GET / HTTP/1.1
Host: embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 18.217.107.127
HTTP/1.1 308 Permanent Redirect
Connection: close
Location: https://embravewise.com/
Server: Caddy
Date: Fri, 09 Dec 2022 04:31:14 GMT
Content-Length: 0
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5419
Expires: Fri, 09 Dec 2022 06:01:33 GMT
Date: Fri, 09 Dec 2022 04:31:14 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3065
Expires: Fri, 09 Dec 2022 05:22:19 GMT
Date: Fri, 09 Dec 2022 04:31:14 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 04:08:17 GMT
age: 1377
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2630
Expires: Fri, 09 Dec 2022 05:15:04 GMT
Date: Fri, 09 Dec 2022 04:31:14 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: bo+ZCOLnYTqR+nXA99EvwsujI9k2NJ3TWPc+VTV6pUMsh46WNYnU3tEJ+XIFqrFV9ZuLvQ1XjAA=
x-amz-request-id: F9PA67H3V4XKGRFS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 03:50:06 GMT
age: 2468
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Fri, 09 Dec 2022 04:31:14 GMT
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 04:07:59 GMT
age: 1396
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5930
Cache-Control: max-age=108867
Date: Fri, 09 Dec 2022 04:31:15 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:45:42 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yjJLWeTvOlwnLp/kkS+Fmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
34.212.166.60
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l8JuIfN/RcfedIoISapc4+8M2hE=
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 345
ETag: "0CD1E18101F6374D6D8EBD7FD40F75BBE3279C3094775E204AD5A90F159817D3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10402
Expires: Fri, 09 Dec 2022 07:24:38 GMT
Date: Fri, 09 Dec 2022 04:31:16 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=108510
Date: Fri, 09 Dec 2022 04:31:16 GMT
Etag: "6391ad87-116"
Expires: Sat, 10 Dec 2022 10:39:46 GMT
Last-Modified: Thu, 08 Dec 2022 09:25:27 GMT
Server: ECS (amb/6BBF)
X-Cache: HIT
Content-Length: 278
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3405
Cache-Control: max-age=164695
Date: Fri, 09 Dec 2022 04:31:16 GMT
Etag: "63928d1e-1d7"
Expires: Sun, 11 Dec 2022 02:16:11 GMT
Last-Modified: Fri, 09 Dec 2022 01:19:26 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 1569
Cache-Control: max-age=105620
Date: Fri, 09 Dec 2022 04:31:16 GMT
Etag: "6391ad87-116"
Expires: Sat, 10 Dec 2022 09:51:36 GMT
Last-Modified: Thu, 08 Dec 2022 09:25:27 GMT
Server: ECS (amb/6B9B)
X-Cache: HIT
Content-Length: 278
|
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 04:31:16 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Dec 2022 02:22:32 GMT
ETag: "61bdf9bb9c33c06cdc5259e5574335d9f72ae210"
Last-Modified: Fri, 09 Dec 2022 02:22:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1427
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776b02a079741c06-OSL
|
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 04:31:16 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Dec 2022 02:22:32 GMT
ETag: "61bdf9bb9c33c06cdc5259e5574335d9f72ae210"
Last-Modified: Fri, 09 Dec 2022 02:22:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1427
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776b02a07b7db4fa-OSL
|
GET /assets/2021/10/c975c77827a97928141b1918493155db.png HTTP/1.1
Host: cdn.hotishop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
103.184.44.4
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:16 GMT
content-length: 6698
cf-ray: 776b029f1cdf0afa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfKoWMra8ndFPzo3GHiqsjhg:3e18b7861e0523dd23f9d7926deeb6c8"
last-modified: Mon, 25 Oct 2021 02:27:13 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=39 c=11 v=2022.9.2 l=6698
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/09/c15636da33a47281ed1784080b020ab2e53ebd6d76503fdb9d8b254909877533.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:16 GMT
content-length: 7274
cf-ray: 776b029f3b00b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfLLwbOnBkhcDISU6LCTxRtTH-JdRV_HsQesDqGFoaDQ:a45168f20ae73cc593bb0571f2863746"
last-modified: Tue, 13 Sep 2022 10:10:04 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/r q=0 n=66 c=0+12 v=2022.12.0 l=7274
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
18.217.107.127
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
content-encoding: gzip
date: Fri, 09 Dec 2022 04:31:15 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6InBtV2k5MGVxUlphdmhFNUQxXC96bmZRPT0iLCJ2YWx1ZSI6Inh5QVlZXC9XSTZ2Y2ZCSkpFeHF4d2xlU3lrRHB3ZkxTYVhXc3FvZXhWXC84UnVvOW9USzlZWUV1WWFsTlBST0pVVlpoVldsRmowcnNGU1d4azRNQis2Y1VKSGF4eERVazFEN2hBallHU0ZJTW40RTBlanlhY0NWQ1lrMUJDWHJ6bFEiLCJtYWMiOiJjNzMzNzdiNTdiYjBiMTc1ZDM3Zjk2OGE4ZWZkYjdiMmZjMzA3Yzg2ZmYzNWQ3NWQyOGEwMGM5NGVhNDY5NzIxIn0%3D; expires=Sat, 10-Dec-2022 00:31:15 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6Ijd2YktkanBnSjNnZWlRWDlaZUJIY1E9PSIsInZhbHVlIjoiZE8zVFlzV3pcL0cranJqa3hHa1JzM3ZtR0VVVkdXXC9hd1JEMTdLRjFZYk5uNjNGYkNoOCtNVGhEZE5ab3lRMlNtdlZpQWhtdXArK2xmbk5YTzk2bVN4aVhlS3lyVWg4YnlYYkNcLzJtZ0lUVkhtSUthbE5YNm4yYmc0MSt5RzVYTEgiLCJtYWMiOiIwOGM3ZjA2NTM1YWM3NDRkODlhZjkwNWRhMWJhNGRlZGFjMjlmODIyZmEwYWIxZGI5Zjg0YTc0YWY5Mzk3MjE3In0%3D; expires=Sat, 10-Dec-2022 00:31:15 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6661
Expires: Fri, 09 Dec 2022 06:22:17 GMT
Date: Fri, 09 Dec 2022 04:31:16 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6661
Expires: Fri, 09 Dec 2022 06:22:17 GMT
Date: Fri, 09 Dec 2022 04:31:16 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6661
Expires: Fri, 09 Dec 2022 06:22:17 GMT
Date: Fri, 09 Dec 2022 04:31:16 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 00:33:39 GMT
age: 14257
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xi-bshsYa4LlKbJgAt0h-lPnB_5uQbqln5JGBRE8io2Fp1y41cS9xg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:08:48 GMT
age: 1348
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kTEbkncBnAJmQE8cdAqvDtejiwaetpRBsVcpLXy1h52lO4iUkzmOGA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 16:28:48 GMT
age: 43348
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c8ed2c5-144c-4fce-bb57-7d9918c1ab31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4049
x-amzn-requestid: dbde9a26-7609-43b7-a9a5-6e4d2f559989
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwRFHIooAMFVmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-5f5131b8315a458d18cdc70f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6_KiAcPwtB6XJyanlunX6qvT9jdlEgMPMdGHM10HmJwQ2Ue_pDsCXg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:37:33 GMT
age: 57223
etag: "0b3fe77e142178561b28c93b94b1aea2e1c395a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7b1b2f1-0b18-4097-a282-a7ddd9b33b97.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6637
x-amzn-requestid: a1b14c0b-ceb5-4a3e-9dec-2503a0841bd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPMEQJoAMF6uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2d-1aec46bb5d73f0c47c824174;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rft2LEct9jDCAiIawPp0pGAg7S-bDRqXWxzM4H28FFqN2bS6TYwV7A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:59:55 GMT
age: 23481
etag: "4946fcab2a99d926c45abaecf8f97b6214dee0cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8204
x-amzn-requestid: cf54b5f8-ede8-49d5-aa56-5d9de98e3ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtKfEiToAMFSXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af576-6ddfe35c0b31074d6a07076f;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UfqFAlLedF6ZkfbGXhyYDcvu0porNJb6LPaeQ8p4dqWqsFD6iRgWLw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 15:12:28 GMT
age: 47928
etag: "6cee6b1828c709f68b995197ca943a5c393f86fb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /index.js HTTP/1.1
Host: us-east-conversion-assistant-apps.oss-us-east-1.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
47.253.30.102
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Server: AliyunOSS
Date: Fri, 09 Dec 2022 04:31:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
x-oss-request-id: 6392BA1431724B3630557B87
Last-Modified: Thu, 08 Dec 2022 07:08:27 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8442859034395005804
x-oss-storage-class: Standard
Content-MD5: kQAaUZMxWD/+rGj1H9gL2A==
x-oss-server-time: 1
Content-Encoding: gzip
|
GET /image/2022/09/91ca7b15bf5736e57c7bdfc223be05e52624559e2130ec4dcfb01907ecaeacf9-180x121.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:17 GMT
content-length: 5966
cf-ray: 776b029f2afcb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfPYvMS3O7zXDS7rK-FE8Rj8IwQbVSpEbDeQ8Y5Hn2DQ:6e76fd59d3172bd997b8d68041de4f9c"
last-modified: Wed, 14 Sep 2022 10:14:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=197 c=16+18 v=2022.12.0 l=5966
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /sdk/js?client-id=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&commit=false¤cy=USD&disable-funding=bancontact,blik,eps,giropay,ideal,mercadopago,mybank,p24,sepa,sofort,venmo&components=buttons,funding-eligibility,messages HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600, s-maxage=10800
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; script-src 'nonce-y3Pw9NNGtbZ/8T1jbMCCeChjxo4nijrfDt1W7MO6/rbTTQVG' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'nonce-y3Pw9NNGtbZ/8T1jbMCCeChjxo4nijrfDt1W7MO6/rbTTQVG' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; object-src 'none'; img-src https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
date: Fri, 09 Dec 2022 04:31:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"1f849-6fto718Qr983ug4MQ3/FBql4xGE"
p3p: true
paypal-debug-id: 0209a3453a714
server: ECAcc (lhd/3597)
server-timing: traceparent;desc="00-00000000000000000000209a3453a714-6bdc694a633e7b2b-01", content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=450
set-cookie: tsrce=clientsdknodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:16 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:16 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254676%26vteXpYrS%3D1670562076%26vr%3Df526dfe61840a2d082429b2affc2cbd3%26vt%3Df526dfe61840a2d082429b2affc2cbd2%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:16 GMT; HttpOnly; Secure
ts_c=vr%3Df526dfe61840a2d082429b2affc2cbd3%26vt%3Df526dfe61840a2d082429b2affc2cbd2; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:16 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000209a3453a714-9c746248926748cb-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 129097
X-Firefox-Spdy: h2
|
GET /tagmanager/pptm.js?id=www.embravewise.com&t=xo&v=5.0.343&source=payments_sdk&client_id=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&comp=buttons,funding-eligibility,messages&vault=false HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=clientsdknodeweb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
access-control-expose-headers: Server-Timing
age: 62460
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-JB4h8Q2VsDGQDEL/qfJ7B/IuPsX/otHM17at+D3gp9nCdW2N' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
date: Fri, 09 Dec 2022 04:31:17 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3541-Sc3NbFCiQliilncCHmCh2GGpWbU"
last-modified: Thu, 08 Dec 2022 11:10:18 GMT
paypal-debug-id: 0263549885bb7
server: ECAcc (lhd/35F9)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=36
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000263549885bb7-5417b1fecd81817a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 4753
X-Firefox-Spdy: h2
|
GET /muse/muse.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
date: Fri, 09 Dec 2022 04:31:17 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "6271663d-da91"
expires: Fri, 09 Dec 2022 05:31:17 GMT
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 4ed231c19b8ee
server: ECAcc (ska/F6AB)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000004ed231c19b8ee-2c1dbb544885a4c0-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 16464
X-Firefox-Spdy: h2
|
GET /muse/analytics/index.html HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: text/html
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
date: Fri, 09 Dec 2022 04:31:17 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "6271663d-d994"
expires: Fri, 09 Dec 2022 05:31:17 GMT
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 514eaaea2ba33
server: ECAcc (ska/F764)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000514eaaea2ba33-87b7eae83cde363e-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 16791
X-Firefox-Spdy: h2
|
GET /js/element-ui/2.13.0/theme-chalk/index.css HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: text/css
date: Fri, 09 Dec 2022 04:31:17 GMT
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"d28b24857449b697847be95be3d3701d"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pN7IRnZWOXQXLP4tVGvQKCqjYD6hbqU1H9PtfPQyVSOf-afa_SBVrA==
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "BA787078F0E5AB280C245DEE59CEB157617F6FD1447617D66E81C2A4A32113D1"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16374
Expires: Fri, 09 Dec 2022 09:04:11 GMT
Date: Fri, 09 Dec 2022 04:31:17 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "4455B00BC4DD5BED283AB59241D9ACD8903E3C65498C93B8062CF1514B94569D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10507
Expires: Fri, 09 Dec 2022 07:26:24 GMT
Date: Fri, 09 Dec 2022 04:31:17 GMT
Connection: keep-alive
|
GET /api/conversion/global/setting?shop=www.embravewise.com HTTP/1.1
Host: conversion-assistant.apps.seabroadnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.embravewise.com/
Origin: https://www.embravewise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
47.90.253.56
HTTP/2 200 OK
content-type: application/json
date: Fri, 09 Dec 2022 04:31:17 GMT
x-powered-by: PHP/8.1.1
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: *
x-request-id: 58d3dd89-1e36-4cec-992b-0f6fedc0b5d0
X-Firefox-Spdy: h2
|
POST /api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7 HTTP/1.1
Host: o467009.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.embravewise.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.embravewise.com
Content-Length: 402
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.195.249
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Fri, 09 Dec 2022 04:31:17 GMT
content-length: 2
access-control-allow-origin: https://www.embravewise.com
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /static/v1.33.33-h.6/store/vogue/css/fonts.433031.css HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: text/css
date: Fri, 09 Dec 2022 04:31:17 GMT
last-modified: Mon, 05 Dec 2022 10:45:51 GMT
etag: W/"11436ef7c5bb46fbdb786f9d58b337a8"
cache-control: max-age=31536000, public
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AqDgBWfx3iazUiWuLZhRch6Woy_U4wNIsQ7qRnDtFmOwtWZAE15pMQ==
X-Firefox-Spdy: h2
|
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A96JADHW6XKAUY-1&page=muse%3Aoffer%3A%3A%3A96JADHW6XKAUY-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=66379785-af54-4b42-9efe-f379ace35109&es=visitorInfoFlowStarted&mrid=96JADHW6XKAUY&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=embravewise&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1670560276916&g=0&completeurl=https%3A%2F%2Fwww.embravewise.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=clientsdknodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: image/gif
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:17 GMT
expires: Fri, 09 Dec 2022 04:31:17 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 67c4068f589c9
pragma: no-cache
server: ECAcc (lhd/35BC)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=175
set-cookie: ts=vreXpYrS%3D1765254677%26vteXpYrS%3D1670562077%26vr%3Df526e5561840a8a3a7a1f394ffffffff%26vt%3Df526e5561840a8a3a7a1f394fffffffe; Expires=Tue, 09 Dec 2025 04:31:17 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df526e5561840a8a3a7a1f394ffffffff%26vt%3Df526e5561840a8a3a7a1f394fffffffe; Expires=Tue, 09 Dec 2025 04:31:17 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000067c4068f589c9-a608fa1c08892c55-01
content-length: 42
X-Firefox-Spdy: h2
|
POST /api/shop HTTP/1.1
Host: upselling.apps.seabroadnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.embravewise.com/
Content-Type: multipart/form-data; boundary=---------------------------137503085720113954602960091943
Origin: https://www.embravewise.com
Content-Length: 192
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
47.252.45.108
HTTP/2 200 OK
content-type: application/json
date: Fri, 09 Dec 2022 04:31:17 GMT
x-powered-by: PHP/8.0.11
cache-control: no-cache, private
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
GET /ts?pgrp=muse%3Athird-party%3Aanalytics-xo%3A%3A96JADHW6XKAUY-1&page=muse%3Athird-party%3Aanalytics-xo%3A%3A96JADHW6XKAUY-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=66379785-af54-4b42-9efe-f379ace35109&fltp=analytics&mrid=96JADHW6XKAUY&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&flag_consume=yes&pt=embravewise&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1670560276611&g=0&completeurl=https%3A%2F%2Fwww.embravewise.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=clientsdknodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: image/gif
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:18 GMT
expires: Fri, 09 Dec 2022 04:31:18 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: eb1ef53ee344b
pragma: no-cache
server: ECAcc (lhd/358E)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=592
set-cookie: ts=vreXpYrS%3D1765254678%26vteXpYrS%3D1670562078%26vr%3Df526e61e1840aa5941e69b94ffffffff%26vt%3Df526e61e1840aa5941e69b94fffffffe; Expires=Tue, 09 Dec 2025 04:31:18 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df526e61e1840aa5941e69b94ffffffff%26vt%3Df526e61e1840aa5941e69b94fffffffe; Expires=Tue, 09 Dec 2025 04:31:18 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000eb1ef53ee344b-978c7399d42345ec-01
content-length: 42
X-Firefox-Spdy: h2
|
POST /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypalobjects.com/
Content-Type: application/json
Origin: https://www.paypalobjects.com
Content-Length: 319
Connection: keep-alive
Cookie: tsrce=clientsdknodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; img-src 'self' https:; script-src 'nonce-nxW1UU2oX1wAIDrT+dFZCR1eaKIHEPcTu2KGjJuV/uFlFHXr' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com;
date: Fri, 09 Dec 2022 04:31:18 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"1be-Mw5IFXdm3Dv+aN/kIJ/BS1TlLKk"
paypal-debug-id: 04a27aa798965
server: ECAcc (lhd/35E3)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=373
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:14 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:18 GMT; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI3ODI1NyIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=targetingnodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:18 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3Aztc80cnxP--kxQtB5-oWbFltMdl99okH.b7%2BDodIGLgeT2aLxM6exA217%2FSDVDKZ06WXaVsvmUPU; Path=/; HttpOnly; Secure
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:18 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254678%26vteXpYrS%3D1670562078%26vr%3Df526e63c1840ad0090d314fffbf95f59%26vt%3Df526e63c1840ad0090d314fffbf95f58%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:18 GMT; HttpOnly; Secure
ts_c=vr%3Df526e63c1840ad0090d314fffbf95f59%26vt%3Df526e63c1840ad0090d314fffbf95f58; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:18 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000004a27aa798965-36593405027dd8d4-01
vary: Origin,Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 307
X-Firefox-Spdy: h2
|
GET /fonts-ttf/Mulish-Bold.woff2 HTTP/1.1
Host: d3ud6u98s3z9ew.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://static.wshopon.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.42.17
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 39432
date: Fri, 09 Dec 2022 04:31:19 GMT
access-control-allow-origin: *
access-control-allow-methods: PUT, POST, DELETE, GET
access-control-expose-headers: x-amz-server-side-encryption, x-amz-request-id, x-amz-id-2
access-control-max-age: 3000
last-modified: Tue, 28 Dec 2021 05:58:19 GMT
etag: "505b4c017cc39a44334524c9326d5b43"
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EZuR_L70ZiGYAGRrFGypiZY2ZF0-NqzWBsfzVJjthJDkdT_jJvKScw==
cache-control: max-age=31536000
X-Firefox-Spdy: h2
|
GET /fonts-ttf/Mulish-Regular.woff2 HTTP/1.1
Host: d3ud6u98s3z9ew.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://static.wshopon.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.42.17
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 39456
date: Fri, 09 Dec 2022 04:31:19 GMT
access-control-allow-origin: *
access-control-allow-methods: PUT, POST, DELETE, GET
access-control-expose-headers: x-amz-server-side-encryption, x-amz-request-id, x-amz-id-2
access-control-max-age: 3000
last-modified: Tue, 28 Dec 2021 05:58:46 GMT
etag: "28547c4921422a1a6d77de9a45c5cd87"
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 13BDiY_cviw74oKsUD1Xh_Auxw34xLVSXC49goXVSdDoJ1zRK0E0Hw==
cache-control: max-age=31536000
X-Firefox-Spdy: h2
|
GET /fonts-ttf/v1/Muli.woff2 HTTP/1.1
Host: d3ud6u98s3z9ew.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://static.wshopon.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.42.17
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 34864
date: Fri, 09 Dec 2022 04:31:19 GMT
access-control-allow-origin: *
access-control-allow-methods: PUT, POST, DELETE, GET
access-control-expose-headers: x-amz-server-side-encryption, x-amz-request-id, x-amz-id-2
access-control-max-age: 3000
last-modified: Tue, 28 Dec 2021 06:31:04 GMT
etag: "0c521373f8a378c0036fcd33d833d047"
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s7dgudwlKM6GIPAlvFMy08R4GEHhltyTYbOpwqPeB_wx1uOgm0qNgQ==
cache-control: max-age=31536000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4103
Cache-Control: max-age=133331
Date: Fri, 09 Dec 2022 04:31:18 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 17:33:29 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
157.240.221.16
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: qcRDp1RRy1u2b/CdjMAQpyuZV7PVIQNCgtTfnDIpFbme6HlkCPXY1TfIyIneVl0cwfHAA9ZuODasO0lEonC8LQ==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 09 Dec 2022 04:31:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4103
Cache-Control: max-age=133331
Date: Fri, 09 Dec 2022 04:31:18 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 17:33:29 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
GET /image/2022/06/1740243c02efdaa1d6ebf40d17bc1c79453e9567b64a94f60cb530124a01d005-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 1308
cf-ray: 776b02ac8878b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfjQdDl2urxW4q2XTqA8p59F9qOQWGUuv3ZhIxTp0bDQ:46b261924ca53650abfdb284ed017345"
last-modified: Tue, 21 Jun 2022 13:44:39 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/r q=0 n=30 c=6+1 v=2022.12.0 l=1308
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Cache-Control: max-age=127440
Date: Fri, 09 Dec 2022 04:31:18 GMT
Etag: "639208e6-118"
Expires: Sat, 10 Dec 2022 15:55:18 GMT
Last-Modified: Thu, 08 Dec 2022 15:55:18 GMT
Server: nginx
Content-Length: 280
|
GET /assets/2021/10/57a510d13c5fa6959456076e35f7cacf.png HTTP/1.1
Host: cdn.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
103.184.44.3
HTTP/2 200 OK
content-type: image/png
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 2358
cf-ray: 776b02ad9da8b506-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfZs5t8J9L8E5WUhd9GtM1IibjJdRV_HsQesDqGFoaBQ:1e22dbcd9bb471bff14577f05cfb40a1"
last-modified: Tue, 19 Oct 2021 09:35:17 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=52 c=0+4 v=2022.11.4 l=2358
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "original is 870B smaller"
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/24168f7fad9688331678b6daf32f35123720174943cb877efb8381ffcfd7d9ee-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 706
cf-ray: 776b02ace8a2b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfrNM3dWfJjZ-Vdw13GhjUoVIoOQWGUuv3ZhIxTp0bDQ:9752a47a27973f8cec77331a203f34d4"
last-modified: Tue, 21 Jun 2022 13:52:30 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=47 c=2+2 v=2022.12.0 l=706
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/744363473324539b7c4af40840dd35d3733dfd7005116046baa4f52ca329ba8f-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 936
cf-ray: 776b02ad08adb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cflCfHp7z7A5d4BP2t-Kh42j-9OQWGUuv3ZhIxTp0bDQ:7dc5a3046a37450eb649f61ce0079486"
last-modified: Tue, 21 Jun 2022 13:55:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=107 c=7+1 v=2022.12.0 l=936
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/9c67a4776121068f642b23d02275a0172795d8fd0c07c156ecc74116590c4204-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 1868
cf-ray: 776b02ad78f1b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfhpEQiYM5_UYFJ4cjfJ27cOp2OQWGUuv3ZhIxTp0bDQ:26b94ce09f2b4efde20180a553234b11"
last-modified: Thu, 23 Jun 2022 06:52:50 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=77 c=8+2 v=2022.12.0 l=1868
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/3f3c62187bf9a5e3502eecbbc608686dbced2837a58acff647d8e03d2aee88bc-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:18 GMT
content-length: 1416
cf-ray: 776b02adc926b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf5fqIrksmdQ1T5IqIhiMwF5VrOQWGUuv3ZhIxTp0bDQ:2278e4515c718af12cefadb2cab408ac"
last-modified: Tue, 28 Jun 2022 08:01:45 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=167 c=5+2 v=2022.12.0 l=1416
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/19e74f8ea908c0575d5c10d2cd1653591ee491146706ccd039d652b5923c4f56-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1294
cf-ray: 776b02ac786fb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfDHBW2Kbi0OeJM3ntNOONR8TXOQWGUuv3ZhIxTp0bDQ:f063479a16aaf832f2c30b8710996d93"
last-modified: Tue, 21 Jun 2022 13:44:20 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=60 c=2+2 v=2022.12.0 l=1294
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /js/element-ui/2.13.0/index.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 04:31:17 GMT
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"aad8e2ee90fb795b70705b06c69a8367"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2Vr2mfpGWrsnqL6CeWllUhFtuBqbf9v63y-pPuuo-5gMfSN4jSNhtw==
X-Firefox-Spdy: h2
|
GET /image/2022/06/c01f2978d202126bb46a50cd970922b1d881161e2a83dedbc60f1099d7d746b2-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1072
cf-ray: 776b02ac9880b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfQ7AzBj9DzozQMpsMMm6B1YKcOQWGUuv3ZhIxTp0bDQ:6c1fbba8f3c7b79fd9f3c77835fbdabf"
last-modified: Tue, 21 Jun 2022 13:44:46 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=55 c=2+1 v=2022.12.0 l=1072
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /js/vue/2.6.14/vue.min.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 04:31:17 GMT
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"0a9a4681294d8c5f476687eea6e74842"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _gO1t-WhUHxhiaPkYhbB67lMvpOF4lQoh8MfVyjAmGTfGQ2mtNxatg==
X-Firefox-Spdy: h2
|
GET /image/2022/06/f0446aadc909460247f06dc0a86e8e16c16ab9b7a87aae388dd5f5514d47d87d-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 670
cf-ray: 776b02ad38c7b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf4r0ulJhUEl8fhg7kd_UfFEu9OQWGUuv3ZhIxTp0bDQ:d740bb90af811b3802d6b96ce84dfe5e"
last-modified: Tue, 21 Jun 2022 13:47:15 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/r q=0 n=29 c=4+1 v=2022.12.0 l=670
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/c119df9b25c4b4874457a9dbe41c300e6283a08fbb1cd42163c6fbaf7e66c62f-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 926
cf-ray: 776b02ad18b7b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf_zbBrPMU6buE8QvKVRmmkjX9OQWGUuv3ZhIxTp0bDQ:f07ab544bd5adb2b33cb2a50e629db83"
last-modified: Tue, 21 Jun 2022 13:58:26 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=70 c=6+2 v=2022.12.0 l=926
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/4b1ce5bdb2f9f81ce2a9500a0c8160d0fd2783a92e7b5393edd9d6ee88c70f82-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1376
cf-ray: 776b02acb887b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfjaBUWAF-gRCMezUnwuPDJWiLOQWGUuv3ZhIxTp0bDQ:73a6368cda2fa13f4a3c5abf42dba616"
last-modified: Tue, 21 Jun 2022 13:44:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=142 c=12+1 v=2022.12.0 l=1376
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /js/bootstrap/4.6.1/js/bootstrap.min.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Dec 2022 23:44:45 GMT
etag: W/"55d39b6bff845a12b1f838acb73c444c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rij4mv0ZWF5dK4NP43HBJq51zVp1ljZXvA5JbJpOVdK5NGeEzmogzw==
age: 17192
X-Firefox-Spdy: h2
|
GET /image/2022/06/b0d33f6cc9b078ccf4c168e3153b79ebd80802cceafca376ab00134a74f5d748-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1780
cf-ray: 776b02ad68dbb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfuyWRtvs5m0sonijCN1hriRq8OQWGUuv3ZhIxTp0bDQ:edb305364e01ce29e3ad66ce66a78e3f"
last-modified: Tue, 21 Jun 2022 13:44:31 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=81 c=10+1 v=2022.12.0 l=1780
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/67dc0a50235e672c2c143d96399f832852a81376d3b060945e9c0a40a0727506-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1030
cf-ray: 776b02ad48ccb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf59c5s7j7mDt3rE4qWaSPnt0_OQWGUuv3ZhIxTp0bDQ:81906bb040022811a2e9eef639d07eee"
last-modified: Tue, 21 Jun 2022 13:44:17 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=122 c=6+2 v=2022.12.0 l=1030
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/a27020b80ff733c12be0b565d4278350d7912cb8e56b02b457313e5a38c0a6b5-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1542
cf-ray: 776b02ad78eab4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf5KpKCLay850GZU-SO9EaZodBOQWGUuv3ZhIxTp0bDQ:b86294537599cfe115bc2d7113b0ac1b"
last-modified: Tue, 21 Jun 2022 13:44:34 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=109 c=7+2 v=2022.12.0 l=1542
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/07/077e29cfeb87af94444858d7338c018634b9508ed604411a73e40959285ee49f-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 444
cf-ray: 776b02ae0946b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfhl1Y4NY_I5r-OKc0w6G8MFp6OQWGUuv3ZhIxTp0bDQ:f77c567ff319b4fbec8e4151e3dc5427"
last-modified: Mon, 04 Jul 2022 08:04:28 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=48 c=7+1 v=2022.12.0 l=444
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/72cb25effbd37cec45b22a37f49e95728e91cc1c8eb612054cbd52268276bbaf-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1218
cf-ray: 776b02adb90fb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfOr2w3MWfjxRKdysAE7iS6M73OQWGUuv3ZhIxTp0bDQ:e808eb2ae0a0949b037d4a322c91a04e"
last-modified: Sat, 25 Jun 2022 00:01:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=92 c=13+2 v=2022.12.0 l=1218
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/962d0effad84443604723c40ddf1da49f2dd51e373a88544402ea37da137d6d1-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 860
cf-ray: 776b02ade931b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfwgOHMhb8Gka5SpqEs1WpyrwzOQWGUuv3ZhIxTp0bDQ:aadab698ba8c4b07116e282fbfc0e6c3"
last-modified: Tue, 28 Jun 2022 08:01:37 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=90 c=5+1 v=2022.12.0 l=860
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/07/abf9ac1e7cc43b6501da1a8214a8b8c22a6177e02ec6bb0b78d7c0389160f26a-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1390
cf-ray: 776b02adf939b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfnzQz6yWmQC5G3odgtqQ_km9sOQWGUuv3ZhIxTp0bDQ:26159ec262b800e4a5941d42ccac1805"
last-modified: Fri, 01 Jul 2022 11:46:15 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=105 c=10+1 v=2022.12.0 l=1390
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/06/331395bd1bc60f159d6eefddd7989b5f75b5fea8c7bd9ba0be01fb30e5687f0d-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1424
cf-ray: 776b02add92ab4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfEjEdTb6mfxNaOLpf2UTKX8y_OQWGUuv3ZhIxTp0bDQ:04fee45e490106e469c532573286d846"
last-modified: Tue, 28 Jun 2022 08:01:33 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=130 c=9+1 v=2022.12.0 l=1424
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/08/01e5adf79f908c51b7db6830d275c05bf690107844f2520e5bda593bc6cbdcad-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 678
cf-ray: 776b02ad28c5b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfDXHfDQmJWAKNOyIK-O75shTkOQWGUuv3ZhIxTp0bDQ:15e78ab4040db51b3319a4ebcb6479da"
last-modified: Fri, 26 Aug 2022 01:55:35 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=247 c=5+2 v=2022.12.0 l=678
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /image/2022/07/5d6e95cf169708486e1cfe5624827545d23ce61df7b9b9bcdca363974a83f1c9-50.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 1338
cf-ray: 776b02adf93eb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfDSYOrsEMPufYHCWTmqJyhm3dOQWGUuv3ZhIxTp0bDQ:005bc30ed6f488eb0b232fd7f1b5bf08"
last-modified: Mon, 04 Jul 2022 08:04:33 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=134 c=8+1 v=2022.12.0 l=1338
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
OPTIONS /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.embravewise.com/
Origin: https://www.embravewise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.embravewise.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:19 GMT
dc: ccg11-origin-www-1.paypal.com
paypal-debug-id: 0252983157188
server: ECAcc (lhd/3585)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=247
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:15 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:19 GMT; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI3OTIyOSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=loggernodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:19 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254679%26vteXpYrS%3D1670562079%26vr%3Df526ea971840a1d61a2415a1fbaa07d4%26vt%3Df526ea971840a1d61a2415a1fbaa07d3%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; HttpOnly; Secure
ts_c=vr%3Df526ea971840a1d61a2415a1fbaa07d4%26vt%3Df526ea971840a1d61a2415a1fbaa07d3; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000252983157188-068dfb565490e19f-01
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /image/2022/09/91ca7b15bf5736e57c7bdfc223be05e52624559e2130ec4dcfb01907ecaeacf9-1300.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:19 GMT
content-length: 134446
cf-ray: 776b02b11a6ab4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfPYvMS3O7zXDS7rK-FE8Rj8IwBGjnEvK9me9TrkEkDQ:6e76fd59d3172bd997b8d68041de4f9c"
last-modified: Wed, 14 Sep 2022 10:14:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=69 c=14+115 v=2022.12.0 l=134446
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A96JADHW6XKAUY-1&page=muse%3Aoffer%3A%3A%3A96JADHW6XKAUY-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=66379785-af54-4b42-9efe-f379ace35109&es=visitorInfo&cust=X38ABTE9YRRL4&mrid=96JADHW6XKAUY&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=embravewise&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=0&identifier_used=DFP&e=im&t=1670560278283&g=0&completeurl=https%3A%2F%2Fwww.embravewise.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=targetingnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: image/gif
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:19 GMT
expires: Fri, 09 Dec 2022 04:31:19 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 215206a3e77e8
pragma: no-cache
server: ECAcc (lhd/35D8)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=669
set-cookie: ts=vreXpYrS%3D1765254679%26vteXpYrS%3D1670562079%26vr%3Df526ec951840a56c25255fbfffffffff%26vt%3Df526ec951840a56c25255fbffffffffe; Expires=Tue, 09 Dec 2025 04:31:19 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df526ec951840a56c25255fbfffffffff%26vt%3Df526ec951840a56c25255fbffffffffe; Expires=Tue, 09 Dec 2025 04:31:19 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000215206a3e77e8-5bd291bb81c16c6f-01
content-length: 42
X-Firefox-Spdy: h2
|
GET /image/2022/09/8771b7674955a0246196398350e9ec6d4f9bc07633456c1ff4ac8d44d42f72b2-500.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 20800
cf-ray: 776b02b4abd5b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfYllXyNuTPMiXDJq_g4M4d9TfrWj-KnYkQiF0MtQADQ:b67c79ea59847660fb3c1e8b3df1268f"
last-modified: Wed, 14 Sep 2022 11:27:15 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=149 c=16+55 v=2022.12.0 l=20800
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
|
search
151.101.1.35
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
dc: ccg11-origin-www-1.paypal.com
etag: W/"636d6099-e89e"
last-modified: Thu, 10 Nov 2022 20:35:37 GMT
paypal-debug-id: 5b35a8889f4d
server: ECAcc (nya/7974)
traceparent: 00-000000000000000000005b35a8889f4d-2a06849f8ac290c4-01
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 04:31:20 GMT
via: 1.1 varnish
age: 545151
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 98674
x-timer: S1670560280.207027,VS0,VE1
vary: Accept-Encoding
expires: Sat, 10 Dec 2022 04:31:20 GMT
cache-control: s-maxage=31536000, public,max-age=86400
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: false
access-control-max-age: 86400
server-timing: content-encoding;desc="gzip",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 20248
X-Firefox-Spdy: h2
|
GET /da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
If-Modified-Since: Thu, 10 Nov 2022 20:35:37 GMT
If-None-Match: W/"636d6099-e89e"
TE: trailers
|
search
151.101.1.35
HTTP/2 304 Not Modified
date: Fri, 09 Dec 2022 04:31:20 GMT
via: 1.1 varnish
etag: W/"636d6099-e89e"
age: 545151
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 98675
x-timer: S1670560280.219052,VS0,VE1
vary: Accept-Encoding
expires: Sat, 10 Dec 2022 04:31:20 GMT
cache-control: s-maxage=31536000, public,max-age=86400
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: false
access-control-max-age: 86400
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
|
GET /image/2022/06/1740243c02efdaa1d6ebf40d17bc1c79453e9567b64a94f60cb530124a01d005-100.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 3368
cf-ray: 776b02b49bc7b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfjQdDl2urxW4q2XTqA8p59F9qf3Q-22UukrmHzIgBDQ:46b261924ca53650abfdb284ed017345"
last-modified: Tue, 21 Jun 2022 13:44:39 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=3 c=6+4 v=2022.12.0 l=3368
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Cache-Control: max-age=165554
Date: Fri, 09 Dec 2022 04:31:20 GMT
Etag: "63929dca-1d7"
Expires: Sun, 11 Dec 2022 02:30:34 GMT
Last-Modified: Fri, 09 Dec 2022 02:30:34 GMT
Server: nginx
Content-Length: 471
|
GET /image/2022/06/0af704581718f422ca9006fb4fde9cf5efd07743d48e51665398ba7d02892f61-50.gif HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 36410
cf-ray: 776b02ad58d1b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfPKxS9FBM7hMj7VhNfZhLtQCcOQWGUuv3ZhIxTp0bDQ:95ffdaaf862a0aebd83fbf43f20737f9"
last-modified: Tue, 21 Jun 2022 13:44:24 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/m q=0 n=183 c=195+906 v=2022.12.0 l=36410
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /v2/counter.cgi?p=uid_60d07a9188_mdq6mze6mty&s=SMART_PAYMENT_BUTTONS HTTP/1.1
Host: b.stats.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
|
search
64.4.245.84
HTTP/1.1 302 Found
Content-Type: application/octet-stream
Connection: close
Server: PayPal-B.Stats/1.0
Location: https://dub.stats.paypal.com/v2/counter2.cgi?p=uid_60d07a9188_mdq6mze6mty&s=SMART_PAYMENT_BUTTONS
Content-Length: 0
Set-Cookie: c=743c86c1e274a85e2ac9; Domain=stats.paypal.com; expires=Thu, 04 Dec 2042 04:31:20 GMT; Path=/
Date: Fri, 09 Dec 2022 04:31:20 GMT
|
POST /api/statistics/track HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6InBtV2k5MGVxUlphdmhFNUQxXC96bmZRPT0iLCJ2YWx1ZSI6Inh5QVlZXC9XSTZ2Y2ZCSkpFeHF4d2xlU3lrRHB3ZkxTYVhXc3FvZXhWXC84UnVvOW9USzlZWUV1WWFsTlBST0pVVlpoVldsRmowcnNGU1d4azRNQis2Y1VKSGF4eERVazFEN2hBallHU0ZJTW40RTBlanlhY0NWQ1lrMUJDWHJ6bFEiLCJtYWMiOiJjNzMzNzdiNTdiYjBiMTc1ZDM3Zjk2OGE4ZWZkYjdiMmZjMzA3Yzg2ZmYzNWQ3NWQyOGEwMGM5NGVhNDY5NzIxIn0=
Content-Length: 374
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: XSRF-TOKEN=eyJpdiI6InBtV2k5MGVxUlphdmhFNUQxXC96bmZRPT0iLCJ2YWx1ZSI6Inh5QVlZXC9XSTZ2Y2ZCSkpFeHF4d2xlU3lrRHB3ZkxTYVhXc3FvZXhWXC84UnVvOW9USzlZWUV1WWFsTlBST0pVVlpoVldsRmowcnNGU1d4azRNQis2Y1VKSGF4eERVazFEN2hBallHU0ZJTW40RTBlanlhY0NWQ1lrMUJDWHJ6bFEiLCJtYWMiOiJjNzMzNzdiNTdiYjBiMTc1ZDM3Zjk2OGE4ZWZkYjdiMmZjMzA3Yzg2ZmYzNWQ3NWQyOGEwMGM5NGVhNDY5NzIxIn0%3D; xtuselsaqe76_session=eyJpdiI6Ijd2YktkanBnSjNnZWlRWDlaZUJIY1E9PSIsInZhbHVlIjoiZE8zVFlzV3pcL0cranJqa3hHa1JzM3ZtR0VVVkdXXC9hd1JEMTdLRjFZYk5uNjNGYkNoOCtNVGhEZE5ab3lRMlNtdlZpQWhtdXArK2xmbk5YTzk2bVN4aVhlS3lyVWg4YnlYYkNcLzJtZ0lUVkhtSUthbE5YNm4yYmc0MSt5RzVYTEgiLCJtYWMiOiIwOGM3ZjA2NTM1YWM3NDRkODlhZjkwNWRhMWJhNGRlZGFjMjlmODIyZmEwYWIxZGI5Zjg0YTc0YWY5Mzk3MjE3In0%3D; session_uuid=f84356447a1f4a01898f046e8c48669agrrW21RZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
18.217.107.127
HTTP/2 201 Created
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Fri, 09 Dec 2022 04:31:19 GMT
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
set-cookie: XSRF-TOKEN=eyJpdiI6ImZ6MVBFTUIrUGdmZWJqQ1FCSVN4alE9PSIsInZhbHVlIjoiMlFvMWgyeFdtMitZTVwvM3ZmNTNMaVArWGFOekV0N0g2bEZRWFpHanN0ckw4a05mUldpcVJiV2R6MjZXNVo1TmZOdStrUU56d3drbTJmQVVtTllWTlZBc1J5aFpcL2tqdHd6N0pmU2VNd29kWWdBRE1GYWplMnBwa0dwVDJIWHJGTCIsIm1hYyI6ImY3MzFiNWQ5NTIwZDZmODg0MmI1ZThlOWI3ODhjN2NmMjAwZGVmMTI4MTQ0MmNhNzY4YzA1NDE3MDUzNDA1NDEifQ%3D%3D; expires=Sat, 10-Dec-2022 00:31:19 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6ImduNWN5Vkk3ajFTdnVPWERzVlZoQ0E9PSIsInZhbHVlIjoiYW1YOWpwSEpDMXZaK1lHOHJVVjIwXC9YRlwvQTdMNjNMQ2E0eEd3QVQ2WEhKMzFmKzVrYUw2TkJwT3hWR2ZVOFBSTlg2TE1TZVFjcG5wRGlxNmJcL05PS0dibnk2aHFOSmlveTdVT3NCZ2dibXBURGRtTWpOXC9taXFxOTJPMmYzeGlmIiwibWFjIjoiZGM0NzczMjM5ZDMzOTdiMGMxMWVmNzdhNGRlNmQxZjMyMTg4OWI5NzBjOTAyYjhhNjdjMjdmMzBkMjMwNGE0NyJ9; expires=Sat, 10-Dec-2022 00:31:19 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
GET /image/2022/09/915107dd1d1fdc1ac32c2234fa85c45f9cf37050ac00dbaf98f00434c2ef24cc-400.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 10470
cf-ray: 776b02b4abd7b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfkOk80JjUuXPYIOOnKp4XKZH8xyJ6nv9rvBsRgLgsDQ:d30bb3847a898cb79474b1b9fdac4734"
last-modified: Wed, 14 Sep 2022 11:29:12 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=156 c=6+32 v=2022.12.0 l=10470
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /api/store/ip HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6ImNaS0VXU1pqTFdvTjh3NHVNeEwwXC9RPT0iLCJ2YWx1ZSI6ImxPUHc3WFQwaGRwU2Y0MXZ0RHdDRlZaVVU2ODRCN2pMWDNmZVJockpCVVFITDNoanNYajdSeVZ2cDZUSFZzWkpMMnJGTE1EN0Z4Njkzd1BuVkwxRzFjSzRhSHVrUjVnZXpMTzBaamdwYmFDZFdcL1k2MlwvYWVTM002eHBpTTBCT20iLCJtYWMiOiJiZjg4Njk1ZmZjZTFhMmZmNzg2MjRkMTk1YWMwYTVjNzJkZDE3NTg4NzI0Njc3N2I1Mjg5OGNkMGI3ZjQyMDgzIn0=
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImNaS0VXU1pqTFdvTjh3NHVNeEwwXC9RPT0iLCJ2YWx1ZSI6ImxPUHc3WFQwaGRwU2Y0MXZ0RHdDRlZaVVU2ODRCN2pMWDNmZVJockpCVVFITDNoanNYajdSeVZ2cDZUSFZzWkpMMnJGTE1EN0Z4Njkzd1BuVkwxRzFjSzRhSHVrUjVnZXpMTzBaamdwYmFDZFdcL1k2MlwvYWVTM002eHBpTTBCT20iLCJtYWMiOiJiZjg4Njk1ZmZjZTFhMmZmNzg2MjRkMTk1YWMwYTVjNzJkZDE3NTg4NzI0Njc3N2I1Mjg5OGNkMGI3ZjQyMDgzIn0%3D; xtuselsaqe76_session=eyJpdiI6InlvZnNLYWt4bjl5MEI5UG16NTk3V3c9PSIsInZhbHVlIjoiaTF0QnRaR1dzV2preU0xVVhaZmx3d0tuRjJLWENveEtweStxNzF1VzRGRDJoNXFJZEJKdTlncFJXb2Ezc0ZyYzFKNERBN0c1cWNWTG9DZHo2emxcL0I3UXBxNnVyN0hUdFlnTzhRbGljRW1veHBERjR3ZENKQTdaeWF1bFhVWlwvOCIsIm1hYyI6ImQyODIyZjljMThkYzVjZGIzMDVkODNmNzVmMzg1N2EzYTA3NGU4MjRiZTUxNWFlYjViZmY5OTA4NGI2YjJjNjMifQ%3D%3D; session_uuid=f84356447a1f4a01898f046e8c48669agrrW21RZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
18.217.107.127
HTTP/2 200 OK
content-type: application/json
cache-control: no-cache, private
date: Fri, 09 Dec 2022 04:31:19 GMT
etag: "9f029f2ca5bf803561c95a39150498089578ecae"
set-cookie: XSRF-TOKEN=eyJpdiI6ImNvQ3NuVGZETmswblNuc1F3UFZ4QUE9PSIsInZhbHVlIjoiaUxKb3JUV3hReHR5Wm83THppMFV3SHlQWHpETXM2OE9BUXVFd3hCWnEyZDBZVzVUWVhqb1hsaHVWZzBTMEl4ejhcL0Z5OEZESytlcmJ0cWV3V2dmc1pcL2szODh4b2J1aXdHMHJxaG14eUFpTnV4NWpaR3VXZEJcL0c4b2RBQUZHZWIiLCJtYWMiOiJlNDhjZmI4NzNjY2M3OGM4OGZjMWI3ZTg0ZGM0MzQ0Yjk1N2M3Yjg2YjA0YWIxMDk4NDhlMWYwMDBkOTFmNTdmIn0%3D; expires=Sat, 10-Dec-2022 00:31:19 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6IlpqXC9JYlwvVHozNjJaalZHdndMbCtJUT09IiwidmFsdWUiOiJRUDM2ZzdUazR3M1RiWWNaWk1cL0pEQWExYlV3T1ZKXC9wTFBGbnVBTGJRM2tSN09Ec0hLdk1hMkhsYkp3bTFiZjd0S2lvczNkSDc0M2dMXC9yQzhmb1VGcUZxN3haRW5XYXlYZDdCMnNTTER3Y3RWczFVUzB0V2NSNFVCXC8ydVBVcWsiLCJtYWMiOiI4ZjZlNGQwNGFjNDNjMDg5MzYwOWFhNjc3NDE0ZjRjYmZmNjVhMzA3MzgxOTQ5YTk1NmYwYzQ0NzVkN2NhYTkzIn0%3D; expires=Sat, 10-Dec-2022 00:31:19 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
GET /v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
|
search
151.101.1.35
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, Sec-CH-UA-Full
correlation-id: 8b3deff99f14d
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy-report-only: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; script-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypalinc.com https://www.facebook.com 'unsafe-eval' 'unsafe-inline' blob:; connect-src 'self' https://*.paypal.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com data:; img-src 'self' https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'self' https://*.paypal.com https://*.paypalobjects.com; report-uri https://www.paypal.com/csplog/api/log/csp
origin-trial: A+THamRrv1ypMR6JeaJx7Wmo8rytLELMAeCL0XGhTihfUtp+dVqcCNYiWxOzySlH2Xk7lzRrFY3mxv6viKT1qggAAACKeyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
paypal-debug-id: 8b3deff99f14d
traceparent: 00-00000000000000000008b3deff99f14d-a36c615e0a5d25ad-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Fri, 09 Dec 2022 04:31:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220043-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1670560280.243223,VS0,VE175
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
|
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 8327
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_dc43d5b514_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypal.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:20 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3fe-2FryFE2JV+DOT5PRXEs0xc0t0Yo"
paypal-debug-id: 0b501186a8097
server: ECAcc (lhd/35D3)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=212
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:20 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:16 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI4MDQyMyIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254680%26vteXpYrS%3D1670562080%26vr%3Df526ef491840a7a855e8dd12fb65c8b8%26vt%3Df526ef491840a7a855e8dd12fb65c8b7%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; HttpOnly; Secure
ts_c=vr%3Df526ef491840a7a855e8dd12fb65c8b8%26vt%3Df526ef491840a7a855e8dd12fb65c8b7; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000b501186a8097-3106069873a429a6-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 613
X-Firefox-Spdy: h2
|
GET /image/2022/09/b4f49c76d91bc6a682b4643a35478238461bfb7f51141ea687e9892b0701a88c-500.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 69760
cf-ray: 776b02b4abd3b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfOxJbxiyJy5q9I4xnJkJMhOLNrWj-KnYkQiF0MtQADQ:2c99bb29dcb3396e1c900966bdd82cb7"
last-modified: Wed, 14 Sep 2022 11:15:10 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=111 c=8+54 v=2022.12.0 l=69760
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 8327
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_84da7c3812_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypal.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:20 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"400-KTi3ZLjsaWEURiPfw9W75zw+mgI"
paypal-debug-id: 0524341372946
server: ECAcc (lhd/35F2)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=277
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:20 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:16 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI4MDQyOSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg15.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254680%26vteXpYrS%3D1670562080%26vr%3Df526ef2b1840a1d30bc2f783ffc9843c%26vt%3Df526ef2b1840a1d30bc2f783ffc9843b%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; HttpOnly; Secure
ts_c=vr%3Df526ef2b1840a1d30bc2f783ffc9843c%26vt%3Df526ef2b1840a1d30bc2f783ffc9843b; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000524341372946-97efdc3e79242399-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 618
X-Firefox-Spdy: h2
|
GET /v2/counter2.cgi?p=uid_60d07a9188_mdq6mze6mty&s=SMART_PAYMENT_BUTTONS HTTP/1.1
Host: dub.stats.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypal.com/
Connection: keep-alive
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
|
search
64.4.245.84
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: close
Server: PayPal-B.Stats/1.0
Content-Length: 42
Set-Cookie: c=353df5b1a755c19bb312; Domain=stats.paypal.com; expires=Thu, 04 Dec 2042 04:31:20 GMT; Path=/
Date: Fri, 09 Dec 2022 04:31:20 GMT
|
GET /image/2022/09/a2af7a454300c3ec5b316200dbb2763d228a4a31d214f2d86f1396c4d7af2f85-400.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:20 GMT
content-length: 57858
cf-ray: 776b02b49bccb4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfqycNfaEpz-Ui5f3dOj7JOPOcxyJ6nv9rvBsRgLgsDQ:d60788ed01f7d89cf0b9c773949c52f2"
last-modified: Wed, 14 Sep 2022 11:13:03 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=163 c=10+40 v=2022.12.0 l=57858
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Thu, 10 Nov 2022 20:35:37 GMT
If-None-Match: W/"636d6099-e89e"
TE: trailers
|
search
151.101.1.35
HTTP/2 304 Not Modified
date: Fri, 09 Dec 2022 04:31:20 GMT
via: 1.1 varnish
etag: W/"636d6099-e89e"
age: 545151
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 98677
x-timer: S1670560281.616838,VS0,VE2
vary: Accept-Encoding
expires: Sat, 10 Dec 2022 04:31:20 GMT
cache-control: s-maxage=31536000, public,max-age=86400
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: false
access-control-max-age: 86400
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
|
POST /v1/r/d/b/p2 HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1381
Origin: https://c.paypal.com
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
151.101.1.35
HTTP/2 200 OK
content-type: application/json
correlation-id: 24725d330e646
cache-control: max-age=0, no-cache, no-store, must-revalidate
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR ADM OUR IND COM"
paypal-debug-id: 24725d330e646
set-cookie: sc_f=hVi6SyUWKQoZ8j1JiphhPTiu2dREl89iQICDA04L3hRQR7gCnbHhnciIOR-vYR3aQClTYcQgSj8DbV-Ks0y1_t1Pk1nkrQsMR-Dsv0;Domain=c.paypal.com;Max-Age=157680000;Path=/;Secure;Version=1;Expires=Tue, 07-Dec-2027 20:31:20 GMT; HttpOnly
traceparent: 00-000000000000000000024725d330e646-0f3963a4ecafad1e-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Fri, 09 Dec 2022 04:31:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220069-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 125
X-Firefox-Spdy: h2
|
POST /v1/r/d/b/p1 HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4535
Origin: https://c.paypal.com
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
151.101.1.35
HTTP/2 200 OK
content-type: application/json
correlation-id: 5264170e66ea
cache-control: max-age=0, no-cache, no-store, must-revalidate
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR ADM OUR IND COM"
paypal-debug-id: 5264170e66ea
set-cookie: sc_f=VKToAM_4vXxP9W7pr-8ljkS_Mpr03n5igN1jOoKb5J6Ra9kkGBalqq77-lbt0i0IUCap6VRzzG1COudxXvtWyQbQ6khfzkP7QaQ15m;Domain=c.paypal.com;Max-Age=157680000;Path=/;Secure;Version=1;Expires=Tue, 07-Dec-2027 20:31:20 GMT; HttpOnly
KHcl0EuY7AKSMgfvHl7J5E7hPtK=pEBlYJCpKIQcJO6A2mKFNL3PHtQstWSKlNXjKpOxqs2nvlgtT4GU6Px-ate68fB_rSd7tM9byB7ft0XQ;Domain=.paypal.com;Max-Age=630720000;Path=/;Secure;Version=1;Expires=Wed, 03-Dec-2042 20:31:20 GMT; HttpOnly
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
traceparent: 00-000000000000000000005264170e66ea-823da0382ecf1ab0-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Fri, 09 Dec 2022 04:31:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220071-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 125
X-Firefox-Spdy: h2
|
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1439
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_84da7c3812_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypal.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:20 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3fe-TaYipwbyA71c/Gj5Lj98VD6xwvg"
paypal-debug-id: 0114440377001
server: ECAcc (lhd/35F9)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=212
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:20 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:16 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI4MDY1NyIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254680%26vteXpYrS%3D1670562080%26vr%3Df526f0391840a7885e4dbe35ffc13af5%26vt%3Df526f0391840a7885e4dbe35ffc13af4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; HttpOnly; Secure
ts_c=vr%3Df526f0391840a7885e4dbe35ffc13af5%26vt%3Df526f0391840a7885e4dbe35ffc13af4; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000114440377001-d80ec655292114a0-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 613
X-Firefox-Spdy: h2
|
GET /v1/r/d/b/p3?f=uid_60d07a9188_mdq6mze6mty&s=SMART_PAYMENT_BUTTONS HTTP/1.1
Host: c6.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
correlation-id: 77dd2796017ee
date: Fri, 09 Dec 2022 04:31:19 GMT
paypal-debug-id: 77dd2796017ee
server: ECAcc (lhd/35A0)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=200
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000077dd2796017ee-cb7f4844ccd9aebc-01
vary: Accept-Encoding
content-length: 20
X-Firefox-Spdy: h2
|
POST /v1/r/d/b/p1 HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4535
Origin: https://c.paypal.com
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
151.101.1.35
HTTP/2 200 OK
content-type: application/json
correlation-id: 87096624f715d
cache-control: max-age=0, no-cache, no-store, must-revalidate
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR ADM OUR IND COM"
paypal-debug-id: 87096624f715d
set-cookie: sc_f=26X6iN8Gd6w-EOOry9Qi4xRUUOaNGBz2YZygXWuSuXOJiolOi2IszfUthYmdm9arRSNGZOxRI-rf1Y0gMK4NWOSFiAaxjMTt_aaVcm;Domain=c.paypal.com;Max-Age=157680000;Path=/;Secure;Version=1;Expires=Tue, 07-Dec-2027 20:31:20 GMT; HttpOnly
KHcl0EuY7AKSMgfvHl7J5E7hPtK=pEBlYJCpKIQcJO6A2mKFNL3PHtQstWSKlNXjKpOxqs2nvlgtT4GU6Px-ate68fB_rSd7tM9byB7ft0XQ;Domain=.paypal.com;Max-Age=630720000;Path=/;Secure;Version=1;Expires=Wed, 03-Dec-2042 20:31:20 GMT; HttpOnly
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
traceparent: 00-000000000000000000087096624f715d-0522d99788702792-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Fri, 09 Dec 2022 04:31:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220020-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 125
X-Firefox-Spdy: h2
|
POST /api/store/facebook-conversions-api HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6ImZ6MVBFTUIrUGdmZWJqQ1FCSVN4alE9PSIsInZhbHVlIjoiMlFvMWgyeFdtMitZTVwvM3ZmNTNMaVArWGFOekV0N0g2bEZRWFpHanN0ckw4a05mUldpcVJiV2R6MjZXNVo1TmZOdStrUU56d3drbTJmQVVtTllWTlZBc1J5aFpcL2tqdHd6N0pmU2VNd29kWWdBRE1GYWplMnBwa0dwVDJIWHJGTCIsIm1hYyI6ImY3MzFiNWQ5NTIwZDZmODg0MmI1ZThlOWI3ODhjN2NmMjAwZGVmMTI4MTQ0MmNhNzY4YzA1NDE3MDUzNDA1NDEifQ==
Content-Length: 324
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZ6MVBFTUIrUGdmZWJqQ1FCSVN4alE9PSIsInZhbHVlIjoiMlFvMWgyeFdtMitZTVwvM3ZmNTNMaVArWGFOekV0N0g2bEZRWFpHanN0ckw4a05mUldpcVJiV2R6MjZXNVo1TmZOdStrUU56d3drbTJmQVVtTllWTlZBc1J5aFpcL2tqdHd6N0pmU2VNd29kWWdBRE1GYWplMnBwa0dwVDJIWHJGTCIsIm1hYyI6ImY3MzFiNWQ5NTIwZDZmODg0MmI1ZThlOWI3ODhjN2NmMjAwZGVmMTI4MTQ0MmNhNzY4YzA1NDE3MDUzNDA1NDEifQ%3D%3D; xtuselsaqe76_session=eyJpdiI6ImduNWN5Vkk3ajFTdnVPWERzVlZoQ0E9PSIsInZhbHVlIjoiYW1YOWpwSEpDMXZaK1lHOHJVVjIwXC9YRlwvQTdMNjNMQ2E0eEd3QVQ2WEhKMzFmKzVrYUw2TkJwT3hWR2ZVOFBSTlg2TE1TZVFjcG5wRGlxNmJcL05PS0dibnk2aHFOSmlveTdVT3NCZ2dibXBURGRtTWpOXC9taXFxOTJPMmYzeGlmIiwibWFjIjoiZGM0NzczMjM5ZDMzOTdiMGMxMWVmNzdhNGRlNmQxZjMyMTg4OWI5NzBjOTAyYjhhNjdjMjdmMzBkMjMwNGE0NyJ9; session_uuid=f84356447a1f4a01898f046e8c48669agrrW21RZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
18.217.107.127
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
content-encoding: gzip
date: Fri, 09 Dec 2022 04:31:20 GMT
etag: W/"da39a3ee5e6b4b0d3255bfef95601890afd80709"
set-cookie: XSRF-TOKEN=eyJpdiI6InN0Y28rMkpndWNSMnBFeElEQllDeVE9PSIsInZhbHVlIjoibjlDVVEremZsM0M1Y3JpOXduUW1aWDdranFXWWMyaU11bjJBRWdTUktORnJKN0VRaUdXQmpaSXUyZEtiTUg3bmlaXC95YW1PZlhUbFlSQisyMVhcL2FpRGRBXC9yaHVJWjVKc2FWYVcySUQ4TUptdlNTSG1vakNaYlZPait4YnFWNjEiLCJtYWMiOiIzYjA3NWFiYmJlYmUwZWE1YTRhNDQ1NmZmZTE4Y2IyZjA2YzlhNGM3YTNkZjU0YTJlOGFkMzQ5OTJlYzRjOTJhIn0%3D; expires=Sat, 10-Dec-2022 00:31:20 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6InhsT1FwbWVNaHZmdXRvN0NrT3EzcFE9PSIsInZhbHVlIjoiNHAraUZcL2F5dUdYS0JkR1J0UXl6emQ4RzZLMmV6RVZYZmVTQUlJSTNuNWZza2hnSGJzSU5NSkI1UFY4N1dPVzhZUTBITGI3YU1rZ3FRamJqNlRJXC8wWWdOYm1SQzl0VGlYS1ZDdHloT01vMzNYTmVoT213WGtheE9CQjFQSUllSCIsIm1hYyI6IjRkNWNiMWIyMWU3Mjc5NDFmMDEzOTY5OGYwNTlkNTEyMDBlYTJiNzVkZjU4NzFhZjQ4ZjU1NTNkZmVlOWZkOTkifQ%3D%3D; expires=Sat, 10-Dec-2022 00:31:20 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1439
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_dc43d5b514_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true
Cookie: tsrce=smartcomponentnodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypal.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:20 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"402-MTPu9eJZMLgDz6Os+jJViFmfeIY"
paypal-debug-id: 01773a084aa23
server: ECAcc (lhd/35F8)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=213
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:20 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:16 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI4MDgzMiIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:20 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254680%26vteXpYrS%3D1670562080%26vr%3Df526f0e41840ad04b7db90c6ffc897e9%26vt%3Df526f0e41840ad04b7db90c6ffc897e8%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; HttpOnly; Secure
ts_c=vr%3Df526f0e41840ad04b7db90c6ffc897e9%26vt%3Df526f0e41840ad04b7db90c6ffc897e8; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:20 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000001773a084aa23-cf0504cc85d4ff2b-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 614
X-Firefox-Spdy: h2
|
GET /tr/?id=724624048855298&ev=PageView&dl=https%3A%2F%2Fwww.embravewise.com%2F&rl=&if=false&ts=1670560280930&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670560280929.2124242393&it=1670560278095&coo=false&eid=9a2d5928-ffbb-4d43-8e3c-91072c5796d3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 04:31:21 GMT
X-Firefox-Spdy: h2
|
GET /tr/?id=798632474852151&ev=PageView&dl=https%3A%2F%2Fwww.embravewise.com%2F&rl=&if=false&ts=1670560280939&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670560280929.2124242393&it=1670560278095&coo=false&eid=9a2d5928-ffbb-4d43-8e3c-91072c5796d3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 04:31:21 GMT
X-Firefox-Spdy: h2
|
GET /v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Cookie: tsrce=smartcomponentnodeweb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
|
search
151.101.1.35
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, Sec-CH-UA-Full
correlation-id: d0d5976fd243b
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy-report-only: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; script-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypalinc.com https://www.facebook.com 'unsafe-eval' 'unsafe-inline' blob:; connect-src 'self' https://*.paypal.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com data:; img-src 'self' https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'self' https://*.paypal.com https://*.paypalobjects.com; report-uri https://www.paypal.com/csplog/api/log/csp
origin-trial: A+THamRrv1ypMR6JeaJx7Wmo8rytLELMAeCL0XGhTihfUtp+dVqcCNYiWxOzySlH2Xk7lzRrFY3mxv6viKT1qggAAACKeyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
paypal-debug-id: d0d5976fd243b
traceparent: 00-0000000000000000000d0d5976fd243b-733d00bfba7f6337-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Fri, 09 Dec 2022 04:31:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220095-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1670560280.428692,VS0,VE165
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
|
GET /tr/?id=745133759961906&ev=PageView&dl=https%3A%2F%2Fwww.embravewise.com%2F&rl=&if=false&ts=1670560280934&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670560280929.2124242393&it=1670560278095&coo=false&eid=9a2d5928-ffbb-4d43-8e3c-91072c5796d3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 04:31:21 GMT
X-Firefox-Spdy: h2
|
GET /tr/?id=580013720420078&ev=PageView&dl=https%3A%2F%2Fwww.embravewise.com%2F&rl=&if=false&ts=1670560280936&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670560280929.2124242393&it=1670560278095&coo=false&eid=9a2d5928-ffbb-4d43-8e3c-91072c5796d3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 04:31:21 GMT
X-Firefox-Spdy: h2
|
GET /tr/?id=432456268474051&ev=PageView&dl=https%3A%2F%2Fwww.embravewise.com%2F&rl=&if=false&ts=1670560280937&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670560280929.2124242393&it=1670560278095&coo=false&eid=9a2d5928-ffbb-4d43-8e3c-91072c5796d3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 04:31:21 GMT
X-Firefox-Spdy: h2
|
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1470
Origin: https://www.embravewise.com
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.embravewise.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 09 Dec 2022 04:31:22 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3f6-dgC/ieb5Wq/reZKc4Mzs62EzVns"
paypal-debug-id: 008392882876b
server: ECAcc (lhd/3588)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=231
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 09 Dec 2023 04:31:22 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 09 Dec 2022 13:17:18 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:21 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3MDU2MDI4MjA2MiIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:22 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254682%26vteXpYrS%3D1670562082%26vr%3Df526f5a31840a7a082df5db5fb65a6ab%26vt%3Df526f5a31840a7a082df5db5fb65a6aa%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:22 GMT; HttpOnly; Secure
ts_c=vr%3Df526f5a31840a7a082df5db5fb65a6ab%26vt%3Df526f5a31840a7a082df5db5fb65a6aa; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:22 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000008392882876b-0674c7660d0df7c0-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 603
X-Firefox-Spdy: h2
|
GET /assets/2021/10/5a81a54e2f38cb800f7564d6f91006f2-1300.png HTTP/1.1
Host: cdn.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.3
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:22 GMT
content-length: 18974
cf-ray: 776b02c22d57b506-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfbpr80AbDx394TNPeN3UZl6HRBGjnEvK9me9TrkEkDQ:7266e64af38809bd744ae670dc9d4956"
last-modified: Mon, 18 Oct 2021 06:57:51 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=18 c=13+45 v=2022.12.0 l=18974
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /api/store/exchanges HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6InBtV2k5MGVxUlphdmhFNUQxXC96bmZRPT0iLCJ2YWx1ZSI6Inh5QVlZXC9XSTZ2Y2ZCSkpFeHF4d2xlU3lrRHB3ZkxTYVhXc3FvZXhWXC84UnVvOW9USzlZWUV1WWFsTlBST0pVVlpoVldsRmowcnNGU1d4azRNQis2Y1VKSGF4eERVazFEN2hBallHU0ZJTW40RTBlanlhY0NWQ1lrMUJDWHJ6bFEiLCJtYWMiOiJjNzMzNzdiNTdiYjBiMTc1ZDM3Zjk2OGE4ZWZkYjdiMmZjMzA3Yzg2ZmYzNWQ3NWQyOGEwMGM5NGVhNDY5NzIxIn0=
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: XSRF-TOKEN=eyJpdiI6InBtV2k5MGVxUlphdmhFNUQxXC96bmZRPT0iLCJ2YWx1ZSI6Inh5QVlZXC9XSTZ2Y2ZCSkpFeHF4d2xlU3lrRHB3ZkxTYVhXc3FvZXhWXC84UnVvOW9USzlZWUV1WWFsTlBST0pVVlpoVldsRmowcnNGU1d4azRNQis2Y1VKSGF4eERVazFEN2hBallHU0ZJTW40RTBlanlhY0NWQ1lrMUJDWHJ6bFEiLCJtYWMiOiJjNzMzNzdiNTdiYjBiMTc1ZDM3Zjk2OGE4ZWZkYjdiMmZjMzA3Yzg2ZmYzNWQ3NWQyOGEwMGM5NGVhNDY5NzIxIn0%3D; xtuselsaqe76_session=eyJpdiI6Ijd2YktkanBnSjNnZWlRWDlaZUJIY1E9PSIsInZhbHVlIjoiZE8zVFlzV3pcL0cranJqa3hHa1JzM3ZtR0VVVkdXXC9hd1JEMTdLRjFZYk5uNjNGYkNoOCtNVGhEZE5ab3lRMlNtdlZpQWhtdXArK2xmbk5YTzk2bVN4aVhlS3lyVWg4YnlYYkNcLzJtZ0lUVkhtSUthbE5YNm4yYmc0MSt5RzVYTEgiLCJtYWMiOiIwOGM3ZjA2NTM1YWM3NDRkODlhZjkwNWRhMWJhNGRlZGFjMjlmODIyZmEwYWIxZGI5Zjg0YTc0YWY5Mzk3MjE3In0%3D; session_uuid=f84356447a1f4a01898f046e8c48669agrrW21RZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
18.217.107.127
HTTP/2 200 OK
content-type: application/json
cache-control: no-cache, private
date: Fri, 09 Dec 2022 04:31:18 GMT
etag: "991fc10256136cb0d68dc65c0612c6b0e86e2651"
set-cookie: XSRF-TOKEN=eyJpdiI6Im5wZ2lWMlpCY3R6NVwvRW16K2ZCZWJBPT0iLCJ2YWx1ZSI6IjFoQlYzTEtsTEhvdEZUZ1wvQTlHRk02eWhJeExhcnBOYlVmZHJ1UHR4VDIyUk1uMkhMNm9wVGN6V0g4TlRYOURBbTBjUVJ3VUlUWllsQzVmaEpHNlJMXC8weEFmZjMzM1hVaXNRb0FMM3gzaFwvUXlmMzBUd01mTW44TGdTZXdraXR3IiwibWFjIjoiYTc2ZTg5MzFlNDQzYzYzZTc4MWM5ZDliODEzYmRmODNkZWJhMTU3ZWY4MTQ3ZDFjNzA5ZmVkYzMzNTFlNGE4YiJ9; expires=Sat, 10-Dec-2022 00:31:18 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6IlRYc3RyRU9RS2wyb09mdEJMRDNSVFE9PSIsInZhbHVlIjoiN3JiNG1pOXo1THR3a29DNEZYTVdkYU0rbHppYUU1VVFJd0Q1YUtUTGNITTBMVUREWFhWUUpseFFUY2dzUmpmMlJtTzFjS1l4R1UxUE9TQlNlVmxCODhVdkdOd29GM3JoSUxxT2UrbHJkZElpWURTTDdYMDluWUk3ZVcrcXpoblQiLCJtYWMiOiJhNTMxZTdjNDQyMDA4ZWFmMWY3ZjY0MGNkZTBjYjVkNjhjNDIyZDgxMjY5ODUzZDczZjJkNDdkZTdmODAyNTc5In0%3D; expires=Sat, 10-Dec-2022 00:31:18 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
GET /image/2022/09/e52f63543655576259a74260e398a2f9ab088021eba3b95450f3b2f460ebaf8c-1300.png HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
103.184.44.5
HTTP/2 200 OK
content-type: image/webp
date: Fri, 09 Dec 2022 04:31:22 GMT
content-length: 170292
cf-ray: 776b02c21a53b4fa-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfp--ZQuUvh_EV045WeVQ3ymu0BGjnEvK9me9TrkEkDQ:ca60dd56c065ac1c7972d6ccbd9c2ec7"
last-modified: Wed, 14 Sep 2022 10:53:40 GMT
vary: Accept, Accept-Encoding
cf-cache-status: MISS
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=156 c=16+124 v=2022.12.0 l=170292
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F111d6163-0ce5-4897-9a84-a9cefa74d2a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7694
x-amzn-requestid: 0c67138c-1a6d-49ef-bd43-f9a7176679ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2LZjFjrIAMFUSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63925909-764272151a0a4d284c6cb1bb;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aaEYG20Wueg557qEBq46sSUl3-_HxgZA73s-kPo3GmYgWgrGgFPl_Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:59:58 GMT
age: 23485
etag: "60aed079c48181cf46cef4d1aaa1c316a7ef7048"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_84da7c3812_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=targetingnodeweb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-encoding: gzip
access-control-expose-headers: Server-Timing
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-disposition: inline
content-security-policy: form-action 'self' https://*.paypal.com https://*.cardinalcommerce.com; default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com:* https://*.paypalobjects.com https://*.googleapis.com https://*.firebaseio.com wss://*.firebaseio.com https://api2.amplitude.com http://127.0.0.1:* https://*.qualtrics.com; frame-src 'self' https://*.paypal.com:* https://*.paypalobjects.com https://*.cardinalcommerce.com https://*.firebaseapp.com https://*.qualtrics.com; script-src 'self' https://*.paypal.com:* https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval' https://apis.google.com; style-src 'self' https://*.paypal.com:* https://*.paypalobjects.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com data:; object-src 'none'; img-src https: data:; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
date: Fri, 09 Dec 2022 04:31:19 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5e2af-eXc1FkHOHcdQ8hpDINsfBeTnoro"
p3p: true
paypal-debug-id: 0888984596327
server: ECAcc (lhd/35ED)
server-timing: traceparent;desc="00-00000000000000000000888984596327-3eb0115fcae96d89-01", content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=359
set-cookie: tsrce=smartcomponentnodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg14.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:19 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254679%26vteXpYrS%3D1670562079%26vr%3Df526ea611840ad04b81756f4ffc8988f%26vt%3Df526ea611840ad04b81756f4ffc8988e%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; HttpOnly; Secure
ts_c=vr%3Df526ea611840ad04b81756f4ffc8988f%26vt%3Df526ea611840ad04b81756f4ffc8988e; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000888984596327-442c67d22f72dc0f-01
vary: Accept-Encoding
x-content-type-options: nosniff
x-csrf-jwt: __blank__
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /smart/buttons?env=production&locale.country=US&locale.lang=en&style.label=paypal&style.layout=vertical&style.color=gold&style.shape=rect&style.tagline=false&style.height=48&style.menuPlacement=below&commit=false&fundingSource=paypal&sdkVersion=5.0.343&components.0=buttons&components.1=funding-eligibility&components.2=messages&sdkMeta=eyJ1cmwiOiJodHRwczovL3d3dy5wYXlwYWwuY29tL3Nkay9qcz9jbGllbnQtaWQ9QVdINHM4UldJMElOWS1nYVZQWkw5M3lLNVdNTzNIdjlLX2MzZi1ic1NIX3JyRlpaWjJJSUdQd21iOHRwbzhNRHlleThXVzkxTERjN3Bvdk4mY29tbWl0PWZhbHNlJmN1cnJlbmN5PVVTRCZkaXNhYmxlLWZ1bmRpbmc9YmFuY29udGFjdCxibGlrLGVwcyxnaXJvcGF5LGlkZWFsLG1lcmNhZG9wYWdvLG15YmFuayxwMjQsc2VwYSxzb2ZvcnQsdmVubW8mY29tcG9uZW50cz1idXR0b25zLGZ1bmRpbmctZWxpZ2liaWxpdHksbWVzc2FnZXMiLCJhdHRycyI6eyJkYXRhLXVpZCI6InVpZF9ubnZieGhiYnBscGRuZGNpc29icnBwbHRheXBsbnoifX0&clientID=AWH4s8RWI0INY-gaVPZL93yK5WMO3Hv9K_c3f-bsSH_rrFZZZ2IIGPwmb8tpo8MDyey8WW91LDc7povN&sdkCorrelationID=f834081e9672b&storageID=uid_2d618f32b3_mdq6mze6mty&sessionID=uid_60d07a9188_mdq6mze6mty&buttonSessionID=uid_dc43d5b514_mdq6mze6mtc&fundingEligibility=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&platform=desktop&experiment.enableVenmo=false&experiment.enableVenmoAppLabel=false&flow=purchase¤cy=USD&intent=capture&vault=false&disableFunding.0=bancontact&disableFunding.1=blik&disableFunding.2=eps&disableFunding.3=giropay&disableFunding.4=ideal&disableFunding.5=mercadopago&disableFunding.6=mybank&disableFunding.7=p24&disableFunding.8=sepa&disableFunding.9=sofort&disableFunding.10=venmo&renderedButtons.0=paypal&debug=false&applePaySupport=false&supportsPopups=true&supportedNativeBrowser=false&experience=&allowBillingPayments=true HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Cookie: tsrce=targetingnodeweb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
search
192.229.221.25
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-encoding: gzip
access-control-expose-headers: Server-Timing
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-disposition: inline
content-security-policy: form-action 'self' https://*.paypal.com https://*.cardinalcommerce.com; default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com:* https://*.paypalobjects.com https://*.googleapis.com https://*.firebaseio.com wss://*.firebaseio.com https://api2.amplitude.com http://127.0.0.1:* https://*.qualtrics.com; frame-src 'self' https://*.paypal.com:* https://*.paypalobjects.com https://*.cardinalcommerce.com https://*.firebaseapp.com https://*.qualtrics.com; script-src 'self' https://*.paypal.com:* https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval' https://apis.google.com; style-src 'self' https://*.paypal.com:* https://*.paypalobjects.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com data:; object-src 'none'; img-src https: data:; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
date: Fri, 09 Dec 2022 04:31:19 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5e2af-EJ8/Ve5b7xn2tAbblLlRd8dwbas"
p3p: true
paypal-debug-id: 040b959b23491
server: ECAcc (lhd/35F0)
server-timing: traceparent;desc="00-0000000000000000000040b959b23491-8d7ecd9da084be9d-01", content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=361
set-cookie: tsrce=smartcomponentnodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 12 Dec 2022 04:31:19 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Fri, 09 Dec 2022 05:01:19 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1765254679%26vteXpYrS%3D1670562079%26vr%3Df526ea4b1840a1d30bc2f783ffc98467%26vt%3Df526ea4b1840a1d30bc2f783ffc98466%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; HttpOnly; Secure
ts_c=vr%3Df526ea4b1840a1d30bc2f783ffc98467%26vt%3Df526ea4b1840a1d30bc2f783ffc98466; Path=/; Domain=paypal.com; Expires=Mon, 08 Dec 2025 04:31:19 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000040b959b23491-ca0df45a1d3bce70-01
vary: Accept-Encoding
x-content-type-options: nosniff
x-csrf-jwt: __blank__
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET / HTTP/1.1
Host: embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
18.217.107.127
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Fri, 09 Dec 2022 04:31:15 GMT
location: //www.embravewise.com/
set-cookie: XSRF-TOKEN=eyJpdiI6IkxxbjJWT3ZGWE51dWhxd3pZKzFYb3c9PSIsInZhbHVlIjoiTG5tWDA3VzhTMHFJK2V5S0J3UGlsNkl6RjIzVFRXNHl0QUFRRk1OaENZSW8xdytrRE13eWZRUzEyQXBRWDRQRTROMUVkV3VsMFRuRnRtSmMxeEhhV1EydlIrTHBjd3RPeDZ3eVRxOFJcL3NEVGptN0RPY0pvSDI3Mk8xbmUzMFg3IiwibWFjIjoiMmYxMWM0MTY1YmIzZDViZTA2OTdlMmVhODQ3ZjRlMWU1YjhmNGE3YmNkNGUyMjM2NmVlMzYxYjk0NmFkYmM1ZSJ9; expires=Sat, 10-Dec-2022 00:31:15 GMT; Max-Age=72000; path=/
xtuselsaqe76_session=eyJpdiI6IitPSjV4YkpBV1JKYWwxNUVJMDFhc2c9PSIsInZhbHVlIjoiQ1lkTjMyUVwvMFJMVHh2djlYSUpWeXJsQnlVWjRnaWZJaWVTcjhiQlBZeW5tR21OajBXdzJNZ0JLWWZGV0V4WkF0aXFjakJOR0pDdzBhMWQ5VSs1NVFkazF2YzZQc1g3SlVoSk9YSDc3MFFFVnU4QThaUGkydkVoTHlROHlyZ1RoIiwibWFjIjoiNmYzNzExMWIxOTZiNTRkZDJmZDEzYjg3YmQ4ZmQ1Yzg5NzU4YjUyZmRiMTAzNWJiY2U2ZTMzMjc1MjdhZWFmMSJ9; expires=Sat, 10-Dec-2022 00:31:15 GMT; Max-Age=72000; path=/; httponly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Malware
|
GET /static/v1.33.33-h.6/store/vogue/js/app.aaeeea.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 Dec 2022 07:06:25 GMT
last-modified: Mon, 05 Dec 2022 10:46:00 GMT
etag: W/"497f915d8e03c06642b14519ad389df1"
cache-control: max-age=31536000, public
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6L1fpuATpZDGM7oUh01sMhOWEFGyZFQnkMdp1TgpjKtBEFGu1jUTgw==
age: 249892
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /static/v1.33.33-h.6/store/vogue/js/index.debf6a.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Dec 2022 23:44:45 GMT
last-modified: Mon, 05 Dec 2022 10:45:57 GMT
etag: W/"51349f05401c6b465d38ef9bf50811cb"
cache-control: max-age=31536000, public
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -qN_6DJ1P0w-GNHlGHz4_q3iPoc95Sy7ithkKXN0n4-8T2uNBRrl-g==
age: 17192
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /js/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: static.wshopon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.embravewise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.56
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Dec 2022 23:44:45 GMT
etag: W/"0732e3eabbf8aa7ce7f69eedbd07dfdd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jtM_jR2U9kthrPAxhM0qpEQ7PCYFpP-s3iPAoixAFsfY5TqYCr5mig==
age: 17192
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /api/store/last-sales HTTP/1.1
Host: www.embravewise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
|
54.194.44.236
3.70.16.242