVxGTIAcHu9t-jq56VpXumz-N_iwYQ3S9_1bMtm7ET0QxdDBA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27495a59955e39407a5c61895805da1f
7264daf93b94cc2b71ff9e0284d1709cbb8e2756
2d3264acd4b443327e69448e9e94ef47320e8cfaa134b201d2c3a4dbd2fd1a4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6542
Cache-Control: max-age=143986
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Etag: "63d0d0e4-1d7"
Expires: Fri, 27 Jan 2023 08:38:09 GMT
Last-Modified: Wed, 25 Jan 2023 06:49:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27495a59955e39407a5c61895805da1f
7264daf93b94cc2b71ff9e0284d1709cbb8e2756
2d3264acd4b443327e69448e9e94ef47320e8cfaa134b201d2c3a4dbd2fd1a4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4530
Cache-Control: max-age=141975
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Etag: "63d0d0e4-1d7"
Expires: Fri, 27 Jan 2023 08:04:38 GMT
Last-Modified: Wed, 25 Jan 2023 06:49:08 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/cm/i?pid=9c5712b0-acc7-4ba2-adff-ef6414082bcb&u_scsid=2c20184d-8d2a-4807-95a8-91519d818f50&u_sclid=43ac4e18-1f4e-4c0e-8e87-9f65164db38c
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=9c5712b0-acc7-4ba2-adff-ef6414082bcb&u_scsid=2c20184d-8d2a-4807-95a8-91519d818f50&u_sclid=43ac4e18-1f4e-4c0e-8e87-9f65164db38c
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=9c5712b0-acc7-4ba2-adff-ef6414082bcb&u_scsid=2c20184d-8d2a-4807-95a8-91519d818f50&u_sclid=43ac4e18-1f4e-4c0e-8e87-9f65164db38c HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 461
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
access-control-allow-origin: https://www.nativepath.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItI0OHQc3TRKzjetr3hc+uajmAh0lY+WO7RISIWZlVjBhnpKP+wgyOaMgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27495a59955e39407a5c61895805da1f
7264daf93b94cc2b71ff9e0284d1709cbb8e2756
2d3264acd4b443327e69448e9e94ef47320e8cfaa134b201d2c3a4dbd2fd1a4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2300
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Last-Modified: Wed, 25 Jan 2023 16:00:03 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dfdc396af732dc191b35071db2e4ebcb
aa35bca8397d8fb996104a1421db2c2141fc8330
89743556c2278241a79b0beaae3d962639b47880001125fdf8b5e5b32cbc65f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6511
Cache-Control: max-age=114419
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Etag: "63d05d83-1d7"
Expires: Fri, 27 Jan 2023 00:25:22 GMT
Last-Modified: Tue, 24 Jan 2023 22:36:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 15:45:20 GMT
expires: Wed, 25 Jan 2023 17:45:20 GMT
cache-control: public, max-age=7200
age: 3183
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
checkout.shopify.com/1401585725/sandbox/google_maps?locale=en
23.227.38.33200 OK 12 kB URL HTTP/2 checkout.shopify.com/1401585725/sandbox/google_maps?locale=en
IP 23.227.38.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (763)
Hash 68e7db42993227064079cd1bf8ccf98e
d86f88b2eba18fd287360ada439696cfaae21f19
c7eed73ae45ea01ea0ec46a8fd43d16c3c79167b2c3851b22c22cef529dceb0a
GET /1401585725/sandbox/google_maps?locale=en HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 136
x-sorting-hat-shopid: 1401585725
vary: Accept-Encoding
x-shopid: 1401585725
x-shardid: 136
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSFL%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Thu, 26 Jan 2023 16:38:23 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.nativepath.com%2F; Expires=Wed, 08-Feb-23 16:38:23 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F1401585725%2Fsandbox%2Fgoogle_maps%3Flocale%3Den; Expires=Wed, 08-Feb-23 16:38:23 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=72790b0b-5d31-4487-b053-ac4a6ccc26e6; Expires=Thu, 25-Jan-24 16:38:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=e988c55f-8a09-460b-b49d-2a732e6b2e2c; Expires=Wed, 25-Jan-23 17:08:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=72790b0b-5d31-4487-b053-ac4a6ccc26e6; Expires=Thu, 25-Jan-24 16:38:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=e988c55f-8a09-460b-b49d-2a732e6b2e2c; Expires=Wed, 25-Jan-23 17:08:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=f44f39e0-579c-45ff-915c-14234bec7562
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=1401585725&source%5Buuid%5D=f44f39e0-579c-45ff-915c-14234bec7562
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: f44f39e0-579c-45ff-915c-14234bec7562
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVKTG3THh3JeaasVirWLPMPvmkZ7hfFVRVJeZt%2BW5Z4%2FSc5TifUi9nfsexX8v9bkNbSjOhQRyZNI%2FgbQYnUlRlTCrYCPN%2BhyLCItl4J2rcbCquWBUfNkLjLV8vLtcRERdERhluO0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=260.000229
server: cloudflare
cf-ray: 78f2705a0d2fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7ff8b5e9d45e538e53ced40e8e1efaf3
541fafd7ee292717d7f75dfc72b7f55bb164d0ac
44ba2cf871a2d94e7e41d7e913df0abab0b3ab6d2c4b72b97dc8adc34d7618a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4883
Cache-Control: max-age=97697
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Etag: "63d0228d-139"
Expires: Thu, 26 Jan 2023 19:46:40 GMT
Last-Modified: Tue, 24 Jan 2023 18:25:17 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
googleads.g.doubleclick.net/pagead/viewthroughconversion/975591848/?random=1674664701210&cv=11&fst=1674664701210&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&auid=705148954.1674664701&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 940 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/975591848/?random=1674664701210&cv=11&fst=1674664701210&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&auid=705148954.1674664701&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2015), with no line terminators
Hash fa7e346c41fd9c677c8a0581e24e752f
f241abed91965999e741facdb0ac3ab10c142073
5bccded314bfb24fa08b9b5f5420486fa2507f834a46f06011abd3c7d4e9b1cf
GET /pagead/viewthroughconversion/975591848/?random=1674664701210&cv=11&fst=1674664701210&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&auid=705148954.1674664701&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 940
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 25-Jan-2023 16:53:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 9ba458c0d3060a442f3094daf58ec05d
fc35d487d0dd81e6855f1b02367b755609d9608d
17087257ea25c2232c025f338b9f3153d35c3d953cb382b7b6e01728a643bc0b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: p+N3mUkXA1E3xBN93BaK5ccqFSIBiIOZHYxrHp8hkWXNdJWoUnK7mCOMbz5vnUNEcIYnjBk6Z5b2uqgIPhghxA==
priority: u=3,i
content-length: 27859
x-fb-trip-id: 1904183273
date: Wed, 25 Jan 2023 16:38:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
216.58.207.228302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 216.58.207.228:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dfdc396af732dc191b35071db2e4ebcb
aa35bca8397d8fb996104a1421db2c2141fc8330
89743556c2278241a79b0beaae3d962639b47880001125fdf8b5e5b32cbc65f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5651
Cache-Control: max-age=113559
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Etag: "63d05d83-1d7"
Expires: Fri, 27 Jan 2023 00:11:02 GMT
Last-Modified: Tue, 24 Jan 2023 22:36:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&ct_cookie_present=1
142.250.74.130200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&ct_cookie_present=1
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 25-Jan-2023 16:53:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/9c5712b0-acc7-4ba2-adff-ef6414082bcb.js
35.190.43.134200 OK 620 B URL HTTP/2 tr.snapchat.com/config/com/9c5712b0-acc7-4ba2-adff-ef6414082bcb.js
IP 35.190.43.134:0
Hash 3070723920dd114076cc3f2bea266a80
cb20cf21a948aeec6db52ac8cac5353cd16c4142
be43069245407d536fbd8e0f83d18d4c7f4b6d7e22eaac63f466de7f280e1351
GET /config/com/9c5712b0-acc7-4ba2-adff-ef6414082bcb.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
access-control-allow-origin: https://www.nativepath.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
2.18.172.195200 OK 1.1 kB IP 2.18.172.195:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 04cb7fc8b1e2a65a0b198cc53eb5e5cd
6d04611612d81108e856467f0e4b0479cbb37d33
1c745d8ace7ea6f8e5d7da5e9c067b7b3427ce9c5a5e2c5c35d1c345266de518
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.99200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.99:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Wed, 25 Jan 2023 16:38:23 GMT
expires: Wed, 25 Jan 2023 16:38:23 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c46b7fdec840303d50e3477dc458baa
83fc0da97a7ca44e75a773b4c1a5b7a49ab5088a
6495524a3710bbf384548b2cec3205fa4fce1a1451879f37cf98c1b947a65730
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6495524A3710BBF384548B2CEC3205FA4FCE1A1451879F37CF98C1B947A65730"
Last-Modified: Mon, 23 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Wed, 25 Jan 2023 22:38:09 GMT
Date: Wed, 25 Jan 2023 16:38:23 GMT
Connection: keep-alive
maps.gstatic.com/mapfiles/transparent.png
142.250.74.99200 OK 68 B URL HTTP/2 maps.gstatic.com/mapfiles/transparent.png
IP 142.250.74.99:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Wed, 25 Jan 2023 16:38:23 GMT
expires: Wed, 25 Jan 2023 16:38:23 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 190a3bc280ae77bcdd9d5404a4827845
7a87ca451b0fa21d44faace1c2ddbb4dede06133
95988c13b98d7164f7bf530e59b411a3ba26eab34bfb0898191e96ee29704ab0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121900758-1&cid=1081025698.1674664702&jid=1374673209&gjid=966310164&_gid=1423732851.1674664702&_u=YGBAgEABBAAAAEgCIAB~&z=1120846669
209.85.233.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121900758-1&cid=1081025698.1674664702&jid=1374673209&gjid=966310164&_gid=1423732851.1674664702&_u=YGBAgEABBAAAAEgCIAB~&z=1120846669
IP 209.85.233.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121900758-1&cid=1081025698.1674664702&jid=1374673209&gjid=966310164&_gid=1423732851.1674664702&_u=YGBAgEABBAAAAEgCIAB~&z=1120846669 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.nativepath.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.0.130200 OK 30 kB URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.0.130:0
Hash f7ec0b07fb06404dc4e2377b7dee90ce
df3c67fc7b78f80c7d7deeb484b12350a21fa638
83abdbcdd89c84b3b85b43110ba29883b097b977dff102ae5bd7f886a583cf26
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: text/javascript
last-modified: Mon, 02 Jan 2023 16:36:54 GMT
etag: W/"63b30826-aae4"
expires: Thu, 26 Jan 2023 16:38:23 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://checkout.shopify.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 00:51:42 GMT
expires: Tue, 23 Jan 2024 00:51:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 229601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 810bf2bf9f302d0a65b1e0b447b549ef
d6ddcc1e64a1392f5942c0fc45864a282a93854e
f61096b63e6f62872d6d30aac7671c72403bba82f4f5c555add8e0997675f712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 04fb584bf5028a3fb1f115ed9f529ace
22f06ccfe863a5c8a695d23de11681dc3d4835e9
c7243dabf66c180561ecc8e8a49ae109768641b51357bff356d0bb5331930b19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3740
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Last-Modified: Wed, 25 Jan 2023 15:36:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
track.sublytics-5c671946c725e.com/script/34344/AIce2QIqoVahrPwHWWDUX1J8ffEO0XGe0Kk4Lfs0
24.199.100.220200 OK 4.3 kB URL HTTP/1.1 track.sublytics-5c671946c725e.com/script/34344/AIce2QIqoVahrPwHWWDUX1J8ffEO0XGe0Kk4Lfs0
IP 24.199.100.220:0
Hash 68c43eceac41bedabf9713754d72335c
667ebaa4e2ef84d97d17e48532bcbae6149245bb
cce762e449949ddabc121981163c1bef213eb0e45e2777321b5fbbae6c29d180
Analyzer Verdict Alert fortinet Malware
GET /script/34344/AIce2QIqoVahrPwHWWDUX1J8ffEO0XGe0Kk4Lfs0 HTTP/1.1
Host: track.sublytics-5c671946c725e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Wed, 25 Jan 2023 16:38:23 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 4264
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"10a8-Zn66pOLvhNl9F+SFMry65hSSRbs"
Cache-Control: no-store, no-cache
bat.bing.com/action/0?ti=25128990&Ver=2&mid=613da18b-4cb5-41c4-b56e-49d9efb512b8&sid=ae2efc709cce11edbd31331f49676645&vid=ae2f29a09cce11ed8c97e7177733eabf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&p=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&r=<=2727&evt=pageLoad&sv=1&rn=469302
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25128990&Ver=2&mid=613da18b-4cb5-41c4-b56e-49d9efb512b8&sid=ae2efc709cce11edbd31331f49676645&vid=ae2f29a09cce11ed8c97e7177733eabf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&p=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&r=<=2727&evt=pageLoad&sv=1&rn=469302
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25128990&Ver=2&mid=613da18b-4cb5-41c4-b56e-49d9efb512b8&sid=ae2efc709cce11edbd31331f49676645&vid=ae2f29a09cce11ed8c97e7177733eabf&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&p=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&r=<=2727&evt=pageLoad&sv=1&rn=469302 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=002BE8BCDE596400367CFA18DFAC65A4; domain=.bing.com; expires=Mon, 19-Feb-2024 16:38:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5A2FCFAD0F444A708BDBEC7E65822C09 Ref B: OSL30EDGE0116 Ref C: 2023-01-25T16:38:23Z
date: Wed, 25 Jan 2023 16:38:23 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.67200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.67:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/975591848/?random=1674664701290&cv=11&fst=1674664701290&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&label=W6u0COqcpP8BEKizmdED&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1>m_ee=1&auid=705148954.1674664701&data=event%3Dpage_view%3Bpage_path%3D%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/975591848/?random=1674664701210&cv=11&fst=1674662400000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=389737199&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/975591848/?random=1674664701210&cv=11&fst=1674662400000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=389737199&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/975591848/?random=1674664701210&cv=11&fst=1674662400000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&tiba=Thank%20you%20Lapri!%20-%20NativePath%20-%20Checkout&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=389737199&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 16:38:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/25128990.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25128990.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25128990.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BDB311153BCE4E1BBE87804D7FD235C4 Ref B: OSL30EDGE0116 Ref C: 2023-01-25T16:38:23Z
date: Wed, 25 Jan 2023 16:38:23 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
2.18.172.195200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP 2.18.172.195:0
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 9f38e81402b85a781d93c6559c1c993c
6bd11dca368a57e95cb36886c55001c8c78eec3a
2bca6182492871cb4bea756b30ac91803ccbe2a44ee43aeb3d919b2c8773e8d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2192
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:24 GMT
Etag: "63d0af29-138"
Last-Modified: Wed, 25 Jan 2023 16:01:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 9f38e81402b85a781d93c6559c1c993c
6bd11dca368a57e95cb36886c55001c8c78eec3a
2bca6182492871cb4bea756b30ac91803ccbe2a44ee43aeb3d919b2c8773e8d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2177
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:24 GMT
Last-Modified: Wed, 25 Jan 2023 16:02:07 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 726f79ed38626e3b7ea4f051cfddd9ce
018c66d36d3db07220b55c1c41b973b3d5cd99aa
4b75473f5c012f09c9ed5303a179cbf3fd526043913687ba1977b223daf73b0b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2544
Cache-Control: max-age=164425
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:24 GMT
Etag: "63d13059-13a"
Expires: Fri, 27 Jan 2023 14:18:49 GMT
Last-Modified: Wed, 25 Jan 2023 13:36:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 314
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=0AIfP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czB2VjRDZTdWZnNadmNGOFMlMkI1ZnNLY002YTZtUjdYeFkxanRDQVh0VjYlMkJO; expires=Mon, 19 Feb 2024 16:38:24 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 292721
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702089&dep=5%2CEVENT_TAGS_ABSENT
2.18.172.195200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702089&dep=5%2CEVENT_TAGS_ABSENT
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702089&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpqUXpZVGxoT0RrdFlUaGpOeTAwTkdJMkxUa3dNelF0TmpneE1UVXhOMkpoTlRNNQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.nativepath.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1787656940309567
date: Wed, 25 Jan 2023 16:38:24 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1674664704.c81177f
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1674664702087&dep=2%2CPAGE_LOAD
2.18.172.195200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1674664702087&dep=2%2CPAGE_LOAD
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1674664702087&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqUTRORGxpWXpNdE1tRXpZeTAwTWpsaExXSXhPVFl0Tm1JME0yTmlOR1V5T1RRMw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.nativepath.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1023808085966632
date: Wed, 25 Jan 2023 16:38:24 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1674664704.c811780
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674664702090
2.18.172.195200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674664702090
IP 2.18.172.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2616594118097&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674664702090 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 4138349850381449
date: Wed, 25 Jan 2023 16:38:24 GMT
akamai-grn: 0.540a655f.1674664704.c8117db
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1993352314115270&ev=PageView&dl=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&rl=&if=false&ts=1674664702171&sw=1280&sh=1024&v=2.9.94&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674664702170.1650653506&it=1674664701792&coo=false&eid=e9cb7899-47B7-45C7-C146-AD94D192AF46&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1993352314115270&ev=PageView&dl=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&rl=&if=false&ts=1674664702171&sw=1280&sh=1024&v=2.9.94&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674664702170.1650653506&it=1674664701792&coo=false&eid=e9cb7899-47B7-45C7-C146-AD94D192AF46&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1993352314115270&ev=PageView&dl=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1&rl=&if=false&ts=1674664702171&sw=1280&sh=1024&v=2.9.94&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674664702170.1650653506&it=1674664701792&coo=false&eid=e9cb7899-47B7-45C7-C146-AD94D192AF46&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 25 Jan 2023 16:38:24 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
2.18.172.195200 OK 323 B IP 2.18.172.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1807242545492580
date: Wed, 25 Jan 2023 16:38:24 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1674664704.c811834
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
analytics.getshogun.com/collector.js?shop=nativepath.myshopify.com
151.101.194.133200 OK 19 kB URL HTTP/2 analytics.getshogun.com/collector.js?shop=nativepath.myshopify.com
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (61502), with no line terminators
Hash 5e35962874257349b9bd3af0fa39c50f
1dfc7ecbaecc67a925d1d0f1a9369682b8595f0f
7ab5e0eab5ac7be9c3c7e1403d334e6db26c41b46d2aeff84baa64f4f747a280
GET /collector.js?shop=nativepath.myshopify.com HTTP/1.1
Host: analytics.getshogun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Cowboy
content-type: text/javascript; charset=utf-8
last-modified: Fri, 02 Sep 2022 14:52:45 GMT
via: 1.1 vegur, 1.1 varnish, 1.1 varnish
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 16:38:24 GMT
age: 1750
x-served-by: cache-lga21953-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 17865, 8
x-timer: S1674664704.495578,VS0,VE0
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
content-length: 18643
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f27dd2e28f9b8d9d54a98aa68bf22046
7ee47f05ad0677132117fdab334e9bd4e25cc09f
9e08bcb67601b5ac84710106f1f0f27cf466a1e44b5db843e9d65d22fb5dca72
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E08BCB67601B5AC84710106F1F0F27CF466A1E44B5DB843E9D65D22FB5DCA72"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Wed, 25 Jan 2023 20:21:21 GMT
Date: Wed, 25 Jan 2023 16:38:24 GMT
Connection: keep-alive
tr.snapchat.com/scs/shopify
35.190.43.134200 OK 1.3 kB URL HTTP/2 tr.snapchat.com/scs/shopify
IP 35.190.43.134:0
Hash e1be4a478b502bd5f47a7b531282b1f9
739cb6522c5835bf94bddd29963606d0a7cd3645
7c5d388dfa9523c2c9ba950ccb09691597472456d35e313fbe573dae59b5e416
POST /scs/shopify HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://www.nativepath.com
Content-Length: 96
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
access-control-allow-origin: https://www.nativepath.com
cache-control: no-cache, no-transform
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 7.2 kB IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d31b6380fdf093f314cc2b3e8fef419b
a83efe892c9aae4a6e9719ad44478e06d613f655
037585748cf634eaee1168c972114250e51d86acb8780cdaaa640601a1cd77f9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7449929EEB46D990D180B9BDD3298F551709F20C35C250B5903F389C39A638D1"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7029
Expires: Wed, 25 Jan 2023 18:35:33 GMT
Date: Wed, 25 Jan 2023 16:38:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f27dd2e28f9b8d9d54a98aa68bf22046
7ee47f05ad0677132117fdab334e9bd4e25cc09f
9e08bcb67601b5ac84710106f1f0f27cf466a1e44b5db843e9d65d22fb5dca72
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E08BCB67601B5AC84710106F1F0F27CF466A1E44B5DB843E9D65D22FB5DCA72"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Wed, 25 Jan 2023 20:21:21 GMT
Date: Wed, 25 Jan 2023 16:38:24 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3fd4153d3edbab000778e698301763b0
1647840265463abb3641f1fee6f802997754441d
d66491e5645d2ee072f5e9a6709b0ba3d93c378893efc099fa8649aaefad364d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D66491E5645D2EE072F5E9A6709B0BA3D93C378893EFC099FA8649AAEFAD364D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19070
Expires: Wed, 25 Jan 2023 21:56:14 GMT
Date: Wed, 25 Jan 2023 16:38:24 GMT
Connection: keep-alive
gum.criteo.com/syncframe?topUrl=www.nativepath.com&origin=onetag
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.nativepath.com&origin=onetag
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 336d3e015f987a65d205999a49be4805
57a3f572cd89347b5ead196670776134f1f0f69e
9621f1cc5441ed0d364b0fb9986a8c6742af2c5c356e6e4edb432728fe319ff3
GET /syncframe?topUrl=www.nativepath.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=b6dc9008-bede-4bf1-a553-114cfbd9d9e9; expires=Mon, 19 Feb 2024 16:38:23 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 515242
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
referralprogramapp.com/js/shopify_referral_serve.js?shop=nativepath.myshopify.com
206.189.246.182200 OK 3.0 kB URL HTTP/1.1 referralprogramapp.com/js/shopify_referral_serve.js?shop=nativepath.myshopify.com
IP 206.189.246.182:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2956)
Hash 6c404b4630f0b852cc120b6582c7c04f
261257f4cb8a89ff545cfa1f3ffc0684e2af2c20
cac553aeee7f3c46424660d43fffd1ceff2ed938f3454ebdbf25063aaf72fd35
GET /js/shopify_referral_serve.js?shop=nativepath.myshopify.com HTTP/1.1
Host: referralprogramapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 2957
last-modified: Wed, 20 Apr 2022 16:23:25 GMT
etag: "6260337d-b8d"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
dnacdn.net/dna
178.250.2.146200 OK 550 B IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (621), with no line terminators
Hash a3d5e9456a2011345ae8185c3d296048
7b078ba66796513e2750ee94920c399dfe4448b0
bc8272233c22423ad53f65e0c150bf223a66c15dace25ed2ba137e690e776d20
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=0AIfP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czB2VjRDZTdWZnNadmNGOFMlMkI1ZnNLY002YTZtUjdYeFkxanRDQVh0VjYlMkJO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=E5VGjF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czB2VjRDZTdWZnNadmNGOFMlMkI1ZnNLY3dXSkVOWU5nam9LNUI4bGtqU1ZPdQ; expires=Mon, 19 Feb 2024 16:38:24 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 416961
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.judge.me/assets/judgeme_review_site.js?shop=nativepath.myshopify.com
82.102.27.18200 OK 712 B URL HTTP/2 cdn.judge.me/assets/judgeme_review_site.js?shop=nativepath.myshopify.com
IP 82.102.27.18:0
File type ASCII text, with very long lines (1331), with no line terminators
Hash f407c6a7e255e634374ff4c647e92770
0124e886d9f0e0f01f867c2b473cf707ed34eab4
12a68e4b93145023202bda0c5859253cd86bf121be3a53d1e89c0b86efae45ce
GET /assets/judgeme_review_site.js?shop=nativepath.myshopify.com HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: application/javascript
content-length: 712
last-modified: Wed, 11 Aug 2021 05:01:19 GMT
cache-control: public, max-age=7776000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/assets/judgeme_review_site.js?shop=nativepath.myshopify.com>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
referralprogramapp.com/shopify/referral/thanks.js?shop=nativepath.myshopify.com
206.189.246.182200 OK 3.1 kB URL HTTP/1.1 referralprogramapp.com/shopify/referral/thanks.js?shop=nativepath.myshopify.com
IP 206.189.246.182:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1716)
Hash 711cebce981bd9fe72545484aae5aa4d
2e5a2b859131947d8a9a0ec72357b862bdb81156
619fb6d222177e97599ac7b8012dc8bce3cedf68575c9b2eefbe4550b93b6a43
GET /shopify/referral/thanks.js?shop=nativepath.myshopify.com HTTP/1.1
Host: referralprogramapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
content-type: text/javascript; charset=UTF-8
cache-control: no-cache, private
date: Wed, 25 Jan 2023 16:38:24 GMT
content-security-policy: frame-ancestors 'self' *.myshopify.com admin.shopify.com
set-cookie: XSRF-TOKEN=eyJpdiI6Ii9hNVp4U1hBekdMTk5RNUxXcGU4MkE9PSIsInZhbHVlIjoiS2F0N2wxRzRQaUwwTmtMRjNoVzR1VkpHOWxZdWZOT2RYc1R2NXZMTUYyR0swRmozeHlsamxnL2xXZlIyQndneWd0TXdydXNiODhFZmZYQW9IbUx5cDZER0k0Q1k3eDc2VlBTVFR6akdpZlVONTg3Wm5HUW5iclc0ZVZMMFE0U3kiLCJtYWMiOiJjZGI1MmM2ZjY2NDA5NDQ1ZjVmMWUyNmEzZWZlM2E1NWI0OGY5NTRiMmJjMjQ2YjQyNTE2YzQzYjg3Nzk3YjAzIiwidGFnIjoiIn0%3D; expires=Sun, 26-Mar-2023 16:38:24 GMT; Max-Age=5184000; path=/; domain=referralprogramapp.com
cnjrd=eyJpdiI6IjlOcFJYQzVjcjJTc2lzajdvekR5YXc9PSIsInZhbHVlIjoiTW9UaHZNa1k2OFVLdkJvaU9qOWZXeElxaTVoaUhSTnVWdkRLWGEyVHJGSEdmUkE2blFOdGthNXhnSkN5R3R1eU9HQTJhYVFtQmJ4N1B1a3pJa1E0MFJzdUFONG9qYlAreUZNT3I0cUdZb1FUb3FQcXIyZXE3QmFyQmVPT2VLY2giLCJtYWMiOiI1ZjI5YmRkZWQ1NzMwZDI5NWU1M2NhOTIxNmI0ZmRlM2M1MTVjYTdmYTJkZjRkZjkzYjJmNzU3YjFmMWU4ZGMzIiwidGFnIjoiIn0%3D; expires=Sun, 26-Mar-2023 16:38:24 GMT; Max-Age=5184000; path=/; domain=referralprogramapp.com
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
transfer-encoding: chunked
api.pushnami.com/scripts/v1/pushnami-adv/5d1235f9436b2b00112131cd
54.230.111.53200 OK 64 kB URL HTTP/2 api.pushnami.com/scripts/v1/pushnami-adv/5d1235f9436b2b00112131cd
IP 54.230.111.53:0
Hash 81f685d061a8acd2334c35338a423306
e38ee58f422240fc1d532c4249ca712c98188602
e711af5915ce1478c664c1c7c196b33908e62ccb6ecb29013cc57ace973a53e2
GET /scripts/v1/pushnami-adv/5d1235f9436b2b00112131cd HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 25 Jan 2023 16:34:06 GMT
cache-control: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QSwO1PwwUCQzIroqRFu4K8Npr03XYBivqYXqwFPkPFapzeKVlU5yvw==
age: 258
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e445db9a7cc4272ed816edc3d933da11
1408e27c9e95752d603abe5c3d8d2b7aa497d5aa
813382d8e3fba590cd0637fe284203136fb41436e3ab85bc18b480d66c8a7be2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5260
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:24 GMT
Last-Modified: Wed, 25 Jan 2023 15:10:44 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
referralprogramapp.com/shopify/referral/widget.js?shop=nativepath.myshopify.com&cmp=0&modal=1
206.189.246.182200 OK 20 B URL HTTP/1.1 referralprogramapp.com/shopify/referral/widget.js?shop=nativepath.myshopify.com&cmp=0&modal=1
IP 206.189.246.182:0
ASN #14061 DIGITALOCEAN-ASN
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /shopify/referral/widget.js?shop=nativepath.myshopify.com&cmp=0&modal=1 HTTP/1.1
Host: referralprogramapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Wed, 25 Jan 2023 16:38:25 GMT
content-security-policy: frame-ancestors 'self' *.myshopify.com admin.shopify.com
set-cookie: XSRF-TOKEN=eyJpdiI6Imw1RU9BdDdHdHdQUGc4d1ZTNjFDdVE9PSIsInZhbHVlIjoia21pSkNCRFFlTDNiNXFjaXVVMC93czRVMXdnUnAvRjgvL2RSRUhQdncvRTBveTVocTVJaEFyaUxOSjEzblVKLzBLeTBRMENXczZITEtOblhoVWd6M1NyNlJCRkovMU5pQVhZT3V1MWNaOEZ1R2JJMDYwcWlTem1iV3hWMFU3U3giLCJtYWMiOiI5YmJmNDkyM2JkYTQyZjU5OWJjMDQ2YmI4OGY1Y2UyYjRlNDM5NDg5OTFkM2UxYTUyZDk4NzNhNjFlYWUyYzYzIiwidGFnIjoiIn0%3D; expires=Sun, 26-Mar-2023 16:38:25 GMT; Max-Age=5184000; path=/; domain=referralprogramapp.com
cnjrd=eyJpdiI6ImZSTmhEZTMxd2NpVXVpbE1RSVl3cEE9PSIsInZhbHVlIjoiWWZwQUJSMCsxbk5URjBUL2U0bGhnTmtRcGpHMVQrSmwzaFZHbW82OXZndzIva1VFcEhhaWxqY0FlNWl6RHRwQXJweTdJamhCN2FSUGpLZFgwOVdxaWxhalhENnB6TGMxVHBNbUQ0bU1RSUhidjRWbk9GZWpaRE5td1ltOGtHNmsiLCJtYWMiOiJkMDFlM2NmZjVkNDhmMmUwNDg0YjEwNjI4ODMwM2IwNzY1MGEyMmM2OWExZDA1MjRlZTFiY2Y4YmRlMTY2MGVlIiwidGFnIjoiIn0%3D; expires=Sun, 26-Mar-2023 16:38:25 GMT; Max-Age=5184000; path=/; domain=referralprogramapp.com
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
transfer-encoding: chunked
api.postscript.io/public/klaviyo_form_status/3640
54.230.111.11200 OK 51 B URL HTTP/2 api.postscript.io/public/klaviyo_form_status/3640
IP 54.230.111.11:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e3d57b39f6b098ce7035073d7a7759b8
470e526fe0af42bc6a155c6c2b4666e4fa3eff6f
0e8b820addb84efc36e6d86b0d5db102c120dc617061697e04c4c258ef202ff7
GET /public/klaviyo_form_status/3640 HTTP/1.1
Host: api.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 51
date: Wed, 25 Jan 2023 16:38:25 GMT
x-amzn-requestid: 43833f46-f25a-4c04-a1a7-c47a52f67de5
access-control-allow-origin: *
content-encoding: gzip
x-amzn-remapped-content-length: 37
x-amz-apigw-id: fTsoNF6noAMFtJA=
x-amzn-trace-id: Root=1-63d15b01-3388757869d4a5dd23e4f86e
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y5uaYSqK0mceB_LOivEnedfP2OW-AaqO62FiG4mxDGqdQaar3tSSLw==
X-Firefox-Spdy: h2
api.postscript.io/v2/public/popups/3640/desktop
54.230.111.11200 OK 639 B URL HTTP/2 api.postscript.io/v2/public/popups/3640/desktop
IP 54.230.111.11:0
Hash 24bd81ff897fca000e746429cd732c23
9518ec51407cd8b43256d194b173dc1a6ca2752f
3dd09150fb1dfd7dbdafdda9aa11cba15e248156a8a032c3cf02670ea81fbdc2
GET /v2/public/popups/3640/desktop HTTP/1.1
Host: api.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sdk.postscript.io/
Origin: https://sdk.postscript.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 34
date: Wed, 25 Jan 2023 16:38:25 GMT
x-amzn-requestid: bbc4d765-d348-47fd-b522-6ae3b0be832c
access-control-allow-origin: https://sdk.postscript.io
content-encoding: gzip
x-amzn-remapped-content-length: 14
x-amzn-remapped-connection: keep-alive
x-amz-apigw-id: fTsoPFgroAMFp5Q=
vary: Origin
x-amzn-remapped-server: gunicorn/20.0.4
x-amzn-remapped-date: Wed, 25 Jan 2023 16:38:23 GMT
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rX7dnt73iAL3-W9gQBM1eqc2xacnGXrA_mcqrO0NGj0SmuHZRoga_g==
X-Firefox-Spdy: h2
productreviews.shopifycdn.com/assets/v4/spr-0e683603bfa450170bff33e7fbad64e7dfe9585e1caeb951bbe283e5a2306523.js
185.146.173.20200 OK 2.7 kB URL HTTP/2 productreviews.shopifycdn.com/assets/v4/spr-0e683603bfa450170bff33e7fbad64e7dfe9585e1caeb951bbe283e5a2306523.js
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (8291), with no line terminators
Hash 76364a350b67ff386d48741ace61ed56
919883385ca728376e1cbb0f85ced7de7e1544b2
f0ceca961e69fdb80aa269f27e0faa9587e0444ad1db77b1c1319229d3adb78b
GET /assets/v4/spr-0e683603bfa450170bff33e7fbad64e7dfe9585e1caeb951bbe283e5a2306523.js HTTP/1.1
Host: productreviews.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: application/javascript
last-modified: Fri, 24 Jun 2022 17:10:46 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: origin-when-cross-origin
content-security-policy: default-src https: 'self'; font-src https: data: 'self'; frame-ancestors https: *.myshopify.com; img-src https: data: 'self'; object-src 'none'; script-src https: 'unsafe-eval' 'strict-dynamic'; style-src https: 'unsafe-inline'; upgrade-insecure-requests
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-dc: gcp-us-east1,us-east1
x-request-id: 0b2f7904-047a-4c8e-b448-f6bea8df4caa
cf-cache-status: HIT
age: 13980485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2BoKf7uXN3Pr1X9zrZYJqQtvuOms%2F7q9ytvK7%2F%2FQl0q4%2Foad8VqzA6pYdJTpKjBVxWCbkCm9knAQ5WjWY52HdeFvqmS1pQER31iUFmZriFlIU3cn%2FmySKoUDQ4cLFC8PcCjN3oh%2FNvVjSvvbYOU9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=1, socket_queue;dur=2.647, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78f270644f0e1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trc.pushnami.com/api/push/track
34.230.132.105200 OK 2 B URL HTTP/2 trc.pushnami.com/api/push/track
IP 34.230.132.105:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /api/push/track HTTP/1.1
Host: trc.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
content-type: application/x-www-form-urlencoded
key: 5d1235f9436b2b00112131cd
Origin: https://www.nativepath.com
Content-Length: 121
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:25 GMT
content-type: text/html; charset=utf-8
content-length: 2
access-control-allow-origin: *
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
intg.snapchat.com/shopify/shopify-scevent-init.js?id=9c5712b0-acc7-4ba2-adff-ef6414082bcb&shop=nativepath.myshopify.com
54.230.111.77200 OK 4.1 kB URL HTTP/2 intg.snapchat.com/shopify/shopify-scevent-init.js?id=9c5712b0-acc7-4ba2-adff-ef6414082bcb&shop=nativepath.myshopify.com
IP 54.230.111.77:0
File type ASCII text, with very long lines (10679), with no line terminators
Hash 34b39a421492e3f82e3acbeef2423e12
e9a7ab8a15289caae8739bcb9922fad78525371a
3cd5ec017928652c82f45bba9d1fa152965612c290c92415814207afa49fefb7
GET /shopify/shopify-scevent-init.js?id=9c5712b0-acc7-4ba2-adff-ef6414082bcb&shop=nativepath.myshopify.com HTTP/1.1
Host: intg.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItI0OHQc3TRKzjetr3hc+uajmAh0lY+WO7RISIWZlVjBhnpKP+wgyOaMgAAAA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 18:48:06 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 25 Jan 2023 08:30:13 GMT
etag: W/"a65742ae31227369fe79296540c138fb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t1Dlt9cERqwo1gFqlqcVd49-r6fwSrXDrHCfOMGMlGwBpc7XVhxbuw==
age: 29293
X-Firefox-Spdy: h2
sdk.postscript.io/desktop.bundle.js?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
54.230.111.55200 OK 65 kB URL HTTP/2 sdk.postscript.io/desktop.bundle.js?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
IP 54.230.111.55:0
Hash bfc0744ebe0a5c473ab9f8e92025c44d
46d5b3eaeb9769cb4413919b2e16c04ab314175d
e4b06842c23776b8cc3233486b129b5e2a4e52ea26c8c13163a2137a4ab15a6f
GET /desktop.bundle.js?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1 HTTP/1.1
Host: sdk.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sdk.postscript.io/desktop.html?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 25 Jan 2023 14:33:07 GMT
last-modified: Wed, 25 Jan 2023 14:32:16 GMT
etag: W/"bc4283b8d417d2d9f968385bbb0b5fff"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hOFrUmIUQcd2ckI9W-QXBxnznLZcIhxJg7K7m4PstdAB3D1TDRAPtA==
age: 7519
X-Firefox-Spdy: h2
api.pushnami.com/scripts/v1/gtm/GTM-PD6Z2J4?shop=nativepath.myshopify.com
54.230.111.53200 OK 1.2 kB URL HTTP/2 api.pushnami.com/scripts/v1/gtm/GTM-PD6Z2J4?shop=nativepath.myshopify.com
IP 54.230.111.53:0
Hash 3498521406a7cd8cd77094510bd0b214
e41a938f26d849aaa52bf5da13e88382d84f8db6
ea4efc2b23f898a9f76361a79815c730cca9480e9823e403db230e688bf93d41
GET /scripts/v1/gtm/GTM-PD6Z2J4?shop=nativepath.myshopify.com HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Wed, 25 Jan 2023 16:38:24 GMT
cache-control: no-cache
vary: accept-encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j6C_jppLqgxg_o95HceyczsAyyD3UhOO4flC27vx36upnIYqF5RW5g==
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702482&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
2.18.172.195200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702482&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 2.18.172.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22e9cb7899-47B7-45C7-C146-AD94D192AF46%22%7D&tid=2616594118097&cb=1674664702482&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a951488f-5b43-440c-9f14-99eb00e2294a%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1474120579703470
date: Wed, 25 Jan 2023 16:38:26 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZyOGFZSVN0S1lZazJyQnlDWTFSODJocTB6V2Z0R2k5WGlpQ2M3eklKYkt1UnlaYXVWdXczNUlJaURpSmk1RlkrOG1qdU44R2tPNDQ3Y2tsdW14S0pFOHo4c2J4bTNlTzMyL0pZRjNpSjNoRT0mZjUvbGd2Q3JzZlBtYk04dFVQUjR0dWhPWmk4PQ=="; Expires=Thu, 25 Jan 2024 16:38:26 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.540a655f.1674664706.c811c03
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 03:22:46 GMT
expires: Mon, 22 Jan 2024 03:22:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 306940
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:25 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 8503740
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
psp.pushnami.com/api/psp
54.167.183.48200 OK 2.2 kB IP 54.167.183.48:0
Hash 9ab24c723fd0301041a8ea1acaf3d937
65ce89b58b9f438c050c2d04badf65e3e83b68f6
e9c77393b331125b06ba2f30bee99d5503ebf1a1464280e4ba004e3b5f30b0a5
OPTIONS /api/psp HTTP/1.1
Host: psp.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: key
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:25 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://www.nativepath.com
access-control-allow-credentials: true
access-control-expose-headers: content-type, content-length, etag
access-control-max-age: 600
access-control-allow-headers: key
access-control-allow-methods: POST
cache-control: no-cache
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3f9519c339f9e70bc13eed2ff18678ac
597525ea0c472effb9a25d3aa59b1d0ccf2cf8d6
5278c8c21542cc16e11cd2318bb9bc696eefe0d233d23f0c7c4f5e0542356b0a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1235
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:26 GMT
Last-Modified: Wed, 25 Jan 2023 16:17:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 61ed808df18aaee0930bf2b833b2e814
96f45c743bc1790e3eb55092acd7e58d5a7819ad
74ed4feb1cf30336a7a8fb71293a7332e3ffd86c0039e6a312c59042216ea6ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74ED4FEB1CF30336A7A8FB71293A7332E3FFD86C0039E6A312C59042216EA6AD"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Wed, 25 Jan 2023 17:46:08 GMT
Date: Wed, 25 Jan 2023 16:38:27 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-fdFY1bBenS1i4uu_QetolRRb174SGTQ4LS1Qaw
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-fdFY1bBenS1i4uu_QetolRRb174SGTQ4LS1Qaw
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-fdFY1bBenS1i4uu_QetolRRb174SGTQ4LS1Qaw HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 25 Jan 2023 16:38:26 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 807516
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-7xiZx7BenS1i4uu_QetolRRb175yTZsEsdYbVg
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-7xiZx7BenS1i4uu_QetolRRb175yTZsEsdYbVg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-7xiZx7BenS1i4uu_QetolRRb175yTZsEsdYbVg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3176663073580244000V10; Expires=Thu, 25 Jan 2024 16:38:27 GMT; domain=.media.net; Path=/;
data-c-ts=1674664707;Expires=Fri, 24 Feb 2023 16:38:27 GMT;path=/;domain=.media.net;
data-c=k-7xiZx7BenS1i4uu_QetolRRb175yTZsEsdYbVg~~3;Expires=Fri, 24 Feb 2023 16:38:27 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 25 Jan 2023 16:38:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 25 Jan 2023 16:38:27 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw
216.58.207.194302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 46cbef8c9c7c44200edb53280e6be3f9
aa03906b2c6f8a712bc5f13682671067f8fe8a6d
bbab983524076f34656f2002238f901b52dbff47d9f86895e5c493f509ce4ced
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm=&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw&google_tc=
date: Wed, 25 Jan 2023 16:38:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 25-Jan-2023 16:53:27 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-qaEiirBenS1i4uu_QetolRRb175AueTO42X1Tg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-qaEiirBenS1i4uu_QetolRRb175AueTO42X1Tg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-qaEiirBenS1i4uu_QetolRRb175AueTO42X1Tg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 25 Jan 2023 16:38:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 25 Jan 2023 16:38:27 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.90307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: fd32eced-a8b3-4adf-959a-b9a02e2e53c8
Set-Cookie: uuid2=6366491459574798812; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 25-Apr-2023 16:38:27 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm=&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw&google_tc=
216.58.207.194302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm=&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw&google_tc=
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6942a3829b6179b679bdca642ed93fd8
cb96f88b67989c3fb2078a3e11a568e76869fbe6
37bf80e5f1287e031b7f8ed5a4dc903ad36636e6417122029f6cb6c331f39be8
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_cm=&google_hm=ay1YYXl1TExCZW5TMWk0dXVfUWV0b2xSUmIxNzVOc29mT2lUMkh5dw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_error=3
date: Wed, 25 Jan 2023 16:38:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 61ed808df18aaee0930bf2b833b2e814
96f45c743bc1790e3eb55092acd7e58d5a7819ad
74ed4feb1cf30336a7a8fb71293a7332e3ffd86c0039e6a312c59042216ea6ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74ED4FEB1CF30336A7A8FB71293A7332E3FFD86C0039E6A312C59042216EA6AD"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Wed, 25 Jan 2023 17:46:08 GMT
Date: Wed, 25 Jan 2023 16:38:27 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8cca49a6afbed13c2fe959d97075e294
d2868bc46ca7ebef95c84137cd06d243482c76ac
91647de93be6f04bdbad37776f595fd467c4159fd033a988df51246f0676a082
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133814
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d0bba7-1d7"
Expires: Fri, 27 Jan 2023 05:48:41 GMT
Last-Modified: Wed, 25 Jan 2023 05:18:31 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K6VxiyzYKDk3VEql_utK6frA8zvfcxxJ09zo4MHBXnmIdAd8qyyI1g==
Age: 1810
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.89.210.90302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: c621d598-aa16-443c-b193-9642cfcdd844
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 52612170df62797dcc881b2b2668d758
df7fe7b5dd2cd4f71daab9f06e869af1f2576a5d
43eb421f1b630807753ac35f46cc8a7043c31152efe53fd6291865cec8845792
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2562
Cache-Control: max-age=119469
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d080ae-1d7"
Expires: Fri, 27 Jan 2023 01:49:36 GMT
Last-Modified: Wed, 25 Jan 2023 01:06:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 18ae51937522c1f76581c6cae8ce173a
bb1bdb92ad4104beae04861d43b60db27f660be4
ea1302b427d26497beb2701a398dbe4d702296c1314ac6c2ed398ea2be586f87
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 16:38:27 GMT
Last-Modified: Wed, 25 Jan 2023 16:21:32 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qgruOB6fkxUX4zIHiXU0XTPnzDqpxGtGPBCv34yBWT6_vHTPowu9_Q==
Age: 1015
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 606b87d2de987f4bb374fdd83cb84562
b2e226130f2339c0e1a137efac27e2c32b2ad7a3
1db53000521647ea06bc596daafa5ce4af8d34b602bf0051613401ad11ee56df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1174
Cache-Control: max-age=133552
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d0bd1d-139"
Expires: Fri, 27 Jan 2023 05:44:19 GMT
Last-Modified: Wed, 25 Jan 2023 05:24:45 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-uUk0pbBenS1i4uu_QetolRRb176gWRdgXpnsmQ&expires=30
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-uUk0pbBenS1i4uu_QetolRRb176gWRdgXpnsmQ&expires=30
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-uUk0pbBenS1i4uu_QetolRRb176gWRdgXpnsmQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 611afce88997db6fdd35eb213e662871
Content-Type: image/gif
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ed18c97eed2d9efe21769f540ff0ea80
fc0698f3497ba517620518ee0b5a90a51a007e1f
8090e4e6418c2e6a8ca45ee9412fb79ca1efb1f5f377806fb12232f4611b16f9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 16:38:27 GMT
Last-Modified: Wed, 25 Jan 2023 15:16:40 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: l66xWEiFsgop8C4QfbDZITHUY6rORkpcSODvuY96aJ5CvL-G5E5VUA==
Age: 4907
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash debb9dfabd1a821241ec043c314e0714
39a7d341a0b700932390456fff4cfc21ededd955
31a5325ae7db20eef29f49ffbeca46a3dbb4a6a107a51e2f190bc8875a17c2b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4718
Cache-Control: max-age=171278
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d142a3-1d7"
Expires: Fri, 27 Jan 2023 16:13:05 GMT
Last-Modified: Wed, 25 Jan 2023 14:54:27 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6830300916322964cd95bcf3c3b4271a
e3710804dc7bad6b8d23d829559d1979164b57ae
7745367ecd96612f496b7ab954df858df86d1d8b1264db1e593ef0dbeaaaa6b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7745367ECD96612F496B7AB954DF858DF86D1D8B1264DB1E593EF0DBEAAAA6B7"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10492
Expires: Wed, 25 Jan 2023 19:33:19 GMT
Date: Wed, 25 Jan 2023 16:38:27 GMT
Connection: keep-alive
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-J4h_ELBenS1i4uu_QetolRRb1770njs1x0b_yA
185.86.139.57200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-J4h_ELBenS1i4uu_QetolRRb1770njs1x0b_yA
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-J4h_ELBenS1i4uu_QetolRRb1770njs1x0b_yA HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 25 Jan 2023 16:38:26 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6567552466888418960; expires=Sun, 25 Feb 2024 16:38:27 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 25 Feb 2024 16:38:27 GMT; domain=smartadserver.com; path=/
csync=79:k-J4h_ELBenS1i4uu_QetolRRb1770njs1x0b_yA; expires=Thu, 25 Jan 2024 16:38:27 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-IMtAX7BenS1i4uu_QetolRRb174ul2dAL82MLQ
3.125.215.124204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-IMtAX7BenS1i4uu_QetolRRb174ul2dAL82MLQ
IP 3.125.215.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-IMtAX7BenS1i4uu_QetolRRb174ul2dAL82MLQ HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 25 Jan 2023 16:38:27 GMT
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-Tbu3qrBenS1i4uu_QetolRRb175C1z8Ls8mTAA
37.157.6.241200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-Tbu3qrBenS1i4uu_QetolRRb175C1z8Ls8mTAA
IP 37.157.6.241:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-Tbu3qrBenS1i4uu_QetolRRb175C1z8Ls8mTAA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
content-length: 43
last-modified: Thu, 11 Apr 2019 06:08:57 GMT
etag: "5caed9f9-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9deffb01b0956ba550af39da6805f9d6
1986db7ca7c43eb14f5b44ad2e24bd86c17107f5
52bac0e6f41bb67e615b3fa7e73c015d0073408a7f96bad4c5bd72c8af15cf01
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6433
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Last-Modified: Wed, 25 Jan 2023 14:51:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ
104.18.33.19302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ&C=1
cf-ray: 78f27074da19fab4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9FbA5.3tq.lRSpMXIGpMwAA; Path=/; Domain=casalemedia.com; Expires=Thu, 25 Jan 2024 16:38:27 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=708; Path=/; Domain=casalemedia.com; Expires=Tue, 25 Apr 2023 16:38:27 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=708; Path=/; Domain=casalemedia.com; Expires=Tue, 25 Apr 2023 16:38:27 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mzJFdos2DlQYdZs7IKRoRiFEeM5NY2ToofGpyX7%2By3U2ORrJoH4J4mwepVVhQee4%2FJ9XHlb%2BYV50JBowG2hYEksgI4B3SgUAbd2WRt5Unsprd7nIZ3ZZDaBEmFEl2gsMQ0vk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
id5-sync.com/s/966/9.gif?puid=k-Yhrxz7BenS1i4uu_QetolRRb175IWDF6BUqYsw
162.19.138.82200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-Yhrxz7BenS1i4uu_QetolRRb175IWDF6BUqYsw
IP 162.19.138.82:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-Yhrxz7BenS1i4uu_QetolRRb175IWDF6BUqYsw HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Wed, 25-Jan-2023 16:43:27 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Wed, 25 Jan 2023 16:38:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ad.yieldlab.net/m?dt_id=8664&ext_id=k-NcALi7BenS1i4uu_QetolRRb176ZjjLuN-g0mg
23.32.110.31204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-NcALi7BenS1i4uu_QetolRRb176ZjjLuN-g0mg
IP 23.32.110.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-NcALi7BenS1i4uu_QetolRRb176ZjjLuN-g0mg HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 24 Jan 2023 16:38:27 GMT
Date: Wed, 25 Jan 2023 16:38:27 GMT
Connection: keep-alive
Set-Cookie: id=64cc5d94-5916-4160-99d9-59e427786105; Path=/; Domain=prod.svc.y6b.de; Expires=Thu, 25-Jan-2024 16:38:27 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1531981ef9429a92d7d8b4f1cbfbf422
f8de480a953b7ea586424919c5d7cb0f4850d257
31972e06370f524818209ead030c043155d5271bca62836b9f2ef097607cbc90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6046
Cache-Control: max-age=153527
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d0f81c-1d7"
Expires: Fri, 27 Jan 2023 11:17:14 GMT
Last-Modified: Wed, 25 Jan 2023 09:36:28 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBANb0WMCEC8mdu68uPm67SOuX8yLt_IFEgEBAQGs0mPbYwAAAAAA_eMAAA&S=AQAAAvIpgJRorNBYTa0Axb78KOQ; Expires=Thu, 25 Jan 2024 22:38:27 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 44369a627241523e4c1072642d968ce1
bbc608ce23c6fca27865967858b9a28438ab8b69
69e91b1c46a29147ba3c3dde85e011b5f9834599a98488e47c9b86db8abc8877
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 13:56:49 GMT
Expires: Tue, 31 Jan 2023 13:56:48 GMT
Etag: "bbc608ce23c6fca27865967858b9a28438ab8b69"
Cache-Control: max-age=508100,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78f270740fb50b4d-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8d8c78e0f8489123b947ef59de71c4e9
0e2522b86720a568ef6e22672be698f5f52d1f54
90e0d90736d59a7b885b91c0ca566731deceba8b97c6a09682ebb04a78cb6045
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164388
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d1281e-1d7"
Expires: Fri, 27 Jan 2023 14:18:15 GMT
Last-Modified: Wed, 25 Jan 2023 13:01:18 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dlH4Mx2r_gw7ayERWqVIZFIeEkFAgwmpDE-ADej3JNtLyBFl3nCFEQ==
Age: 4617
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ&C=1
104.18.33.19200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ&C=1
IP 104.18.33.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-AdUjbLBenS1i4uu_QetolRRb175tisew_2IsUQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
content-length: 43
cf-ray: 78f270753a4efab4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gRw1XRFsFErkGkUuFoBMtB34UcQdENG8Ob29oOdB8%2BMs5lVnloHmfQB%2FVtCeQUz%2FAHqDPGtjq%2B7bO3PWVspgntzfTUAUXr%2B49NjmoEARtKhHnnRAaZBaaGmrBwZPfgWm%2Bj3f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 16:38:26 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ&KRTB&23144-uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ&KRTB&23286-uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ&KRTB&23287-uid:k-GIbte7BenS1i4uu_QetolRRb177P5yXl7BNJFQ; domain=pubmatic.com; secure; expires=Fri, 24-Feb-2023 16:38:26 GMT; path=/
PugT=1674664706; domain=pubmatic.com; secure; expires=Fri, 24-Feb-2023 16:38:26 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash c8dfbf9a152da69d245ea5c1ed91b09a
df7782514d4738747d3fe5febae7c512584bc97d
66b6b020d55288226205fdd1d8e1f087b6f30a16b8b15bdeda87839d7b02a06a
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 24 Jan 2023 21:11:53 GMT
Expires: Wed, 25 Jan 2023 21:11:53 GMT
ETag: "df7782514d4738747d3fe5febae7c512584bc97d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fa7b5c2f50f3b0b9b031eeeeef94bb48
515300e1d356d423dbbfed39fca256483a402640
ed3a0d7008215a0156ad4ee865ecf19d223161572e0a1d46fe8c930110da296f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5928
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Last-Modified: Wed, 25 Jan 2023 14:59:39 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-_D-bu7BenS1i4uu_QetolRRb17784_91GbTZLg&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 25 Jan 2023 16:38:27 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBANb0WMCEKYK49u9Ib8Ca2JC0yMDU-wFEgEBAQGs0mPbYwAAAAAA_eMAAA&S=AQAAApDu4VLtMHKFiBOnaKQNaKQ; Expires=Thu, 25 Jan 2024 22:38:27 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30
18.196.140.228302 Found 12 kB URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30
IP 18.196.140.228:0
Hash 16a8e3898ad9aebb8da80b3f45c4e547
1d86390a2db1b28e068bc8abfd9a7b1981d3768a
489f7ab58e875da8213716ae136c54d1a39319fef3b12328aa198e4b89470af8
GET /sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=1fc8d026-6135-41a4-bfec-13a4db73eec7; path=/; expires=Thu, 25-Jan-2024 16:38:27 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674664707; path=/; expires=Thu, 25-Jan-2024 16:38:27 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1674664707; path=/; expires=Thu, 25-Jan-2024 16:38:27 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674664707; path=/; expires=Thu, 25-Jan-2024 16:38:27 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-gbhT-7BenS1i4uu_QetolRRb177Srfd80mxOnA&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-gbhT-7BenS1i4uu_QetolRRb177Srfd80mxOnA&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-gbhT-7BenS1i4uu_QetolRRb177Srfd80mxOnA&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
e1.emxdgt.com/put?d=d53&uid=k-jgEKALBenS1i4uu_QetolRRb176uYNxCO2zPqXJSAhRCRo8x
3.75.3.113204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-jgEKALBenS1i4uu_QetolRRb176uYNxCO2zPqXJSAhRCRo8x
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-jgEKALBenS1i4uu_QetolRRb176uYNxCO2zPqXJSAhRCRo8x HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Wed, 25 Jan 2023 16:38:27 GMT
content-length: 0
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b653b7190ebaaf7ab6cb4f1f7fe85869
82738acdfaf21f96822cb7d9e9dfaf55fdba921a
2cde59a5adcf8927c2cc056ba3ef66cd37d400290b0df0a22eef8d4c24477d1b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6203
Cache-Control: max-age=109095
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d049ef-1d7"
Expires: Thu, 26 Jan 2023 22:56:42 GMT
Last-Modified: Tue, 24 Jan 2023 21:13:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-M0XTI7BenS1i4uu_QetolRRb174J7NPpJi737g
3.67.249.189302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-M0XTI7BenS1i4uu_QetolRRb174J7NPpJi737g
IP 3.67.249.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-M0XTI7BenS1i4uu_QetolRRb174J7NPpJi737g HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-M0XTI7BenS1i4uu_QetolRRb174J7NPpJi737g
set-cookie: tuuid=6d325039-38ea-42b3-9a8f-fb725f1cae58; Expires=Tue, 25 Apr 2023 16:38:27 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1674664707; Expires=Tue, 25 Apr 2023 16:38:27 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30
18.196.140.228200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30
IP 18.196.140.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-qNxiEbBenS1i4uu_QetolRRb176Kpj1Ge3AShw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.248.130.67302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.248.130.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0f822ad5b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=61679816756467012510794363568953199039; Max-Age=15552000; Expires=Mon, 24 Jul 2023 16:38:27 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: HHtsLqxDRGE=
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 6770f5b294e115e4608566e7a19e36ec
8dc476d0e90508aa9f2ecae6097c424c5f4a8c3d
d6a7a2f20cbc2b946af0376b40c3b6e8751f55d22c209ddf5f08f642eb3912c3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156956
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d11a03-1d7"
Expires: Fri, 27 Jan 2023 12:14:23 GMT
Last-Modified: Wed, 25 Jan 2023 12:01:07 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IYVgXg3kHnO4ICir44m0VDneanEtXhW8MWU9LyKFqx6rN7U1alZM5A==
Age: 796
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.248.130.67200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.248.130.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0e6039550.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: KWfP5q60SHY=
Content-Length: 59
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 812fb3f395de762bb3a732416716e8b1
3524adf19df9ef9821ef4da6ed511ff0f7585109
e850f807723e576dcf66484fac9f032561ca764c91f71b3979bff8ec01c62e67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93084
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d011a9-1d7"
Expires: Thu, 26 Jan 2023 18:29:51 GMT
Last-Modified: Tue, 24 Jan 2023 17:13:13 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1yMjwj7uzYnTEDn7hdku8MJSXYLSjHWEDXemdrnBxkxnPPLtFarRKA==
Age: 4598
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:26 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 676436
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-KW4Ge7BenS1i4uu_QetolRRb1754w1i_B6XC8A&pn_id=criteo&ext=1
54.155.179.95200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-KW4Ge7BenS1i4uu_QetolRRb1754w1i_B6XC8A&pn_id=criteo&ext=1
IP 54.155.179.95:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-KW4Ge7BenS1i4uu_QetolRRb1754w1i_B6XC8A&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gb4a1dfd2211f9adbb56%7C1674664707551%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 25-Jan-2024 16:38:27 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-KW4Ge7BenS1i4uu_QetolRRb1754w1i_B6XC8A; Domain=ads.yieldmo.com; Expires=Thu, 25-Jan-2024 16:38:27 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-2YpH8rBenS1i4uu_QetolRRb176XH12tUtqkog
64.202.112.127200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-2YpH8rBenS1i4uu_QetolRRb176XH12tUtqkog
IP 64.202.112.127:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash 57de7889684b7342664382aae05316c4
44d54401eeb29a21e7d6b18413bc4970882a740f
b18923e52113e8f3bc192baf1eb97dcf63c19a97b9405334b2c03974c48aec0c
GET /cookie-sync?p=criteo&uid=k-2YpH8rBenS1i4uu_QetolRRb176XH12tUtqkog HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: d1a099767e44bdc5c398e4646721919a
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2f8e9b871ca0e83a911bbad69cd369dd
3ec67a8b0fa439d8f2b5529c5de01b812505bffc
a1bf81e8219136621b3ac0697c35e68ce0cf56b0b019634329441c5baa105849
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 16:38:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 03:11:55 GMT
Expires: Wed, 01 Feb 2023 03:11:54 GMT
Etag: "3ec67a8b0fa439d8f2b5529c5de01b812505bffc"
Cache-Control: max-age=555806,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78f270752df0b515-OSL
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_error=3
178.250.0.163200 OK 86 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_error=3
IP 178.250.0.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f0a190ee3f4b51131a92dcc05b45944d
6c85ae39ef96d7bafaf5ee812be7a6a1fec6bc8e
4838e507baddf306824b66278d79a12fc3c670e97aa0883eb2af83b25cf302d6
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-XayuLLBenS1i4uu_QetolRRb175NsofOiT2Hyw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 270066
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-S7HchbBenS1i4uu_QetolRRb177Oo3loTN5sTA
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-S7HchbBenS1i4uu_QetolRRb177Oo3loTN5sTA
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-S7HchbBenS1i4uu_QetolRRb177Oo3loTN5sTA HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=8677b8fdb1ea0880d367e12757c6b412; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 25 Jan 2023 16:38:27 GMT
content-length: 49
x-envoy-upstream-service-time: 24
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 88121c5fdf79609aa3e266d8dcc4b4a6
e96c329efb6f59c01a5fa88308fcc676724849bd
d557b83e793cbacfd23e478f0a799f7c7bf333a6b111463e338159546b3c06af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3620
Cache-Control: max-age=159775
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 16:38:27 GMT
Etag: "63d119ff-1d7"
Expires: Fri, 27 Jan 2023 13:01:22 GMT
Last-Modified: Wed, 25 Jan 2023 12:01:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
34.253.52.2204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 34.253.52.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 25 Jan 2023 16:38:27 GMT
set-cookie: _kuid_=PVxDBkOo; Expires=Mon, 24-Jul-23 16:38:27 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n024-dub-prod.krxd.net
x-request-time: D=31 t=1674664707
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 25 Jan 2023 16:38:27 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 415243
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash a0fd48b4d69066e7d08e03ebe0089030
5aa2af3a9d8c37f4dd1f70bbdf7f6cf77dc86ebe
79076dcb6c67e8e4916fa0981e85fcd09fb0ef8a5d6e0092af18e39ddaef5fc7
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "79076DCB6C67E8E4916FA0981E85FCD09FB0EF8A5D6E0092AF18E39DDAEF5FC7"
Last-Modified: Wed, 25 Jan 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3415
Expires: Wed, 25 Jan 2023 17:35:23 GMT
Date: Wed, 25 Jan 2023 16:38:28 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
18.116.2.22200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 18.116.2.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:28 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: b1f9af40-9cce-11ed-b1fe-0000ac170325
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
sdk.postscript.io/desktop.html?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
54.230.111.55200 OK 0 B URL HTTP/2 sdk.postscript.io/desktop.html?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
IP 54.230.111.55:0
GET /desktop.html?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1 HTTP/1.1
Host: sdk.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Wed, 25 Jan 2023 14:33:07 GMT
last-modified: Wed, 25 Jan 2023 14:32:16 GMT
etag: W/"505b29356e279c4d54c10e02c38e5f1c"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: psZbDRp-TJZoL65DDbSpxcaQdt7lJo5uTczOartTwxf0_G937ehYCg==
age: 7518
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/checkout/esnext/sandboxed_services-00fe4e1da267cb8ce9e2e0b5f9d3a6f92c7c7fd06aad1d2a09b91e58075b3f20.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/checkout/esnext/sandboxed_services-00fe4e1da267cb8ce9e2e0b5f9d3a6f92c7c7fd06aad1d2a09b91e58075b3f20.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/checkout/esnext/sandboxed_services-00fe4e1da267cb8ce9e2e0b5f9d3a6f92c7c7fd06aad1d2a09b91e58075b3f20.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://checkout.shopify.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/checkout/esnext/sandboxed_services-00fe4e1da267cb8ce9e2e0b5f9d3a6f92c7c7fd06aad1d2a09b91e58075b3f20.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c440c1f8-4f18-42db-94a6-5a1f76e3a501
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 05:10:36 GMT
cf-cache-status: HIT
age: 13174066
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m8n%2BzxU5DpyzmmKzCOS4VaCVM%2F1dgVW%2FLGq98QF01dcRKTZC1uafWtZ60hJSToRMXQKy16aTH7tCGh1RyEnh%2FAylCesBq1WVuACYewK35Eq6P5rUt6s2SGPq6k7HCd4D1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=46.589, imageryFetch;dur=46.429, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78f2705bad73b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-527-2LBenS1i4uu_QetolRRb177MhZEUYpi3WQ
34.237.150.16200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-527-2LBenS1i4uu_QetolRRb177MhZEUYpi3WQ
IP 34.237.150.16:0
GET /sync?UICR=k-527-2LBenS1i4uu_QetolRRb177MhZEUYpi3WQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/1401585725/javascripts/checkout_countries/128025428105/en/countries-ec37c56c5ce1c8941680cee3512295995db02531-1670414379.js?version=2021-01-25
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/1401585725/javascripts/checkout_countries/128025428105/en/countries-ec37c56c5ce1c8941680cee3512295995db02531-1670414379.js?version=2021-01-25
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /app/services/1401585725/javascripts/checkout_countries/128025428105/en/countries-ec37c56c5ce1c8941680cee3512295995db02531-1670414379.js?version=2021-01-25 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache
content-language: en
link: <https://cdn.shopify.com/app/services/1401585725/javascripts/checkout_countries/128025428105/en/countries-ec37c56c5ce1c8941680cee3512295995db02531-1670414379.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ed22ff9-adce-4c23-8a65-0e9c8af2d67a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 25 Jan 2023 16:38:20 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EY0EAVIJUtoM%2FqI8HPv7wn5vvxCxz75QO7RxItN6vrxxkAPo2DgbK8DCZcuGy1Pg3KUNMWuFUJkMSHO%2BCqkLID2%2Bclf%2BIexjMj1S5cynY9LERgbtwqagQl69xiyhenI%2B%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=616.170, imageryFetch;dur=599.149, cfRequestDuration;dur=821.000099
server: cloudflare
cf-ray: 78f27053d94cb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.4200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.4:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 111811
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sdk.postscript.io/sdk.bundle.js?shopId=3640
54.230.111.55200 OK 0 B URL HTTP/2 sdk.postscript.io/sdk.bundle.js?shopId=3640
IP 54.230.111.55:0
GET /sdk.bundle.js?shopId=3640 HTTP/1.1
Host: sdk.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 25 Jan 2023 14:33:06 GMT
last-modified: Wed, 25 Jan 2023 14:32:17 GMT
etag: W/"1c32003b3f2e8bf613e2c3eb77b82a50"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S1MYB2bWGbu-2jhO2ynzu1j1y0kPG0yeCO4hosTo0OcRbdXH21z9Bg==
age: 7518
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 511023
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
productreviews.shopifycdn.com/embed/loader.js?shop=nativepath.myshopify.com
185.146.173.20200 OK 0 B URL HTTP/2 productreviews.shopifycdn.com/embed/loader.js?shop=nativepath.myshopify.com
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed/loader.js?shop=nativepath.myshopify.com HTTP/1.1
Host: productreviews.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
p3p: CP="Shopify does not support P3P."
x-robots-tag: noindex,nofollow
cache-control: max-age=300, public
etag: W/"a3812189666813b6f4ab0c83f9df0be9"
x-request-id: ce1f7d2f-0567-40cc-b79f-cf12c2a617d2
x-runtime: 0.004420
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: origin-when-cross-origin
content-security-policy: default-src https: 'self'; font-src https: data: 'self'; frame-ancestors https: *.myshopify.com admin.shopify.com; img-src https: data: 'self'; object-src 'none'; script-src https: 'unsafe-eval' 'strict-dynamic'; style-src https: 'unsafe-inline'; upgrade-insecure-requests
x-dc: gcp-us-east1,us-east1,gke
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eGuA5powT1D50Q%2Fe86hwSowWtnLBR9hrr%2F9tO4INm1yqG8ILunfkhqzpUQ6yeP%2FMOfv9sNFqdgHf66ZzooB38SlwMfn6bjG1Nh3f42krygpKORg5SXwK0Kt%2FGNf8JGgBBqMOefVSB2ug%2BcpPX%2BNt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=5, socket_queue;dur=1.47, edge;dur=1.041, util;dur=0.0, cfRequestDuration;dur=165.999889
server: cloudflare
cf-ray: 78f270635e391c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter&display=swap
IP 142.250.74.106:0
GET /css2?family=Inter&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 25 Jan 2023 16:38:22 GMT
date: Wed, 25 Jan 2023 16:38:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sdk.postscript.io/integrations/sdk-min.js
54.230.111.55200 OK 0 B URL HTTP/2 sdk.postscript.io/integrations/sdk-min.js
IP 54.230.111.55:0
GET /integrations/sdk-min.js HTTP/1.1
Host: sdk.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 25 Jan 2023 14:33:27 GMT
last-modified: Wed, 25 Jan 2023 14:32:16 GMT
etag: W/"2c44240b5b34b3cfb31f9d1151622a06"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jUVwDCtgVryj1n_zYc8nJIGNrghC_qsli6JzT8yarIBWKR83joKCrw==
age: 7496
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.126200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.126:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:23 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 91622
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385
74.119.119.150200 OK 0 B URL HTTP/2 widget.us.criteo.com/event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385
IP 74.119.119.150:0
GET /event?a=54823&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255Bd41d8cd98f00b204e9800998ecf8427e%255D&p2=e%3Dvc%26ecpplugin%3Dshopify%26id%3D1471633%26p%3D%255Bi%25253D6877307109513%252526pr%25253D119.7%252526q%25253D1%255D&p3=e%3Ddis&adce=1&bundle=xs10IV83QXk3VWFTQlFCMHlLNks0T3VlQiUyRmViUE9wNHBBWU81MVJBQTFWN1dsOXdKZlBpeTE3ZHdsSzV4bXNBWGlLVXIyYUpxRHFYdWpSWmdnbFJvZmxqOU8xd2FOeHJ5V0VZQWJBZmpDYSUyRmJURjdxYjhhMW1YdHp4b3lTRWZqdjFvMmZSNmVCS3MwUFRaNVB1M0YlMkJHbkZCaVElM0QlM0Q&tld=nativepath.com&fu=https%253A%252F%252Fwww.nativepath.com%252F1401585725%252Forders%252F3d3c356f5c833ce046f14942af5d55e1&dtycbr=39385 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:25 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 13678533
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
productreviews.shopifycdn.com/assets/v4/spr-07102fd76ff4bc22a3e0c32f0cca9ee51c77c34bbc4bdac79abb48f698de10dd.css
185.146.173.20200 OK 0 B URL HTTP/2 productreviews.shopifycdn.com/assets/v4/spr-07102fd76ff4bc22a3e0c32f0cca9ee51c77c34bbc4bdac79abb48f698de10dd.css
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /assets/v4/spr-07102fd76ff4bc22a3e0c32f0cca9ee51c77c34bbc4bdac79abb48f698de10dd.css HTTP/1.1
Host: productreviews.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:24 GMT
content-type: text/css
last-modified: Mon, 28 Feb 2022 16:33:49 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: origin-when-cross-origin
content-security-policy: default-src https: 'self'; font-src https: data: 'self'; frame-ancestors https: *.myshopify.com; img-src https: data: 'self'; object-src 'none'; script-src https: 'unsafe-eval' 'strict-dynamic'; style-src https: 'unsafe-inline'; upgrade-insecure-requests
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-dc: gcp-us-east1,us-east1
x-request-id: f595aabb-d094-4991-811a-91477d90003b
cf-cache-status: HIT
age: 10285833
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BI1yj9Yt7d%2B4qNsuQco8SapcjI7%2FOPugD05c49Gt8zTmxzz4jv%2BrVXKV8wGSyxK0RcD3wS%2FMxaRxW3qya7IUQVVcacII8D9NshArNhSScdvLxfdyymSpCEYCLh%2BFDbAHwKvhlK6W8TyhpMJ3gXte"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=1, socket_queue;dur=2.104, util;dur=0.0, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 78f270644f0f1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-jqi2xrBenS1i4uu_QetolRRb174rLsUI1ctIrpYbc1J14JNB
3.123.113.206200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-jqi2xrBenS1i4uu_QetolRRb174rLsUI1ctIrpYbc1J14JNB
IP 3.123.113.206:0
GET /usersync/push?partner=criteo&partnerId=k-jqi2xrBenS1i4uu_QetolRRb174rLsUI1ctIrpYbc1J14JNB HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:27 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22b1790d90-9cce-11ed-abfd-7b3ca43583c7%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 08 Feb 2023 16:38:27 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22b1790d90-9cce-11ed-abfd-7b3ca43583c7%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 08 Feb 2023 16:38:27 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22b1790d90-9cce-11ed-abfd-7b3ca43583c7%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 08 Feb 2023 16:38:27 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22b1790d90-9cce-11ed-abfd-7b3ca43583c7%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 08 Feb 2023 16:38:27 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-jqi2xrBenS1i4uu_QetolRRb174rLsUI1ctIrpYbc1J14JNB%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 08 Feb 2023 16:38:27 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/1401585725/assets/128025428105/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-36651
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/1401585725/assets/128025428105/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-36651
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /app/services/1401585725/assets/128025428105/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-36651 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 16:38:22 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=31556952, public
link: <https://cdn.shopify.com/app/services/1401585725/assets/128025428105/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-36651>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 74ba9285-7647-4102-9846-7c1e63b15b4b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Tue, 24 Jan 2023 02:30:45 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0UCWxW2ejQtcrEMgadDJdlfAvwjShAsEPzy8sC9qoc0gdOsIQ%2FXHnBDILjBb1IbPj7LaezMxfT0d%2BarWyoMbWjt2ipaDmfbAEuskUGQ6e%2F8ZoMdkR8ENd3ZlLu2Xu5a%2FNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=9190.878, imageryFetch;dur=9190.477, cfRequestDuration;dur=178.999901
server: cloudflare
cf-ray: 78f27053cbaab50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sdk.postscript.io/desktop.css
54.230.111.55200 OK 0 B URL HTTP/2 sdk.postscript.io/desktop.css
IP 54.230.111.55:0
GET /desktop.css HTTP/1.1
Host: sdk.postscript.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sdk.postscript.io/desktop.html?shopId=3640&shopShop=nativepath&sessionId=qGRLDtsuYfBNJfqi40cm8&status=&flags=&origin=https%3A%2F%2Fwww.nativepath.com%2F1401585725%2Forders%2F3d3c356f5c833ce046f14942af5d55e1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 25 Jan 2023 14:33:07 GMT
last-modified: Wed, 25 Jan 2023 14:32:17 GMT
etag: W/"46e2c85c15f49e8dffe58cca83a1e743"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Kst6-t9souyK5T8TC8a2WZErDXizZaJA-nOdkhWx5sOoSTdOI1lM4g==
age: 7519
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-8scUALBenS1i4uu_QetolRRb175dWDgBzKlAPA
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-8scUALBenS1i4uu_QetolRRb175dWDgBzKlAPA
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-8scUALBenS1i4uu_QetolRRb175dWDgBzKlAPA HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 16:38:27 GMT
x-fastly-to-nlb-rtt: 22497
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sc-static.net/js-sha256-v1.min.js
54.230.82.240200 OK 0 B URL HTTP/2 sc-static.net/js-sha256-v1.min.js
IP 54.230.82.240:0
GET /js-sha256-v1.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nativepath.com/
Origin: https://www.nativepath.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 24 Jan 2023 22:51:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Content-Type
last-modified: Fri, 05 Apr 2019 00:32:08 GMT
cache-control: public, s-maxage=86400, max-age=600
server: AmazonS3
content-encoding: gzip
etag: W/"68f2467c84878293c9ee497dbc99a17f"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fXh_23jxWIq6jZ3WdACMKmbR8PGuSTHMhBuQj0WwZv7RjOKPAQFWHQ==
age: 64024
X-Firefox-Spdy: h2