r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5415
Expires: Thu, 08 Dec 2022 07:13:58 GMT
Date: Thu, 08 Dec 2022 05:43:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7913
Expires: Thu, 08 Dec 2022 07:55:36 GMT
Date: Thu, 08 Dec 2022 05:43:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 05:08:09 GMT
content-type: application/json
age: 2134
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
flow.just4melifestyle.com/ga/click/2-318914155-1615-15495-30254-28114-1037a8c6fd-pf53fe338d
194.34.232.5302 Found 172 B URL HTTP/1.1 flow.just4melifestyle.com/ga/click/2-318914155-1615-15495-30254-28114-1037a8c6fd-pf53fe338d
IP 194.34.232.5:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 734c3c58640ec97d8c126d0fb1468ce6
dc1457288d39726f3101b1d7f6277a1710010031
11e96a556491fed1a4c0cb10a881c54cc8c530cc52a4a95b58201d1336462dd4
Analyzer Verdict Alert fortinet Phishing
GET /ga/click/2-318914155-1615-15495-30254-28114-1037a8c6fd-pf53fe338d HTTP/1.1
Host: flow.just4melifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 08 Dec 2022 05:43:43 GMT
Server: Apache/2.4.51 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.29
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: 40fe144884fcd52602a7daf22b5b8946
Location: https://bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.022820
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.9
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16547
Expires: Thu, 08 Dec 2022 10:19:30 GMT
Date: Thu, 08 Dec 2022 05:43:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hRWEnwtYtoIUAkZiR1AAwveTGtakJkZZ/BwH6PMiZ5aFR5k/Xh11kZBNeffWRcseRbhp5QAfifk=
x-amz-request-id: KJB8BXS701MQBQ11
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 04:47:47 GMT
age: 3356
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
IP 142.250.74.131:0
Hash d54a48e1cdf5edc22038ee17f83180a7
3c51dc3d4e8e75911bdc2194160c2c144f5ea936
7995229c44e3916dd287245b458e92f06fb9e495b225a956a5e474ccc9d0dcd0
POST /s/gts1p5/EECR8fePMLQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:43:43 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 05:07:58 GMT
age: 2145
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3085
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:44 GMT
Last-Modified: Thu, 08 Dec 2022 04:52:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dw6CkZ50EhM3fdAoN0ovCg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hKtKsQMr/yhfv0bAJI677eCn1C0=
bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
104.18.185.50302 Found 0 B URL HTTP/2 bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214
IP 104.18.185.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/?ref=214 HTTP/1.1
Host: bestdealtoday.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 08 Dec 2022 05:43:44 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
x-redirect-by: WordPress
cache-control: public, max-age=0, s-maxage=2592000
cf-cache-status: BYPASS
set-cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; expires=Fri, 09-Dec-2022 05:43:43 GMT; Max-Age=86400; path=/
wmc_current_currency=NOK; expires=Fri, 09-Dec-2022 05:43:43 GMT; Max-Age=86400; path=/
wmc_current_currency_old=NOK; expires=Fri, 09-Dec-2022 05:43:43 GMT; Max-Age=86400; path=/
PHPSESSID=b99791ad0993e5a61913a1e4477e2191; path=/
wmc_current_currency=NOK; expires=Fri, 09-Dec-2022 05:43:44 GMT; Max-Age=86400; path=/
affiliate_for_woocommerce=214; expires=Sat, 07-Jan-2023 05:43:44 GMT; Max-Age=2592000; path=/
afwc_campaign=0; expires=Sat, 07-Jan-2023 05:43:44 GMT; Max-Age=2592000; path=/
vary: Accept-Encoding
server: cloudflare
cf-ray: 77632f617b34b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EECR8fePMLQ
IP 142.250.74.131:0
Hash d54a48e1cdf5edc22038ee17f83180a7
3c51dc3d4e8e75911bdc2194160c2c144f5ea936
7995229c44e3916dd287245b458e92f06fb9e495b225a956a5e474ccc9d0dcd0
POST /s/gts1p5/EECR8fePMLQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3978
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 05:43:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3978
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 05:43:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3978
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 05:43:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3978
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 05:43:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2d14fc1b5d2e6d6f4751a2fe741b990
86cd1428b2fd21ccb9d80c7f6be4d1e6221e97ef
bfe88cb97ccec5af627853d0bbc02f4799c4b8a25a995c8578365cb5a2914d6a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: c5f3e36b-87f1-4938-819c-7b1a6ec6bfeb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4BXHJ0oAMFaKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d5-15635f9a10d25d8c1d702bbd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQXtGXxwwTmn7gMQQj5wM69mPzAmYXRyfTbYfgUovTGsS0y048GZDg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:51:32 GMT
age: 28333
etag: "86cd1428b2fd21ccb9d80c7f6be4d1e6221e97ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 23230
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00cdac5a7f801c10e53b8651ceb94c46
d83d7a30038bbf534c531c3786c3458c66d6504a
4d767e2c8aee11a230ecbb4c5c2339a65ca380e87b713f2ad6c1efc02df07238
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4565
x-amzn-requestid: 153e9d72-d9e1-498e-b74b-f4fad27f4efd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_pHs4oAMFYYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-44aa3006114060145bd0b16d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZsZPiQ026zur9XITdqX8eyH813-2rXyG6RrSLF4pZ4Wtk4mQJZd1SA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:51:32 GMT
age: 28333
etag: "d83d7a30038bbf534c531c3786c3458c66d6504a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 23460
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cbac0c7e45d3f33c38dbf3af4de05ba
e9106fec14ddda290951c61eda64a69ada9a244a
98d3785eb167ea6bbba3782ab3cfd8cc9c7715f493265ac6d59494c00d3b002e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: bf2f33a6-7f13-4f5b-ba9c-da33282135b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctERHFRSoAMFgYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb406-121af6ba1b7b6a3066ffa103;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yTLFIBUWHjudn2h6VKM79RUnXfuUTmQBkYSCFrRuY7_biVW5bEKZfA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 17:39:05 GMT
age: 43480
etag: "e9106fec14ddda290951c61eda64a69ada9a244a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4884ce2731d3033b12e4792c1bbf453e
63b6efc98cb04228d82ac28fceb97bb1cf8d82fb
8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tM0WOO_Ypgj2QxJSz9GHZZTsKjzsvyD6tjpp4G0ZpuGAIGmnEe4oqQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:15:11 GMT
age: 77314
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-183515777-2
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183515777-2
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 4e059e40e9fc54116aa91525c97f1603
f2c3aeeb03912b912267bdb7a6ec903dc46703bc
9709c1f87d3a94210b1f93b4678f544e180ea3e77362aa31a374d6329784b150
GET /gtag/js?id=UA-183515777-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 05:43:46 GMT
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-10956017856
172.217.21.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10956017856
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash ebc9c0051f18bfea290155fa4754f15c
85f62c492604a0837b0380a0195f207e0b53f3d0
52709ee3c15f259aaef66625f8ea5ce2139c409b1333aae908cd36d2952af409
GET /gtag/js?id=AW-10956017856 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 05:43:46 GMT
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52990
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QWW4LY28GH
172.217.21.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-QWW4LY28GH
IP 172.217.21.168:0
File type ASCII text, with very long lines (20080)
Hash 728ab5ec2dcac70dfc426745e67fd2bc
bfce938c9b616abebaa25f370e92b4f230b563bb
1cad229e8dfdefb558242d5443d655681a06493a3ec5f0c8beca5996e7966127
GET /gtag/js?id=G-QWW4LY28GH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 05:43:46 GMT
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77323
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3
142.250.74.138200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3
IP 142.250.74.138:0
File type ASCII text, with very long lines (2426)
Hash 6dbc6c74f6f2877833d70be7c22b1c9c
15d2209b519c790b767759b54735291428453696
f85298e4d6e6dda11b90a44df8edcf111bbb8d4b80bcb3726eb0aeed92baf91d
GET /maps/api/js?key=AIzaSyChvAhPXTmtq1M5VOZgvyawdmCWgglMZp4&language=en&libraries=places&v=weekly&ver=1.1.3 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 08 Dec 2022 05:43:46 GMT
expires: Thu, 08 Dec 2022 06:13:46 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55997
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=31
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.4 kB IP 142.250.74.131:0
Hash c016b4a20beda383b909b678656c28ad
36f35597ec06046bf82bcea136acf5dc4b6d7268
f3d869424724be210ec9a6c9fef1ab538887a01b47a02a224d5adc0d30925765
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 49470e9410670237e57174bdb7090a5b
43a7bead99e03209175335751b7def20c5a546b3
4f2f9fbd8a7c354867ef54c119658228e5295d4837a4fbceaeacd5ad0e171cf4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:46 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 23:40:46 GMT
Expires: Sun, 11 Dec 2022 23:40:45 GMT
Etag: "43a7bead99e03209175335751b7def20c5a546b3"
Cache-Control: max-age=323218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77632f71bdd30b4d-OSL
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2338)
Hash 904b2a73c9830225b756e90f1c7da8b3
d053637dc6001e49e2374057eb9d68b2aa9d533d
68c24a7432354228dd8747dd598d11de493ad26ae16bf6a9934cab2215156eb2
GET /i18n/pixel/events.js?sdkid=CCC5IDRC77U3SM0RPNKG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221208054346BFCF399C48DFC6649413
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51ccb71dba6d43d23c1aa982985e74a1f694dec9d42eda1d2f1ca83ac397c9f28f31c7f92cafffbcaa0abc8057eba288713373e5a6432fa296a79ed22960f17ab467
content-encoding: gzip
content-length: 1142
x-origin-response-time: 9,184.51.101.10
x-akamai-request-id: 86bfc04d.e33ca51
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IcQ7m6tVpCA88ycWWoRR3Zo2hd; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-51-101-10.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=9, inner; dur=4
x-parent-response-time: 109,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2345)
Hash 45488dd0fc4444db9bb120c43bf9c850
e9642317d4da04d507ccdcbc6dc9822752cb43b5
228365855a4ca5a454d865aceafd698abb080ca7630e6e6f22e42900ab0018a9
GET /i18n/pixel/events.js?sdkid=CCPBUE3C77U9QMO0V20G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221208054346FBF9ADD1CB393063FCE6
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51ccf456c79c6f03bf06e03112f47b82bc7f3bab400c1dc0bbcffb3019f49284186eb5611b4e526ed4dda2c68e39ff95a570a9286185b11d5f7b7faa18b97acb0c61
content-encoding: gzip
content-length: 1148
x-origin-response-time: 6,184.51.101.11
x-akamai-request-id: a40e5cf.e33ca59
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-51-101-11.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=5, inner; dur=2
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MQ.js
23.36.79.17200 OK 71 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MQ.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash a0a771e083ff88dabf3d1e2f7bc39f6b
357ea8123c6d4e3baf6cf4dbc47df06ad626ee6f
4b3c0532161fe522fffeb30d0245593c28381a364579423e0d224965e9e9b423
GET /i18n/pixel/static/main.MTk2NTc4NGU0MQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132756F4B46C855D9C808CF174
x-tt-trace-host: 01da38724b6c03af27c6a22a4a90be02ba7c21c7d3e03a1c6eb54f2c0a02e79b48555f61a59cd710993a9e267fa31d9b3f264e27678d1c78dfc76682bbc1efeb2195aeaf1bbe4c5e1853f4bdd2fe4d29b2
content-encoding: gzip
content-length: 68693
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: e33cb18
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq
23.36.79.17200 OK 1.5 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4179)
Hash 9111c5935095baff684d7ac2002f1ea0
84079ceb8d5d6389f837c6c74bbdb37b77253bd7
2768b3508e935f237e1790c826387a696717b444729678bf9c6487b236f36f29
GET /i18n/pixel/events.js?sdkid=C1LC099T0U322RQQ5D1G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221208054346FBF9ADD1CB393063FCF3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51ccf456c79c6f03bf06e03112f47b82bc7fad98da0010df8222892ca2361a84feecdce2c304a0de75b1b0e5b23787e969cfeeb9a16b63d9105f5277bdbacb2a064b
content-encoding: gzip
content-length: 1489
x-origin-response-time: 7,184.51.101.11
x-akamai-request-id: a40ecb4.e33cb12
expires: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-51-101-11.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=112, origin; dur=7, inner; dur=4
x-parent-response-time: 118,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_7373d.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_7373d.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 905f25a6763488baff0582a11e6d4650
cbf906634f07d5e983cb8f5f30195d24a219ca41
73bf06623dd0515ca31a2f3c352cf6efce03e0ff7e7bf3ae990a19745787deda
GET /i18n/pixel/static/identify_7373d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132745F774E1DED7BF563B9D05
x-tt-trace-host: 017bcdfb1f342efa6ce7e8ef248837e909b29e38c81383d97aa45a1f344cf919c8a599ec6c025c616e50bcaf3d3e28b0e81315201e77a8c36d9dceb999beae4aa6616a7661fd70d5a724b0816ae855e12b
content-encoding: gzip
content-length: 30877
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: e33cbac
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21716)
Hash 751a8b838d6cf3cf4750f43188712786
07495015f7764ae79a9cdb42e24d37fea6264a9a
bc10e27de63aa54b7ff83e0421b88c6a802692aa432b218f6f8a05428622bc78
GET /i18n/pixel/static/main.MTk2NTc4NGU0MA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132745F774E1DED7BF563B9CF1
x-tt-trace-host: 017bcdfb1f342efa6ce7e8ef248837e909b29e38c81383d97aa45a1f344cf919c8b12ac2429d2852e5e6f30f93a065ab1c0ed2a074ff6b15568ff46eb0f574cad2bc88525a8832adc38278ffc459b96300
content-encoding: gzip
content-length: 66392
date: Thu, 08 Dec 2022 05:43:46 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: e33cbcf
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 822
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221208054346FAC8CDF60351016F10BE
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51cca8c8d18b102d28ec09dd4c65b97198d1d48bd56bd30d57cf1f0956c700cc38a115050f6b43d1299cffc85757df513cf6ae19ea6152e71112490d6a97fcd3c70b
x-origin-response-time: 16,184.51.101.132
x-akamai-request-id: 90a76c55.e33cbbe
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a184-51-101-132.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=16, inner; dur=13
x-parent-response-time: 117,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 822
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221208054346CB0789E3A30A53631D60
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e7113d797e8f9b25f3fe5b662ae4ce6b93adaa8a2dacfae7b9aff6c38b82301e00f41de4e426f2d6857568d3a1a33d87b
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=3, origin; dur=109
x-origin-response-time: 109,23.36.79.13
x-akamai-request-id: e33cbc0
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 830
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221208054346CF4294A417C62B6D2DE9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e35c8140c93f52413c35f16f87fce0f430cb45ada39866f51d70271f06598b4b7224a998f36f748d5e44408c83ed39e7d
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=3, origin; dur=108
x-origin-response-time: 108,23.36.79.13
x-akamai-request-id: e33cbc1
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 830
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202212080543460256AA4948F7196D9038
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51cc51f62fa65f28caefa99c7649c07358ed23ecfd0a71b3137e8d2436f3f63c0974bfe6a2e9d2ceedfb7581d0f0bed1f228f162412cfd3fd2b1933a4a5fc106c8b1
x-origin-response-time: 44,184.51.101.133
x-akamai-request-id: 95ea2cd3.e33cbbf
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a184-51-101-133.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=44, inner; dur=41
x-parent-response-time: 148,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 830
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221208054347CF4294A417C62B6D2DF2
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e115022a386c0bbc0cc5cc16ca57f73c857352474c6453e230069176868a61f8261456bd6840ce68e90dd97dc287a52b9
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=17, cdn-cache; desc=MISS, edge; dur=3, origin; dur=112
x-origin-response-time: 112,23.36.79.13
x-akamai-request-id: e33cc59
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 822
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221208054347625D8F3D7F27816FD7D9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51cca973e3e8e0d2941fd1b8605ea739e53ed47d765a34ddd92c9d490645e4006e432094e8822b7ffd9580c0189b31e1351e5c9bf73a0830d2ef6e97401663d7f812
x-origin-response-time: 31,184.51.101.138
x-akamai-request-id: 4a0f36f.e33cc57
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a184-51-101-138.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=31, inner; dur=18
x-parent-response-time: 129,23.36.79.13
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=0C9F60BEDDC165DE18EA72CADC34646E; domain=.bing.com; expires=Tue, 02-Jan-2024 05:43:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6E96639DC6274156B58581A099E03A55 Ref B: OSL30EDGE0106 Ref C: 2022-12-08T05:43:47Z
date: Thu, 08 Dec 2022 05:43:46 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 08 Dec 2022 04:46:55 GMT
expires: Thu, 08 Dec 2022 06:46:55 GMT
cache-control: public, max-age=7200
age: 3412
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2025
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Last-Modified: Thu, 08 Dec 2022 05:10:02 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670478226300&cv=11&fst=1670478226300&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=1400920432.1670478226&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 947 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670478226300&cv=11&fst=1670478226300&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=1400920432.1670478226&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2059), with no line terminators
Hash 918a8a438b960cba0fb976386cf964ec
41ce7e672789835423f57c93cc029aae3be0d7aa
2e2de572fa8bfd6573f395825c8c2ba4bce739aa7ccd69b8c1ff228d035e661a
GET /pagead/viewthroughconversion/10956017856/?random=1670478226300&cv=11&fst=1670478226300&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&did=dZTNiMT%2CdOGY3NW&gdid=dZTNiMT.dOGY3NW&auid=1400920432.1670478226&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 947
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 05:58:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10992351212/?random=1670478226486&cv=11&fst=1670478226486&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&rfmt=3&fmt=4
142.250.74.98200 OK 930 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10992351212/?random=1670478226486&cv=11&fst=1670478226486&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (1997), with no line terminators
Hash f4239da1a92444ee743db6a008600902
3e578a844a287cdb05a4430df84a72d07c8e3121
825adefc3cf7f1a514ec80f67b59f095abd86247a855da1f07683e1cee05ef74
GET /pagead/viewthroughconversion/10992351212/?random=1670478226486&cv=11&fst=1670478226486&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 930
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 05:58:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670478226472&cv=11&fst=1670478226472&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4
142.250.74.98200 OK 976 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10956017856/?random=1670478226472&cv=11&fst=1670478226472&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2408), with no line terminators
Hash 53f3e947ccdf39b19935b8dcff78324e
2f6206a394913ae16b1cc370e72c0051ad902923
5c42f7a2ee792e26595e28d4ddcd4dded1d584cc1d35d6eabba98f4cd00e0ae1
GET /pagead/viewthroughconversion/10956017856/?random=1670478226472&cv=11&fst=1670478226472&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&auid=1400920432.1670478226&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 976
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 05:58:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: OwBqCOvmnOh7HjBkt3QgEIBuuoNzq07I9/VSKzW4Z2CsDApWVlJNlUNdOgZV/cK6RRUKfWG203ebVAebWYygLA==
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 05:43:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2025
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Last-Modified: Thu, 08 Dec 2022 05:10:02 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 25a576aad646982a9ff95d764471bc39
30b12a503f0434529d862fa43a17f6485c5b7317
7f5fc3ce2e6448068c7d827d7db6e8ffc415270c14b0d992ffd5c6cd4be693c0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 21:06:09 GMT
Expires: Sun, 11 Dec 2022 21:06:08 GMT
Etag: "30b12a503f0434529d862fa43a17f6485c5b7317"
Cache-Control: max-age=313940,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77632f7879b90b4d-OSL
static.hotjar.com/c/hotjar-3266006.js?sv=5
54.230.111.113200 OK 3.9 kB URL HTTP/2 static.hotjar.com/c/hotjar-3266006.js?sv=5
IP 54.230.111.113:0
File type ASCII text, with very long lines (5960)
Hash 76ceb23b022373fe9219d47fa098de76
d15d3e931bfc60cdaf811b818e0f7a4f419ee507
f5e1c7dcf556ea4fd0e6a6622c27aed6bb61ac71f6ba412c549f94fa82fecc59
GET /c/hotjar-3266006.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 08 Dec 2022 05:43:47 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/854c6ecdcddc5b7a7a101ddb0d2ddea7
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6tqLyXv7ZkOn42wKgy3zodu8Hmd0tGpQVsWD6VUJkSJKJlRkNjP-qw==
X-Firefox-Spdy: h2
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
143.204.55.46200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP 143.204.55.46:0
File type Unicode text, UTF-8 text, with very long lines (48638)
Hash 2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb
GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V0A02hOHpVSj14ixk1k6vk4IgGO6Pp8CfcncbKiZQxcAv6xwwz3Exg==
age: 54521
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cb4dd119f7430c320eac60b72355bd8c
e5694c4e08731720fa303127f2f4b2fe5ab9fba9
116e36f240390df2689f722ba0174ff342f7c6ce3a6b91853342c93def2a0825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cb4dd119f7430c320eac60b72355bd8c
e5694c4e08731720fa303127f2f4b2fe5ab9fba9
116e36f240390df2689f722ba0174ff342f7c6ce3a6b91853342c93def2a0825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8129d4d0ebab3efc528f57883dfb30ba
be557eee6cd854421ec872673041867c73369fa2
ed95fb60948c81a74657e5964798a07145fe91fee47cb270006f62294a5670b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8129d4d0ebab3efc528f57883dfb30ba
be557eee6cd854421ec872673041867c73369fa2
ed95fb60948c81a74657e5964798a07145fe91fee47cb270006f62294a5670b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.tawk.to/5fb7cf13920fc91564c8fae8/default
172.67.38.66200 OK 684 B URL HTTP/2 embed.tawk.to/5fb7cf13920fc91564c8fae8/default
IP 172.67.38.66:0
Hash 5c219270ad1a34dc295702140d132acf
20cdbedb363b0b4f10a9139499eaa7a194fee9a3
5a430ab808ad831c1dcd02d3cf222386777c194c162cbd264ccd99193406c62f
GET /5fb7cf13920fc91564c8fae8/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-637ddf31c8f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f75af6db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cb4dd119f7430c320eac60b72355bd8c
e5694c4e08731720fa303127f2f4b2fe5ab9fba9
116e36f240390df2689f722ba0174ff342f7c6ce3a6b91853342c93def2a0825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=579589835&gdid=dZTNiMT&cid=230448086.1670478226&ul=en-us&sr=1280x1024&_s=1&sid=1670478226&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=579589835&gdid=dZTNiMT&cid=230448086.1670478226&ul=en-us&sr=1280x1024&_s=1&sid=1670478226&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QWW4LY28GH>m=2oebu0&_p=579589835&gdid=dZTNiMT&cid=230448086.1670478226&ul=en-us&sr=1280x1024&_s=1&sid=1670478226&sct=1&seg=0&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&dt=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://bestdealtoday.org
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226898&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dbegin_checkout%3Bid%3D%2383259&fmt=3&is_vtc=1&random=903803795&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pay.google.com/gp/p/js/pay.js
74.125.131.92200 OK 32 kB URL HTTP/2 pay.google.com/gp/p/js/pay.js
IP 74.125.131.92:0
Hash 8ddcb1a7036c1e5898e4b697f4c1cf72
7a7464a0491452107114e7390617a953d99f0d77
93bd22c9080ab4d55a8099aaa32adcfad8a497f029f85d241040d69a1ecc1199
GET /gp/p/js/pay.js HTTP/1.1
Host: pay.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
expires: Thu, 08 Dec 2022 05:43:47 GMT
date: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: private, max-age=600
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-gnD2JFCndgqaqM-y8Z36vg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/InstantbuyFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/InstantbuyFrontendHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/InstantbuyFrontendHttp/cspreport
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=O9tikQDKrQMEQvlqKCDfKyGUZTMNpxr-HICUd9gKrsymuQRXPiym1aUzrB89oS5MuWwTkr8LmtYU88j81-cw08_kYbr4da4VVJ-AoTGuYfzuC_sE8fQB0bh5A28WwOLbKl1WwQH9v6xZAAOqriRpP6SzFsHyxJ4OzHY7psYeMmE; expires=Fri, 09-Jun-2023 05:43:47 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226472&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Owl%20Vision%20Pro&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F%3D%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-security-g%2F&fmt=3&is_vtc=1&random=221892251&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10956017856/?random=1670478226914&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dview_item%3Bid%3D%2383258&fmt=3&is_vtc=1&random=397434509&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/1x/payment_white_36dp.png
142.250.74.35200 OK 149 B URL HTTP/2 www.gstatic.com/images/icons/material/system/1x/payment_white_36dp.png
IP 142.250.74.35:0
File type PNG image data, 36 x 36, 8-bit gray+alpha, non-interlaced\012- data
Hash 613481bf1448c72d049b68f1e02c4973
41bd753fb2f05b146b2ead160d9924d3e5a91737
004d7aa90e2889f6291a71c84ac3d3e394e0cade32bd41dc214736418f769181
GET /images/icons/material/system/1x/payment_white_36dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 149
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 05:11:38 GMT
expires: Thu, 07 Dec 2023 05:11:38 GMT
cache-control: public, max-age=31536000
age: 88329
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10956017856/?random=1670478226300&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1488053400&rmt_tld=0&ipr=y
142.250.74.132200 OK 73 B URL HTTP/2 www.google.com/pagead/1p-user-list/10956017856/?random=1670478226300&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1488053400&rmt_tld=0&ipr=y
IP 142.250.74.132:0
Hash 46e7592154e747fbe1a3a87c439ddc43
bfab6da7937f8c182a8bef1dfbe0ff9028ad2779
4d21e6275a2df97a2cff4e15aa17790e623ce023d4a45f408623211054888b05
GET /pagead/1p-user-list/10956017856/?random=1670478226300&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1488053400&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10992351212/?random=1670478226486&cv=11&fst=1670475600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&tiba=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&fmt=3&is_vtc=1&random=2705651461&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 05:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Zrrc724fZcA.es5.O/am=zgAg/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrjjq3lI145F-Kwahg787l75Lse14g/m=_b,_tp,_r
142.250.74.35200 OK 57 kB URL HTTP/2 www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Zrrc724fZcA.es5.O/am=zgAg/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrjjq3lI145F-Kwahg787l75Lse14g/m=_b,_tp,_r
IP 142.250.74.35:0
File type ASCII text, with very long lines (563)
Hash a5f767e4cfb597fde0a528372d867630
03b9d07cc7b0abce75cb69787956fd375e550d9b
e038063258ed6fa32c79a47c8652b2429d325aaa872818da46ffe5a33c024319
GET /_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayButtonUi.en_US.Zrrc724fZcA.es5.O/am=zgAg/d=1/excm=_b,_r,_tp,generategooglepaybuttonimage/ed=1/dg=0/wt=2/rs=AMitfrjjq3lI145F-Kwahg787l75Lse14g/m=_b,_tp,_r HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/payments-consumer-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/payments-consumer-boq-js-css-signers"
report-to: {"group":"boq-infra/payments-consumer-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/payments-consumer-boq-js-css-signers"}]}
content-length: 57098
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 18:10:20 GMT
expires: Thu, 07 Dec 2023 18:10:20 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 07 Dec 2022 05:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 41607
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670478227157&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670478227156.56484031&it=1670478226879&coo=false&tm=1&exp=d1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670478227157&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670478227156.56484031&it=1670478226879&coo=false&tm=1&exp=d1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=720837896129507&ev=PageView&dl=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&rl=&if=false&ts=1670478227157&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670478227156.56484031&it=1670478226879&coo=false&tm=1&exp=d1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 08 Dec 2022 05:43:47 GMT
X-Firefox-Spdy: h2
ws.bluesnap.com/servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157
104.18.26.40302 Found 22 kB URL HTTP/2 ws.bluesnap.com/servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157
IP 104.18.26.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (22027)
Hash ed0100030c4e7582d1bb84762048a393
be207a573fb6be74ce14c2687b2cdada93975bf4
4c4c58255280392f5e9f95ac8af1c5ae19d11638705fbeb3e4f3f2eb65191167
GET /servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 08 Dec 2022 05:43:46 GMT
content-type: text/html
location: https://ssl.kaptcha.com/logo.htm?m=700000&s=07b121f575f2935c9d0e46971276f98f
set-cookie: JSESSIONID=E61836C80D9F7941AB475914753BBF75; Path=/; Secure; HttpOnly
TS01e9f3cd=01b5d3bcb9701f4fd6ff665d7fcb799348da69fc8e2253903315884f68de55e7408f30d618309aac93173d46c50f68a9aa45a89ad43ba98e2ae502517143f80c48a6cbced2; Path=/
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77632f745c7bb4f9-OSL
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true
142.250.74.78200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true
IP 142.250.74.78:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1522
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 08 Dec 2022 05:43:47 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: __Secure-ENID=8.SE=ysEse93sxjSdTg3k3TneQNUJtxZ2j7_3yZ51nWUxUcwdJFWN_viZlvWBjOCT2PRdlg2RQlujx8G5uNBTgL8L-ZA3cVnybnI30DTRJs1LwHOmFzCNAolTTqlMC5M-ZHnhkRSesLIe-6LPFNfzSXirN1drBUeRarEIpF2c0OmzLOs; expires=Sun, 07-Jan-2024 22:02:05 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+914; expires=Sat, 07-Dec-2024 05:43:47 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 08 Dec 2022 05:43:47 GMT
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
172.67.38.66200 OK 14 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (2306), with no line terminators
Hash d5dc87648c3ece6fb68b7d401e81502e
28df2692e3bad72373e29a76c100826e0da7aeaa
d30cc57c55ec90eea14e3d777cc9200ecfc53a2140a45d75f9af5dd1ab06a065
GET /_s/v4/app/637ddf31c8f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"9075c2f5460b2832318d3c7217cc68cb"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 72439
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7ccd4db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.kaptcha.com/md
35.81.31.24200 OK 0 B IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 180
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=07b121f575f2935c9d0e46971276f98f
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 6a1b94c0-c4fc-4956-a533-eef6756d4607
Date: Thu, 08 Dec 2022 05:43:47 GMT
Content-Length: 0
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
172.67.38.66200 OK 118 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
IP 172.67.38.66:0
File type ASCII text, with no line terminators
Hash 642cc7fe433730863a2a4aa42c7d6f3f
c05acfe8ca7107d5e8af44f17f607d5c30a58e79
5faae667f7933f5079f0655f81bed6c70f19b4beb872e07fea3e28f17f2efeab
GET /_s/v4/app/637ddf31c8f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
age: 510527
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7ccd4fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
172.67.38.66200 OK 28 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65472)
Hash bc3df91d3c32bdb9a27d98b59dd469b4
247199823137ce197dd761e8bbac0840b5b552ca
502dc1f289a666aaf0374a09a860ed1f5acef85a7f711a022316a10486eb28ab
GET /_s/v4/app/637ddf31c8f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
age: 72439
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7cbd3db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=187010392&tm=gtm002&Ver=2&mid=94d744b7-cb0d-448c-9f1b-1154dc316e9f&sid=49096be076bb11ed85af7f3fffe6252d&vid=4909836076bb11ed83d089a07c4f3299&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=4852&evt=pageLoad&sv=1&rn=153751
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=187010392&tm=gtm002&Ver=2&mid=94d744b7-cb0d-448c-9f1b-1154dc316e9f&sid=49096be076bb11ed85af7f3fffe6252d&vid=4909836076bb11ed83d089a07c4f3299&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=4852&evt=pageLoad&sv=1&rn=153751
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=187010392&tm=gtm002&Ver=2&mid=94d744b7-cb0d-448c-9f1b-1154dc316e9f&sid=49096be076bb11ed85af7f3fffe6252d&vid=4909836076bb11ed83d089a07c4f3299&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Owl%20Vision%202%20Pro%20%E2%80%93%20BestDealToday&p=https%3A%2F%2Fbestdealtoday.org%2Fproduct%2Fowl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing%2F&r=<=4852&evt=pageLoad&sv=1&rn=153751 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0511EBDC6675692C3F4BF9A867806872; domain=.bing.com; expires=Tue, 02-Jan-2024 05:43:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E7E969BE37A34CC2A5A2B74AC95B9446 Ref B: OSL30EDGE0106 Ref C: 2022-12-08T05:43:48Z
date: Thu, 08 Dec 2022 05:43:47 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: daoh-txqJsVjYLpdCKiNKaDVW5NTD0z4BrFZDIuCQF1bwPQ9cAYXJQ==
age: 1269222
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=230448086.1670478226&jid=889576060&gjid=1076044431&_gid=390994796.1670478227&_u=6CDACUIrBAAAACAAIg~&z=1277962423
108.177.14.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=230448086.1670478226&jid=889576060&gjid=1076044431&_gid=390994796.1670478227&_u=6CDACUIrBAAAACAAIg~&z=1277962423
IP 108.177.14.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-243070178-1&cid=230448086.1670478226&jid=889576060&gjid=1076044431&_gid=390994796.1670478227&_u=6CDACUIrBAAAACAAIg~&z=1277962423 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://bestdealtoday.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Dec 2022 05:43:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/187010392.js
13.107.21.200200 OK 1.4 kB URL HTTP/2 bat.bing.com/p/action/187010392.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 5f1bb78ae1bc3037d10bfe1c24a26022
45f0e5d6a09a2a720d537f877b049867b099a939
bb0f0014bc4d149ef009ea202ca979cbcee2108c122f70c6e4579c732698b590
GET /p/action/187010392.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 1447
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=0E837E3877A96D421C6B6C4C765C6CCF; domain=.bing.com; expires=Tue, 02-Jan-2024 05:43:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 390D28E24AB94FADBEAC2E6AE0D66984 Ref B: OSL30EDGE0106 Ref C: 2022-12-08T05:43:48Z
date: Thu, 08 Dec 2022 05:43:47 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js
172.67.38.66200 OK 62 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js
IP 172.67.38.66:0
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 1b9d4fe3400e1ca0992a8ec04ef45736
eb07156c23efae0ff23fd15342c7172b695aa756
7fe62c833644fdbd357bbfd3a17b79c9727b31a1c11a7a2fc7cfc605414dc7ab
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 72439
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7cbd42b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 38ab64c8d5e963bd13caddb191950d94
b2aeb62771557e894a0c7a8e4e46dc13cc4c7f84
d1d95cac0816e3a1ed1fdc7e944029c805cd863e658ba87338436cd66d969cca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 38ab64c8d5e963bd13caddb191950d94
b2aeb62771557e894a0c7a8e4e46dc13cc4c7f84
d1d95cac0816e3a1ed1fdc7e944029c805cd863e658ba87338436cd66d969cca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/api-3/images/powered-by-google-on-white3.png
142.250.74.3200 OK 1.6 kB URL HTTP/2 maps.gstatic.com/mapfiles/api-3/images/powered-by-google-on-white3.png
IP 142.250.74.3:0
File type PNG image data, 120 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash f28a13545ca7be5cd9ea31bdd9ea7f8e
f4f45a59720b9d637b1e7e0ed5783ee84887287f
cd80d0dcb2a44bd30c11fcdf13d4c280f336dad9442ee7da79146f2bb77381a4
GET /mapfiles/api-3/images/powered-by-google-on-white3.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 1616
date: Thu, 08 Dec 2022 05:43:48 GMT
expires: Thu, 08 Dec 2022 05:43:48 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/api-3/images/autocomplete-icons.png
142.250.74.3200 OK 3.4 kB URL HTTP/2 maps.gstatic.com/mapfiles/api-3/images/autocomplete-icons.png
IP 142.250.74.3:0
File type PNG image data, 34 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e9dd969ceb057a228067a1c539127f9
fb2da26959858054157960bb7f8e6c145648eaac
db209390b90b70f4b1ef3540cb581e4ec8edbba21980971b68e4aef5c5d352fb
GET /mapfiles/api-3/images/autocomplete-icons.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 3351
date: Thu, 08 Dec 2022 05:43:48 GMT
expires: Thu, 08 Dec 2022 05:43:48 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 38ab64c8d5e963bd13caddb191950d94
b2aeb62771557e894a0c7a8e4e46dc13cc4c7f84
d1d95cac0816e3a1ed1fdc7e944029c805cd863e658ba87338436cd66d969cca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f9b53af7334f7b8007c7f9fa01509e72
a657e6d9aae73ec69e35b8a91f8519ee89ec8c68
edbe2840f6fb666f01a071939662ef84b2d65c6ed85f62f65736830e51a5d687
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124257
Date: Thu, 08 Dec 2022 05:43:48 GMT
Etag: "6390b060-1d7"
Expires: Fri, 09 Dec 2022 16:14:45 GMT
Last-Modified: Wed, 07 Dec 2022 15:25:20 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3YCggsBmvPX75-vPvMmcv5AZIN3GGpN0MHyi8W2H3y7lRy_4k7fMOA==
Age: 2965
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 085cc15c104f3ac517555c55a4a5470f
dd48fb13f121423c6171b5c71b40b92c0001b360
dd0d9a584b5267ed92ddc73b6034dd6e508d2eb86c8670a3622549b43b8c3a0a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6226
Cache-Control: max-age=136846
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:43:48 GMT
Etag: "6390d4d0-1d7"
Expires: Fri, 09 Dec 2022 19:44:34 GMT
Last-Modified: Wed, 07 Dec 2022 18:00:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ssl.kaptcha.com/collect/sdk?m=700000&s=l15yx_LW0JVtViTzh5h2aTkRt9uv7Bap
35.81.31.24200 OK 5.6 kB URL HTTP/1.1 ssl.kaptcha.com/collect/sdk?m=700000&s=l15yx_LW0JVtViTzh5h2aTkRt9uv7Bap
IP 35.81.31.24:0
File type ASCII text, with very long lines (5410)
Hash 50f146d60dd6354647a49db43968f836
1b7514b50566238b0d3363be7fcf1fbbaf9132e0
0b458d63c87e1613f54d3c67f8c571db78b1056817072f27104c12410bf9d428
GET /collect/sdk?m=700000&s=l15yx_LW0JVtViTzh5h2aTkRt9uv7Bap HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Content-Type: text/javascript
Expires: 0
P3p: CP=CAO PSA OUR
Pragma: no-cache
Set-Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c; Path=/; Expires=Wed, 08 Mar 2023 05:43:49 GMT; HttpOnly; Secure; SameSite=None
X-Correlation-Id: 3279aa0e-c106-41d8-be84-413420c0663b
Date: Thu, 08 Dec 2022 05:43:49 GMT
Transfer-Encoding: chunked
www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
141.226.142.181200 OK 491 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fe7a72485c835c2b2d57e549b144d9f0
bd6fcfb39f8fa4ed78f1d4e25701bbd82ad58854
dc205c5361049ed508d05ccbaef608eca4395b7d01578e8fd29cb2b59f19969e
GET /web-sdk/4.12.2/hpfCvvInput.html HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:08 GMT
ETag: "1eb-5ee0d3a8f3c1b"
Accept-Ranges: bytes
Content-Length: 491
Access-Control-Allow-Origin: *
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Content-Type: text/html
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
141.226.142.181200 OK 497 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 927cf878587d44c8338aeb0452bebf6c
270af5545ec858a3b7b7f1e1b722309571616496
2438e53c7db4fb6acb110c2f5d1bf5e41890b3cccf14e10ab082898a075a405d
GET /web-sdk/4.12.2/hpfExpInput.html HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:08 GMT
ETag: "1f1-5ee0d3a919d7d"
Accept-Ranges: bytes
Content-Length: 497
Access-Control-Allow-Origin: *
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Content-Type: text/html
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
141.226.142.181200 OK 494 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
IP 141.226.142.181:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 65e0a485a34e297e0b33f83a7d9d1ad7
b9ffd5b8f731a5c8c4bc2d0e90faf6deefd3c066
389f42fad1a42ea4af5c71d7e0c6920b564a715426be84e394503adc8832be30
GET /web-sdk/4.12.2/hpfCcnInput.html HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:07 GMT
ETag: "1ee-5ee0d3a8bb5c2"
Accept-Ranges: bytes
Content-Length: 494
Access-Control-Allow-Origin: *
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Content-Type: text/html
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/style/hostedPaymentFields.css
141.226.142.181200 OK 172 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hostedPaymentFields.css
IP 141.226.142.181:0
Hash d55830429b3706e5dcc46a5fb1341892
4f9d20291fb353caedc2489697f7c937636d3478
1e6ca74379f5982edb2752d93776768a161b438dac215822cd86a337c0a6b226
GET /web-sdk/4.12.2/style/hostedPaymentFields.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "115-5ee0d3ae2519e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 172
Keep-Alive: timeout=2, max=79
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/hpf.js
141.226.142.181200 OK 158 kB URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/hpf.js
IP 141.226.142.181:0
File type Unicode text, UTF-8 text, with very long lines (43821), with LF, NEL line terminators
Size 158 kB (157812 bytes)
Hash 43e218e28286242f8b84f61d5f7b32ec
593728b4d8d75953b11578a0c33b49333e679dd0
58a5bcfb571c89b4fcaf635b3c9fad253e8e1df4170c43eb3b1dd8d33e7d7e0a
GET /web-sdk/4.12.2/hpf.js HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Tue, 22 Nov 2022 11:11:08 GMT
ETag: "884e5-5ee0d3a9a38a0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Type: application/javascript
Connection: Keep-Alive
Date: Thu, 08 Dec 2022 05:43:49 GMT
Age: 1646
Content-Length: 157812
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ws.bluesnap.com/servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157
104.18.26.40302 Found 22 kB URL HTTP/2 ws.bluesnap.com/servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157
IP 104.18.26.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (22027)
Hash ed0100030c4e7582d1bb84762048a393
be207a573fb6be74ce14c2687b2cdada93975bf4
4c4c58255280392f5e9f95ac8af1c5ae19d11638705fbeb3e4f3f2eb65191167
GET /servlet/logo.htm?s=07b121f575f2935c9d0e46971276f98f&d=1159157 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 08 Dec 2022 05:43:49 GMT
content-type: text/html
location: https://ssl.kaptcha.com/logo.htm?m=700000&s=07b121f575f2935c9d0e46971276f98f
set-cookie: JSESSIONID=012770B2940C4E3CD3A5D32D37619BE1; Path=/; Secure; HttpOnly
TS01e9f3cd=01b5d3bcb99ef3232d434784c2c2e813b62055147ee17d7ee9847ad4ef5b6c125bdc6a1820f2d4834b4a70eeeae33ad44eb05ee1777d79a3cca27f082395c7ec873039e11f; Path=/
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77632f82be4ab4f9-OSL
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/187010392
13.107.246.53200 OK 1.8 kB URL HTTP/2 www.clarity.ms/tag/uet/187010392
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 4ef73527c5966af92f3ae34e5dcc4e0a
495200cb83f3900704e3c7c249b3a2df4395fff9
f9af54829fadf0133ac2e27aca702c71091d322cc8146c11d80f851bc10ca867
GET /tag/uet/187010392 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=31b70c6170e44680ba79463b9516d9db.20221208.20231208; expires=Fri, 08 Dec 2023 05:43:48 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3f60b293-70d6-4805-b0bb-3484f0a73bf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0lHmRYwAAAADN5bkFGqumTJ9dJOM9OIFdU1ZHMjBFREdFMDUxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 08 Dec 2022 05:43:48 GMT
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.1.229200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Dec 2022 05:43:49 GMT
age: 22624586
x-served-by: cache-fra19156-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash dca06c905bf05eafb3d0293b15b3a131
afa76477b20820e6d348b541201208641d873803
d9175044eb1b9e5d837feeae8da441f4b01b2dd3e13c3658af821b2c11022f56
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "335A8D30FC5B5AD2E683FB8AB620C42A495AA31A"
Expires: Thu, 08 Dec 2022 16:00:00 GMT
Last-Modified: Thu, 08 Dec 2022 04:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2415
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77632f871db30b41-OSL
ssl.kaptcha.com/md
35.81.31.24200 OK 0 B IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 180
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=07b121f575f2935c9d0e46971276f98f
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: ecad1a32-beb9-4999-971b-6f4affb2613b
Date: Thu, 08 Dec 2022 05:43:49 GMT
Content-Length: 0
ssl.kaptcha.com/collect/kasupport
35.81.31.24200 OK 2.1 kB URL HTTP/1.1 ssl.kaptcha.com/collect/kasupport
IP 35.81.31.24:0
File type ASCII text, with very long lines (2078), with no line terminators
Hash bdc0ae2aa452e505d180619787b7ea12
64f1b4a53104644eac87d0a49a9924f9d6aeea8d
e7815906e81affb0ef8a2b1a64f2fe0d29cb6635f4d6af6ff30251da827dd5cd
POST /collect/kasupport HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 43
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 8f1bfffc-c189-4c69-9166-6b5dce083154
Date: Thu, 08 Dec 2022 05:43:49 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardCvvInput.css
141.226.142.181200 OK 226 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardCvvInput.css
IP 141.226.142.181:0
Hash c8ac0833ed76e868732ca2f7802f0402
943c30bb690ea2553cbf789ad16efcf8e0877792
34a9ec5b86fff0bf056b71e16699b3aab05c2c2e172c37b231612e842e7417fb
GET /web-sdk/4.12.2/style/hpfCardCvvInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCvvInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "167-5ee0d3ae4b6ff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 226
Keep-Alive: timeout=2, max=79
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardExpInput.css
141.226.142.181200 OK 181 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardExpInput.css
IP 141.226.142.181:0
Hash 9e14be1612d4f0b7e898f3988684e8cd
ec6eb9399a6445ddbcfb8f30b37b9375af7a32a5
b44059c92afafcaf2ce8988cd80182d5a455836635127f013c27fcfbe600188c
GET /web-sdk/4.12.2/style/hpfCardExpInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "ff-5ee0d3ae71841-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 181
Keep-Alive: timeout=2, max=78
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
songbird.cardinalcommerce.com/edge/v1/songbird.js
198.217.251.250200 OK 138 kB URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/songbird.js
IP 198.217.251.250:0
Size 138 kB (138280 bytes)
Hash 69eda8912a8df0a4c229e8533a2dd074
777e079058b35a344129e82c544639c42fe78a37
c8a187079d1b0fe8fd963c2d4967cc0438b9cf5d2419cfec1548319bed15e822
GET /edge/v1/songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:49 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=14400
cf-bgj: minify
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 1397
expires: Thu, 08 Dec 2022 09:43:49 GMT
set-cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=; path=/; expires=Thu, 08-Dec-22 06:13:49 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OR5Om5IXVi2Pj7v9essL8JlvoQQ5Vkb1u0CG2bopRsR0eM6HVWCEjB5IrWglAiIpLcjVQ8JbptAW%2BpecyMbZsbLBi%2BMJg39OajGwOhJU2ICp9%2BWBtPU6%2BuuhHbKi7borkeZdfS91%2B88NQxU8QIvo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f835af2b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardNumberInput.css
141.226.142.181200 OK 196 B URL HTTP/1.1 www2.bluesnap.com/web-sdk/4.12.2/style/hpfCardNumberInput.css
IP 141.226.142.181:0
Hash 84304b18def08ae64ead4bc8633b92f0
a221df74ec05df9c6de55dd6d46e9f69664d6ff9
7380e4828c67c7da781ebcbf766ee8151899063a7446d9a6cd088607276a1dd3
GET /web-sdk/4.12.2/style/hpfCardNumberInput.css HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfCcnInput.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:43:49 GMT
Last-Modified: Tue, 22 Nov 2022 11:11:13 GMT
ETag: "118-5ee0d3ae9a887-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 196
Keep-Alive: timeout=2, max=79
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ssl.kaptcha.com/collect/cookiestore
35.81.31.24200 OK 0 B URL HTTP/1.1 ssl.kaptcha.com/collect/cookiestore
IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect/cookiestore HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 354
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 19fc7197-bd05-4f8c-ad8c-4fd85f5578c8
Date: Thu, 08 Dec 2022 05:43:49 GMT
Content-Length: 0
vsb83.tawk.to/s/?k=639179953f52a35ac51d40da&cver=0&pop=false&asver=20335&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgiLCJ2aWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgtSVQ4a1lxNFFrVkpfWmh2YTJCVTZxIiwic2lkIjoiNjM5MTc5OTUzZjUyYTM1YWM1MWQ0MGRhIiwiaWF0IjoxNjcwNDc4MjI5LCJleHAiOjE2NzA0ODAwMjksImp0aSI6IlBUT1Q5VkM0U1MtaGxyU3pBUUU0eiJ9.-O1csiq7evl9gp6pagk6tf-E9niMgXiVLPlJT4ZLcBN-Kkg2k_pNSHwPIVTYO8VwjgZYTImUefLbVc7u-bzPAA&EIO=3&transport=websocket&__t=OJmGkpZ
104.22.25.131101 Switching Protocols 4.5 kB URL HTTP/1.1 vsb83.tawk.to/s/?k=639179953f52a35ac51d40da&cver=0&pop=false&asver=20335&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgiLCJ2aWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgtSVQ4a1lxNFFrVkpfWmh2YTJCVTZxIiwic2lkIjoiNjM5MTc5OTUzZjUyYTM1YWM1MWQ0MGRhIiwiaWF0IjoxNjcwNDc4MjI5LCJleHAiOjE2NzA0ODAwMjksImp0aSI6IlBUT1Q5VkM0U1MtaGxyU3pBUUU0eiJ9.-O1csiq7evl9gp6pagk6tf-E9niMgXiVLPlJT4ZLcBN-Kkg2k_pNSHwPIVTYO8VwjgZYTImUefLbVc7u-bzPAA&EIO=3&transport=websocket&__t=OJmGkpZ
IP 104.22.25.131:0
Hash 4d6951f2abe146a74c3d52917ad53ac2
d33741751a816b64d3860c64d9aa8b66e2ce7d69
89f515ea82eceacf6b76adc3e584983413099ebe1d1a421bb6f5e4932781fec3
GET /s/?k=639179953f52a35ac51d40da&cver=0&pop=false&asver=20335&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgiLCJ2aWQiOiI1ZmI3Y2YxMzkyMGZjOTE1NjRjOGZhZTgtSVQ4a1lxNFFrVkpfWmh2YTJCVTZxIiwic2lkIjoiNjM5MTc5OTUzZjUyYTM1YWM1MWQ0MGRhIiwiaWF0IjoxNjcwNDc4MjI5LCJleHAiOjE2NzA0ODAwMjksImp0aSI6IlBUT1Q5VkM0U1MtaGxyU3pBUUU0eiJ9.-O1csiq7evl9gp6pagk6tf-E9niMgXiVLPlJT4ZLcBN-Kkg2k_pNSHwPIVTYO8VwjgZYTImUefLbVc7u-bzPAA&EIO=3&transport=websocket&__t=OJmGkpZ HTTP/1.1
Host: vsb83.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bestdealtoday.org
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vrJcvi0nFjUYSFcpUY3w2w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 08 Dec 2022 05:43:49 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: 0JWImjvWTUCEA9S2VPISrfTCQwc=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 77632f854992b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
c.bing.com/c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&RedC=c.clarity.ms&MXFR=2271FF629313616F2238ED1697136F24
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&RedC=c.clarity.ms&MXFR=2271FF629313616F2238ED1697136F24
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&RedC=c.clarity.ms&MXFR=2271FF629313616F2238ED1697136F24 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestdealtoday.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&MUID=02850A2807F268B43ECC185C06076964
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=02850A2807F268B43ECC185C06076964; domain=c.bing.com; expires=Tue, 02-Jan-2024 05:43:49 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D4742F9676EE46169AF1079822F6851E Ref B: OSL30EDGE0106 Ref C: 2022-12-08T05:43:49Z
date: Thu, 08 Dec 2022 05:43:49 GMT
content-length: 0
X-Firefox-Spdy: h2
www2.bluesnap.com/services/2/tokenized-services/3ds-jwt-v2
141.226.142.181200 200 381 B URL HTTP/1.1 www2.bluesnap.com/services/2/tokenized-services/3ds-jwt-v2
IP 141.226.142.181:0
File type JSON data\012- , ASCII text, with very long lines (458), with no line terminators
Hash 0a2acd56dbcbd270840be2200e48b953
4561fd36b86d39bd1d8f3e22e726da24b027000a
8e22a9b30ec30680a115fc875fbc23619797deca5b75d7dc898d24aabc902223
POST /services/2/tokenized-services/3ds-jwt-v2 HTTP/1.1
Host: www2.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: anonymous
BLUESNAP_VERSION_HEADER: 2.0
BLUESNAP_ORIGIN_VERSION_HEADER: 4.12.2
BLUESNAP_ORIGIN_HEADER: Web SDK - Hosted Payment Fields 4.12.2
Token-Authentication: eyJhbGciOiJIUzI1NiJ9.eyJwYXlsb2FkIjp7ImNvbW1vbkp3dFBheWxvYWQiOnsiaWQiOiI4MTc3ODQ5NzYwNDkwNzUxNzQ3ODkwMSIsImRhdGVDcmVhdGVkIjoxNjcwNDc4MjI1NjkxfSwibWVyY2hhbnRJZCI6MTE1OTE1Nywic2VudHJ5Ijp7Im1lcmNoYW50IjpmYWxzZSwiYXBwcyI6W119fX0.l-15yx_LW0JVtViTzh5h2aTkRt9uv7BapCiNOJRl6Vs._2
Cache-Control: no-cache
Content-Length: 2
Origin: https://www2.bluesnap.com
Connection: keep-alive
Referer: https://www2.bluesnap.com/web-sdk/4.12.2/hpfExpInput.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 200
Date: Thu, 08 Dec 2022 05:43:49 GMT
Set-Cookie: ADRUM_BTa=R:57|g:ece592e3-0bfb-423c-a4cd-c34257bc8d52; Max-Age=30; Expires=Thu, 08-Dec-2022 05:44:19 GMT; Path=/; Secure
ADRUM_BTa=R:57|g:ece592e3-0bfb-423c-a4cd-c34257bc8d52|n:customer1_0b3cbbe7-6355-44e0-99fd-80572741c872; Max-Age=30; Expires=Thu, 08-Dec-2022 05:44:19 GMT; Path=/; Secure
SameSite=None; Max-Age=30; Expires=Thu, 08-Dec-2022 05:44:19 GMT; Path=/; Secure
JSESSIONID=B70F773F03BA4B9B74BAC7999F5FF6AE; Path=/services; Secure; HttpOnly
ADRUM_BT1=R:57|i:46; Max-Age=30; Expires=Thu, 08-Dec-2022 05:44:19 GMT; Path=/; Secure
ADRUM_BT1=R:57|i:46|e:328; Max-Age=30; Expires=Thu, 08-Dec-2022 05:44:19 GMT; Path=/; Secure
TS01ce4ad4=01b5d3bcb9b76b13dcd5a53559f27563441941141d0c38a604ba597f8a0a61776433285b6c11ea43d0308df9d7c29097e52e2f32394f4d269bb6532367936fccaed2117826d41adca5b5b9730de8af46927be07a857b78670ee5198ba171c5a8f3c31be3ce1e0b0850bd078d58cff74a89e40d8014fd666319390143100c2f53b09d40c9c0; Path=/
TS0142b774=01b5d3bcb9286b5b4d033938d487e20ff177043f7c0c38a604ba597f8a0a61776433285b6c1c0c3338edd05ee03a55114fa3ae8ea13a5536e5d7a78eada5ac55470b1dd51d; path=/services
Content-Encoding: gzip
Keep-Alive: timeout=2, max=80
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json
Access-Control-Allow-Origin: https://www2.bluesnap.com
Vary: Accept-Encoding, Origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ssl.kaptcha.com/md
35.81.31.24200 OK 0 B IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /md HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 178
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=l15yx_LW0JVtViTzh5h2aTkRt9uv7Bap
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 6fb7d337-ddb7-4763-8e11-2a4713b8125f
Date: Thu, 08 Dec 2022 05:43:49 GMT
Content-Length: 0
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1672
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://bestdealtoday.org
access-control-allow-credentials: true
date: Thu, 08 Dec 2022 05:43:49 GMT
X-Firefox-Spdy: h2
centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
198.217.251.250200 OK 0 B URL HTTP/2 centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
IP 198.217.251.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /V1/Order/JWT/Init HTTP/1.1
Host: centinelapi.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-cardinal-tid
Referer: https://bestdealtoday.org/
Origin: https://bestdealtoday.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-length: 0
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: https://bestdealtoday.org
access-control-allow-methods: GET,POST,HEAD,OPTIONS
access-control-allow-headers: content-type, x-cardinal-tid
access-control-expose-headers: Access-Control-Allow-Origin
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
strict-transport-security: max-age=15552000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CKLbacI8L9W0o25vXvIWfncrBDUtHMl2wblN%2Bz3qDBsvmV9MdUgTMxdA1CcebuK2SdXhtKDB0r7TrfcVcM9PTTY079%2F%2B8DL8%2BOngP%2BDUVlSoHCt9kP1XSjo%2B9XWvk6FIRgeNC1AjiE3qJLHv7NrHYRHZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: BIGipServerCentinel-Prod-Web-CentinelAPI.app~Centinel-Prod-Web-CentinelAPI_pool=!HD5is/qn/9ZbOFmtg/saPAE4p6Lf+KQnO4z4cAvJlWf0vSvuebnv7G99uEDb+/vbdtqM9388RYoF2Q==; path=/; Httponly; Secure
__cf_bm=LAib_p2Lao96e6AR.akCDrVRAoxPM_SFfj2bG4ixJfs-1670478230-0-AS2aGsIAGPQ/nRrH0fTRum9fCXsc10xFCh478Dv8EqM3OgY8PxGfiMkkEqWa9cEWW4IZpjXma3qaNYHL+r5nuyo=; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
__cflb=0H28vfjo6DQQsJ1UPaWE4t52HJ2dQUsdgPSMD9cCbQh; SameSite=Lax; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; HttpOnly
server: cloudflare
cf-ray: 77632f8a59ea0b02-OSL
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&MUID=02850A2807F268B43ECC185C06076964
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&MUID=02850A2807F268B43ECC185C06076964
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=6D6BDD5C8B1D4A41BDDB40D765B49F43&MUID=02850A2807F268B43ECC185C06076964 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestdealtoday.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 08-Dec-2022 05:53:50 GMT; path=/; SameSite=None; Secure;
date: Thu, 08 Dec 2022 05:43:49 GMT
content-length: 42
X-Firefox-Spdy: h2
geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
198.217.251.250200 OK 1.2 kB URL HTTP/2 geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
IP 198.217.251.250:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 51884b6130f65f6a9e9a5a106c3c1eee
7a839a5cf68726467fda3e9de22ae47561008387
14cf9c86fe52e5e1f2b046e0c3e8acf06ec695c45aba10be55c8e09e7251cb92
GET /DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird HTTP/1.1
Host: geo.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: text/html;charset=ISO-8859-1
content-length: 1165
p3p: CP="This site does not have a p3p policy."
vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
content-language: en-US
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v2IP1VkHeQIVSq309E1x1hUlIS2KJQ9a2Zw%2B60rcsAcGEoc0MN6j1lffWz4ltax8xpRMsraZFNP48%2FlgRJeOsy1PEpE8kwhaaPkXu%2FTDIBAe1Tywo3onYBvYV1OkdKDd6R2NPvuainK8YA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: BIGipServerPortal-Prod-Web-DeviceFingerprintWeb.app~Portal-Prod-Web-DeviceFingerprintWeb_pool=!jEUI5OomDo5aJPqtg/saPAE4p6Lf+BEYjrMBWUgLFTVzaBcbbOmxVOrMw21oONcdoC/tnGWF+flX; path=/; Httponly; Secure
TS0132de8b=01d4b443a94f201bf085e6271dd7819e0b6a862b4a8fdd1ecf814bbeda751430a2d25046d31d18f7e3aeb1b3e6df42b498ab28b3d89aac21d4260009402aadf5fa9b3bb445; Path=/; Secure; HTTPOnly
__cflb=04dToTTyaa62t9Vzit2kwtCokxTnjyqNySe2dje6ay; SameSite=Lax; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; HttpOnly
__cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230; path=/; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77632f8c694fb4f3-OSL
X-Firefox-Spdy: h2
geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/profiler.min.js
198.217.251.250200 OK 5.2 kB URL HTTP/2 geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/profiler.min.js
IP 198.217.251.250:0
File type ASCII text, with very long lines (12751), with no line terminators
Hash 4349ea90313d29be9be44a342f39cd89
fe3ac58e0aa64bae099a4d7effb19bfe39077e96
674939e4f76fbad692c4b2c46b19f1ffc594f6a1aecc6444be691c859a89a1ae
GET /DeviceFingerprintWeb/includes/js/profiler.min.js HTTP/1.1
Host: geo.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
Cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=; __cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript
content-length: 5158
p3p: CP="This site does not have a p3p policy."
vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
last-modified: Wed, 26 Oct 2022 19:21:30 GMT
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: HIT
age: 5575
expires: Thu, 08 Dec 2022 09:43:50 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jrbea86djoLctJtpfXg8wmIe09lhZKD2vTBb0%2FSxE56injA6mV5KVwjG9OsL%2BXKO68Grlt5iL%2BYV7flKk4K5eMKIeoRw17fBMwMxoULDpEChdgXGSIC1FtX%2BiaSAAWeVcE%2BM6UbwyO0HZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f8dea65b4f3-OSL
X-Firefox-Spdy: h2
geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/6d028a6f5c5c7a8f8dbd924b0fc274afbf37412e.min.js
198.217.251.250200 OK 13 kB URL HTTP/2 geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/6d028a6f5c5c7a8f8dbd924b0fc274afbf37412e.min.js
IP 198.217.251.250:0
File type ASCII text, with very long lines (32212), with CRLF line terminators
Hash b89c2871109172244dff4b04ccd8409a
5d31e6088182718e58d8358b9b2c42d481e3c854
a429e3970f82ad7bdf109e75869490f404e4bdb0acc898aae924bbcc616723b7
GET /DeviceFingerprintWeb/includes/js/6d028a6f5c5c7a8f8dbd924b0fc274afbf37412e.min.js HTTP/1.1
Host: geo.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
Cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=; __cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript
content-length: 13047
p3p: CP="This site does not have a p3p policy."
vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
last-modified: Wed, 26 Oct 2022 19:21:14 GMT
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: HIT
age: 2762
expires: Thu, 08 Dec 2022 09:43:50 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ThLLECQBWJkFUUu%2F8ITaj29Br7PeKkdI08KAaFj8iGCS4yMsblmXPcrqMUC%2F6SmNL%2BtpE%2F%2B%2Bvuu70bhNcPmYktKk88uxqDHwmWS%2F4KlepMl%2BtdAgq%2BbnMNtjYZMHn1aBaX5otyJtjd0iqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f8dda62b4f3-OSL
X-Firefox-Spdy: h2
geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/acsprofiler.min.js
198.217.251.250200 OK 16 kB URL HTTP/2 geo.cardinalcommerce.com/DeviceFingerprintWeb/includes/js/acsprofiler.min.js
IP 198.217.251.250:0
Hash 8dedcdb8d44b182de317dd4a8f9f88ad
9e1d8149760fc922926332a08918664581138aca
6275792573823278f8c551449aa3c196547e01c63de4c71e62470468f90c4b47
GET /DeviceFingerprintWeb/includes/js/acsprofiler.min.js HTTP/1.1
Host: geo.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
Cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=; __cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript
content-length: 2051
p3p: CP="This site does not have a p3p policy."
vary: accept-encoding,origin,access-control-request-headers,access-control-request-method,accept-encoding
last-modified: Wed, 26 Oct 2022 19:21:34 GMT
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: HIT
age: 4101
expires: Thu, 08 Dec 2022 09:43:50 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kTsPQTSlZBnUH8r7MKVO%2FR8L0irRLtgJHkmIBjYnk2MKH50Te3AXkNHI5XyLQXk3pw9DVzzNSxR96Ic8PzRMTGZlOm4VTMBkSZwzVSoMaGtUrnDhKhcx3ok4HQLz6mxDlGcim8zGoziN1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f8dea68b4f3-OSL
X-Firefox-Spdy: h2
centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
198.217.251.250200 OK 29 kB URL HTTP/2 centinelapi.cardinalcommerce.com/V1/Order/JWT/Init
IP 198.217.251.250:0
Hash 39caa91ff5b242d4d2f520c67399adef
98409821d8f6150aaf281f498b90aacfc90cc4ee
cee00b0a100012dcae522640eb12720e41235c889d14dad4ce51338ad04d355d
POST /V1/Order/JWT/Init HTTP/1.1
Host: centinelapi.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
X-Cardinal-Tid: Tid-73fb7b3c-68e3-48f1-b210-f90d3103e0cb
Content-Length: 843
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: text/plain
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers, Accept-Encoding
access-control-allow-origin: https://bestdealtoday.org
access-control-expose-headers: Access-Control-Allow-Origin
access-control-allow-credentials: true
strict-transport-security: max-age=15552000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2BLl6rQtqLhxsdPS2L%2F%2BQvANSKzQo06KWJaLTDLyD%2FAZE2CMQT1qERZtu76LlKXxoj3TTBwYW6ss0hQcFbx7iVZhEjWmWXEO%2Ff0C1CnnRD%2FhJbnRX4wQnvo%2BtfCOYDpwHIDhSJD3GdV6s1i2sfAu7cJl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: BIGipServerCentinel-Prod-Web-CentinelAPI.app~Centinel-Prod-Web-CentinelAPI_pool=!OfYABD60tm4VP/Gtg/saPAE4p6Lf+Nx6lIZd1cFQgvfEnAQqdYaWSAdtSfA+3z3JYueLun8J+4F2qPk=; path=/; Httponly; Secure
__cf_bm=74Q5JP6shPi9xdOA3pAhfQmCoQJhMhaeAEx8TyFQnRk-1670478230-0-AVB9oPpWZDQvrwSE0xY2V8sm7dbWDDcTuKYDHoYLUOEVgHg5uzIEkTgXU34vNYOzUce14ncUmGGwy0lZjVzJciY=; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
__cflb=0H28vfjo6DQQsJ1UPaWE4t52HJ2dQUsdgPSMD9cCbQh; SameSite=Lax; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; HttpOnly
__cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230; path=/; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77632f8b2a3f0b02-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/json3/3.3.2/json3.min.js
104.17.25.14200 OK 3.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/json3/3.3.2/json3.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (528)
Hash 8cf07c15c682c72df6752a6d794e6fa1
b58bde5c794abb2aad7c914060a0266b2e77dd28
9882c96337e88bc03b88e79b8cafa50ded8fec4d4b1c017e8920c79819e2dc76
GET /ajax/libs/json3/3.3.2/json3.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://geo.cardinalcommerce.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 3209
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec9-1fd1"
last-modified: Mon, 04 May 2020 16:11:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1323541
expires: Tue, 28 Nov 2023 05:43:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dEB923jnXFwITLMz282k6t2YhOB7FzwTdY3AriHLIbee7W%2B6qXRP0m7zNKIWiAdjvbQy4PNR4CJLTkj2fchSZJQKoFFhSI4%2BdQkEaR%2Fjgd0bIes%2BzIft%2B3vnoz3jtrXZQwUj0f69"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77632f8e0c321c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 224142
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://bestdealtoday.org
access-control-allow-credentials: true
date: Thu, 08 Dec 2022 05:43:50 GMT
X-Firefox-Spdy: h2
geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/SaveBrowserData
198.217.251.250200 OK 0 B URL HTTP/2 geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/SaveBrowserData
IP 198.217.251.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /DeviceFingerprintWeb/V2/Browser/SaveBrowserData HTTP/1.1
Host: geo.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 1165
Origin: https://geo.cardinalcommerce.com
Connection: keep-alive
Referer: https://geo.cardinalcommerce.com/DeviceFingerprintWeb/V2/Browser/Render?threatmetrix=true&alias=Default&orgUnitId=61dc1e9659275d49e34a91d8&tmEventType=PAYMENT&referenceId=d34d5da0-29ed-44ae-a0a5-bdfd53070276&geolocation=false&origin=Songbird
Cookie: __cf_bm=eDajpx6iMw55JJEu1wTrj8KYRqEyDMIqs933NwnYQNY-1670478229-0-AcNnU98LgVtko8uOHvuY7hqEo8pDl6w5SOLh/3Na5c+A+E2QcMLXKLgXoKCq61rU03hIPx9+dzSlB4aonpuhDLE=; __cfruid=d2342f1ab740f8c62e54c656b9bb32d887da170c-1670478230
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: text/plain
content-length: 0
adrum_0: g:d8beea63-95a3-4167-b0a2-a0b364f9a7e9
adrum_1: n:cardinalcommerce-prod_93ff2f8d-3ce1-43f8-8827-3466b84b528c
p3p: CP="This site does not have a p3p policy."
adrum_2: i:4192963
adrum_3: e:13
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://geo.cardinalcommerce.com
access-control-expose-headers: Access-Control-Allow-Origin
access-control-allow-credentials: true
adrum_4: d:10
strict-transport-security: max-age=15552000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jfb7T%2FRTj4jLeeTKWbFtk1HnBrQH%2BArdFdhTS5BgywZxz56uLRH2do%2F3FX7wL8x7ywV4KQeubSZNL9QeHEVXyT9Grrl%2BkA2lfPM%2FjMgY590JgpUggpzjmbK4CaIMVrRy0K25srmuyCqL4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: BIGipServerPortal-Prod-Web-DeviceFingerprintWeb.app~Portal-Prod-Web-DeviceFingerprintWeb_pool=!z36ks3dkJe2KZtatg/saPAE4p6Lf+DD5hlStbN6zXijl/s4qmFSxvvd7vykiRBH5cS8bBU+N40ju; path=/; Httponly; Secure
TS0132de8b=01d4b443a93edbf125ca71b16588ede4518c61623fe4b84d6ec6fc4badd9015dbe1d60d8b4bbbcfd3b33f51dd113b5f214b4b1cf9b2d49d0574f89a30334c6fdbf62d60f2d; Path=/; Secure; HTTPOnly
__cflb=04dToTTyaa62t9Vzit2kwtCokxTnjyqNySe2dje6ay; SameSite=Lax; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; HttpOnly
server: cloudflare
cf-ray: 77632f8e7acab4f3-OSL
X-Firefox-Spdy: h2
writer.cardinalcommerce.com/prod/log
198.217.251.250200 OK 0 B URL HTTP/2 writer.cardinalcommerce.com/prod/log
IP 198.217.251.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /prod/log HTTP/1.1
Host: writer.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-cardinal-tid
Referer: https://bestdealtoday.org/
Origin: https://bestdealtoday.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:51 GMT
content-type: application/json
content-length: 0
x-amzn-requestid: bfa76aa9-c473-4b3f-ac55-787404be2230
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token,X-Cardinal-Tid
x-amz-apigw-id: cz_vqFkUIAMFrLA=
access-control-allow-methods: POST,OPTIONS
x-amzn-trace-id: Root=1-63917997-64b011ff782b98375a56c211
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x_eEjG_E5ObYiQ0NIMaD5nwyyN6xFUWylX6MFaG3NJ_rCkOSKtSEpg==
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=.mPS11Ge5uLWIL2Drqlu.ysT6aF1WlVv6tvNdy982vw-1670478231-0-AUcSGn+4S8kTHyjWvpUDYi9vSEI3Rwp+rGogFYUqhqbeZvG+ze9IE48ifG64Mo0+bICH9JNnP5LnGPGYxwuuQsA=; path=/; expires=Thu, 08-Dec-22 06:13:51 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jbjje2TuiLptKfi2Kig5gDLpv%2BA1nub%2BOVnMx3Ohz%2BCLPHD3ExF7JiDW%2B5mA5Y9%2FdPxtlj5srFGAaRhXA8FFawlxupNgX9TezFCuESKjKsAVOt6z4dUqly4Q2uDEB1G14ZEao9WA1OL%2FADV0TA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f8fbc7e0b02-OSL
X-Firefox-Spdy: h2
writer.cardinalcommerce.com/prod/log
198.217.251.250200 OK 15 B URL HTTP/2 writer.cardinalcommerce.com/prod/log
IP 198.217.251.250:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST /prod/log HTTP/1.1
Host: writer.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
X-Cardinal-Tid: Tid-73fb7b3c-68e3-48f1-b210-f90d3103e0cb
Content-Length: 2350
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:51 GMT
content-type: application/json
content-length: 15
x-amzn-requestid: d606011b-b1f4-47de-a7e9-79c4d9a46fbf
access-control-allow-origin: *
x-amz-apigw-id: cz_vrHPbIAMFrww=
x-amzn-trace-id: Root=1-63917997-7687efae6773438d30e9ebed
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lsO2ymiNxFHICkvX8n_wfH60B9uChzlGi9hOIuBhSPs5QaF4X6mubw==
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qS6ACw8a39Jlj4JswfV7gyDUPKuoqEKHBK%2F9NvX%2BDPMofHczHEyssVz1Gd%2Bq4IhICkyEUNWtqemnMTuD2SpUHB%2FWJ0oZDXtzQENgh71pvYd%2BcieBaPOpeVndGtrGRF%2BgMvJnjYDsyToXSL2KWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=KEKIfxDxCJyrzz4HlFno5l9V69WjhlH_guXv8cULilk-1670478231-0-AflhWXV2TtyoQfa4E4GZYzRh5zX0CeHYzu+w6/MOlrHLzJ6Lt5RRxxgPKAmjItD7KefkRVXUHlCLRO1Z0hELsWA=; path=/; expires=Thu, 08-Dec-22 06:13:51 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
__cfruid=403818f0a934e32ea5550585ff3999cd4d6a1502-1670478231; path=/; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77632f91bd900b02-OSL
X-Firefox-Spdy: h2
ssl.kaptcha.com/fin
35.81.31.24200 OK 0 B IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fin HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=07b121f575f2935c9d0e46971276f98f
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 6fe42bdf-9700-4670-8e09-6b888f531d1d
Date: Thu, 08 Dec 2022 05:43:51 GMT
Content-Length: 0
ssl.kaptcha.com/fin
35.81.31.24200 OK 0 B IP 35.81.31.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fin HTTP/1.1
Host: ssl.kaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: https://ssl.kaptcha.com
Connection: keep-alive
Referer: https://ssl.kaptcha.com/logo.htm?m=700000&s=l15yx_LW0JVtViTzh5h2aTkRt9uv7Bap
Cookie: k=16c93f7b3c854f1bad5fb39a0a82257c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate, private
Expires: 0
Pragma: no-cache
X-Correlation-Id: 8d4bd615-9207-430c-9da0-44b9b4f1fde6
Date: Thu, 08 Dec 2022 05:43:51 GMT
Content-Length: 0
fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
IP 142.250.74.74:0
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 05:43:46 GMT
date: Thu, 08 Dec 2022 05:43:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/config.js?sdkid=C1LC099T0U322RQQ5D1G&hostname=bestdealtoday.org HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221208054346E966CF825C946C6D230E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60642358453917ac4cf8f3e6b1230f51ccae615a030c3450a40365cf2be1568947d9d2f24ab81e4a68913891cdab93db607245cfa6713cc03fc10e41d846c3c0457ab26038425d611efd6fbbee36f0b238
content-encoding: gzip
x-origin-response-time: 5,184.51.101.131
x-akamai-request-id: 923096f6.e33cbbd
expires: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 05:43:47 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IcQ7leK6wKF2u9tm194uxQ98ty; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-51-101-131.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=5, inner; dur=2
x-parent-response-time: 102,23.36.79.13
X-Firefox-Spdy: h2
pay.google.com/gp/p/ui/payframe?origin=https%3A%2F%2Fbestdealtoday.org&mid=
74.125.131.92200 OK 0 B URL HTTP/2 pay.google.com/gp/p/ui/payframe?origin=https%3A%2F%2Fbestdealtoday.org&mid=
IP 74.125.131.92:0
GET /gp/p/ui/payframe?origin=https%3A%2F%2Fbestdealtoday.org&mid= HTTP/1.1
Host: pay.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
expires: Thu, 08 Dec 2022 05:43:47 GMT
date: Thu, 08 Dec 2022 05:43:47 GMT
cache-control: private, max-age=3600
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport, script-src 'nonce-_X-HBqNqtmdw1i4zbnT6Bg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: same-site
cross-origin-opener-policy: same-origin; report-to="InstantbuyFrontendBuyflowPayframeUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"InstantbuyFrontendBuyflowPayframeUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/InstantbuyFrontendBuyflowPayframeUi/external"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=JGWEwgIyQZG3H7Gsd5sLIcInieP1ekRt7nMT8Mseq2-hndgDZRkr5p2x-j46-pOo3yPCzA5BcPF3ZO9NmFB-bGQ5EL8W37HH9xuzvABJFlbaYHw4zDUCbTh_RknnvfjeEKmhMAq2rgnLBzNyOAGBHvoiFbzuaixNvCdPu45vJ7U; expires=Fri, 09-Jun-2023 05:43:47 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
104.18.185.50200 OK 0 B URL HTTP/2 bestdealtoday.org/product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/
IP 104.18.185.50:0
GET /product/owl-vision-nigh-vision-binoculars-goggles-scope-hunting-fishing/ HTTP/1.1
Host: bestdealtoday.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=NOK; wmc_current_currency_old=NOK; PHPSESSID=b99791ad0993e5a61913a1e4477e2191; affiliate_for_woocommerce=214; afwc_campaign=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
link: <https://bestdealtoday.org/wp-json/>; rel="https://api.w.org/", <https://bestdealtoday.org/wp-json/wp/v2/product/83258>; rel="alternate"; type="application/json", <https://bestdealtoday.org/?p=83258>; rel=shortlink
cache-control: public, max-age=0, s-maxage=2592000
cf-cache-status: BYPASS
set-cookie: wmc_current_currency=NOK; expires=Fri, 09-Dec-2022 05:43:45 GMT; Max-Age=86400; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_b26ed3070a515dbeb66e9dbc3581e6%7C%7C1670651024%7C%7C1670647424%7C%7C1242fcd7f933a37540c643fe8b4694cd; expires=Sat, 10-Dec-2022 05:43:44 GMT; Max-Age=172799; path=/; secure; HttpOnly
wcct-ever-cookie=%7B%22c%22%3A%2242%22%2C%22s%22%3A%221661556087%22%2C%22t%22%3A%221687477887%22%7D; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16999662; path=/; secure; HttpOnly
wcct-ever-cookie-hash=5f1f65842516e9f4fecbcac4c6bd3138; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16999662; path=/; secure; HttpOnly
wcct-ever-cookie-last=%7B%22c%22%3A%2242%22%2C%22s%22%3A%221661556087%22%2C%22t%22%3A%221687477887%22%7D; expires=Thu, 22-Jun-2023 23:51:27 GMT; Max-Age=16999662; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=48409d1b832eae4b8fdb109180f9609e; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_b26ed3070a515dbeb66e9dbc3581e6%7C%7C1670651024%7C%7C1670647424%7C%7C1242fcd7f933a37540c643fe8b4694cd; expires=Sat, 10-Dec-2022 05:43:44 GMT; Max-Age=172799; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=9dd14916607e80fa501a66c2832ab533; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_b26ed3070a515dbeb66e9dbc3581e6%7C%7C1670651024%7C%7C1670647424%7C%7C1242fcd7f933a37540c643fe8b4694cd; expires=Sat, 10-Dec-2022 05:43:44 GMT; Max-Age=172799; path=/; secure; HttpOnly
woocommerce_items_in_cart=1; path=/
woocommerce_cart_hash=9dd14916607e80fa501a66c2832ab533; path=/
wp_woocommerce_session_61fc19769602707b6391e68282f30233=t_b26ed3070a515dbeb66e9dbc3581e6%7C%7C1670651024%7C%7C1670647424%7C%7C1242fcd7f933a37540c643fe8b4694cd; expires=Sat, 10-Dec-2022 05:43:44 GMT; Max-Age=172799; path=/; secure; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 77632f66bec5b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ws.bluesnap.com/web-sdk/4/bluesnap.js?ver=4.0
104.18.26.40200 OK 0 B URL HTTP/2 ws.bluesnap.com/web-sdk/4/bluesnap.js?ver=4.0
IP 104.18.26.40:0
GET /web-sdk/4/bluesnap.js?ver=4.0 HTTP/1.1
Host: ws.bluesnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:46 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 11:11:21 GMT
etag: W/"67fd1-5ee0d3b589708-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=31536000 ; includeSubDomains
cf-cache-status: HIT
expires: Thu, 08 Dec 2022 09:43:46 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 77632f730b67b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 72439
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7cbd3cb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/3266006/visit-data?sv=5
34.254.47.228200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/3266006/visit-data?sv=5
IP 34.254.47.228:0
POST /api/v2/client/sites/3266006/visit-data?sv=5 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:48 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js
198.217.251.250200 OK 0 B URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js
IP 198.217.251.250:0
GET /edge/v1/597f4104d311c33d4189/12.597f4104d311c33d4189.songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=15552000
cf-bgj: minify
cf-polished: origSize=23843
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 40868
expires: Tue, 06 Jun 2023 05:43:50 GMT
set-cookie: __cf_bm=TWMPFs8TfvEUIR1RqQ64eQ1J7EqqMmEi24DatAt0XUM-1670478230-0-ASyOCKs42y8DID/Y9ByQH/Sf1/zyVLqCIuPQKfHJwjfTJ9xy7oBBiYPqXD5Dq6d4HDkids/mKmpc4nG4F1OtujM=; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VE72RV5FIzg3nOJ5bw3%2FUhyEwwykhc5K8HFxPJozpFhUDHwt5dODfZXy5MDM7emeqYur4DaRLr%2FsanWDCEVfQXEwWw%2BcRUMYDIBczDOO37YbuzanqDOBzWBK6NYnQcTL98RNqHLQmtTeTOGvGkHU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f89b9b10b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-common.js
IP 172.67.38.66:0
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:47 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"bde99510bdf9ab7bbc9ce82519a19a36"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 72439
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77632f7ccd45b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js
198.217.251.250200 OK 0 B URL HTTP/2 songbird.cardinalcommerce.com/edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js
IP 198.217.251.250:0
GET /edge/v1/597f4104d311c33d4189/11.597f4104d311c33d4189.songbird.js HTTP/1.1
Host: songbird.cardinalcommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bestdealtoday.org
Connection: keep-alive
Referer: https://bestdealtoday.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:43:50 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: public, max-age=15552000
cf-bgj: minify
etag: W/"0f522ada62dd81:0"
last-modified: Tue, 01 Mar 2022 19:58:10 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding
cf-cache-status: HIT
age: 66912
expires: Tue, 06 Jun 2023 05:43:50 GMT
set-cookie: __cf_bm=n3FgR7HpOCaEnw7e9vGJRU2cmndveOLoUCeiOxKpuKw-1670478230-0-AUl4ErnKAUDinI4nhH9YT82g6iXGtGgkzd+SP8QWrDClVLVlKORmK1GJOtN2ZiGUUsS0EXe5dojvZho/sFnTZdw=; path=/; expires=Thu, 08-Dec-22 06:13:50 GMT; domain=.cardinalcommerce.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RJVHHDkmjT%2Bc0gn0xFcBosYb%2BNdunDDw%2BgCpmqvi7iAw2XNH7oJh6JHgX5QIXH64voc2hJrrfE%2Fsom0fYUJMov0QoPSkdWmbvRUlJxlRpEmWmBZaLghop5N7BCxl6BfAev8vHADw7Tf36JVX0qJV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77632f8c3ac70b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2