r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13750
Expires: Mon, 30 Jan 2023 23:35:30 GMT
Date: Mon, 30 Jan 2023 19:46:20 GMT
Connection: keep-alive
www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8
23.227.38.74302 Found 0 B URL HTTP/1.1 www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8
IP 23.227.38.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8 HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 30 Jan 2023 19:46:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 238
X-Sorting-Hat-ShopId: 46779859095
X-Frame-Options: DENY
Location: https://www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8
X-Shopify-Stage: production
Content-Security-Policy: frame-ancestors 'none'; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=6ff01c5e-eb30-4b4d-a095-ec1ef867fca3
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=6ff01c5e-eb30-4b4d-a095-ec1ef867fca3
X-Dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
X-Request-ID: 6ff01c5e-eb30-4b4d-a095-ec1ef867fca3
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FS5txydKnWuAFsmkfMaRDIlfUto3qB%2FzMPHnH8ktQi8TCkUcyDpm2%2FVvVG70v95A1g9LJftXYtvTHjb7as2iv31gD7H5rQyNqjnl6AErdnVW8k1Aceemh3BIloWAfLI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: cfRequestDuration;dur=340.000153
Server: cloudflare
CF-RAY: 791cb68edc7bb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14754
Expires: Mon, 30 Jan 2023 23:52:14 GMT
Date: Mon, 30 Jan 2023 19:46:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7846
Expires: Mon, 30 Jan 2023 21:57:06 GMT
Date: Mon, 30 Jan 2023 19:46:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 19:35:46 GMT
content-type: application/json
age: 634
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eeUz2RjP/ZT4qJKakzrbVFNODJDmIuOIjXCYWJnzedHw7e9qE4724xQyvDBf4X/cyRhMd5IJgqg=
x-amz-request-id: ASYWGYV222N51A91
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 18:50:51 GMT
age: 3329
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 19:46:20 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 232ac2d99c52eea960c38b3df73d8154
2af7739eda77ab734b710e643691634352b81d88
738c8a2bb4f77b5f42fe98dcb6dbff292b2b919643750842e971080df70b3909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "738C8A2BB4F77B5F42FE98DCB6DBFF292B2B919643750842E971080DF70B3909"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Mon, 30 Jan 2023 20:52:52 GMT
Date: Mon, 30 Jan 2023 19:46:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 232ac2d99c52eea960c38b3df73d8154
2af7739eda77ab734b710e643691634352b81d88
738c8a2bb4f77b5f42fe98dcb6dbff292b2b919643750842e971080df70b3909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "738C8A2BB4F77B5F42FE98DCB6DBFF292B2B919643750842E971080DF70B3909"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Mon, 30 Jan 2023 20:52:52 GMT
Date: Mon, 30 Jan 2023 19:46:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 18:49:04 GMT
age: 3437
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8572
Expires: Mon, 30 Jan 2023 22:09:13 GMT
Date: Mon, 30 Jan 2023 19:46:21 GMT
Connection: keep-alive
push.services.mozilla.com/
35.167.56.184101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.167.56.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JAF+EymKRW6jIM2XHv+XTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FC3bTT8FTLkWRW/K+6d06pvKe0E=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5e36cdf53f8344e122029dec83c1c563
4bb2c27c3fd73ef71edd758900f32a8a2b2df6d4
d0fc4b3b83471b22ea646cccaf267aaaa75554d4e79b8d751aba43d30104b4e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0FC4B3B83471B22EA646CCCAF267AAAA75554D4E79B8D751ABA43D30104B4E3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13316
Expires: Mon, 30 Jan 2023 23:28:18 GMT
Date: Mon, 30 Jan 2023 19:46:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5e36cdf53f8344e122029dec83c1c563
4bb2c27c3fd73ef71edd758900f32a8a2b2df6d4
d0fc4b3b83471b22ea646cccaf267aaaa75554d4e79b8d751aba43d30104b4e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0FC4B3B83471B22EA646CCCAF267AAAA75554D4E79B8D751ABA43D30104B4E3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13316
Expires: Mon, 30 Jan 2023 23:28:18 GMT
Date: Mon, 30 Jan 2023 19:46:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5e36cdf53f8344e122029dec83c1c563
4bb2c27c3fd73ef71edd758900f32a8a2b2df6d4
d0fc4b3b83471b22ea646cccaf267aaaa75554d4e79b8d751aba43d30104b4e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0FC4B3B83471B22EA646CCCAF267AAAA75554D4E79B8D751ABA43D30104B4E3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13316
Expires: Mon, 30 Jan 2023 23:28:18 GMT
Date: Mon, 30 Jan 2023 19:46:22 GMT
Connection: keep-alive
www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3
23.227.38.74200 OK 48 kB URL HTTP/2 www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3
IP 23.227.38.74:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3221)
Hash 44779fb545500509ae26d75e1fffeb30
399200add4fa367265e4180583e44d406e695aef
13df9f301060ddcb6f04e5d6fcc2ed23375bd0dda1ea1acb250cf68723cdf534
GET /46779859095/orders/b3a45720f7a114c0900c120e758dbae3 HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVV4T0dSbVptSmhPVE0yWVRGaE1tRTJPR0ZpWWpNMU9USmhZMkZrTVRWbU9BWTZCa1ZVIiwiZXhwIjoiMjAyMy0wMi0yMFQxOTo0NjoyMS4yMDBaIiwicHVyIjoiY29va2llLm9yZGVyIn19--103c8ef924fc6e85e37d3bbe6175ae7af84943e0; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; _s=d355cd54-feee-4b62-9c27-d77fb50186e5; _shopify_y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; _shopify_s=d355cd54-feee-4b62-9c27-d77fb50186e5
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-frame-options: DENY
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: _secure_session_id=dbb315c542fdd432b4d7ad5df069762f; path=/; expires=Tue, 31 Jan 2023 19:46:21 GMT; secure; HttpOnly
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=xtool.com; path=/; expires=Tue, 31 Jan 2023 19:46:21 GMT; SameSite=Lax
_orig_referrer=; Expires=Mon, 13-Feb-23 19:46:21 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3; Expires=Mon, 13-Feb-23 19:46:21 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_orig_referrer=; Expires=Mon, 13-Feb-23 19:46:22 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3; Expires=Mon, 13-Feb-23 19:46:22 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; Expires=Tue, 30-Jan-24 19:46:22 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_s=d355cd54-feee-4b62-9c27-d77fb50186e5; Expires=Mon, 30-Jan-23 20:16:22 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; Expires=Tue, 30-Jan-24 19:46:22 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_s=d355cd54-feee-4b62-9c27-d77fb50186e5; Expires=Mon, 30-Jan-23 20:16:22 GMT; Domain=xtool.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=68b5bfad-1849-4b25-b19a-5eebeef0df93
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=68b5bfad-1849-4b25-b19a-5eebeef0df93
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 68b5bfad-1849-4b25-b19a-5eebeef0df93
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g1vg4TZtuN5BLO4GnM77JPo24jrSoZH2ALNgVKKHmCwD8GSZKOQm14JDHHDc6g%2F9%2B1vz%2BY3SGasea4rav%2FxomqH%2F6ZRJQy4rst1%2FuZ7%2BCFNmq2QgROY2BmrIE6JJ350%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=720.000029
server: cloudflare
cf-ray: 791cb6933aa0b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 788401ba6625fa009e25acfe8b8bd4ac
bb024f8867116f078a4e09be63222ec4f9cbcf44
99871f30d26ecc3e7ce2f6594c4ca1612d7ca29be1e6e9b68ca279e46180a38b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2592
Cache-Control: max-age=130187
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:22 GMT
Etag: "63d76df9-117"
Expires: Wed, 01 Feb 2023 07:56:09 GMT
Last-Modified: Mon, 30 Jan 2023 07:12:57 GMT
Server: ECS (amb/6BC3)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=G-3YDFWHJE79
142.250.74.40200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-3YDFWHJE79
IP 142.250.74.40:0
File type Unicode text, UTF-8 text, with very long lines (28367)
Hash b5e108b1b6e3432bed65d199eadc54d7
5a75194fdec8a5132b7c7df40fa2048f90701a93
045e5e37698c244d62fbb073b225fc715728034422b61df42430aa741ae924e2
GET /gtag/js?id=G-3YDFWHJE79 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 19:46:22 GMT
expires: Mon, 30 Jan 2023 19:46:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80042
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0467/7985/9095/products/1.2_small.webp?v=1668499963
23.227.60.200200 OK 1.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0467/7985/9095/products/1.2_small.webp?v=1668499963
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 26278bf8a15d1e3be0e751e9e1f97a33
5d587eb95209c2fcff37086c887d4ae37cc52b98
5c6125b59cbe48328979ed3af9ae7a3584487e6561cbc41bb76e242394dcd3d7
GET /s/files/1/0467/7985/9095/products/1.2_small.webp?v=1668499963 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: image/avif
content-length: 1629
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0467/7985/9095/products/1.2_small.webp>; rel="canonical"
source-length: 12792
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 88925985-2a96-4cb1-8e7f-9a0681338f59
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 16 Jan 2023 13:14:54 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2zXjDUKH2xnPD7v%2FMuIhSJBG55JM1COQN7bhnE7hJmtKsHep7h7bF7oNXgM6EPY6U%2FLTyp2NtFo9JJ0uegihTEQzW0TSuRehPRObE7Duf728VLj9AcDXbtV2EDMqLlhLWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=215.002, imageryFetch;dur=65.369, imageryProcess;dur=146.761;desc="image", cfRequestDuration;dur=138.999939
server: cloudflare
cf-ray: 791cb698d9d40b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
23.227.60.200200 OK 7.4 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19843), with no line terminators
Hash fe51ddf830efdb527018f4db9845aeab
9c9bb7b6b5525e4298869c6ca4d50287e022bddb
2f6eaecc4807e8356c9057f69c209f567b0c557697643cfae56a9a2ca4279958
GET /shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 704d9cfc-7064-4ebf-ad33-ba09a1a122bf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 17 Jan 2023 13:09:00 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ETyhpse2cibK999dDzDT5FsVbMSuBdFZ0Q8XFIWzCtgOwnzwavJ0aRHcwFInvd9cpa6r9HqP30kkUWmOsMtmI0Py51Fyk4PwbnTBEpg76uFa7I70PTSRwUkl3Mu96KZYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=25.872, imageryFetch;dur=25.680, cfRequestDuration;dur=131.000042
server: cloudflare
cf-ray: 791cb698c9cc0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6fc8a0e94c36ded9d8905f9994cae320
0326d8a783ecf613870b68530073cad888507fa8
faf94e17426ef7402f3998fdd4ce805b3badbd30360628fcb9c1787841f8a29a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAF94E17426EF7402F3998FDD4CE805B3BADBD30360628FCB9C1787841F8A29A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14186
Expires: Mon, 30 Jan 2023 23:42:48 GMT
Date: Mon, 30 Jan 2023 19:46:22 GMT
Connection: keep-alive
o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
34.120.195.249200 OK 2 B URL HTTP/2 o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2 HTTP/1.1
Host: o4504297885007872.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.xtool.com
Content-Length: 407
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://www.xtool.com
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6fc8a0e94c36ded9d8905f9994cae320
0326d8a783ecf613870b68530073cad888507fa8
faf94e17426ef7402f3998fdd4ce805b3badbd30360628fcb9c1787841f8a29a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAF94E17426EF7402F3998FDD4CE805B3BADBD30360628FCB9C1787841F8A29A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14186
Expires: Mon, 30 Jan 2023 23:42:48 GMT
Date: Mon, 30 Jan 2023 19:46:22 GMT
Connection: keep-alive
www.redditstatic.com/ads/pixel.js
151.101.193.140200 OK 7.4 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.193.140:0
File type ASCII text, with very long lines (23347)
Hash 03d5db9dfd00a5719bb4c9261e6fa1bb
be9899225f59b4d3ef6fefcf0e66b72568353a94
e90f19642062e4311b58ede732592e8f29b7799661086a0bbfc68e259fd81398
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 21:56:14 GMT
etag: "03d5db9dfd00a5719bb4c9261e6fa1bb"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:46:22 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7356
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5c3c02eb487c27a24a65e938ccb5d533
36611471789b2c1f1fbb2ca572d7fca8232e6388
086353e485ad6cf7fdcaf4b02e355db27897b409dd89672e2e87196ec34693fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168585
Date: Mon, 30 Jan 2023 19:46:22 GMT
Etag: "63d805e5-1d7"
Expires: Wed, 01 Feb 2023 18:36:07 GMT
Last-Modified: Mon, 30 Jan 2023 18:01:09 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JPHutwnhH4kgg76wGFoah9Gu8U0u_k77AJEcnXH609gMp3fKs9f5rA==
Age: 2098
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5c3c02eb487c27a24a65e938ccb5d533
36611471789b2c1f1fbb2ca572d7fca8232e6388
086353e485ad6cf7fdcaf4b02e355db27897b409dd89672e2e87196ec34693fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170853
Date: Mon, 30 Jan 2023 19:46:22 GMT
Etag: "63d805e5-1d7"
Expires: Wed, 01 Feb 2023 19:13:55 GMT
Last-Modified: Mon, 30 Jan 2023 18:01:09 GMT
Server: ECS (dcb/7F5B)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hs-MlvYO-s-KtkUDC5sH6WwWfwt5f26pe-e6Ix4f2l5Ax8A1SG3OvQ==
Age: 4366
abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
3.229.250.13200 OK 0 B URL HTTP/2 abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
IP 3.229.250.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB HTTP/1.1
Host: abtest-aws-us-east-01.saas.sensorsdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: *
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-request-id: 87a0eaaadcef45619ee53cd1ce873f65
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5255
Expires: Mon, 30 Jan 2023 21:13:58 GMT
Date: Mon, 30 Jan 2023 19:46:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5255
Expires: Mon, 30 Jan 2023 21:13:58 GMT
Date: Mon, 30 Jan 2023 19:46:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5255
Expires: Mon, 30 Jan 2023 21:13:58 GMT
Date: Mon, 30 Jan 2023 19:46:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 23:25:02 GMT
age: 73281
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:56:46 GMT
age: 78577
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 78795
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 78662
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 78345
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 78854
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-3YDFWHJE79>m=2oe1p0&_p=1678210737&_gaz=1&cid=418443152.1675107996&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675107995&sct=1&seg=0&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&dt=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-3YDFWHJE79>m=2oe1p0&_p=1678210737&_gaz=1&cid=418443152.1675107996&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675107995&sct=1&seg=0&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&dt=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3YDFWHJE79>m=2oe1p0&_p=1678210737&_gaz=1&cid=418443152.1675107996&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675107995&sct=1&seg=0&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&dt=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:46:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1
173.194.221.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1
IP 173.194.221.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:46:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 147321b85fbbe4e9f08dfc348a4ae328
a829be1378ce3a8c56765bf36c7139076e33e88d
5b3d4ba382d881a31b1b22cd3e98d28a54c0ecc627f0198c0df31ad806bad412
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B3D4BA382D881A31B1B22CD3E98D28A54C0ECC627F0198C0DF31AD806BAD412"
Last-Modified: Mon, 30 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19324
Expires: Tue, 31 Jan 2023 01:08:27 GMT
Date: Mon, 30 Jan 2023 19:46:23 GMT
Connection: keep-alive
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.js
172.67.70.176200 OK 11 kB URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.js
IP 172.67.70.176:0
File type Unicode text, UTF-8 text, with very long lines (308)
Hash bafa26204ba7e6a340b309dd201bdf18
ecceda20ce7e82ec1bef53823c8a375e352892ee
71ccec9e5378c5a61e1c36b0c0eed73b50e3604b84ae8ab65a4a2990ee9cac1f
GET /facebook-pixel/client/facebook-pixel.js HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 10:10:04 GMT
etag: W/"63c12dfc-dca1"
expires: Wed, 01 Feb 2023 03:53:17 GMT
cache-control: max-age=1209600, public
pragma: public
cf-cache-status: HIT
age: 1093985
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gvQPWm1nFvybpZzB8fAGzN%2FhwKMrO4tjB5sWd6jgUE6GtQf2AnxavLqtkwt6ZZhIMMtpfqZ362hIj6YuJ%2BBHHsToPJ4AV7UF9Q4bF3CHrTCKgqrr6DYqCfR0b%2BVovKFljPEY9PY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791cb6998b32b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dataaccess.mblock.cc/sa.gif?project=production&data=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&ext=crc%3D-1554191986
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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&ext=crc%3D-1554191986
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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&ext=crc%3D-1554191986 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 147321b85fbbe4e9f08dfc348a4ae328
a829be1378ce3a8c56765bf36c7139076e33e88d
5b3d4ba382d881a31b1b22cd3e98d28a54c0ecc627f0198c0df31ad806bad412
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B3D4BA382D881A31B1B22CD3E98D28A54C0ECC627F0198C0DF31AD806BAD412"
Last-Modified: Mon, 30 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19323
Expires: Tue, 31 Jan 2023 01:08:27 GMT
Date: Mon, 30 Jan 2023 19:46:24 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDNMNPRC77U070R04ON0&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDNMNPRC77U070R04ON0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (2312)
Hash 258e075c97b8158320ba7a1581c885f7
1efca1a2cda15a919b227cb9ab9562970b11af6e
a1963f3971c37f516323a642a35089aa648da3e7bf377bf971ce46c8f0850305
GET /i18n/pixel/events.js?sdkid=CDNMNPRC77U070R04ON0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230130194624D7B1EB76AF896318E22C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0764466e0b5b112d232712dcc108a166d020f6c9a83eaecca1803192f0bca85c0e676e79346386eaa0e65021237826c772b5f8b82dca623d56c741f786a5294e
content-encoding: gzip
expires: Mon, 30 Jan 2023 19:46:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 19:46:24 GMT
content-length: 1185
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2L3m8vNwtku3VHOHYwtW3N9r5zO; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=100
x-origin-response-time: 100,23.36.79.13
x-akamai-request-id: 80b3b6aa
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 74c3f327c4b3002fde5ef788129d6245
f99cd82f3208a2750f5be61301719411d3456ea0
c56110fcf0f726745765a3708a795b832279b24811675e6d757a8d84c3a4b144
GET /i18n/pixel/static/main.MWE2YWY2YTgzMg.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3m8vNwtku3VHOHYwtW3N9r5zO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825CE9047AAB28A1A92E1C9
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f0d03b7468ad8b1cb3b9a087e8ba0c9271348d0471c1aab4c6b5f4ed91206a643c3d77d2de7d14e7830204a6ea5a19be4f4e8a330ae4e711c3e2cbdf6ca25d12c
content-encoding: gzip
content-length: 68835
date: Mon, 30 Jan 2023 19:46:24 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 80b3b898
X-Firefox-Spdy: h2
cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539
23.227.60.200200 OK 54 kB URL HTTP/2 cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (906)
Hash 23d1ce645b08a912de785d186cb23fa3
ab5a4734e24fbdb1ec466363c26319e47bbcaef8
c2822d34cc117fbc5c2715d7ac7337e18f8995ef22bc94fa97106e83c15193de
GET /s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539 HTTP/1.1
Host: cdn.shopifycdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: eaacd915-82f2-4986-ac54-5bfc7e23f8be
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sun, 09 Oct 2022 11:24:15 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=we0JA3ugLwMZdQHpenYRoaLHdIQkoV6mQCLY2Gn6fWzjIfOcAnXrIyDF4ipo5KDUYXaNHRRgELesA%2B2w5B5kh1lmTWxKXyX65vU%2BkG2GEpKTmwa4FVDFTr0HqXC6Ss8gGZYFgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=35.795, imageryFetch;dur=34.681, cfRequestDuration;dur=244.999886
server: cloudflare
cf-ray: 791cb6a32da6b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
20.75.202.196200 OK 346 B URL HTTP/2 dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
IP 20.75.202.196:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 54241d6f7af4938eefc3433fff6b450b
523a427f0c9d2aaf1a8cf2436227fa658a06bf65
64fd2e4ea99528f5f56efacdf180bf987acc8f1759e2abaca9400e578ce92148
OPTIONS /sensorsdata/v1/payment_successful/debug HTTP/1.1
Host: dtc.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: utoken,lang,Content-Type,Accept,Origin,Access-Control-Allow-Origin,Cache-Control
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,PATCH
access-control-allow-origin: *
date: Mon, 30 Jan 2023 19:46:24 GMT
content-length: 0
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js
23.227.60.200200 OK 333 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32768)
Size 333 kB (333047 bytes)
Hash 27b61085dcf72cd4fa3ca84bcfc133f1
53df5c3e1aae728271abb28458dd43824c6b1d8c
6f5f433c493c2f8ed1861c2805e35bb2a98eb197170403b34a3c4dc4b99e7434
GET /shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-56fd3fb2a9e87e63c7067dc66a54d13c9ca633da1575bf6a48f323da737ee10e.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 97a580b2-ebc0-46d2-be5e-34a262cd7468
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 12 Dec 2022 13:22:23 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WGlHY%2BTmSQePYwqtyqTbtQnUdvU0glyJMk8mwZ0cB8732NM80%2BhycQ%2Fm6TdUfb6LqaoMNhKFV3mXTwPoW94xnmpWst9AObO6aShhcv%2FkjireVf1LPdBnSZS4FwSFpydufQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=62.549, imageryFetch;dur=62.289, cfRequestDuration;dur=171.000004
server: cloudflare
cf-ray: 791cb698c9ca0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5692
Cache-Control: max-age=129695
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Etag: "63d75ff3-1d7"
Expires: Wed, 01 Feb 2023 07:47:59 GMT
Last-Modified: Mon, 30 Jan 2023 06:13:07 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 19:45:20 GMT
expires: Mon, 30 Jan 2023 21:45:20 GMT
cache-control: public, max-age=7200
age: 64
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
20.75.202.196200 OK 35 B URL HTTP/2 dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
IP 20.75.202.196:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash acbbb0b6425f0ebc413b114d639f4953
8b45409d53bd69fd1ca410a0801b24940cedd216
0c5cdb9b8171e9424e466d28e627643e7da544b700a9a1edd6ebfb59ab590a9e
POST /sensorsdata/v1/payment_successful/debug HTTP/1.1
Host: dtc.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 547
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: utoken,lang,Content-Type,Accept,Origin,Access-Control-Allow-Origin,Cache-Control
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,PATCH
access-control-allow-origin: *
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 19:46:24 GMT
content-length: 35
x-envoy-upstream-service-time: 20
server: istio-envoy
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 97B8A1A6720045E19C336351741B8E3D Ref B: OSL30EDGE0214 Ref C: 2023-01-30T19:46:24Z
date: Mon, 30 Jan 2023 19:46:23 GMT
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1&z=58114478
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1&z=58114478
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3YDFWHJE79&cid=418443152.1675107996>m=2oe1p0&aip=1&z=58114478 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:46:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: na8mSwc3r3IlpY+HJH2SMOojt49TgqazXJOCvJmg+7oYCSEQ61YQlGo0Ic+r+9OAW3UoiYKxUrOp7p8YV7Yk3Q==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 19:46:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5692
Cache-Control: max-age=129695
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Etag: "63d75ff3-1d7"
Expires: Wed, 01 Feb 2023 07:47:59 GMT
Last-Modified: Mon, 30 Jan 2023 06:13:07 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1675107996147&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=4f16cee1-a19f-4ca1-bede-9338badfc369&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
151.101.65.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1675107996147&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=4f16cee1-a19f-4ca1-bede-9338badfc369&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
IP 151.101.65.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1675107996147&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=4f16cee1-a19f-4ca1-bede-9338badfc369&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:46:24 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1140
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3m8vNwtku3VHOHYwtW3N9r5zO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230130194624778A6C12718535C8B61A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156aefcc9fe5827f394c6161060f8cb6abe46074fe4ca76662e3fa6690fc6680506cf092c27daefc1f046baa9f6a0ead36d9c43fa616e00782bb78affd62703067b4
expires: Mon, 30 Jan 2023 19:46:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 19:46:24 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=12, cdn-cache; desc=MISS, edge; dur=4, origin; dur=108
x-origin-response-time: 108,23.36.79.13
x-akamai-request-id: 80b3bc75
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1176
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3m8vNwtku3VHOHYwtW3N9r5zO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230130194624DB7A765C7F089392FBEF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6089b3b0dd86ad372d352bdf5a6acd83f540e6d69629bc9253ee80ae305bb88351437fd11fece9ea4bf349bc46436cb8a711e1b46865669944a960428a80003325ca9e57dd4ac38f4a93d48ea3a074bbf835e4c1f7b2274890f16f12858f6d9dd0
x-origin-response-time: 22,23.222.16.46
x-akamai-request-id: 6fcff3d4.80b3bc74
expires: Mon, 30 Jan 2023 19:46:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 19:46:24 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-222-16-46.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=112, origin; dur=22, inner; dur=18
x-parent-response-time: 130,23.36.79.13
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.3200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.3:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Mon, 30 Jan 2023 19:46:24 GMT
expires: Mon, 30 Jan 2023 19:46:24 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.8 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash 904015ded4ed35f4bff9d8205c23b361
69d52f807423cf204d6fc7c278a8d4270650cf0f
c804846e2d0be4c3a2b25e95dbb6eeaab226065dde64d5135c3816d8e33ba666
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=52001541&Ver=2&mid=806e1ad0-94d0-4e3a-9217-b9094d55995a&sid=cf57bcd0a0d611ed9b1369eb626fe286&vid=cf57c890a0d611ed90d4e7a4021b81c0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&r=<=3203&evt=pageLoad&sv=1&rn=696310
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=52001541&Ver=2&mid=806e1ad0-94d0-4e3a-9217-b9094d55995a&sid=cf57bcd0a0d611ed9b1369eb626fe286&vid=cf57c890a0d611ed90d4e7a4021b81c0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&r=<=3203&evt=pageLoad&sv=1&rn=696310
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=52001541&Ver=2&mid=806e1ad0-94d0-4e3a-9217-b9094d55995a&sid=cf57bcd0a0d611ed9b1369eb626fe286&vid=cf57c890a0d611ed90d4e7a4021b81c0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&r=<=3203&evt=pageLoad&sv=1&rn=696310 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0FE8B91807FA638F216AABB1060F6292; domain=.bing.com; expires=Sat, 24-Feb-2024 19:46:24 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D5A06ECB643F4B58A83D67A132E46063 Ref B: OSL30EDGE0214 Ref C: 2023-01-30T19:46:24Z
date: Mon, 30 Jan 2023 19:46:23 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
23.38.200.197200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP 23.38.200.197:0
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/p/action/52001541.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/52001541.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/52001541.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0A40C8FECEAB486AA4D06FFA25709B6A Ref B: OSL30EDGE0214 Ref C: 2023-01-30T19:46:24Z
date: Mon, 30 Jan 2023 19:46:23 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://checkout.shopify.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 78264
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675107998172&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675107998172&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675107998172&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5qazNZMll3TVdVdFpUSXlNQzAwTmpreExXRXpPVEV0WWpBNE5HUXlZV05sWXpjMQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.xtool.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1674762157334034
date: Mon, 30 Jan 2023 19:46:24 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675107984.ec08496b
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998174&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998174&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998174&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1qZGpaVGcxT0dRdE5qRmxPUzAwWW1JMkxXSmpOMk10TmpRM1ptUTNZamRpWWpnMg
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.xtool.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 4805532767678812
date: Mon, 30 Jan 2023 19:46:24 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675107984.ec08496e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675107998175
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675107998175
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675107998175 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1842835654042963
date: Mon, 30 Jan 2023 19:46:24 GMT
akamai-grn: 0.274f2417.1675107984.ec084b47
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel
172.67.70.176200 OK 66 B URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel
IP 172.67.70.176:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0df3494b7ad65df3769b9aa486175f4b
d9ad2be71b809d850ba894bb11788929e7affba8
b729a21c9e494d6e33547b387106182ce87b454fb3758545d042c305f5cc7385
GET /facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:24 GMT
content-type: application/json
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-headers: *
content-security-policy: frame-ancestors https://*.myshopify.com https://admin.shopify.com;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=waho0JEQPgt2xXFGKjbbvmsLSlMT15MOYI4IbDYZkkK6nMAUf0JLfKwNmMB9nH9gntwBgkxda1Lun%2BuPfzNBKSQLEC44rgpJBnCOn%2BoiymSf1Vr%2B0qsXzemjK2G6aGSY6qnKpzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6a8ae680b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=418443152.1675107996&jid=835043180&_u=YADAAEAAAAAAACAAI~&z=477371296
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=418443152.1675107996&jid=835043180&_u=YADAAEAAAAAAACAAI~&z=477371296
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=418443152.1675107996&jid=835043180&_u=YADAAEAAAAAAACAAI~&z=477371296 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:46:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=418443152.1675107996&jid=1192914831&_u=YADAAEABAAAAACAAI~&z=1042190153
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=418443152.1675107996&jid=1192914831&_u=YADAAEABAAAAACAAI~&z=1042190153
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=418443152.1675107996&jid=1192914831&_u=YADAAEABAAAAACAAI~&z=1042190153 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:46:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998353&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%2C%22pin_unauth%22%3A%22dWlkPU5qazNZMll3TVdVdFpUSXlNQzAwTmpreExXRXpPVEV0WWpBNE5HUXlZV05sWXpjMQ%22%2C%22aem_ct%22%3A%22bde14eca529c48dfc4f732ad8f9009b3f113e2ba1d85053d759b10bc939c67c6%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998353&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%2C%22pin_unauth%22%3A%22dWlkPU5qazNZMll3TVdVdFpUSXlNQzAwTmpreExXRXpPVEV0WWpBNE5HUXlZV05sWXpjMQ%22%2C%22aem_ct%22%3A%22bde14eca529c48dfc4f732ad8f9009b3f113e2ba1d85053d759b10bc939c67c6%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%220437a354-C0A5-4332-9A2F-5E0BB877CD9D%22%7D&tid=2613923540751&cb=1675107998353&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d017213b-47a0-4e9f-b6e6-21c78d7e8535%22%2C%22pin_unauth%22%3A%22dWlkPU5qazNZMll3TVdVdFpUSXlNQzAwTmpreExXRXpPVEV0WWpBNE5HUXlZV05sWXpjMQ%22%2C%22aem_ct%22%3A%22bde14eca529c48dfc4f732ad8f9009b3f113e2ba1d85053d759b10bc939c67c6%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1828282784724528
date: Mon, 30 Jan 2023 19:46:24 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZxTVI0NFR2RWwrcDl5UFAxVmVaNlhDS1dqMjBtajN0S2swVlVhZjlzSlhxMVpwWVI1VHVrMzVwaXBOTUhHQUJMYUd6Vjc2Ty9aTXY1eXUrRE9KM3cxRE5NT2ZJNmxyd2c1cHlIWUxuOVhSWT0mcVAzWDN1K2NvN0dRR2Q3M2pRV3NGQ0h2MnJFPQ=="; Expires=Tue, 30 Jan 2024 19:46:24 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675107984.ec084d19
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0559d645d807dd0e908ae3f459c2cd99
07319b2084e006303dec17b1bef25c89a20f2ebd
e60d1370cd54e87336ac69bf8bc76d22b6cff542a96a2918cbac55d60e8bab70
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 19:46:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 09:46:36 GMT
Expires: Tue, 31 Jan 2023 09:46:36 GMT
ETag: "07319b2084e006303dec17b1bef25c89a20f2ebd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0559d645d807dd0e908ae3f459c2cd99
07319b2084e006303dec17b1bef25c89a20f2ebd
e60d1370cd54e87336ac69bf8bc76d22b6cff542a96a2918cbac55d60e8bab70
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 19:46:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 09:46:36 GMT
Expires: Tue, 31 Jan 2023 09:46:36 GMT
ETag: "07319b2084e006303dec17b1bef25c89a20f2ebd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?eid=TG9GVQIixvCFdGUAU0tQpp3sJl1KYdkICi55&id=1072074910006542&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&if=false&ts=1675107998355&&ud[external_id]=027ace2ae4a695a7eb8c300af8c5ce34b362a244f97347f78f0016ef5dd4fd36&v=2.7.19
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?eid=TG9GVQIixvCFdGUAU0tQpp3sJl1KYdkICi55&id=1072074910006542&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&if=false&ts=1675107998355&&ud[external_id]=027ace2ae4a695a7eb8c300af8c5ce34b362a244f97347f78f0016ef5dd4fd36&v=2.7.19
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?eid=TG9GVQIixvCFdGUAU0tQpp3sJl1KYdkICi55&id=1072074910006542&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&if=false&ts=1675107998355&&ud[external_id]=027ace2ae4a695a7eb8c300af8c5ce34b362a244f97347f78f0016ef5dd4fd36&v=2.7.19 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 30 Jan 2023 19:46:25 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&rl=&if=false&ts=1675107998453&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=36b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675107998452.1256173792&it=1675107998051&coo=false&eid=0437a354-C0A5-4332-9A2F-5E0BB877CD9D&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&rl=&if=false&ts=1675107998453&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=36b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675107998452.1256173792&it=1675107998051&coo=false&eid=0437a354-C0A5-4332-9A2F-5E0BB877CD9D&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&rl=&if=false&ts=1675107998453&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=36b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675107998452.1256173792&it=1675107998051&coo=false&eid=0437a354-C0A5-4332-9A2F-5E0BB877CD9D&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 30 Jan 2023 19:46:25 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83a74eba0b084c8072c17e42ab0245f7
bfcba7ded1326fe93ca1d5ccf987d50d6860d449
1fdf1ffd953023e8b7b03d24e0e1b79593ba3b8ad4fbab9b873706208fce4780
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3655
Cache-Control: max-age=152145
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d7bf9b-117"
Expires: Wed, 01 Feb 2023 14:02:10 GMT
Last-Modified: Mon, 30 Jan 2023 13:01:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
dataaccess.mblock.cc/sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%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&ext=crc%3D-908751324
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%2BjuWFgyIsImxvZ2luX3N0YXR1cyI6ZmFsc2UsInVybF9wYXRoIjoiLzQ2Nzc5ODU5MDk1L29yZGVycy9iM2E0NTcyMGY3YTExNGMwOTAwYzEyMGU3NThkYmFlMyIsIiR1cmwiOiJodHRwczovL3d3dy54dG9vbC5jb20vNDY3Nzk4NTkwOTUvb3JkZXJzL2IzYTQ1NzIwZjdhMTE0YzA5MDBjMTIwZTc1OGRiYWUzIiwiJHRpdGxlIjoiVGhhbmsgeW91IERhbWlhbiEgLSBTbWFydCBEZXNrdG9wIExhc2VyIEN1dHRlciAmIEVuZ3JhdmVyIHwgeFRvb2wgLSBDaGVja291dCIsIiR1cmxfcGF0aCI6Ii80Njc3OTg1OTA5NS9vcmRlcnMvYjNhNDU3MjBmN2ExMTRjMDkwMGMxMjBlNzU4ZGJhZTMiLCIkcmVmZXJyZXIiOiIiLCIkcGFnZV9yZXNvdXJjZV9zaXplIjo1NTkuMDM0LCJldmVudF9kdXJhdGlvbiI6Mi40LCIkaXNfZmlyc3RfZGF5Ijp0cnVlLCIkcmVmZXJyZXJfaG9zdCI6IiJ9LCJhbm9ueW1vdXNfaWQiOiIxODYwNDM3OTBhMTc4LTAzMzk4NTVmNzI2OGVkYS1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzNzkwYTJhZCIsInR5cGUiOiJ0cmFjayIsImV2ZW50IjoiJFdlYlBhZ2VMb2FkIiwidGltZSI6MTY3NTEwNzk5ODQ4MSwiX3RyYWNrX2lkIjozOTQxODQ4NCwiX2ZsdXNoX3RpbWUiOjE2NzUxMDc5OTg0ODR9&ext=crc%3D-908751324
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%2BjuWFgyIsImxvZ2luX3N0YXR1cyI6ZmFsc2UsInVybF9wYXRoIjoiLzQ2Nzc5ODU5MDk1L29yZGVycy9iM2E0NTcyMGY3YTExNGMwOTAwYzEyMGU3NThkYmFlMyIsIiR1cmwiOiJodHRwczovL3d3dy54dG9vbC5jb20vNDY3Nzk4NTkwOTUvb3JkZXJzL2IzYTQ1NzIwZjdhMTE0YzA5MDBjMTIwZTc1OGRiYWUzIiwiJHRpdGxlIjoiVGhhbmsgeW91IERhbWlhbiEgLSBTbWFydCBEZXNrdG9wIExhc2VyIEN1dHRlciAmIEVuZ3JhdmVyIHwgeFRvb2wgLSBDaGVja291dCIsIiR1cmxfcGF0aCI6Ii80Njc3OTg1OTA5NS9vcmRlcnMvYjNhNDU3MjBmN2ExMTRjMDkwMGMxMjBlNzU4ZGJhZTMiLCIkcmVmZXJyZXIiOiIiLCIkcGFnZV9yZXNvdXJjZV9zaXplIjo1NTkuMDM0LCJldmVudF9kdXJhdGlvbiI6Mi40LCIkaXNfZmlyc3RfZGF5Ijp0cnVlLCIkcmVmZXJyZXJfaG9zdCI6IiJ9LCJhbm9ueW1vdXNfaWQiOiIxODYwNDM3OTBhMTc4LTAzMzk4NTVmNzI2OGVkYS1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzNzkwYTJhZCIsInR5cGUiOiJ0cmFjayIsImV2ZW50IjoiJFdlYlBhZ2VMb2FkIiwidGltZSI6MTY3NTEwNzk5ODQ4MSwiX3RyYWNrX2lkIjozOTQxODQ4NCwiX2ZsdXNoX3RpbWUiOjE2NzUxMDc5OTg0ODR9&ext=crc%3D-908751324 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1280368347572805
date: Mon, 30 Jan 2023 19:46:25 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675107985.ec0852cb
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5f90bb997c0da5099bcdfaac4d6248a8
2355982f0b193cc9f74bd9da244dc64f400aeddf
f6dd005ea02956e4f263205fcf76a17df4465d705b96e69f66fb392ff55b3657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1716
Cache-Control: max-age=167852
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d80489-117"
Expires: Wed, 01 Feb 2023 18:23:57 GMT
Last-Modified: Mon, 30 Jan 2023 17:55:21 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 681e88f029bfa0d0d788bb693457ff24
b4ef9c6567884abc677bb12c239b6a3a33ae24c7
8100dbba893b4b0c9789349dfafbe6e5fbe4e1648fbe9c29fbc4146f8cec9390
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 826
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Last-Modified: Mon, 30 Jan 2023 19:32:39 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 2.5 kB IP 93.184.220.29:0
Hash b0c4560c3f1d909a707c50683cd195bf
22ee20a0a348bc7d2eb73ac3af34d4abecffe988
fafd05959a904dad7d58dc445304c7b345e9d4501e67083af1441a0b767c4854
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6274
Cache-Control: max-age=85996
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d6b2fb-117"
Expires: Tue, 31 Jan 2023 19:39:41 GMT
Last-Modified: Sun, 29 Jan 2023 17:55:07 GMT
Server: ECS (amb/6BC3)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
95.101.11.115200 OK 346 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e08e3207d3e3d1e7071303e7e835705f
661ad48b15ac233670b3d1544e4aee268ad75272
118a1a28765431d26f9cef5c617ac6f380687188ef75e5869a2288209d227cdb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "118A1A28765431D26F9CEF5C617AC6F380687188EF75E5869A2288209D227CDB"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5513
Expires: Mon, 30 Jan 2023 21:18:18 GMT
Date: Mon, 30 Jan 2023 19:46:25 GMT
Connection: keep-alive
cdn1.affirm.com/js/v2/affirm.js
151.101.130.133200 OK 92 kB URL HTTP/2 cdn1.affirm.com/js/v2/affirm.js
IP 151.101.130.133:0
File type ASCII text, with very long lines (65451)
Hash 86fbad43409bd0136ae6df00e477f4bf
38ab5e9443741dfc78c43b26779ece73c4ae2298
be9b17292eb6f9481b56588629d2375cde41e2d0c99a230d8a21aa7c9ecd8142
GET /js/v2/affirm.js HTTP/1.1
Host: cdn1.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: istio-envoy
last-modified: Wed, 25 Jan 2023 17:38:50 GMT
etag: W/"dda147dc4d2b5472da912992cdde8d2d"
cache-control: max-age=1800, stale-while-revalidate=259200, public
x-affirm-request-id: 0a4dcd32-e3b0-4ef5-ce0a-b5aa2275e92c
x-affirm-cache-status: STALE
link: <https://cdn1.affirm.com>; rel=preconnect; crossorigin, <https://cdn1.affirm.com>; rel=preconnect, <https://cdn-assets.affirm.com>; rel=preconnect; crossorigin, <https://cdn-assets.affirm.com>; rel=preconnect, <https://cdnjs.cloudflare.com>; rel=preconnect; crossorigin, <https://cdnjs.cloudflare.com>; rel=preconnect
access-control-allow-origin: *
timing-allow-origin: *
content-encoding: br
x-envoy-upstream-service-time: 458
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:46:25 GMT
age: 1447
x-served-by: cache-iad-kjyo7100021-IAD, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 54, 25
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 92139
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 681e88f029bfa0d0d788bb693457ff24
b4ef9c6567884abc677bb12c239b6a3a33ae24c7
8100dbba893b4b0c9789349dfafbe6e5fbe4e1648fbe9c29fbc4146f8cec9390
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 858
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Last-Modified: Mon, 30 Jan 2023 19:32:07 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e9ae072be4953e06488f7d1ff7af1447
913b96410291659329970baf89534342ff121293
d22215c296a4b22016701647ffbe3182a60626463dfd07d4c1736efd3bab826d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171519
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d80020-1d7"
Expires: Wed, 01 Feb 2023 19:25:04 GMT
Last-Modified: Mon, 30 Jan 2023 17:36:32 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: F1qJdew2tP95gK5Rzq5TSEYkgTMuY0BHZEs90oHOTInT20EqPjVdXg==
Age: 6512
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f38a5ca58a97f0082aa37e5843a2a47
bb2b525599f74e1b83e9afbf11cc1e1a7daaf3d3
5102995d71e5f6d869f3e0a1aed6659237b5969e30fd3bf63a3c11681dee5dcd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6274
Cache-Control: max-age=85996
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d6b2fb-117"
Expires: Tue, 31 Jan 2023 19:39:41 GMT
Last-Modified: Sun, 29 Jan 2023 17:55:07 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 976ffa487009b09852f3e2d641080fea
f1d571543a4722ef7812b60201a4aa0f31f31018
1b191039b31cb387510dda5a88813366d074defeb00d247588a1e3b445c785e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157843
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d7dfee-1d7"
Expires: Wed, 01 Feb 2023 15:37:08 GMT
Last-Modified: Mon, 30 Jan 2023 15:19:10 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N1eUoOWaCnxXXacUHh3hNcCMFV3OsPviQew7Zm7XZPihn_xNsbLmVg==
Age: 1078
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83c7b45ff6a066d3b95352ee07174299
bff8e90ed3a3fb4211f730da908ad04660c698a0
0fff3321dda8ffb5d5f55e89eeb272027f77834af94b4ccfec462403f5bef6d1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0FFF3321DDA8FFB5D5F55E89EEB272027F77834AF94B4CCFEC462403F5BEF6D1"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16747
Expires: Tue, 31 Jan 2023 00:25:32 GMT
Date: Mon, 30 Jan 2023 19:46:25 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9fac0f48aede4059968802dc1a770c5d
6e4e1597f350da2ad29e936626272b213231a132
c000366db3e6010d1c82c2e16ea4f830242c8ef6a361003d7a9953867f8d8242
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:46:25 GMT
Last-Modified: Mon, 30 Jan 2023 18:04:42 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tO-YGsKdszMgmWnly4KhfHEQOOHq9RMXf73TWkQH4eulnSnEam8zaQ==
Age: 6103
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cca6034d9d46c2fa218435fa1c215e6e
ba17f23950aa7a4f4f04e56cff8e546c70c62252
6ac5b968e0bd22f0b7de0fc0c4f7a2fb10ae0455b95a1e555d2a7ea18426c5d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AC5B968E0BD22F0B7DE0FC0C4F7A2FB10AE0455B95A1E555D2A7EA18426C5D9"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3725
Expires: Mon, 30 Jan 2023 20:48:30 GMT
Date: Mon, 30 Jan 2023 19:46:25 GMT
Connection: keep-alive
api2.goaffpro.com/order_complete
188.114.97.1200 OK 0 B URL HTTP/2 api2.goaffpro.com/order_complete
IP 188.114.97.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /order_complete HTTP/1.1
Host: api2.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://www.xtool.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: Authorization,X-Shop,content-type,x-site-id,x-goaffpro-public-key,x-goaffpro-public-token,x-goaffpro-access-token
access-control-max-age: 86400
cache-control: public, max-age=86400
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qGxRVlr6M6rUN4Wvj3MK49wkBqqKt51tbIiOm2IrtFnfCgNFz0%2B3aD4Ie0i1qxoVK2mdkZuqtXx4TCB%2BuMNopEuECKFPIsgZV9qaANvPKbWy8ULuY%2Fj2regG%2BhKdz%2BOD7cNWPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6ad8b231c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.judge.me/assets/judgeme_review_site.js?shop=makeblock-xtool.myshopify.com
82.102.27.18200 OK 712 B URL HTTP/2 cdn.judge.me/assets/judgeme_review_site.js?shop=makeblock-xtool.myshopify.com
IP 82.102.27.18:0
File type ASCII text, with very long lines (1331), with no line terminators
Hash f407c6a7e255e634374ff4c647e92770
0124e886d9f0e0f01f867c2b473cf707ed34eab4
12a68e4b93145023202bda0c5859253cd86bf121be3a53d1e89c0b86efae45ce
GET /assets/judgeme_review_site.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/javascript
content-length: 712
last-modified: Wed, 11 Aug 2021 05:01:19 GMT
cache-control: public, max-age=7776000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/assets/judgeme_review_site.js?shop=makeblock-xtool.myshopify.com>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
us-central1-production-setup.cloudfunctions.net/log-conversion?order_id=4874154737903&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=586.06&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405
216.239.36.54200 OK 27 B URL HTTP/2 us-central1-production-setup.cloudfunctions.net/log-conversion?order_id=4874154737903&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=586.06&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405
IP 216.239.36.54:0
File type ASCII text, with no line terminators
Hash d323f68edb2a45db6f56532fea362b2b
636d6229d2718c892a44f9b15ed8a128e5ac78db
0bfdb38db9aec8a5919413e7944ce8b2b0dbea02ac582ae278defb871424b870
GET /log-conversion?order_id=4874154737903&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=586.06&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405 HTTP/1.1
Host: us-central1-production-setup.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.xtool.com
content-type: text/html; charset=utf-8
function-execution-id: kczwtq55nnw9
vary: Origin
x-cloud-trace-context: c219688730cb65cd9cdacae1435881f6
content-encoding: gzip
date: Mon, 30 Jan 2023 19:46:25 GMT
server: Google Frontend
cache-control: private
content-length: 27
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8ce0af457fd50824f15b9b4ee2d671ca
9aea54d8453d69f9c51b01c746754cbc3dbe16ca
0d65ec06b2acc923c31fbb242d2e035599ca7460537b4d16d129fa44467dce52
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171335
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d808b3-1d7"
Expires: Wed, 01 Feb 2023 19:22:00 GMT
Last-Modified: Mon, 30 Jan 2023 18:13:07 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CaYlqR0xbI7kdRutnzlYC-Hbq7PDTF_JZLoeDYy4vhLsFoW1p-vrGQ==
Age: 4133
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2445762739a3cf01174700093c93a3cb
50fe52ca39083885ad34342f264aee4a28db906f
579f71528833ff2729ec4edb237a73796fc9f0fb290c9bf6783bfeb3968f533c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6016
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Last-Modified: Mon, 30 Jan 2023 18:06:10 GMT
Server: ECS (amb/6BC3)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 110 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110523 bytes)
Hash 0dbfc6a107bfdf38ba6d030145e5fb34
f833b67b175bf38fcea300e0bfbc84702ac17fde
9af381df2cb9d5fbd61210e073123a3a09754a92efafb2e2ded5f7ec2942b3f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
master-shopify-tracker.s3.amazonaws.com/gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com
52.217.105.92200 OK 32 kB URL HTTP/1.1 master-shopify-tracker.s3.amazonaws.com/gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com
IP 52.217.105.92:0
File type ASCII text, with very long lines (31421)
Hash 561c4cf216a32602a92916ad1ce2172f
e1da663651cbd57614e6e5bf1df0c303c6a4ff84
f82a472863e87b4b70885a7be5ca960d21d0b3f84511b0814d44ed7241c1b9cc
GET /gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: master-shopify-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: V09S7vNsET3+LbT71/EyHbXH+F8iYkfJaTu91XkppU/pKXp/l5b32X7n8Qd1rOMBorx7eNh5AAA=
x-amz-request-id: EH84Y2S9K23TKF9C
Date: Mon, 30 Jan 2023 19:46:26 GMT
Last-Modified: Thu, 19 Jan 2023 10:23:44 GMT
ETag: "561c4cf216a32602a92916ad1ce2172f"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 31500
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8ce0af457fd50824f15b9b4ee2d671ca
9aea54d8453d69f9c51b01c746754cbc3dbe16ca
0d65ec06b2acc923c31fbb242d2e035599ca7460537b4d16d129fa44467dce52
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171335
Date: Mon, 30 Jan 2023 19:46:25 GMT
Etag: "63d808b3-1d7"
Expires: Wed, 01 Feb 2023 19:22:00 GMT
Last-Modified: Mon, 30 Jan 2023 18:13:07 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5NUuYrfdUb92CBJmPqJbcH393JF8ThQH1cBD2N4Yi0lE9KLo5dBjyg==
Age: 4133
api2.goaffpro.com/order_complete
188.114.97.1200 OK 27 B URL HTTP/2 api2.goaffpro.com/order_complete
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e619149e5452e6cd3c693b0235aae083
1bb457d3511014786bb12a571dede9eeec6b42bb
dc9607c8da374573e1c1f39878dbe83f5cadb19a2349e95570a206ed4465ed40
POST /order_complete HTTP/1.1
Host: api2.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 3480
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/json; charset=utf-8
content-length: 27
x-powered-by: Express
access-control-allow-origin: https://www.xtool.com
vary: Origin
access-control-allow-credentials: true
etag: W/"1b-G7RX01EQFHhrsSpXHe3p7uxrQrs"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QLpnRHb0qEqxAlyzLf8FVqSI8WOjIeqNl%2FM4yUg%2Fe4WnrZ1fRVSbZwVyrUwOCMwp9jhYoO1sNb1SJec9rvmjKidmbLhMntCkDawVVqC8V9MvEG%2FpwQ94LsamShSpTMMk7S1mNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6adfb851c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tracker.affirm.com/collect
54.230.111.26200 OK 1.1 kB URL HTTP/2 tracker.affirm.com/collect
IP 54.230.111.26:0
Hash 2ddfe64b52ada78d2c2b71d302c3133e
2bdb56191db22fb1c8acac46b5e205ccf5f78aae
e59178eb7cc5a14449f726fe2fb9929e42bf19cb03c23e0c07a23d2a170f62c9
POST /collect HTTP/1.1
Host: tracker.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 648
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: DUMMY_COOKIE=DUMMY_VALUE; tracker_device=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea; t_v2_s=eyIgYiI6IlpHVmpOMk0yWVRZdE5HRXlaQzAwTWpWaUxUazVZVFF0T0dGaFlqUTFNVGxqTkdWaCJ9.FrmwEQ.-jEyfjv9a1WwTfF7VHBO7kVDFwE; 3060738.3440491=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 14
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:46:26 GMT
server: openresty
strict-transport-security: max-age=86400; includeSubDomains
x-affirm-request-id: f54151e0-62c7-4680-c649-8a72843e52ea
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wWs5TbK4g0cQ7ms9GPXGwXeLIR5iK8P8d4LuoAPpB4bxyxrjJoItUg==
X-Firefox-Spdy: h2
cdn.prooffactor.com/javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com
104.26.7.186200 OK 5.3 kB URL HTTP/2 cdn.prooffactor.com/javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com
IP 104.26.7.186:0
File type Unicode text, UTF-8 text, with very long lines (14220), with no line terminators
Hash f42f8fd8a95cb7334b38ea28f7d8358c
0386ae855e1105aa3e03b2c5c559a7c98d793770
f6d4d2c97e223206e114985948c0859c89b5508357b442c171642dcf23e39125
GET /javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.prooffactor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsOBJWHIdAcwz2_QjZpqGikNDHJN_tIdMMCyZmA_bdr8QXJidTpH5BeyPDQZeYUkfxiX93SeMxn0XYq2TJM2b6M9A
vary: X-Goog-Allowed-Resources, Accept-Encoding
x-goog-generation: 1674226038980251
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14221
x-goog-hash: crc32c=nu4LrA==, md5=XSsSoRM+YZMltMxB9wISXw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 30 Jan 2023 19:51:25 GMT
cache-control: public, max-age=300
last-modified: Fri, 20 Jan 2023 14:47:19 GMT
etag: W/"5d2b12a1133e619325b4cc41f702125f"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NPCe7thyD3lswiIKhsQH0zz7KG4fwRRSjhLutsbyzIGjQA79lgc65jw8o02w%2BZM0QnkaTMk2Sz2wv%2FNSxj1pSDHSs1YtqBoYJxKMRnXgSrTZ%2Fau8k4VM2eVrSneMaiKLvwySZrI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6ab7d28b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f93c956401676ffd9ac096e33a2e7bdc
f7bb6edf35fb6ad00eab88f8252761696225e355
22aeea74821d6b17ae16fed4bfaffeae10cdf157bfe040ab6e18faecaeea313c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:46:26 GMT
Etag: "63d6c0fc-1d7"
Last-Modified: Mon, 30 Jan 2023 18:57:40 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UPVN0TEoA5yF-lLhgsbMhCG5P91xZp8WFJeLsihlhhIkPrMBArtvUg==
Age: 2927
cdn.giftcardpro.app/build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com
54.230.111.95200 OK 168 kB URL HTTP/2 cdn.giftcardpro.app/build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com
IP 54.230.111.95:0
File type Unicode text, UTF-8 text, with very long lines (63252)
Size 168 kB (167533 bytes)
Hash 18cd64576608481b65bdf4f5caf58eab
c1ee618bde4e8c224365805c8a8e7b12f03713a5
2954efe864f8ff2b57ca04b6dc1d1109fd3e4742e8c04141481d02eb9b837146
GET /build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.giftcardpro.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 10:37:52 GMT
server: nginx/1.20.0
last-modified: Thu, 26 Jan 2023 01:38:02 GMT
etag: W/"63d1d97a-9c416"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7lGvmGHktcWX3NGDhCYgBEOiXOS1xOkuKn5vp6rD7bpVsBDLOwbbQg==
age: 32913
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 384e3418163143e52eacf3f3952d224c
ff56ea9af12cc7c42f4283e60895eb2a2a15ffdd
a95d7de51ccae192a8a3f732f6e777b860ad717f4abcf6308d146d85cf117d5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A95D7DE51CCAE192A8A3F732F6E777B860AD717F4ABCF6308D146D85CF117D5F"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13575
Expires: Mon, 30 Jan 2023 23:32:41 GMT
Date: Mon, 30 Jan 2023 19:46:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2a31e2e1b9118e4a6c90decbef88b430
8b1edeff2244910de6752a85265704e76d87f980
38eb65ef675e6c8cde543c5d952b57adf1a38521f30851ae2365eaad1b376f0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38EB65EF675E6C8CDE543C5D952B57ADF1A38521F30851AE2365EAAD1B376F0B"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7993
Expires: Mon, 30 Jan 2023 21:59:39 GMT
Date: Mon, 30 Jan 2023 19:46:26 GMT
Connection: keep-alive
transactions.littledata.io/v2/clientID-customerID/store
3.224.145.97200 OK 0 B URL HTTP/2 transactions.littledata.io/v2/clientID-customerID/store
IP 3.224.145.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/clientID-customerID/store HTTP/1.1
Host: transactions.littledata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:26 GMT
content-type: application/json
content-length: 0
allow: POST
access-control-allow-origin: *
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: authorization,content-type,x-amz-date,x-amz-security-token,x-amz-user-agent,x-api-key
apigw-requestid: fkm24i9qoAMEJ2Q=
X-Firefox-Spdy: h2
static.goaffpro.com/cross-domain-sharing-innner-frame.html
54.230.111.94200 OK 470 B URL HTTP/2 static.goaffpro.com/cross-domain-sharing-innner-frame.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cc809046dac586e33f278e34805cc60c
073c4e2a2b08f1afa61d131b2048aa4d98aca26d
787f2969b11b857b2f8adaab6a85fee95b86fb0ef5ff30cd412f502c42e9513b
GET /cross-domain-sharing-innner-frame.html HTTP/1.1
Host: static.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 15 Sep 2022 14:46:18 GMT
x-amz-meta-s3cmd-attrs: atime:1663253132/ctime:1663253132/gid:20/gname:staff/md5:677fda061086ab0938ab0d82329aaed0/mode:33188/mtime:1663253132/uid:501/uname:anujtenani
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 08:37:00 GMT
etag: W/"677fda061086ab0938ab0d82329aaed0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: FwnZBdrXH54Teg2sd_tS1sTUUVRL4wJ766EnF-uk0mOrEvz-qxpRTQ==
age: 76613
X-Firefox-Spdy: h2
transactions.littledata.io/v2/clientID-customerID/store
3.224.145.97200 OK 2 B URL HTTP/2 transactions.littledata.io/v2/clientID-customerID/store
IP 3.224.145.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /v2/clientID-customerID/store HTTP/1.1
Host: transactions.littledata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 74
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:26 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
apigw-requestid: fkm25jg9oAMEJjA=
X-Firefox-Spdy: h2
tracker.affirm.com/collect
54.230.111.26200 OK 14 B URL HTTP/2 tracker.affirm.com/collect
IP 54.230.111.26:0
File type ASCII text, with no line terminators
Hash 77bd6dea9343a6bc332a6fb137f228e5
c041ea4b7352c42183f1d25fda4ad3bbc5cd3651
70f07df8529a5da355e70cb8fd1a2c6cdbe6dec83a5332bfcf06f5a917e6e607
POST /collect HTTP/1.1
Host: tracker.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 644
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: DUMMY_COOKIE=DUMMY_VALUE; tracker_device=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea; t_v2_s=eyIgYiI6IlpHVmpOMk0yWVRZdE5HRXlaQzAwTWpWaUxUazVZVFF0T0dGaFlqUTFNVGxqTkdWaCJ9.FrmwEQ.-jEyfjv9a1WwTfF7VHBO7kVDFwE; 3060738.3440491=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 14
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:46:26 GMT
server: openresty
strict-transport-security: max-age=86400; includeSubDomains
x-affirm-request-id: 766e3e2a-5bff-4d7d-cdcc-bfe123fce8ac
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8yX7e61J1RVfe7aXZ0sIolKQiyr9d18XQoRCfM6viILcxKIFEH241w==
X-Firefox-Spdy: h2
affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
161.35.97.142200 OK 2 B URL HTTP/1.1 affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
IP 161.35.97.142:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /affiliatery/api/cart-mapping HTTP/1.1
Host: affiliatery-app-api.staqlab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.xtool.com
Content-Length: 260
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 19:46:26 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://www.xtool.com
Access-Control-Allow-Credentials: true
X-SERVER-INST: S2
interactions.one.store/v1/partners/shopify/conversion
104.26.6.211204 No Content 0 B URL HTTP/2 interactions.one.store/v1/partners/shopify/conversion
IP 104.26.6.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/partners/shopify/conversion HTTP/1.1
Host: interactions.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 210
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 19:46:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
set-cookie: _session_id=EbFaLJOMW4BZ0ccZFP3YPE7JDux%2BC2Vk2563nozMtmM%2BwGOX2xCeP3p1Dv9MBR0KPaNR4XxKyiCV6cMvDA%3D%3D--hcpgtpKrSIbZ641x--3Q9P6IdC7sMvKa3viaXC%2Bg%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=CbkHgRVWtDyMzErjwq2E6ZVgw70kLMy%2Bhys1mgAyZSS8kVhdV7RrCyTbVBCZyllWIyMJKtEhGuKYkq3MWg%3D%3D--SmuKBabPDOwm0LeF--1uYKhkmDIsRBuvoRbNlSlg%3D%3D; path=/; HttpOnly; Secure; SameSite=None
cache-control: no-cache
x-request-id: b8551ada-8a1b-45c1-b062-866842137010
x-runtime: 0.006893
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ap2YT0DKFfCiKpWXWd6hJeltPhuDA%2FWJmLazy0exey9xBoJFfMqJ8TtsRthUSPgzhGgYniZzV4gCyqIFcsdonGT9WHh%2F60plBS6Ed3Liaw3TLtm6vMMg4fu6WsBMhLHFkjaxxru%2Fz4k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6b2fc33b4f1-OSL
X-Firefox-Spdy: h2
d3ox8tdk614ykk.cloudfront.net/address_validate.js?shop=makeblock-xtool.myshopify.com
54.230.245.82200 OK 10 kB URL HTTP/2 d3ox8tdk614ykk.cloudfront.net/address_validate.js?shop=makeblock-xtool.myshopify.com
IP 54.230.245.82:0
File type ASCII text, with very long lines (10492), with no line terminators
Hash 5be44c8c7dad31ec6b2128b699b3052b
689619424cf53b4c4c27bac88e9eeda2c79ed84d
96a53756ace93a7097a10b6f901f425e2ee05f79efcdf4ee7358b3683c9fbf44
GET /address_validate.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: d3ox8tdk614ykk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 10492
date: Fri, 27 Jan 2023 23:35:14 GMT
last-modified: Fri, 27 Jan 2023 23:34:39 GMT
etag: "5be44c8c7dad31ec6b2128b699b3052b"
cache-control: max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nue5F2hy_L0K5-RulyyOHTyy40mg_M6EbLvKBvx8lOSeJH06HthczA==
age: 245473
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f347fe8efa35a5fcfa19d592d9577b35
e56076ca5e6484154b6fffeea84f4f84b9ff0e49
e18440d686b8fd8e61e5e30ee69d9c4cd6e76b5310887cf6b36e85b9f414654b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2882
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:26 GMT
Last-Modified: Mon, 30 Jan 2023 18:58:24 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 785c90528f12560bb6b84d3a7f47c4f9
16827089e249cf133c266145b6454a84f2d944dc
c75010735bee2c9755aa96ea32f3201b692e56fc7fd3da517299d8ec2875d2d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
affiliatepluginintegration.cj.com/getPluginJS?shop=makeblock-xtool.myshopify.com
54.230.111.125200 OK 6.3 kB URL HTTP/2 affiliatepluginintegration.cj.com/getPluginJS?shop=makeblock-xtool.myshopify.com
IP 54.230.111.125:0
File type ASCII text, with very long lines (6270)
Hash 740a9805d2842274624f0c0e15a29227
1cca7a135fc4cffe7e2d13d87012986a112d5bff
381c849fcd23437cb2b54d891859aa8bc6de640c63214a00c275181c51a0c870
GET /getPluginJS?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: affiliatepluginintegration.cj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 6319
server: CloudFront
date: Mon, 30 Jan 2023 19:39:08 GMT
cache-control: max-age=1800
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cpkuPakIP4WYXhZMw4tX-tQJzqu_9TIBwwRNta4UWNLElCmxbA_njA==
age: 438
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1a294e449b59fc02b1608401ef519b21
cf79146314c5166b0107ca5bb55f0209855c1dbd
a58069d78d430716e7574cb8d5c34ec0f25374de8b46a52e43055aa5cb2a956f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/303673729/?random=1675107999258&cv=11&fst=1675107999258&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=431822362.1675107996&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 976 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/303673729/?random=1675107999258&cv=11&fst=1675107999258&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=431822362.1675107996&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2117), with no line terminators
Hash f2504966a6d6442b2abfd2620974af13
9bf11a652291b199067640fde4afcc81703e3023
983260e38d68dac1368a6f22f48a3256c307d938f58236460e164f9cb8fa9ed4
GET /pagead/viewthroughconversion/303673729/?random=1675107999258&cv=11&fst=1675107999258&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=431822362.1675107996&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:46:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 976
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 20:01:26 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fdd9cf39493c31a9795475075ae8db91
711bd99da7dfa2320801955e5c18fcffa465295f
ac64c612b3fec67e62a23cb87a365b10610f346a7c71f5202ac013fa086f64ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2612
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:26 GMT
Last-Modified: Mon, 30 Jan 2023 19:02:54 GMT
Server: ECS (amb/6BC3)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fdd9cf39493c31a9795475075ae8db91
711bd99da7dfa2320801955e5c18fcffa465295f
ac64c612b3fec67e62a23cb87a365b10610f346a7c71f5202ac013fa086f64ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2610
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:26 GMT
Etag: "63d708cd-117"
Last-Modified: Mon, 30 Jan 2023 19:02:57 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 279
www.mczbf.com/tags/402870836667/tag.js
54.230.111.112200 OK 17 kB URL HTTP/1.1 www.mczbf.com/tags/402870836667/tag.js
IP 54.230.111.112:0
File type ASCII text, with very long lines (51660)
Hash 14184abb5cc40346ba653a28f30da13b
d2b99f2e9f72fb1ffe200545c6911dd5455b3744
f766ceb3a123c652e9bb4676e1e8439f459d867ae4fd7e4fbbb51058b7382414
GET /tags/402870836667/tag.js HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 30 Jan 2023 19:38:15 GMT
X-Request-ID: a3c1ab50-a0d5-11ed-b7d6-87f067e03dfb
Server: nginx
Cache-Control: max-age=1800
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KK7oblZlF_16VwipWrQE55ichVYYWmwacmCzWADMs4HeE65LEsgNag==
Age: 491
storage.googleapis.com/gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
142.250.74.16200 OK 18 kB URL HTTP/2 storage.googleapis.com/gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
IP 142.250.74.16:0
File type ASCII text, with very long lines (18092), with no line terminators
Hash 8d8c08adec667175b92e0e341777a38a
aab9e281f333c92c14a6253063f698bf0a854f13
cde0570b55b1e3a3c63a0783fc6a6ac13ce10cdb39929cd3accf466e3fc5c0cb
GET /gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv_co4AVMg_IjcY8ypieWjOEEW6-0JJd1ubtSt_fsGbJ1xcmBTUcO_-dCLvcUSP-310rYLlUESPKScxie5QthKtUEB2dZdV
x-goog-generation: 1657959096978932
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 18092
x-goog-hash: crc32c=4ewN3Q==, md5=jYwIrexmcXW5Lg40F3ejig==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 18092
server: UploadServer
date: Mon, 30 Jan 2023 19:46:26 GMT
expires: Mon, 30 Jan 2023 19:46:26 GMT
cache-control: no-cache, max-age=0
last-modified: Sat, 16 Jul 2022 08:11:37 GMT
etag: "8d8c08adec667175b92e0e341777a38a"
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.assortion.com/app.js?shop=makeblock-xtool.myshopify.com
54.230.111.110200 OK 31 kB URL HTTP/2 cdn.assortion.com/app.js?shop=makeblock-xtool.myshopify.com
IP 54.230.111.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bbaf000920547e34f88f67ac7bfc434f
548443e2b5e1e5bc9765c12f859b3cea35555ead
1c5e3ec9ccd418cfb8fca4fd0a710f0ab4f730c6ac3aad79bebf54f28e04cb82
GET /app.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.assortion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 18:01:32 GMT
last-modified: Mon, 30 Jan 2023 18:01:14 GMT
etag: W/"72b38c05d69f4c47dd27fc82dea5ef63"
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GbjWXqMocWHRvfL3yw8qof9A-juIth-KOl_ilQiXQNIC1m0HD3fwUA==
age: 6294
cache-control: max-age=3600
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
www.sjwoe.com/policy
54.230.111.82200 OK 47 B IP 54.230.111.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4df589e07db49a37b9f0f0f388dafe4d
dec69779c617f1a3d12b24c305887f06d2c0e7ef
b9a115127dd63e3f27882fddcf4431f2cffc43deb619586cd6becc6f23e57ba6
GET /policy HTTP/1.1
Host: www.sjwoe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 47
date: Sun, 29 Jan 2023 20:02:02 GMT
x-amzn-requestid: 7695f72f-7a35-4c18-a332-2368cd722b02
access-control-allow-origin: *
x-amz-apigw-id: fhWNLFROIAMFUtA=
cache-control: max-age=3600
x-amzn-trace-id: Root=1-63d6d0ba-4eeed1c256d6471949add1c5;Sampled=0
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AY7n7j-GungT8Tt0rqguhPnnGb2lvG0lhUkhYmdK1K64_n08VOQ0Ew==
age: 85464
X-Firefox-Spdy: h2
interactions.one.store/v1/analytics/visits
104.26.6.211204 No Content 0 B URL HTTP/2 interactions.one.store/v1/analytics/visits
IP 104.26.6.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/analytics/visits HTTP/1.1
Host: interactions.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 287
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 19:46:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
set-cookie: _session_id=Gu03ayfSzUsladW0dNh%2Btox5LSncyE03CCowEwiS5sJbFrvOwFlS3VhVvF2udc999WfGrw8NtXnjXzi%2BUA%3D%3D--QNWAkfapL0CdV6BH--XgIPYQEaVfhOPzDzkzVXHw%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=J960n8XHOMv3n9DRUa44mVzzWaassasjQbQ0ZWC5RpeALz2wv70cb%2FnAlqORzcnZHxeJ%2FeMD%2F8QFLquk6g%3D%3D--VhSns62fFdGIVanP--qanbNsulYICjPGkDf5fFJg%3D%3D; path=/; HttpOnly; Secure; SameSite=None
cache-control: no-cache
x-request-id: 336a5210-0ecf-43ea-becf-18d5fb657604
x-runtime: 0.011520
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pzQzRd2UMrhCNaX6Lwp%2BlxT%2BuCnFupmlhXCkn3UToxqbRxdxJrWLUiu3sibp4tBIzAZa2aClBhybloeLet7PyvznNqYeMlQVbFJh%2BTiXAL2hd%2FCKHh%2FahYmCKGB7mdhTYOsV2MKIydk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6b30c39b4f1-OSL
X-Firefox-Spdy: h2
www.mczbf.com/402870836667/pageInfo
54.230.111.112200 OK 68 B URL HTTP/1.1 www.mczbf.com/402870836667/pageInfo
IP 54.230.111.112:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
POST /402870836667/pageInfo HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.xtool.com
Content-Length: 1148
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 68
Connection: keep-alive
Date: Mon, 30 Jan 2023 19:46:26 GMT
X-Request-ID: c8b3911d-a0d6-11ed-b0e6-a54b00f87e80
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AZ91G6xf20UibWFUkIV9JqyHC-s-QIt3pT0QQROlUzEZbHmCDCHkwg==
storage.googleapis.com/gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
142.250.74.16200 OK 2.8 kB URL HTTP/2 storage.googleapis.com/gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
IP 142.250.74.16:0
File type ASCII text, with very long lines (2752), with no line terminators
Hash 3cc6cd3cb9a2e99e980dd176945a3e01
70e048bbab24f5563a5634053fba04a8e2e03229
57700037867d7284274ac26d539114c82c2c032efcdd3677f5432f27fe2bc7a2
GET /gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsaetq2g7qcFSZ3n2rfMMGcb8gVAGeKama5ttaMa5dQBICRARrT6vghDCaLfsUwRIIEY6PxTNPQDZIaHf6PbFIdfg
date: Mon, 30 Jan 2023 19:46:26 GMT
cache-control: no-cache, max-age=0
expires: Mon, 30 Jan 2023 19:46:26 GMT
last-modified: Sat, 16 Jul 2022 08:11:38 GMT
etag: "3cc6cd3cb9a2e99e980dd176945a3e01"
x-goog-generation: 1657959098273546
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2752
content-type: text/javascript
x-goog-hash: crc32c=WEkvTQ==, md5=PMbNPLmi6Z6YDdF2lFo+AQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2752
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widget-api.one.store/v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&user_agent=desktop&local_time_zone=null
104.26.6.211200 OK 157 B URL HTTP/2 widget-api.one.store/v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&user_agent=desktop&local_time_zone=null
IP 104.26.6.211:0
File type JSON data\012- , ASCII text, with no line terminators
Hash efd2a8aa8ea1c023bf37d6d2f1c969c6
7df83d166d596c0f078f6ec62ca252835e0d3b22
2e727c002febefa06f7eb57346fd07d166e29c896ceba7ef2ae8a1cdd9c92fb8
GET /v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&user_agent=desktop&local_time_zone=null HTTP/1.1
Host: widget-api.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:26 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
prooffactor-cache: MISS
set-cookie: _session_id=alr%2B4o8Ia%2FzT5TxD4W0DcRsZ4jF9RPwLKK%2F89u9ROCUZ3dVcJWvNoZ1TVW89a%2FFefGt0Y%2BkRraeX1eEUzQ%3D%3D--lwy2V74O8lnez%2FlY--Gei8kpn0BnV7n%2BEl2NIjBg%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=MiYNSq6iv8ocioMfVKRf3fsdHUsZf8qH2MaOCvVWLS8gfJ3SdMYNmg1VJacXI3GlIo1Ko16%2Bvug0Nmt4xQ%3D%3D--Gc06jvdKFxMmKpbz--FFU%2Bdz5261UkItWnRxsFJw%3D%3D; path=/; HttpOnly; Secure; SameSite=None
etag: W/"39a02fdc348807ad23bcbae7dc1e62f6"
cache-control: max-age=0, private, must-revalidate
x-request-id: ff3cd849-61a7-4951-b647-b97ec2890f61
x-runtime: 0.021249
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7bNhK2LEC62Z%2B%2FWQrbXLjdwJi9Zo09xHQYS5ltKiP5NGcpZLJPqNZPiYQFj9A7XqnL2onzvG6ZyXkHOKjJ6vpFJ00IPrb0Wgap8I0EVR6g6tlOQSLbReVV7JUxlfN3UhG2nu13cz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6b00c480b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash df012623ed665761188fb44736305e03
3032ac576e41f3d73d315dadb0a599e6f7c7e256
52f09f591b0bd294d7bb16fa1841cbf3f12922ee7669efb62979c04b58015835
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 19:46:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 03 Feb 2023 17:35:22 GMT
ETag: "3032ac576e41f3d73d315dadb0a599e6f7c7e256"
Last-Modified: Mon, 30 Jan 2023 17:35:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 742
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791cb6b7ac441c06-OSL
www.emjcd.com/u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=549&taxAmount=37.06&customerCountry=US&discount=0&shopifyOrderId=4874154737903&customerStatus=Return&custom.stats=1&tagUuid=23c45b4c-87a6-45d2-98b2-994421a7a0e3&cjUser=00000000-0000-0000-0000-000000000000&item1=p5010176&amt1=549&qty1=1&type=434926&cid=1564855&oid=43004
89.207.16.75302 Found 1.4 kB URL HTTP/1.1 www.emjcd.com/u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=549&taxAmount=37.06&customerCountry=US&discount=0&shopifyOrderId=4874154737903&customerStatus=Return&custom.stats=1&tagUuid=23c45b4c-87a6-45d2-98b2-994421a7a0e3&cjUser=00000000-0000-0000-0000-000000000000&item1=p5010176&amt1=549&qty1=1&type=434926&cid=1564855&oid=43004
IP 89.207.16.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (684)
Hash 758730fdabb189de2ab3715c2bfe30c6
00b85235843a8a581395f15457357e9394efebe0
0279cd7a7569fb75014ef2a74742a5ebc03b2bbadefb38dcaa80d461222a238e
GET /u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=549&taxAmount=37.06&customerCountry=US&discount=0&shopifyOrderId=4874154737903&customerStatus=Return&custom.stats=1&tagUuid=23c45b4c-87a6-45d2-98b2-994421a7a0e3&cjUser=00000000-0000-0000-0000-000000000000&item1=p5010176&amt1=549&qty1=1&type=434926&cid=1564855&oid=43004 HTTP/1.1
Host: www.emjcd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Mon, 30 Jan 2023 19:46:27 GMT
Location: https://cj.dotomi.com/s370yK73LS/18D/7B5/RVWUYVV/UTUZSW/Q/PS?o=kvpk%3DBA77B%26zovwpm5VyklyPk%3DBFEB8CBEAEG7A%26kpzjv1u0%3D7%26x058%3D8%26tl0ovk%3Dptn%261zlyPk%3DDACCG8F99CDBE%2605wl%3DBABG9D%26ht08%3DCBG%26jqWs1npu%3DZovwpm5%26j1yyluj5%3DbZK%260h4Htv1u0%3DAE.7D%26htv1u0%3DCBG%26jpk%3D8CDBFCC%26j1z0vtlyJv1u0y5%3DbZ%26j1z0vt.z0h0z%3D8%26whnla5wl%3Djvu2lyzpvuJvumpyth0pvu%26jqbzly%3D77777777-7777-7777-7777-777777777777%260hnb1pk%3D9AjBCiBj-FEhD-BCk9-GFi9-GGBB98hEh7lA%26j1z0vtlyZ0h01z%3DYl01yu%26p0lt8%3DwC7878ED%3c%3co00wz%3A%2F%2F333.ltqjk.jvt%2F1%3c%3cN%3co00wz%3A%2F%2F333.40vvs.jvt%2F%3c%3c8%3c8%3c7%3c7%3c7%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 1373
Date: Mon, 30 Jan 2023 19:46:27 GMT
X-VC-HTTPS: On
cj.dotomi.com/s370yK73LS/18D/7B5/RVWUYVV/UTUZSW/Q/PS?o=kvpk%3DBA77B%26zovwpm5VyklyPk%3DBFEB8CBEAEG7A%26kpzjv1u0%3D7%26x058%3D8%26tl0ovk%3Dptn%261zlyPk%3DDACCG8F99CDBE%2605wl%3DBABG9D%26ht08%3DCBG%26jqWs1npu%3DZovwpm5%26j1yyluj5%3DbZK%260h4Htv1u0%3DAE.7D%26htv1u0%3DCBG%26jpk%3D8CDBFCC%26j1z0vtlyJv1u0y5%3DbZ%26j1z0vt.z0h0z%3D8%26whnla5wl%3Djvu2lyzpvuJvumpyth0pvu%26jqbzly%3D77777777-7777-7777-7777-777777777777%260hnb1pk%3D9AjBCiBj-FEhD-BCk9-GFi9-GGBB98hEh7lA%26j1z0vtlyZ0h01z%3DYl01yu%26p0lt8%3DwC7878ED%3c%3co00wz%3A%2F%2F333.ltqjk.jvt%2F1%3c%3cN%3co00wz%3A%2F%2F333.40vvs.jvt%2F%3c%3c8%3c8%3c7%3c7%3c7%3c
89.207.16.75200 OK 50 B URL HTTP/1.1 cj.dotomi.com/s370yK73LS/18D/7B5/RVWUYVV/UTUZSW/Q/PS?o=kvpk%3DBA77B%26zovwpm5VyklyPk%3DBFEB8CBEAEG7A%26kpzjv1u0%3D7%26x058%3D8%26tl0ovk%3Dptn%261zlyPk%3DDACCG8F99CDBE%2605wl%3DBABG9D%26ht08%3DCBG%26jqWs1npu%3DZovwpm5%26j1yyluj5%3DbZK%260h4Htv1u0%3DAE.7D%26htv1u0%3DCBG%26jpk%3D8CDBFCC%26j1z0vtlyJv1u0y5%3DbZ%26j1z0vt.z0h0z%3D8%26whnla5wl%3Djvu2lyzpvuJvumpyth0pvu%26jqbzly%3D77777777-7777-7777-7777-777777777777%260hnb1pk%3D9AjBCiBj-FEhD-BCk9-GFi9-GGBB98hEh7lA%26j1z0vtlyZ0h01z%3DYl01yu%26p0lt8%3DwC7878ED%3c%3co00wz%3A%2F%2F333.ltqjk.jvt%2F1%3c%3cN%3co00wz%3A%2F%2F333.40vvs.jvt%2F%3c%3c8%3c8%3c7%3c7%3c7%3c
IP 89.207.16.75:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 7db7a843f18dadb40f7947564560596c
4b966c390f5784fad88c2c8359a4715d14b8e815
ec34cd386427fe6deacf99f4fdbeea4b1d1ed25f505411650d7ceaa843a7fc63
GET /s370yK73LS/18D/7B5/RVWUYVV/UTUZSW/Q/PS?o=kvpk%3DBA77B%26zovwpm5VyklyPk%3DBFEB8CBEAEG7A%26kpzjv1u0%3D7%26x058%3D8%26tl0ovk%3Dptn%261zlyPk%3DDACCG8F99CDBE%2605wl%3DBABG9D%26ht08%3DCBG%26jqWs1npu%3DZovwpm5%26j1yyluj5%3DbZK%260h4Htv1u0%3DAE.7D%26htv1u0%3DCBG%26jpk%3D8CDBFCC%26j1z0vtlyJv1u0y5%3DbZ%26j1z0vt.z0h0z%3D8%26whnla5wl%3Djvu2lyzpvuJvumpyth0pvu%26jqbzly%3D77777777-7777-7777-7777-777777777777%260hnb1pk%3D9AjBCiBj-FEhD-BCk9-GFi9-GGBB98hEh7lA%26j1z0vtlyZ0h01z%3DYl01yu%26p0lt8%3DwC7878ED%3c%3co00wz%3A%2F%2F333.ltqjk.jvt%2F1%3c%3cN%3co00wz%3A%2F%2F333.40vvs.jvt%2F%3c%3c8%3c8%3c7%3c7%3c7%3c HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Resin/4.0.66
Set-Cookie: CJSession=2e0ca7a8-0b6e-42a7-b745-37b4a58ba895; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
cjae=p_sduUKoDyab; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400805040566145211$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p-d.xml", CP="NOI DSP NID OUR STP"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Mon, 30 Jan 2023 19:46:27 GMT
Content-Type: image/gif
Content-Length: 50
Date: Mon, 30 Jan 2023 19:46:27 GMT
X-VC-HTTPS: On
app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
104.21.61.132204 No Content 0 B URL HTTP/2 app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
IP 104.21.61.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: app.roboturk.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,source-url
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 19:46:27 GMT
content-length: 0
access-control-allow-headers: content-type,source-url
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: *
strict-transport-security: max-age=15552000; includeSubDomains
vary: Access-Control-Request-Headers
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GuDqd1pvNvzbnyZnl3r1W0tj2xBEAp84M3ZQKVD32W7GzYZGkxG5s7jmH9QlDerY%2BfkH3fYSwMwsIyFnVN4gTBRHCE%2FsGbkGGUnmVVw4hEATM4c%2FFwVL21hATfm0WdNwF0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6b518d7b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fdd9cf39493c31a9795475075ae8db91
711bd99da7dfa2320801955e5c18fcffa465295f
ac64c612b3fec67e62a23cb87a365b10610f346a7c71f5202ac013fa086f64ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:27 GMT
Last-Modified: Mon, 30 Jan 2023 19:02:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:46:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google.com/pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM
142.250.74.14200 OK 0 B URL HTTP/2 google.com/pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 19:46:27 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
google.com/ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=215869439.1675108000
142.250.74.14204 No Content 0 B URL HTTP/2 google.com/ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=215869439.1675108000
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=431822362.1675107996&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=215869439.1675108000 HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:46:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
104.21.61.132200 OK 2.5 kB URL HTTP/2 app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
IP 104.21.61.132:0
File type JSON data\012- , ASCII text, with very long lines (6934), with no line terminators
Hash bf8c2daccd5d1a8d3839750bba22d0d4
196b6a2f7f9f7e3050cb6ec7423a99ca1792c0a0
f8427df00cb1fac1ed9bc283e2e06b790cb89cf50fbf5b29f2b5769172571f49
GET /address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: app.roboturk.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
source-url: https://www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:27 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
etag: W/"1b16-CqdljfUx2r4aORFyEQ1UihX4xlU"
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BvsdirJc3xoMlsI%2BjBnIwPmygE7ytIKfNrvoIXCCV2UpfhyMnbPldywxSg7aT3s3eY58bUr4%2FO2HY1LDklMRCYZ%2FNI7zh25b9s7WB9Lvaqg5LfE85joo1COPWuDTsuAwWg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6b9e947b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
34.120.195.249200 OK 41 B URL HTTP/2 o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b49a50c161e4f88762248fa27ba95641
676840ca68cc22564cefd99a0e848204e746bf22
8be4ac55d65275ab2fb2ca9ed3d01028428ffc705d35aa99df4bfd014629cc01
POST /api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2 HTTP/1.1
Host: o4504297885007872.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.xtool.com
Content-Length: 98210
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 19:46:28 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://www.xtool.com
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
conversions-gsf.simpshopifyapps.com/record-conversion?order_id=4874154737903&order_number=T3JkZXIgNDMwMDQ=&order_value=586.06&order_currency=USD&label=AW-339790474/oFv_CNPD3dkCEIqVg6IB&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&shop=makeblock-xtool.myshopify.com&ad_id=5049335639&bing_ad_id=&bing_uet_tag_id=&conversion_tracker_state=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
199.250.207.25200 OK 13 B URL HTTP/1.1 conversions-gsf.simpshopifyapps.com/record-conversion?order_id=4874154737903&order_number=T3JkZXIgNDMwMDQ=&order_value=586.06&order_currency=USD&label=AW-339790474/oFv_CNPD3dkCEIqVg6IB&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&shop=makeblock-xtool.myshopify.com&ad_id=5049335639&bing_ad_id=&bing_uet_tag_id=&conversion_tracker_state=JTVCJTIyc2NyaXB0X2NvZGVfc3RhcnRfMTY3NTEwODAwMDIyMyUyMiUyQyUyMmdvb2dsZV9ndGFnX2pzX2luaXRfMTY3NTEwODAwMDIyMyUyMiUyQyUyMmdvb2dsZV9ndGFnX2pzX2xvYWRfMTY3NTEwODAwMDIyMyUyMiUyQyUyMmdzZl9kZWZhdWx0X2pxdWVyeV9sb2FkXzE2NzUxMDgwMDAzMjQlMjIlMkMlMjJndGFnX2NvbmZpZ19sb2FkXzE2NzUxMDgwMDAzMzklMjIlMkMlMjJ0aGFua195b3VfcGFnZV9jb25kaXRpb25fMTY3NTEwODAwMDM0OCUyMiUyQyUyMnRoYW5rX3lvdV9wYWdlX3ZhbF8xXzE2NzUxMDgwMDAzNDglMjIlMkMlMjJHRFJNX3B1cmNoYXNlX2NhbGxfMTY3NTEwODAwMDM2MyUyMiUyQyUyMkdDVF9wdXJjaGFzZV9jYWxsXzE2NzUxMDgwMDAzNzElMjIlMkMlMjJzY3JpcHRfY29kZV9lbmRfMV80ODc0MTU0NzM3OTAzXzE2NzUxMDgwMDAzNzElMjIlNUQ=
IP 199.250.207.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 02278b770eaa5cbf5df843336333f087
a26ad77888189cc5d6973bb818e45f448628c5c1
ae95d608ee76e064ca676f3114fc5f48b0d5adac9ea3c9dbd137112f53c9b055
GET /record-conversion?order_id=4874154737903&order_number=T3JkZXIgNDMwMDQ=&order_value=586.06&order_currency=USD&label=AW-339790474/oFv_CNPD3dkCEIqVg6IB&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2Fb3a45720f7a114c0900c120e758dbae3&shop=makeblock-xtool.myshopify.com&ad_id=5049335639&bing_ad_id=&bing_uet_tag_id=&conversion_tracker_state=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 HTTP/1.1
Host: conversions-gsf.simpshopifyapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 19:46:29 GMT
Server: Apache
Access-Control-Allow-Origin: *
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=16d94221b79ad66edee95f6517a46301; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dataaccess.mblock.cc/sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxODYwNDM3OTBhMTc4LTAzMzk4NTVmNzI2OGVkYS1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzNzkwYTJhZCJ9LCJkaXN0aW5jdF9pZCI6IjE4NjA0Mzc5MGExNzgtMDMzOTg1NWY3MjY4ZWRhLWM1MDU0MjUtMTMxMDcyMC0xODYwNDM3OTBhMmFkIiwibGliIjp7IiRsaWIiOiJqcyIsIiRsaWJfbWV0aG9kIjoiY29kZSIsIiRsaWJfdmVyc2lvbiI6IjEuMjMuNCJ9LCJwcm9wZXJ0aWVzIjp7IiR0aW1lem9uZV9vZmZzZXQiOjAsIiRzY3JlZW5faGVpZ2h0IjoxMDI0LCIkc2NyZWVuX3dpZHRoIjoxMjgwLCIkdmlld3BvcnRfaGVpZ2h0Ijo5MzksIiR2aWV3cG9ydF93aWR0aCI6MTI4MCwiJGxpYiI6ImpzIiwiJGxpYl92ZXJzaW9uIjoiMS4yMy40IiwiJGxhdGVzdF90cmFmZmljX3NvdXJjZV90eXBlIjoi55u05o6l5rWB6YePIiwiJGxhdGVzdF9zZWFyY2hfa2V5d29yZCI6IuacquWPluWIsOWAvF%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%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&ext=crc%3D413328497
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%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&ext=crc%3D413328497
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxODYwNDM3OTBhMTc4LTAzMzk4NTVmNzI2OGVkYS1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzNzkwYTJhZCJ9LCJkaXN0aW5jdF9pZCI6IjE4NjA0Mzc5MGExNzgtMDMzOTg1NWY3MjY4ZWRhLWM1MDU0MjUtMTMxMDcyMC0xODYwNDM3OTBhMmFkIiwibGliIjp7IiRsaWIiOiJqcyIsIiRsaWJfbWV0aG9kIjoiY29kZSIsIiRsaWJfdmVyc2lvbiI6IjEuMjMuNCJ9LCJwcm9wZXJ0aWVzIjp7IiR0aW1lem9uZV9vZmZzZXQiOjAsIiRzY3JlZW5faGVpZ2h0IjoxMDI0LCIkc2NyZWVuX3dpZHRoIjoxMjgwLCIkdmlld3BvcnRfaGVpZ2h0Ijo5MzksIiR2aWV3cG9ydF93aWR0aCI6MTI4MCwiJGxpYiI6ImpzIiwiJGxpYl92ZXJzaW9uIjoiMS4yMy40IiwiJGxhdGVzdF90cmFmZmljX3NvdXJjZV90eXBlIjoi55u05o6l5rWB6YePIiwiJGxhdGVzdF9zZWFyY2hfa2V5d29yZCI6IuacquWPluWIsOWAvF%2Fnm7TmjqXmiZPlvIAiLCIkbGF0ZXN0X3JlZmVycmVyIjoiIiwicGxhdGZvcm1fdHlwZSI6IlBDIiwibW9uZXRhcnlfdW5pdCI6Iue%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&ext=crc%3D413328497 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:29 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ded1afb-c437-4c83-88fd-ab927bb13e91
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 23 Nov 2022 06:47:59 GMT
cf-cache-status: HIT
age: 5915108
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sGfiHcSY9qdX9Wi1jbpj4Y%2FfsQNHItxp4iHH7PrAIi9JEJFqpR4NXu8p8lqzq1KyvngCd1MW8eKVfKmyVhcsOuuPysnfPHn%2BCSpDL1sjtzPJFw8jLaFs%2FAJmV%2FhUlGoMpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.577, imageryFetch;dur=72.395, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 791cb698d9d90b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com
172.67.70.176200 OK 0 B URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com
IP 172.67.70.176:0
GET /facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:24 GMT
content-type: application/json
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-headers: *
content-security-policy: frame-ancestors https://*.myshopify.com https://admin.shopify.com;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9iFT3ZQPHUnZWPpHGkGLKEIbxpLwHbRRQcPCCLorHK%2FEm6YbXaJojODHlW6CowLK%2Bg9Ppm%2FGnapj%2BRZ%2FZP2gM8gju8fvvxT9VBuN0Ya9h4JBQ11rtqTFYAZNhaiLAaRmE8cFzpM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6a64bc60b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
23.227.38.33200 OK 0 B URL HTTP/2 checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
IP 23.227.38.33:0
GET /46779859095/sandbox/google_maps?locale=en-US HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Tue, 31 Jan 2023 19:46:23 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.xtool.com%2F; Expires=Mon, 13-Feb-23 19:46:23 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Fsandbox%2Fgoogle_maps%3Flocale%3Den-US; Expires=Mon, 13-Feb-23 19:46:23 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=c75c00c2-eb93-4ef9-a92b-a39684690199; Expires=Tue, 30-Jan-24 19:46:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=c7b50e41-1b01-4554-a248-40ed6059a892; Expires=Mon, 30-Jan-23 20:16:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=c75c00c2-eb93-4ef9-a92b-a39684690199; Expires=Tue, 30-Jan-24 19:46:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=c7b50e41-1b01-4554-a248-40ed6059a892; Expires=Mon, 30-Jan-23 20:16:23 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=7f3e52e9-923c-41ff-9f9c-463691b751f9
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=7f3e52e9-923c-41ff-9f9c-463691b751f9
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 7f3e52e9-923c-41ff-9f9c-463691b751f9
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2tDe0AUAAEccZtRjBJ67sjvwGCdzwDUVHUOAEBRM6ZyEsKkjav10MQ70%2BDG%2Bq94xT8G0%2Bts46rKx3X9ObXU7tAazT5H3cq3BpRU%2Br68wBlDcHU6sPchEgpkbqDLoByv3cvGLVtnl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=273.999929
server: cloudflare
cf-ray: 791cb6a17e6bb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.shareasale.com/json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com
104.16.226.72200 OK 0 B URL HTTP/2 static.shareasale.com/json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com
IP 104.16.226.72:0
GET /json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: static.shareasale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:27 GMT
content-type: application/javascript
x-amz-id-2: 5bDh8bExw2DMBZHj90QV3hRYRTZf85fFc15+G8A7wjt1aQEA6xrgLH4WcND3CHcC7M8gWKIWaac=
x-amz-request-id: ZNAR5MN361P2EA8K
last-modified: Fri, 20 Jan 2023 23:10:17 GMT
etag: W/"242c7afa3375da811199fef600d86eb6"
cf-cache-status: DYNAMIC
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791cb6b499bbb4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
my.parcelpanel.com/assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com
104.26.6.247200 OK 0 B URL HTTP/2 my.parcelpanel.com/assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com
IP 104.26.6.247:0
GET /assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 05:48:11 GMT
vary: Accept-Encoding
etag: W/"61b6de9b-df3"
expires: Sun, 26 Mar 2023 22:57:23 GMT
cache-control: max-age=5184000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 1
cf-cache-status: HIT
age: 420541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JIdxdXnP%2B3rsyoKBuKNfKL6EsxcAd8%2FMEESwyxKr44t0zkYqhKCIJReaMY9pB%2FbTb2vgQPFXts3O%2BFMjl3VxYwl3zsxzZtuWxgdvcsXHkiCfxl9xsrcou5IBr7riUMYiQwAjbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6ac19c2b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
kickbooster.me/shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com
104.26.1.169200 OK 0 B URL HTTP/2 kickbooster.me/shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com
IP 104.26.1.169:0
GET /shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: kickbooster.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 791cb6ad4e2ab4ed-OSL
cache-control: max-age=300, public
etag: W/"8517e8311db831a1f3c9723a4c8f44a4"
strict-transport-security: max-age=2592000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy:
referrer-policy: strict-origin-when-cross-origin
source: app
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-powered-by: cloud66
x-request-id: 633d16b8-903d-400d-b9f3-09cf2a379c8f
x-runtime: 0.099491
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/46779859095/javascripts/checkout_countries/122653147287/en-US/countries-712fa7ddf1993d134a9ce0d836dfb89d522f7af9-0.js?version=2021-01-25
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/46779859095/javascripts/checkout_countries/122653147287/en-US/countries-712fa7ddf1993d134a9ce0d836dfb89d522f7af9-0.js?version=2021-01-25
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /app/services/46779859095/javascripts/checkout_countries/122653147287/en-US/countries-712fa7ddf1993d134a9ce0d836dfb89d522f7af9-0.js?version=2021-01-25 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache
content-language: en-US
link: <https://cdn.shopify.com/app/services/46779859095/javascripts/checkout_countries/122653147287/en-US/countries-712fa7ddf1993d134a9ce0d836dfb89d522f7af9-0.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d53ba1ec-4b81-4df1-a444-a74eaa350f92
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 30 Jan 2023 19:44:49 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZcNTYzLgx1RwpoZlnaTnwkrGEXdfY%2FLm%2FtWVFqr%2Fwh%2BXTN1CsLO2XL%2FF8G5s7Ua7sColqrjsDY9Aax0%2FRpSdab6QoVQ1avQ1NObWx4BjNsYUHGJY%2FIwo9UbknuMJtVMVnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=944.756, imageryFetch;dur=854.508, cfRequestDuration;dur=1223.999977
server: cloudflare
cf-ray: 791cb698fd250b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.one.store/javascript/dist/1.0/jcr-widget-app.a30610ab.js
104.26.6.211200 OK 0 B URL HTTP/2 cdn.one.store/javascript/dist/1.0/jcr-widget-app.a30610ab.js
IP 104.26.6.211:0
GET /javascript/dist/1.0/jcr-widget-app.a30610ab.js HTTP/1.1
Host: cdn.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycds3cAXd5fIcTxmzBxDnSJ_7nfcBnPYcR-7ArRo4lcfWXEWKfuTes8wvab63uzSDFP0cF3JXUK_DWaByvlC7LEfeTg
vary: X-Goog-Allowed-Resources, Accept-Encoding
x-goog-generation: 1674226038586248
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 243220
x-goog-hash: crc32c=BpyQtg==, md5=g9oi2/iuAkXvbZcFIqTfdg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 30 Jan 2023 19:01:59 GMT
cache-control: public, max-age=7200
age: 2966
last-modified: Fri, 20 Jan 2023 14:47:18 GMT
etag: W/"83da22dbf8ae0245ef6d970522a4df76"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ghi7%2Bons2pup0ZzELMzfSMBg%2Bs8Us7Q25C6Ebrvkh90%2FEgkI0ZX2UFZHTyRzVbTSfJxzi8%2FtcBNwm1byzmVTp2RMxl2tP7%2FoQSozPlux4LxlIWiv9o64llpTW%2FrBV0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6ae9d30b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
api-cf.affirm.com/api/v2/session/touch_track
54.230.111.2200 OK 0 B URL HTTP/2 api-cf.affirm.com/api/v2/session/touch_track
IP 54.230.111.2:0
GET /api/v2/session/touch_track HTTP/1.1
Host: api-cf.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 19:46:25 GMT
server: istio-envoy
vary: Accept-Encoding,Origin
access-control-allow-headers: Accept, Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
access-control-allow-methods: GET, OPTIONS
set-cookie: tracker_device=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:46:25 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None
t_v2_s=eyIgYiI6IlpHVmpOMk0yWVRZdE5HRXlaQzAwTWpWaUxUazVZVFF0T0dGaFlqUTFNVGxqTkdWaCJ9.FrmwEQ.-jEyfjv9a1WwTfF7VHBO7kVDFwE; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:46:25 GMT; Max-Age=63072000; Secure; HttpOnly; Path=/; SameSite=None
3060738.3440491=dec7c6a6-4a2d-425b-99a4-8aab4519c4ea; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:46:25 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None
cache-control: private, no-cache, no-store, must-revalidate
x-affirm-request-id: 4be39937-57db-45e9-c589-c9f51d9900d5
strict-transport-security: max-age=86400
x-affirm-cache-status: MISS
content-encoding: gzip
x-envoy-upstream-service-time: 27
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6flrX-W1g7nOWmbX8nZdIAMsCMfBE8M-XKFlyfFwR4ykXvLbFO5r7w==
X-Firefox-Spdy: h2
www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8
23.227.38.74302 Found 0 B URL HTTP/2 www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8
IP 23.227.38.74:0
GET /46779859095/orders/b3a45720f7a114c0900c120e758dbae3/authenticate?key=18dffba936a1a2a68abb3592acad15f8 HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 30 Jan 2023 19:46:21 GMT
content-type: text/html; charset=utf-8
location: https://www.xtool.com/46779859095/orders/b3a45720f7a114c0900c120e758dbae3
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
x-frame-options: DENY
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVV4T0dSbVptSmhPVE0yWVRGaE1tRTJPR0ZpWWpNMU9USmhZMkZrTVRWbU9BWTZCa1ZVIiwiZXhwIjoiMjAyMy0wMi0yMFQxOTo0NjoyMS4yMDBaIiwicHVyIjoiY29va2llLm9yZGVyIn19--103c8ef924fc6e85e37d3bbe6175ae7af84943e0; path=/46779859095/orders/b3a45720f7a114c0900c120e758dbae3; expires=Mon, 20 Feb 2023 19:46:21 GMT; secure; HttpOnly; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=xtool.com; path=/; expires=Tue, 31 Jan 2023 19:46:21 GMT; SameSite=Lax
_y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; Expires=Tue, 30-Jan-24 19:46:21 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_s=d355cd54-feee-4b62-9c27-d77fb50186e5; Expires=Mon, 30-Jan-23 20:16:21 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_y=d017213b-47a0-4e9f-b6e6-21c78d7e8535; Expires=Tue, 30-Jan-24 19:46:21 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_s=d355cd54-feee-4b62-9c27-d77fb50186e5; Expires=Mon, 30-Jan-23 20:16:21 GMT; Domain=xtool.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=e3768e0d-99fd-4235-b8dd-ad30a1cf3ab5
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=e3768e0d-99fd-4235-b8dd-ad30a1cf3ab5
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: e3768e0d-99fd-4235-b8dd-ad30a1cf3ab5
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XzDybXjMFvX8v1c9Fgt5ZMJlYD75ChynkyaHeV7IuAWj%2BGyfyou6a%2FJxGcqIzSaTLK7fLylNf0zo11GgFQwuVaK%2FLM4KB5rCKCOPoLjzDpRMAd01Ajm5vJBzSQnTIfM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=416.000128
server: cloudflare
cf-ray: 791cb6916f60b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
3.229.250.13200 OK 0 B URL HTTP/2 abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
IP 3.229.250.13:0
POST /api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB HTTP/1.1
Host: abtest-aws-us-east-01.saas.sensorsdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json; charset=UTF-8
Content-Length: 160
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:23 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-request-id: 23b07656ebf54746bc0552eb8ba0dd8d
X-Firefox-Spdy: h2
cdn.codeblackbelt.com/js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com
104.26.2.11200 OK 0 B URL HTTP/2 cdn.codeblackbelt.com/js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com
IP 104.26.2.11:0
GET /js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.codeblackbelt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 08:08:30 GMT
etag: W/"6473f-5f3629a9edb80-gzip"
cache-control: max-age=3600
expires: Mon, 30 Jan 2023 19:58:28 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2877
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YS3Kv38YK4YmkLBy1Tb66Id4PdcD8%2FTIz3bBxFO2KfHHxsf3RpoBwVBbSOw4nWx%2BBrVwEsMnL5S07Pd%2B6Uu5cd3m80bODyDEG5yu7FE14T5eN2Cb8seuPC%2BrLYGmP4m4%2F0CA2hSmIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6abc823b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dr4qe3ddw9y32.cloudfront.net/awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com
54.230.245.34200 OK 0 B URL HTTP/2 dr4qe3ddw9y32.cloudfront.net/awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com
IP 54.230.245.34:0
GET /awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: dr4qe3ddw9y32.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 10:38:22 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 10:39:21 GMT
etag: W/"8a03887aadb0949525810185531df2f7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w4ZbIGS-ZmkZOz_hpaOLmJ_gYuiJoQnhDZQXOODOQHTwOsHl8y47qA==
age: 32826
X-Firefox-Spdy: h2
www.dwin1.com/23114.js
54.230.111.8200 OK 0 B IP 54.230.111.8:0
GET /23114.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 09:30:52 GMT
x-amz-version-id: GsXHS.j9KtVgZPCUJR0UMlv7_VZ29Vm8
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 19:36:37 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"099f09ef60bd0aceb2f7411ed1f1f39e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Kvw20dX8e-aMSvdKzvZMfar4EDUqJSld9HEQwm2uVLrvEnA_cJtWOA==
age: 591
X-Firefox-Spdy: h2
cdn.giftcardpro.app/build/storefront/storefront.css
54.230.111.95200 OK 0 B URL HTTP/2 cdn.giftcardpro.app/build/storefront/storefront.css
IP 54.230.111.95:0
GET /build/storefront/storefront.css HTTP/1.1
Host: cdn.giftcardpro.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 30 Jan 2023 11:34:38 GMT
server: nginx/1.20.0
last-modified: Sun, 29 Jan 2023 00:53:44 GMT
etag: W/"63d5c398-eb6e"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IfmAqeBhmCx2AQ7hDxHHk-kBwneF4Pjf4R1CRqs6KQyCA2myeObVAQ==
age: 29507
X-Firefox-Spdy: h2
my.parcelpanel.com/api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version
104.26.6.247200 OK 0 B URL HTTP/2 my.parcelpanel.com/api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version
IP 104.26.6.247:0
OPTIONS /api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: baggage,sentry-trace
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: x-requested-with,content-type
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlVqMnB3N2FRSitLa204TDVraUE5V3c9PSIsInZhbHVlIjoiTndPZmt5OWZSUUR6TEZvc28ydmVrUFNiTThtNWJJa2I0bE1FMzF3UGtoWUZ1a3RCUUhOMVF4dHJUQURoVHBMRCIsIm1hYyI6IjhkMWQ1NmE0YmJiMmQyZjQ2MGI2YWU5OWMwYmNjNmM0NTFhZmM5ZDhiMDljYTkzYzY2NWE1NWFhNjA1NTUwZDcifQ%3D%3D; expires=Tue, 31-Jan-2023 07:46:25 GMT; Max-Age=43200; path=/; secure; samesite=none
laravel_session=eyJpdiI6IkpwcTRYWjdhV1grcXhNY09VemZLY2c9PSIsInZhbHVlIjoiNG5BY1A4TG5xWmRQY3B2djh4RHNwQ1wvMkQ4eXNqTWtkRkw3YmFVNGUxdVRGSDVuSm1hcW5GWnFkbjV3QWN0WFIiLCJtYWMiOiI3ODViZjQ3OTlkZWU3MDgzMDYyZjRhOTU1NWQ5MjhhMzEyZWI1OTA0Mzk2YTNlMmVhMmFmMWRlMzZkZDgwNGNiIn0%3D; expires=Tue, 31-Jan-2023 07:46:25 GMT; Max-Age=43200; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hhfgQWr6TmTlfcoYRsA3tEiqqFFfLU%2BVXysl8p2neGVZa129LYWCmO%2BOdeQavCCP9ldJMbtJgOOfHfkRneu%2FtK2RMeANM6l9SqyiunX5TF3u5WlARj5hP1gAu%2FSASNWgM91Jjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb6adbb17fac4-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 242152a8-70a3-476b-b6f1-88dc73c3e332
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 14 Sep 2022 09:06:42 GMT
cf-cache-status: HIT
age: 11187541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cV2zppzGDdD2zXx6o10ZirXY0C7zQdk1eFpcMe2M6PSF%2BzybksEr1Zo8htPvP%2FqD6WZq76I3FFNg%2FzHiJwuIG%2FnxGXtK0MYV0VgdUGQdCIhZtcmfEnpwdbw62FyJW2U6DA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=75.953, imageryFetch;dur=75.744, cfRequestDuration;dur=54.999828
server: cloudflare
cf-ray: 791cb698c9c30b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/46779859095/assets/122653147287/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-238561
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/46779859095/assets/122653147287/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-238561
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /app/services/46779859095/assets/122653147287/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-238561 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:46:22 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=31556952, public
link: <https://cdn.shopify.com/app/services/46779859095/assets/122653147287/checkout_stylesheet/v2-ltr-2021-01-25-61cdbcf5b455b1c1c17dfc0bb1a21895-238561>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e751ec8f-54dd-4884-a774-965d0c531a9f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 30 Jan 2023 15:59:48 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vhwybysdfN%2F6Ow33NGReAFGDmgnVt%2BZJHmZFLKlawh1mh7UuIHpLztHmE2WS3NbLMFXvMJXnfYDRWFXClCCPIX7dSyKQ%2Fa%2BQf0r3up9OlN3y5rP59nf%2F%2BUfbj4p50dYTzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=8003.482, imageryFetch;dur=8003.053, cfRequestDuration;dur=138.999939
server: cloudflare
cf-ray: 791cb698c9c50b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com
54.230.111.103200 OK 0 B URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com
IP 54.230.111.103:0
GET /latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: d85b185b-ce92-452a-b95d-e3e69497acd5
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"26572-mLLokrv2MGEVUeXn0hloxOgiowE"
date: Mon, 30 Jan 2023 11:58:13 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DX5UnwK56MZoT-jtTRNvQZ_n9101n1W28YTdFPstPJgkN3L1iRpgAA==
age: 28092
X-Firefox-Spdy: h2