r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 111c8a4d6ad583c6126cfa9c4648851f
7bb69828eadedd57e2eb57f0612e0208bde3fcc7
44c24f6c3c0470e5b2112f9089eef8029a4f80dc966eacee001841b08e59cb79
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44C24F6C3C0470E5B2112F9089EEF8029A4F80DC966EACEE001841B08E59CB79"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9195
Expires: Tue, 14 Feb 2023 11:28:41 GMT
Date: Tue, 14 Feb 2023 08:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b39c3955aa73765d5c9cbe0d4c52f83
b13bf774f0189207d90d846b86b68fcf2f64f868
f6fea261b800d26e329ced17006c9f5d10b6c490dac3b2276cc7b0e2aa38316c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6FEA261B800D26E329CED17006C9F5D10B6C490DAC3B2276CC7B0E2AA38316C"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2636
Expires: Tue, 14 Feb 2023 09:39:22 GMT
Date: Tue, 14 Feb 2023 08:55:26 GMT
Connection: keep-alive
www.linkbux.com/track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181
302 Found 154 B URL HTTP/1.1 www.linkbux.com/track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 14 Feb 2023 08:55:26 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: https://www.linkbux.com/track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181
Via: HTTP/1.1 SLB.69
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 14 Feb 2023 08:49:03 GMT
content-type: application/json
age: 383
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b95b930615e89adacbb0cba6ac43288b
257c13545fd3903ece587963bae0c90935ea9bf9
a129cf843807feff42f74c16f73d3e770b143b8f501969694fc4f158bc3e8ba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A129CF843807FEFF42F74C16F73D3E770B143B8F501969694FC4F158BC3E8BA4"
Last-Modified: Sat, 11 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8542
Expires: Tue, 14 Feb 2023 11:17:48 GMT
Date: Tue, 14 Feb 2023 08:55:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QT6QhpQyN2WwatV5yBBs5eaE+VnLE1dohQugB5V13l3I1sZD87lub1DoDYdYco8B8SjrF+cBPXA=
x-amz-request-id: A5QNK25H74CT49JB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 14 Feb 2023 08:48:27 GMT
age: 419
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Feb 2023 08:55:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 14 Feb 2023 08:14:53 GMT
age: 2433
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 07d48e9dfec32c7826a0ae0d7bf37047
6cb3a01b5cc934f070bd363abe0acc6856412f40
e7094b2dfa67bad54e8a075146d0c62026c573560fe359ee1869b5727eb03145
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7094B2DFA67BAD54E8A075146D0C62026C573560FE359EE1869B5727EB03145"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3323
Expires: Tue, 14 Feb 2023 09:50:50 GMT
Date: Tue, 14 Feb 2023 08:55:27 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 727 B IP
Hash 4c17a817bd60509ea8f02667c7d3f277
ea737dfdf4f9fbb149419989b9a534915deec6a7
8f97ae54ca23cd848b693cbb6bb896f6292671ca8d6f4d9dcbf49a42b552a501
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6168
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:26 GMT
Etag: "63ead09e-2d7"
Last-Modified: Tue, 14 Feb 2023 07:12:38 GMT
Server: ECS (amb/6BB6)
X-Cache: HIT
Content-Length: 727
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c3YnT2r5ae3koWYNw6cgBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OZVczNKdY8CxONOUNjMH3JT+lGU=
ocsp.digicert.com/
200 OK 278 B IP
Hash f25a01f31b62e63c66d966b12c8621a3
5f7432f53b78f125de1a0670a012e042d93019c5
b2aad3cb6264afa5e02fe179cf5c97af6135aae54fee623592c327a9c21e3d31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2165
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:27 GMT
Etag: "63eac9a2-116"
Last-Modified: Tue, 14 Feb 2023 08:19:22 GMT
Server: ECS (amb/6B80)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 279 B IP
Hash b8fee908a5db2d05866db3ae97ca5588
b7e4f36e6c6cbd2fc8cea474756cf95d4008e478
3d985698305df22cd1550db665193bed24ecb6a8a2a0a9df01a0f189f0d204a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3457
Cache-Control: max-age=150288
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:27 GMT
Etag: "63eae70e-117"
Expires: Thu, 16 Feb 2023 02:40:15 GMT
Last-Modified: Tue, 14 Feb 2023 01:42:38 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0a2eddab3cac98e7c6a192ac53a18750
828b22a53c52b9fd66ec219ce2f7799b08babb9e
270a503b708f6586b67e40dec501591cec3c39694c1b8214983573eaa687928f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "270A503B708F6586B67E40DEC501591CEC3C39694C1B8214983573EAA687928F"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Tue, 14 Feb 2023 11:05:46 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d42a01fdf9af7a50d630c42fde100d30
a7568d35657f934220298ca4c2fb102398554196
f215d87cad50e9310bf2a4df263b24e1c87e7cda29e48f93f6b0d76eb218ab1d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F215D87CAD50E9310BF2A4DF263B24E1C87E7CDA29E48F93F6B0D76EB218AB1D"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18917
Expires: Tue, 14 Feb 2023 14:10:45 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0a2eddab3cac98e7c6a192ac53a18750
828b22a53c52b9fd66ec219ce2f7799b08babb9e
270a503b708f6586b67e40dec501591cec3c39694c1b8214983573eaa687928f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "270A503B708F6586B67E40DEC501591CEC3C39694C1B8214983573EAA687928F"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Tue, 14 Feb 2023 11:05:46 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d42a01fdf9af7a50d630c42fde100d30
a7568d35657f934220298ca4c2fb102398554196
f215d87cad50e9310bf2a4df263b24e1c87e7cda29e48f93f6b0d76eb218ab1d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F215D87CAD50E9310BF2A4DF263B24E1C87E7CDA29E48F93F6B0D76EB218AB1D"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18917
Expires: Tue, 14 Feb 2023 14:10:45 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d42a01fdf9af7a50d630c42fde100d30
a7568d35657f934220298ca4c2fb102398554196
f215d87cad50e9310bf2a4df263b24e1c87e7cda29e48f93f6b0d76eb218ab1d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F215D87CAD50E9310BF2A4DF263B24E1C87E7CDA29E48F93F6B0D76EB218AB1D"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18917
Expires: Tue, 14 Feb 2023 14:10:45 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d42a01fdf9af7a50d630c42fde100d30
a7568d35657f934220298ca4c2fb102398554196
f215d87cad50e9310bf2a4df263b24e1c87e7cda29e48f93f6b0d76eb218ab1d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F215D87CAD50E9310BF2A4DF263B24E1C87E7CDA29E48F93F6B0D76EB218AB1D"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18917
Expires: Tue, 14 Feb 2023 14:10:45 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F318ff2b9-f4f9-4c7a-81df-9e4b1f2674dd.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F318ff2b9-f4f9-4c7a-81df-9e4b1f2674dd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f36dc9974ff642bd2d59215b566e9b48
3a8baa33c526c25a0eb42a3a777cf38eeb01b25c
90868802014325116787331c121e74d0a9550d0f2b309801ffa66160fa810cde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F318ff2b9-f4f9-4c7a-81df-9e4b1f2674dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 17e77e17-627f-4070-848a-e2fba60ca596
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ATAtHGmBIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaae53-6958c09576c288a3308a3aab;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSsnNIzDqHxB_RtWCxFsNxJHHcS5jAJsGA_SoSdFGCv183aBgKSSEg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:17:30 GMT
age: 38278
etag: "3a8baa33c526c25a0eb42a3a777cf38eeb01b25c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8526505043a5b3a1a8a3e86f80dd796
121031f827508bc441ab34387ffdf9bf878c43a9
70e9f640c8339aea888ceea9fd2ef74fa2c3ea210f69fa22442155dca61a799e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10635
x-amzn-requestid: 98a6b744-d08f-4e53-a0b0-735b336c8513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zjG9boAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace3-5d86345a4ee7009e61291369;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KJ56reDkEbXg0bE7sE4pB1n7Lkn1nLiKblbKM9aFYCow4tpHrIqGnw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:31:33 GMT
etag: "121031f827508bc441ab34387ffdf9bf878c43a9"
content-type: image/jpeg
age: 37435
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17704
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg
200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4976933e30a4a44e68d08c00ffae17d1
70a5fda7f3515776a08d7063619eb4a8a61efba0
4adeae7a16af1167e6ffab1beab81feaec2dbdc0c90e5beb081c7bfcea0e5443
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2360
x-amzn-requestid: f2e6dc22-444c-42af-947c-6d9d6f0253de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_0iFhHIAMFjXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace9-18f8bade4f2ddbd0018c2117;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ESGbRefQzfK2WINhWLISRdtGqaO2W4Cn0-Aj1oNLfPC0tnYaPDubYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:31:43 GMT
age: 37425
etag: "70a5fda7f3515776a08d7063619eb4a8a61efba0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17704
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6c10083401a159012ce2a433377090c
b604fe9d95be6fc7708819bdef34fa6b760fe745
9b75d1124c23f491e33e884eaed846b1e51328b4ee25c1cd7182f589f3269e48
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9192
x-amzn-requestid: 895986d8-1db5-44f0-a1b6-bb2055bf7576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zaG8cIAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace2-41299d3654b9046938c6cbb0;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BxIwLcj-190cWmUXBG-uG6yHibhueXAqUTkF7_hxbMmCnV-mTXyFdA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:19:37 GMT
age: 38151
etag: "b604fe9d95be6fc7708819bdef34fa6b760fe745"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd9dfc91c131903f04b22bca2ea07569
8fac706269ae3ec4a9f60a64f6b08066e9eeb22a
d72e6a45a42dd6f6d39bdf2a68837a2fdd73b9df6e01a29dd173725b3d88e97e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12032
x-amzn-requestid: 1be7b95f-1088-4e2a-ba74-bba8a5c3b615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AMZ_gHE7oAMFfkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e809fc-65057649605a732b64098657;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 21:34:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3wc9cOb6EBcYrHuQPvVx1h8f0xSef25washUegMtRo7oeLosn4RlYg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Feb 2023 00:41:17 GMT
age: 29651
etag: "8fac706269ae3ec4a9f60a64f6b08066e9eeb22a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e24473b3e335f2046f72ea198a1a9ac8
346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b
87fb8a02fb286ccd1d04abe4052fb08617fc68692515aa6daed2895e83827ccd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10677
x-amzn-requestid: 7fbf05af-939a-443c-9add-f856b5ab4b1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zFH3hoAMFUkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace0-0676c24e496661ff545249f0;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ASk3lL6xNgUz-lLwE7lpLLh_PK_Iq-PSAz3VSOZrEweutYlfUggXTg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:28:32 GMT
age: 37616
etag: "346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17703
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0137/9434/5014/files/inc-black_150x150@2x.png?v=1669936570
200 OK 2.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/files/inc-black_150x150@2x.png?v=1669936570
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash cd8c0adb8f806a0ce3b8a35d1ccec775
a4c46c098e48e3a85a7a9ca8c28aac3de3608b74
05bd39bcd77ffa3ed95854e8bb62bcc2e1d6a25ad3b1e66760423b2bad7b6c28
GET /s/files/1/0137/9434/5014/files/inc-black_150x150@2x.png?v=1669936570 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: image/avif
content-length: 2152
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/files/inc-black_150x150@2x.png>; rel="canonical"
source-length: 6483
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0445bffa-0b7b-49a1-a700-4eb444eacb8e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 19:43:23 GMT
cf-cache-status: HIT
age: 898216
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7L%2Baw4qVpp%2Bn8UzmKaz9l6aqICYdWIQZwcMs%2FGWhTSJ%2F3Lo5MAINNK13ANAtFrFSfjJxgbGwCsqLOA8A8k%2BxFEaoIPHPdsZOI6A3f4fdm3CcbdMMfJWtskgE89%2FM08tDVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=178.222, imageryFetch;dur=54.957, imageryProcess;dur=121.038;desc="image", cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 799495c64f50b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/files/theguardian-black_150x150@2x.png?v=1669936549
200 OK 3.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/files/theguardian-black_150x150@2x.png?v=1669936549
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 6f871f128d562380fddcbeeb4421e5eb
1479d6b4f551fd01e07264e7837d5fda96a62e81
9c978ea685d4bdef27591d9aaf0bfc9b7b398181cfb6315f71f6b4adbd3bf57e
GET /s/files/1/0137/9434/5014/files/theguardian-black_150x150@2x.png?v=1669936549 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: image/avif
content-length: 3928
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/files/theguardian-black_150x150@2x.png>; rel="canonical"
source-length: 9440
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5581799f-3363-41ee-9a29-93316f75b763
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 06:25:35 GMT
cf-cache-status: HIT
age: 868105
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ibg7hDZSS3J50krIyEqrvLVolEtxjwYkHW0ZH2aVnOSzbVKxUIvk5EKwsFRvykvLUAxAP0D5VwoXN19uQpgACHRj86lGfdJvRHJJ8MHEoL3WjBtWVejwydPJZysd4teKvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=626.810, imageryFetch;dur=57.836, imageryProcess;dur=494.502;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 799495c64f4eb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/files/nytimes-black_150x150@2x.png?v=1669936537
200 OK 4.8 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/files/nytimes-black_150x150@2x.png?v=1669936537
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 8978ffcdb6f9fa110c67610dd634952b
b2a3e41a720e79aa37101e462e65fc7e02b95cc6
17d2dc0927c1ad570713bc17570f4484c2f289637f11c25be5c17fb5be929f3a
GET /s/files/1/0137/9434/5014/files/nytimes-black_150x150@2x.png?v=1669936537 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: image/avif
content-length: 4792
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/files/nytimes-black_150x150@2x.png>; rel="canonical"
source-length: 9409
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: d06879df-15ac-48e8-a753-5f9fe2e275cf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 17:54:15 GMT
cf-cache-status: HIT
age: 821756
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iJCZIJz%2BDCgMDmePcdS4jBMimGJ27HwQlQF3J%2FKeNKuF63y2RxU4w8JupQjRN0Gf25mHKevBGMmcuRNuV%2FmpmrBBoh0QSoPXI6Ju2ThNgz22YF3Ov28fuzrTEQ9REdjFQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=249.220, imageryFetch;dur=77.554, imageryProcess;dur=169.308;desc="image", cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 799495c64f4db506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/files/wsj-black_150x150@2x.png?v=1669936559
200 OK 3.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/files/wsj-black_150x150@2x.png?v=1669936559
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash c82efc34bbe4d0a6fc0ac4ed60e0bc00
23cafc2c721a28e0a076ed7fcb8ff5617b6b8e3f
bbebc7727e92f21c20bb37d7556ad634e205c1c6bc352d2cc85c84e6216c7945
GET /s/files/1/0137/9434/5014/files/wsj-black_150x150@2x.png?v=1669936559 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: image/avif
content-length: 3935
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/files/wsj-black_150x150@2x.png>; rel="canonical"
source-length: 14203
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: eb255b21-15de-48df-b94c-b0f53532c232
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 12:22:15 GMT
cf-cache-status: HIT
age: 243058
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC%2BO9LZXYCfj%2BsOwTPPAIJf%2BNvXa%2BFxG44zGHessWpmYGQtCMKGP5Jk%2BnaDrBCCX38UTUFARMB30D4akd%2BCIsxxBlBjBqemzopfv3ozrc2mt1OMENYIV3%2F3yBhIt1IQBvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=262.938, imageryFetch;dur=51.507, imageryProcess;dur=210.444;desc="image", cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 799495c64f4fb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17703
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17703
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/scripts.js?60521
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/scripts.js?60521
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/files/1/0137/9434/5014/t/178/compiled_assets/scripts.js?60521 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
content-length: 0
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/scripts.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f653dfa2-eed8-421a-a8be-8d6908861b8f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Tue, 14 Feb 2023 00:21:06 GMT
cf-cache-status: HIT
age: 18526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uHo82kPWv%2B6v%2F54Yiqf6zRZCVF9vSQgcMltOakdmajBpiXHbGY64ZcjEnOhCv9IAvITAtPHXkjvDbqlUIKFdy8KpXjr5H%2F57SGyiatFZmyJBritnm%2Fua5L7PzAc%2BwuTztQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=17.552, imageryFetch;dur=16.466, cfRequestDuration;dur=16.999960
server: cloudflare
cf-ray: 799495c64f47b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopify-init.blackcrow.ai/js/core/mud-wtr.js?shopify_app_version=1.0.105&shop=mud-wtr.myshopify.com
200 OK 44 kB URL HTTP/2 shopify-init.blackcrow.ai/js/core/mud-wtr.js?shopify_app_version=1.0.105&shop=mud-wtr.myshopify.com
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2d2f2bc0eac82497cd3b5f06266b429d
d25097d772ce7a8afdf4a1c08e5eacc5764ef869
08fa75a1cee71ad0fd6c237d75d48c1526c40b857b92c8a7add83e89c0906a95
GET /js/core/mud-wtr.js?shopify_app_version=1.0.105&shop=mud-wtr.myshopify.com HTTP/1.1
Host: shopify-init.blackcrow.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 43942
last-modified: Mon, 13 Feb 2023 23:17:10 GMT
content-encoding: gzip
x-amz-version-id: xJcnYC7IHam0uNrVjUNsmKRDTAt.IOG.
accept-ranges: bytes
server: AmazonS3
date: Tue, 14 Feb 2023 08:55:28 GMT
cache-control: max-age=600
etag: "2d2f2bc0eac82497cd3b5f06266b429d"
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: flpagJ-oftwGdyrwknV_vtDJhlLL9eAU13nKkLfbMfmPtXaQz7hYRg==
age: 2179
x-robots-tag: noindex
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7eca6ef29994b9f9aa2d9c4488d13c0c
48fbf8741bd2e9557ec5a1952ddd4a847bf86be1
bbebaee6a3bf1273cd3985274bf4d32f46712c700b1127797f983357967c27e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBEBAEE6A3BF1273CD3985274BF4D32F46712C700B1127797F983357967C27E7"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17703
Expires: Tue, 14 Feb 2023 13:50:32 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash 4bf38cf25aa59f55f0c620c66744aad8
7dce680d741be9f323c13f1c7468f779b935902c
f91202fcac1f514013e04ba5c8429b1a63798d01ea1edd579d7a3dd9a61dc25d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2312
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:29 GMT
Last-Modified: Tue, 14 Feb 2023 08:16:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b2a9e0f1226ca6a6b85ba3e95f34fb1
50b48cbf3022346cbbd5c200736e437f841c56aa
c64a3b8a689a9d51aa2249f6a813f8fd43c7130ac6582376d5e5f837c1f5d554
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151187
Date: Tue, 14 Feb 2023 08:55:29 GMT
Etag: "63eae16c-1d7"
Expires: Thu, 16 Feb 2023 02:55:16 GMT
Last-Modified: Tue, 14 Feb 2023 01:18:36 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JHlZW2tUH5jKaLTfrtDjWYYD_ZCInwnMfrlWF41SxVwf9QFxdY86tA==
Age: 5800
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2dea84b056fe03cf91ce514618731475
5eaa44bbf7d4864cb50950e90c5832027fb8a18f
5f05224b4c2683bf0d1eca2b00cb5ace1f985e8dbc9f4b5461b0a21c2d8e2398
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
200 OK 19 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32761)
Hash a3851b28a74f3a17a88f3ed5d7a23573
54171e03c5c30416b44aadde88ff3b5bd6345121
30598787d7637d6e08faa63032c77fdc792c7d2d080018fab5a464d1a63589e6
GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 14c6ecdf-b7a7-4e02-84b7-01e77de478a6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 25 Oct 2022 19:44:56 GMT
cf-cache-status: HIT
age: 1661040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BGBuhCC9C1Jp8rd%2FWwXl2Nz75LJ6i7dW2xjRNZYlRR4IZSLtT9q%2BcuaVO2R71KLHW5KOdi2HnXPe8uKykoq7l%2BicH6AIIJlEg%2B3y9KnfBBFa0UzN67hzR5mugtRXxQqINg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=40.767, imageryFetch;dur=40.611, cfRequestDuration;dur=9.999752
server: cloudflare
cf-ray: 799495c6bb3eb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 14 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32755)
Hash 7ed1573496db2af25d224cd98d96d0fa
6923529753ae0cc682db9fdbf13a48e498e3ef82
5ac7e0b3132c5cafed8f1fe44953639eb83cbd5f9a5e187ccfec6686e91f7484
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f8132b14-f8d7-40fd-a613-b8d1b269b834
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:53:19 GMT
cf-cache-status: HIT
age: 868106
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9unTlU5hFVnC5wcuY2fhEP7ItZzlblsZ%2B7k8Hn8JJqyiOUebbXzMhvEYAblMKsOZ8mhE2GIFFpFVt4ffo%2Byx9HSevxo%2BgP%2Fyeq3gedpCQd4gtNqm8bbFCW5jpM1ovYBDrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=14.986, imageryFetch;dur=14.814, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 799495c65aa5b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
IP
Hash f02bc4c165f85bea47e752aa2c79caf0
c49afddb89c08e68f68bc4a5b803b8ed7ad34ae0
2e92ccb31d70cc78ecfb790fcb6b5a6c10464a8529ae746e8a4fb62732fdea0e
POST /s/gts1d4/Udi7jfC2-KY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shopify-gtm-suite.getelevar.com/shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/events.js
200 OK 7.4 kB URL HTTP/2 shopify-gtm-suite.getelevar.com/shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/events.js
IP
File type Unicode text, UTF-8 text, with very long lines (20150), with no line terminators
Hash fd3677c197ee27445f1bf69998368933
6d0b73831ca384436d21979b13672308f2efba6a
0d82c180864ef84644648d19b19a7214ba82c051d721185bd9a0308c5f79c8ef
GET /shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/events.js HTTP/1.1
Host: shopify-gtm-suite.getelevar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvvjsh1b3aOrKW10bxZ7iNNoPR1YmU8DZfis1_MRIjArDVwNIA1PeYOx0XWiiKS9Y2PykZnrsovXjqtzraiOzZV
x-goog-generation: 1668016803235363
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7371
content-encoding: gzip
x-goog-hash: crc32c=qhboWA==, md5=/TZ3wZfuJ0RfG/aZmDaJMw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 7371
vary: Origin
server: UploadServer
date: Fri, 20 Jan 2023 19:27:45 GMT
expires: Sat, 20 Jan 2024 19:27:45 GMT
cache-control: no-transform
age: 2122064
last-modified: Wed, 09 Nov 2022 18:00:03 GMT
etag: "fd3677c197ee27445f1bf69998368933"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopify-gtm-suite.getelevar.com/shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/2.41.5/gtm-suite.js
200 OK 12 kB URL HTTP/2 shopify-gtm-suite.getelevar.com/shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/2.41.5/gtm-suite.js
IP
File type Unicode text, UTF-8 text, with very long lines (40043), with no line terminators
Hash 1e4333cafa74f76b1918cbc56d7b9c6c
d15b80bda6a1e274e0486443882c1365cc136750
b8adb6224df517418acf514325aeb38108a3e70f2534d3d8715a9aab4137c9ff
GET /shops/0053277920ba2ca05199fb5ee0c2e082e9ea5bd5/2.41.5/gtm-suite.js HTTP/1.1
Host: shopify-gtm-suite.getelevar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdschV_9E8XZWEI4sX1t8iSpcxhg8bJCkc6YOsRfHewH_U_ShKmJmSubvPRX0FfE8R4H7jR9FYXDG_ozFwYKRdrohyweeGhW
x-goog-generation: 1668016747489663
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12238
content-encoding: gzip
x-goog-hash: crc32c=ZBh2LA==, md5=HkMzyvp092sZGMvFbXucbA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 12238
vary: Origin
server: UploadServer
date: Fri, 03 Feb 2023 05:25:07 GMT
expires: Sat, 03 Feb 2024 05:25:07 GMT
cache-control: no-transform
last-modified: Wed, 09 Nov 2022 17:59:07 GMT
etag: "1e4333cafa74f76b1918cbc56d7b9c6c"
content-type: application/javascript
age: 963022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
polaris.truevaultcdn.com/static/polaris.js
200 OK 82 kB URL HTTP/2 polaris.truevaultcdn.com/static/polaris.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d4f009c1b216248e8c14439209b68523
1b3859689dfd9b86f4d43c1b859eaa754c78f467
ed4a01a1aed5d84cef2841c8d74dac1dcecb24883ba737ee124cef1965f74306
GET /static/polaris.js HTTP/1.1
Host: polaris.truevaultcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 82115
date: Mon, 13 Feb 2023 22:32:34 GMT
last-modified: Thu, 02 Feb 2023 06:48:42 GMT
etag: "d4f009c1b216248e8c14439209b68523"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4xJC54F.lYlMtYJJzQgdQYAuSt1gk1tr
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 cde8060bf7a12c2736a86c5f19473b60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD66-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: e_4Fhe0hD28ksOWYiNo2rA6FMH2Io8753g7EI-F4fYnrmGM8QMO-JQ==
age: 37376
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-K9FHSP7
200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-K9FHSP7
IP
File type ASCII text, with very long lines (1759)
Hash 3961358880d9c21bbe84e4d5cc4cbafe
9ae2c763ebbd2fcd08502c1f781dfcfefd7f2ff0
3c276bb8979cabc59851c3bfe4808b73d0e1e7e03fa973b079e9a1e58905c23e
GET /optimize.js?id=OPT-K9FHSP7 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 14 Feb 2023 08:55:29 GMT
expires: Tue, 14 Feb 2023 08:55:29 GMT
cache-control: private, max-age=900
last-modified: Tue, 14 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WNKC6MJ
200 OK 102 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WNKC6MJ
IP
File type ASCII text, with very long lines (45094)
Size 102 kB (101909 bytes)
Hash e110d6f65116e1a6f1f327c6cb98fc38
35b9174ccf9d15803bd30843054dc17882ebdc48
495ea4dacfdba5d75a5dc86a9926462802ebbd5fbb517627b3b8318f4f06aea9
GET /gtm.js?id=GTM-WNKC6MJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 14 Feb 2023 08:55:29 GMT
expires: Tue, 14 Feb 2023 08:55:29 GMT
cache-control: private, max-age=900
last-modified: Tue, 14 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BSBIOL7MEKP3O7GV71D0
200 OK 1.9 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BSBIOL7MEKP3O7GV71D0
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4463)
Hash 4dee4bd7faa606202ce74adf5e552ce6
ea7862bd4b46ff6943205c7d6cc781d4bb2a3947
9a6fb37ebf5750d9b85779ccd8138ef5dc45c3a0f7778fdf2cf6d81d1c2c58d2
GET /i18n/pixel/sdk.js?sdkid=BSBIOL7MEKP3O7GV71D0 HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023021408552956AD3CA7C40514245069
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c8a127fdb4bd9d2a95e6836df1a6bed584e2d03e0b9ebc3e1d637019de11394bdbdb8058b2b91170f0019a644765ef817412f02795a9a4636aa245d45ffe11b7e11a936cdc4d23e82c6e3415361d05e0e4
content-encoding: gzip
content-length: 1901
x-origin-response-time: 9,23.201.31.159
x-akamai-request-id: 2ec28fc0.308a1a2a
expires: Tue, 14 Feb 2023 08:55:29 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:29 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-201-31-159.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=93, origin; dur=9, inner; dur=4
x-parent-response-time: 102,95.101.10.191
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 3.7 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10292), with no line terminators
Hash 87c30809331562e481f10a559cc46f0d
187800f5cb35389a9a1c77066b607673296bea90
e836ecc83f2d6a519bd2cc9fcee6b29c20aff43cf3acf68572ea0cfc89b8ae1b
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:28 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 023a5fc7-c7ba-438d-b935-e82b95d2d7c9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 04 Jan 2023 20:04:22 GMT
cf-cache-status: HIT
age: 2241433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJTUf7BCk0rrBt8LDbQrq4BE%2BxyRwntN6NEEz%2FOpD6fjTvUL304HR2N%2F0idyrp04U3P2xysRTjkKLTI6SzliD27R33cJvtJGbWnU5O5WYiUoXHe7ahBhUK3hzj6gJtM%2BqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=26.091, imageryFetch;dur=25.825, cfRequestDuration;dur=125.000000
server: cloudflare
cf-ray: 799495c62a6cb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89c52df7e3e0d906fad7844df78b1c76
e3d095a7ae0814125b29c1066938b490bba492c9
d2bd6e7e2914ead3005ad60241dd04b54de0b92c4cfb71d01f4a8afe9495eba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2BD6E7E2914EAD3005AD60241DD04B54DE0B92C4CFB71D01F4A8AFE9495EBA0"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17076
Expires: Tue, 14 Feb 2023 13:40:05 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89c52df7e3e0d906fad7844df78b1c76
e3d095a7ae0814125b29c1066938b490bba492c9
d2bd6e7e2914ead3005ad60241dd04b54de0b92c4cfb71d01f4a8afe9495eba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2BD6E7E2914EAD3005AD60241DD04B54DE0B92C4CFB71D01F4A8AFE9495EBA0"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17076
Expires: Tue, 14 Feb 2023 13:40:05 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/styles.css?60521
200 OK 1.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/styles.css?60521
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2422)
Hash 627b39265c73d0a2e4b750ea76525c54
9c8e5a2e24a8e4b01d3cc0259a6a085ebfe7e6c1
ea50ec784798f620f45f39780d9e60a497fa38f6607af0d44d466917ebb31909
GET /s/files/1/0137/9434/5014/t/178/compiled_assets/styles.css?60521 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/compiled_assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4e5bcda4-b743-4dce-91b7-427a30a8a9b9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Tue, 14 Feb 2023 00:21:05 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wxkX1LuSwGgXKLp9y3hn9uSClRJPn%2FXWCs6WEHUkdnklZVQP7WuZ4c1yPvsZqAy46VnltuxPDBKM9vNjQnF2rFTiDhGKnAB5jdy5hn0%2FjTQSJR3B6CBX%2F7kVY7SjpP9K0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.807, imageryFetch;dur=57.957, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 799495c64f45b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
beta-testing-shopify-tracker.s3.amazonaws.com/segmentTracker.js
200 OK 34 kB URL HTTP/1.1 beta-testing-shopify-tracker.s3.amazonaws.com/segmentTracker.js
IP
File type Unicode text, UTF-8 text, with very long lines (33868)
Hash 1dfd21d6402942587f6449890c34e8a3
c62de520ac3656d4d5c1004aee77d7d565a3b18f
c1fa4b937c6c9be2a75fbe47dedd513238f0f0a11c143564e3ff469e0a03134a
GET /segmentTracker.js HTTP/1.1
Host: beta-testing-shopify-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RbmLtPYQhVKLwFkIfG4SbjJC7mC6xZlXztFD+WRkMSm/CwYaG4DerSBQWszwLFFQTH71a5K8owx2AnRQpcoJcHPkV7is1LCQPqlh6I63FB8=
x-amz-request-id: YKY57VQ3NTNBGG73
Date: Tue, 14 Feb 2023 08:55:30 GMT
Last-Modified: Tue, 12 Jul 2022 15:17:21 GMT
ETag: "1dfd21d6402942587f6449890c34e8a3"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 33986
fonts.shopifycdn.com/ovo/ovo_n4.d4662dd1e5e1c74c64a3a15f50c51f82bd9ade07.woff2?h1=bXVkd3RyLmNvbQ&hmac=21466788031e049b2eb475379458a4c5532dae4d95e8a4b1388d740232f6dd26
200 OK 16 kB URL HTTP/2 fonts.shopifycdn.com/ovo/ovo_n4.d4662dd1e5e1c74c64a3a15f50c51f82bd9ade07.woff2?h1=bXVkd3RyLmNvbQ&hmac=21466788031e049b2eb475379458a4c5532dae4d95e8a4b1388d740232f6dd26
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 16068, version 1.131\012- data
Hash 7767abc7f55edf1c72a84cee9c2327dc
d4662dd1e5e1c74c64a3a15f50c51f82bd9ade07
0bfad223cbbaa09b6fdbfcd0b5af90eec0492dd7b62bc7f3a2d3b30cd8148991
GET /ovo/ovo_n4.d4662dd1e5e1c74c64a3a15f50c51f82bd9ade07.woff2?h1=bXVkd3RyLmNvbQ&hmac=21466788031e049b2eb475379458a4c5532dae4d95e8a4b1388d740232f6dd26 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: font/woff2
content-length: 16068
cf-ray: 799495c8fc5f0b61-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1865669
cache-control: max-age=2629800, immutable
last-modified: Thu, 19 Jan 2023 07:31:58 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/ovo/ovo_n4.d4662dd1e5e1c74c64a3a15f50c51f82bd9ade07.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 7f2c998a-36b7-4bec-a32d-b9dcb39b4813
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GNPJzN7%2FgqUFoOlj%2FwxYVJQQgxiCLwf6t7Xzk7avuuOt3p%2BuJTX5%2F7pRWn96BoKHS9vMPU0PbeMAsreuyjJfIS6jK1tXqP%2F6mARSTBeqWbeL8%2FqfpxuLloUestKZ9CbQRcYkFXeJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=70.114, imageryFetch;dur=69.809, cfRequestDuration;dur=9.000063, cfRequestDuration;dur=19.000053
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/chivo/chivo_n4.bf4dc1c0e4649d2f5a28281870307415c2a9c652.woff2?h1=bXVkd3RyLmNvbQ&hmac=6d24030ad0e5987f33b6286ad5e60ac25aae90f5a688679041003d4acacce746
200 OK 39 kB URL HTTP/2 fonts.shopifycdn.com/chivo/chivo_n4.bf4dc1c0e4649d2f5a28281870307415c2a9c652.woff2?h1=bXVkd3RyLmNvbQ&hmac=6d24030ad0e5987f33b6286ad5e60ac25aae90f5a688679041003d4acacce746
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 1dad5e17191ba98b6f4b4e766e203d66
f024ae1db8d6a255ab0700fc9e1339ee8c65208d
5019d90cbe70a651961fa66db0942c23652d7764ebcc3646cb1f6bda064e6d8b
GET /chivo/chivo_n4.bf4dc1c0e4649d2f5a28281870307415c2a9c652.woff2?h1=bXVkd3RyLmNvbQ&hmac=6d24030ad0e5987f33b6286ad5e60ac25aae90f5a688679041003d4acacce746 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: font/woff2
content-length: 20344
cf-ray: 799495c8ec510b61-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1865737
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 18:39:50 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/chivo/chivo_n4.bf4dc1c0e4649d2f5a28281870307415c2a9c652.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: af0ee5c3-f811-455d-ba05-7843b31ac915
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Og4DybntnRvNy5AQbOIb8dQUQ3%2FkF6SeNReVZ53jr0BzJz7cOJGjKQp9nbaRDUy%2FQKJH3i%2BBh7U4YAR%2FLijTtmDUnFqdEeDCja30HqajGsVx36Upq0DkLg41lNaDbW%2F4ai5fe6Nb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=26.554, imageryFetch;dur=26.239, cfRequestDuration;dur=7.999897, cfRequestDuration;dur=58.000088
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/chivo/chivo_n7.d83b4aaa520af8b24ea0f1eb81a6d2d8b1a2ad49.woff2?h1=bXVkd3RyLmNvbQ&hmac=1adda12f4609784d38dbdaf92cdf4b11874a3feb81a2f51f2998dda827421b27
200 OK 18 kB URL HTTP/2 fonts.shopifycdn.com/chivo/chivo_n7.d83b4aaa520af8b24ea0f1eb81a6d2d8b1a2ad49.woff2?h1=bXVkd3RyLmNvbQ&hmac=1adda12f4609784d38dbdaf92cdf4b11874a3feb81a2f51f2998dda827421b27
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18080, version 1.458\012- data
Hash e691449da8e3ff41890ba36ca7fd8608
d83b4aaa520af8b24ea0f1eb81a6d2d8b1a2ad49
36d40ced150354d2dbe45196438bbc21b8c38f4b966510b2f5d4dfc618930bc0
GET /chivo/chivo_n7.d83b4aaa520af8b24ea0f1eb81a6d2d8b1a2ad49.woff2?h1=bXVkd3RyLmNvbQ&hmac=1adda12f4609784d38dbdaf92cdf4b11874a3feb81a2f51f2998dda827421b27 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: font/woff2
content-length: 18080
cf-ray: 799495c90c6f0b61-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2268257
cache-control: max-age=2629800, immutable
last-modified: Sat, 24 Dec 2022 08:09:49 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/chivo/chivo_n7.d83b4aaa520af8b24ea0f1eb81a6d2d8b1a2ad49.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,us-east1
x-request-id: 0068a6c5-742d-4426-b092-991161d8af81
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CxKX53koD0xNftudM%2F9%2B%2BB8Y%2FOFLUW88EsPag7yn39f4Q%2B8dd8bY7TYxWY066%2FCXRzXrKZZ5Ktkf7yALu3ZorDMnwtKcTKb9J2hBZ1D%2BVBT%2Fc95%2FWJhg4EjmAhDbYI4og7ijm0Cj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=63.474, imageryFetch;dur=63.151, cfRequestDuration;dur=5.000114, cfRequestDuration;dur=16.000032
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/jarallax.min.js?v=92852810695972642591676316041
200 OK 5.8 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/jarallax.min.js?v=92852810695972642591676316041
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15255)
Hash 69137b03a07ec816edb9be042e0f3f34
e330265d9b9d5f438f3347a84286e2d86548857a
dad1a76b9cd2ebe2e84c9e36e895c8b7d88b4589234af66cb3394536cef10c28
GET /s/files/1/0137/9434/5014/t/178/assets/jarallax.min.js?v=92852810695972642591676316041 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/jarallax.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1cbf8aa8-c0fe-4495-986f-84754eb0bffc
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Feb 2023 19:20:48 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2K2HoE5du89OUzBx1ua12dOddJ%2FW%2Ff7fGmH6kpmHU%2FSkBvpw9QGmnmVPu%2FuiCH4T827C6lKX2BVKmKMYETCtOR2t06RtCdVv%2F9okTCh8tsp%2F%2FMkEZna4pNoSwFRoJ0xt4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=39.608, imageryFetch;dur=39.430, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 799495c6bfd9b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 14 kB IP
ASN #20940 Akamai International B.V.
Hash aa15e4fcfdc7cd63ad41eb1560a39754
53e1b739be4b1b89c867f9cdef6157d7b763bade
5a6c81b49b7f3b12fe85b94a6ce77008ecb69a1cc4e570a0bfa5b2a14fadf1c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2BD6E7E2914EAD3005AD60241DD04B54DE0B92C4CFB71D01F4A8AFE9495EBA0"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17076
Expires: Tue, 14 Feb 2023 13:40:05 GMT
Date: Tue, 14 Feb 2023 08:55:29 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
IP
Hash f02bc4c165f85bea47e752aa2c79caf0
c49afddb89c08e68f68bc4a5b803b8ed7ad34ae0
2e92ccb31d70cc78ecfb790fcb6b5a6c10464a8529ae746e8a4fb62732fdea0e
POST /s/gts1d4/Udi7jfC2-KY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 108822b93bd0f964074945c1ba9be825
40daf83e5c4dd705f11be7100b1e681b908ec820
a8c081f0c70a6ccde0662feaf41e8d51ecac79afa8150b7a8857117a78944cb9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:29 GMT
Etag: "63eae5a6-1d7"
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zP4g9lGWuSEWz4YXVR5syBgBgqtx1G2_8zx8zLza-u6LzF9TDj_iRg==
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/okendo-reviews.js?v=180460352168302898361676316041
200 OK 2.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/okendo-reviews.js?v=180460352168302898361676316041
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash aaaeb0a2238890ad076505b9e59c4ccc
0cb439e00ef484e937c8b6cc6f675b231405c381
e9fb0ca6e76dc93a5859b125b68bcc47722c25867afb0a700d26f09254d5850d
GET /s/files/1/0137/9434/5014/t/178/assets/okendo-reviews.js?v=180460352168302898361676316041 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/okendo-reviews.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 922097b5-f66f-4f5d-9d1c-542db768079b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Feb 2023 19:20:48 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPwKr7LD%2FKUkQUuw9vk6M7Zppyqy872o5DCxbcN7mcTu51Xy9NBNbpewTGz45cHJ%2BMmVVpE5OUQiAe%2FJtSffnVQsAJIB3iWj4cqSUi6Uu%2FNjexIxpe2htqwoSDi9IJbBfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=93.456, imageryFetch;dur=92.484, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 799495c64f48b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/mud.js?v=97394889872090879071676316041
200 OK 72 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/mud.js?v=97394889872090879071676316041
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 250ec8ac0b8aa389661e0a32b3820c3c
421bf5c061486a525349c4adac4638bae30a185e
187895790d063832670664e3ea0923de7c3297b4b0d858c25b5ded4dfb659d73
GET /s/files/1/0137/9434/5014/t/178/assets/mud.js?v=97394889872090879071676316041 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/mud.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9c3e1940-d32b-403a-8b9e-5e0558b23e29
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 13 Feb 2023 19:20:48 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u9jroFvudhWLx89PnH6QJ8bsxqt2NMIg%2BR2h3U0TQC8qXM1BpgDz4NER7LNo8FYn3TBjsaPoDfd2Z0h7LQJHqUK3dZgpe8J%2FZB32c5NpiKPPiLITObVJR9nv3Pliv%2BYGWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=89.178, imageryFetch;dur=78.418, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 799495c64f52b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 8b8c1bb994ebf49d95ea022870055076
1d1a5eb88fec6a1e067a47ffd4223b5d3fa15993
da9751b2794e03ce11859821a211ef8a989540da64137d87fc5dd6e503f34a78
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119126
Date: Tue, 14 Feb 2023 08:55:29 GMT
Etag: "63ea7978-1d7"
Expires: Wed, 15 Feb 2023 18:00:55 GMT
Last-Modified: Mon, 13 Feb 2023 17:55:04 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1eR5P6SAdm1rMLhQB9yJ44fMyHFvFyl4aoemws0x4YTHS20QXVivdg==
Age: 351
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 596038cd2c4fdce2fb3039f76f84a3d7
a3e19febfa3325d02d93233b8a008edb4a5a633e
d181b2c52e1ed05f12433e23cb057ee8aea00e630023e053fb74b1c7f76816a2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:29 GMT
Last-Modified: Tue, 14 Feb 2023 07:52:35 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PcJS8Y5ASFE7iXH6pNgj_cyqC57aJKrR3P-aIAo5DuG7lKbWBcbf1g==
Age: 3774
location.truevaultcdn.com/
200 OK 28 B URL HTTP/2 location.truevaultcdn.com/
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 57744b8d30cb48c871213dd5dfe0df01
9d33a3a35c016251765337527aa6963f0405f286
7aa436ba2de59c82da6263076cedef3a9ca49fd61e0493404f2f7d898fa21b81
GET / HTTP/1.1
Host: location.truevaultcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 28
server: CloudFront
date: Tue, 14 Feb 2023 07:12:41 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-country: NO
x-region:
vary: Cloudfront-Viewer-Country,Cloudfront-Viewer-Country-Region
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: csgmYEpZlyAYnjc85tfjF3RKkLwAKshuSgjHw3sGY_rUW243ypmcTQ==
age: 6168
X-Firefox-Spdy: h2
www.cloudflare.com/cdn-cgi/trace
200 OK 736 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP
Hash b54ea9402c924a8bc3b94cce4f6f33d4
0981bf8613c18ac315b36bf569e87bfb2ff49ec3
5ca47db089d6bc8579e39ea27b2f8138a263bbe4accf11e38b0ec2ea6e4cde7f
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 799495caf9a1b511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
shop.app/pay/session?v=1&token=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&shop_id=13794345014
200 OK 18 B URL HTTP/2 shop.app/pay/session?v=1&token=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&shop_id=13794345014
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash c07fe8d0c031632d49b937f7b64cc318
b50ff5d4241ed1d437505098707c289683f62acf
9b5179ea2a77fe69b294fbd2ed504eacbfbe048ede58967b43af2ca537144b1f
GET /pay/session?v=1&token=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&shop_id=13794345014 HTTP/1.1
Host: shop.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:30 GMT
content-type: application/json; charset=utf-8
content-length: 18
x-sorting-hat-podid: -1
access-control-allow-origin: https://mudwtr.com
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-frame-options: DENY
x-robots-tag: noindex
vary: Accept, Origin, Accept-Encoding
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' 'unsafe-inline' blob: https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifysvc.com https://hcaptcha.com https://*.hcaptcha.com; img-src 'self' https:; font-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com; object-src 'none'; frame-src 'self' https://*.shopifycs.com https://pay.shopify.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com
set-cookie: _pay_session=HltH17drBtAyvLempSfcQ96R%2B3Fjch%2FMrWapdkcODmDblYuUa02UIZjNESAV1iLdszLMSMHZbr201N8TSyePqRWpL%2FIGkZJmsTdmLwOR%2BlSpeNSujj8eUXgvYzoaI4uov6PLo67v%2FdleI5IhWCAgl5SuKKsaLLoHW4oGET8pJhdM8zTpicrgb%2BqC6yM0U%2BkPQQAk2w%3D%3D--i%2Bav3lpyJGQ0g1Su--QrASq5K6EXD40yRkQOjN4A%3D%3D; path=/; secure; HttpOnly
x-request-id: 92e2afc8-bee6-4442-ba88-a7984ef75f36
x-runtime: 0.008967
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S0ufwZjLLZXProxs7zO720EzDoGIq6F7EpwBQ%2FicYX4wX2Tm84CENraX%2FtZEngcBUD3DsE8ZCBZt9fttU3bYSg5hKpnNjzEAsK%2FSleOHwk1WqE7IC0HWs4b%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=169.999838
server: cloudflare
cf-ray: 799495cbec840b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6c0c7514093e7b1dddb57107c47ead16
c167c044befc49e42d83c01940635aff4a7d78d4
15aaec1913aa1ce973d363428180001a96e2b2946044d6cdd868ccf3dffa7ac3
GET /i18n/pixel/static/identify_5f1fb.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023020721083148E1C9F8EEF0C7CE2033
x-tt-trace-host: 01e2cb5113e80710ff8e1892ebd7a2d475967fc99842c105e3cbc3203a00a402d7431f5e223140367c83accbaadb833f5a0d207b3e8d025f4e3dd28297e4174826a8101724b261f2fc32b2ddb21563a7fb80c1d893b6fef16c63e64e063b97a44f
content-encoding: gzip
content-length: 30893
date: Tue, 14 Feb 2023 08:55:30 GMT
x-cache: TCP_MEM_HIT from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 308a22df
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 748d3d4bca86a0ec1c0ca316a53d386a
b0f774883930e885ca063fb90d23628818aa7bbb
d59b49379ec3a8308e87fd1571d9b7e109ada062c15776423dff725338b31608
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D59B49379EC3A8308E87FD1571D9B7E109ADA062C15776423DFF725338B31608"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15168
Expires: Tue, 14 Feb 2023 13:08:18 GMT
Date: Tue, 14 Feb 2023 08:55:30 GMT
Connection: keep-alive
analytics.tiktok.com/api/v2/performance_interaction
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/performance_interaction
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/performance_interaction HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302140855301DE4CAB4C38C122927B1
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c80592155f33ea1a3e534d6a9b46b47ffc9195a6be273e88d6e1c1b669c1c952a7e4d97426a5a674332fd1f3b3c130c536239f26b402586b06c03564658a90465a133b1e73c61e987187874521703247b6
x-origin-response-time: 11,23.201.31.180
x-akamai-request-id: 2b773c91.308a22f5
expires: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:30 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-201-31-180.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=11, inner; dur=4
x-parent-response-time: 110,95.101.10.191
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash ce8f20173a52c6e8ced5a236bb52b285
23fd7fd8fc9eea5b6c3204c89e3c404174c4daba
f5df2acff176c5769d4a0db989228f60428e246132db93d7de4806e1aa313821
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 14 Feb 2023 08:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 11 Feb 2023 23:45:31 GMT
Expires: Sat, 18 Feb 2023 23:45:30 GMT
Etag: "23fd7fd8fc9eea5b6c3204c89e3c404174c4daba"
Cache-Control: max-age=398399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 799495cd9895b50c-OSL
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/tailwind.css?v=12024821986766899601676332383
200 OK 16 kB URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/tailwind.css?v=12024821986766899601676332383
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash e9d43acebdcedc2e23f85dae417ffa22
92b517f302d864868b9c14468816d3a586a2138d
c10cf5258716649dfe5d92a27523ed5fd9dee45ed187af7b1102869a64538701
GET /s/files/1/0137/9434/5014/t/178/assets/tailwind.css?v=12024821986766899601676332383 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/tailwind.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5d0fd3aa-f71d-4532-9260-a80a265c1730
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Feb 2023 23:53:04 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8C%2BteqA17prf40tSymWODL89AHRLeX04DKgTyG8mo0RcKMUNagZrvGqOIg%2FSv35BxtorBh%2FT3cu%2Bid2F6afZjwZLNrRZjSAnokmM6zRrUxULqHKlNdHdMRpjLT7V%2B59WxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=67.402, imageryFetch;dur=60.197, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 799495c6bfd5b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash 631ced04e7a5d6668c92511b8e335a8d
c7466c4802fe997c83d209e54a92b9c2a762dff1
77fdff8a1dd6827fcf43c80480b7189a8d63e51028265517c37421e496b5f9e8
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 838
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230214085530DE426DAA190A9604C504
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c8c1c8008b03677b065039618ca3f2300d4c3c2a3b2287859a69acb4a694fdec35d30945a0a860f5fa598fdcce391513925896f4f4949c9d52028295cd8d60c7b3ffcb3e82b29095832988ddeb1ee99f48
x-origin-response-time: 21,23.201.31.181
x-akamai-request-id: 32b51fe.308a231e
expires: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:30 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-201-31-181.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=21, inner; dur=17
x-parent-response-time: 116,95.101.10.191
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ac66c32abbe540a26cd57c67efc18d62
389155757994ddad01380db41f44183a5e9afb82
502df7ec804db829e42d466df472c12efd4546233519a89c82b9e261404fa8d2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145891
Date: Tue, 14 Feb 2023 08:55:30 GMT
Etag: "63ead35a-1d7"
Expires: Thu, 16 Feb 2023 01:27:01 GMT
Last-Modified: Tue, 14 Feb 2023 00:18:34 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: er_cZ6HePSfLaV9iGSf-sfsLMTdV7k5JKLRz8c1rSP7vlOFRD8JrTg==
Age: 4107
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ac66c32abbe540a26cd57c67efc18d62
389155757994ddad01380db41f44183a5e9afb82
502df7ec804db829e42d466df472c12efd4546233519a89c82b9e261404fa8d2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:30 GMT
Last-Modified: Tue, 14 Feb 2023 07:42:56 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JCKCExWBZaYXVA2TwohTWLPhHj6JDracZMSHDQYNKQwuGm8vRdL9vg==
Age: 4354
api.ipify.org/?format=json
200 OK 21 B URL HTTP/2 api.ipify.org/?format=json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mudwtr.com
content-type: application/json
date: Tue, 14 Feb 2023 08:55:30 GMT
vary: Origin
content-length: 21
X-Firefox-Spdy: h2
bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
204 No Content 0 B URL HTTP/2 bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /colibri/fly HTTP/1.1
Host: bvl2bpup07.execute-api.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mudwtr.com/
Origin: https://mudwtr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 14 Feb 2023 08:55:30 GMT
vary: Access-Control-Request-Headers
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: authorization,content-type,x-amz-date,x-amz-security-token,x-amz-user-agent,x-api-key
apigw-requestid: AUjkaixWoAMEa4A=
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C64N16HRBA57FARJKH0G&lib=ttq
200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C64N16HRBA57FARJKH0G&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2354)
Hash 311d38481a07ce0e5bf8c9915dca5e9c
131a6c993c177fe10ba8b6ff446883b38d018428
046bf930c986298a9027cfdb21eca4f66977c2c999f9f2c352d67e8527de191e
GET /i18n/pixel/events.js?sdkid=C64N16HRBA57FARJKH0G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230214085530D3FF86EDD4CFB776AE31
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6405f79c568a045cf8e69fcfce6dbbe674a9e83de98c3fc6c5457ec5f0702c3885ecd1dbf34f3c73fdec280a50c2157e2b5264785b757b610c943777490bc919b93742354ce717f4906d63092f96651f8fa10c0cdbd9b35ded2f5828ac1041492
content-encoding: gzip
content-length: 1160
x-origin-response-time: 9,184.51.101.138
x-akamai-request-id: 1dd67500.308a2534
expires: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:30 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a184-51-101-138.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=92, origin; dur=9, inner; dur=4
x-parent-response-time: 101,95.101.10.191
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ec551f1ecafcc10b89b5f21d2e5a6722
4e0152b8f6630ce8a6132d319a5ecad50e849183
1c88864609c8fc8eff8c25c3c866dd2e89ed71e53988be62d5e5e8dca85c4e74
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:30 GMT
Last-Modified: Tue, 14 Feb 2023 07:08:49 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YBT2Ick_UDnOnuMCmAhMuaHSvkYXLMhHfH46lbXYBpqP-2WlQozl4g==
Age: 6401
bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
201 Created 2 B URL HTTP/2 bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /colibri/fly HTTP/1.1
Host: bvl2bpup07.execute-api.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 93
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
date: Tue, 14 Feb 2023 08:55:30 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
access-control-allow-origin: *
apigw-requestid: AUjkbjzKIAMEaaQ=
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
200 OK 7.4 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP
File type ASCII text, with very long lines (23347)
Hash 03d5db9dfd00a5719bb4c9261e6fa1bb
be9899225f59b4d3ef6fefcf0e66b72568353a94
e90f19642062e4311b58ede732592e8f29b7799661086a0bbfc68e259fd81398
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 21:56:14 GMT
etag: "03d5db9dfd00a5719bb4c9261e6fa1bb"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:30 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7356
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/analytics.min.js
200 OK 48 kB URL HTTP/2 cdn.segment.com/analytics.js/v1/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/analytics.min.js
IP
Hash ae196a5c938505fed73dbaa01bc06bff
f81540917f873eddfdc1a002d74b5ba41309a12b
709da1d329991258b7e2ec6414e40aeba202562fcbbd1b706b3075d166b843fb
GET /analytics.js/v1/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 26 Jan 2023 02:57:25 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: vDgFge5fsKWKpzyaoE.SCFdnO0D0xNz.
server: AmazonS3
content-encoding: gzip
date: Tue, 14 Feb 2023 08:55:29 GMT
cache-control: public, max-age=120
etag: W/"c8f4a8a59a690d7da5ed4abead89e598"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qXYVpgoOMngHmROeqVtJffVuj4GcrIWv4rbC9LwnYMWp3GGY0WAmdQ==
age: 25
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 70f047567ef56df1ad07054f6b66679d
5f6060fad51f432b7f0cf3e1887afd7760e50393
9c4eaa11fea5b8adaf5057d0c4b06022b7c40f6089543bb78c91eb407c5c0d21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4539
Cache-Control: max-age=129794
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Etag: "63ea92c9-2d7"
Expires: Wed, 15 Feb 2023 20:58:44 GMT
Last-Modified: Mon, 13 Feb 2023 19:43:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/s/gts1d4/Patgn0hRfbE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Patgn0hRfbE
IP
Hash 16a813e4b7e87671d180431d6eb1dc71
421c42361ff834f9b35b2a357222b91b5ead6c7e
41cdb7189942fa530858a0bf93f4efd21060f6a8278a50f71c99bc61940bd122
POST /s/gts1d4/Patgn0hRfbE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash 4f3cc39ffcbd3be469c5e747c3618389
b84f4981f2b9146ff74a6d31be84cf167c3115b4
e7f080cfe7387bcca9e3ae45b39591ce6bfa4ca2ca6ccad8751223dc375caae9
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 14 Feb 2023 08:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 14 Feb 2023 02:01:42 GMT
Expires: Wed, 15 Feb 2023 02:01:42 GMT
ETag: "b84f4981f2b9146ff74a6d31be84cf167c3115b4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.pdst.fm/ping.min.js
200 OK 5.8 kB IP
File type ASCII text, with very long lines (26948), with no line terminators
Hash d001d1c9f5a942fa5524eeacb047e819
6ebc303d4e3fe71192400673808f37ce1c6a1d25
63882c75983a011c7ae5041061a95babb9e67fa508b0628e1c00f455ccd40b0a
GET /ping.min.js HTTP/1.1
Host: cdn.pdst.fm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdstuPPIpt78Z0SLPcaPbfd_9po5o6eZ9gby7wQpz4Q4O7YzdnhS4YKbsmDwClIUjGLKHvYPqo5bNKepE5Tgcp03Mw
x-goog-generation: 1622234043862937
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5774
content-encoding: gzip
x-goog-hash: crc32c=oKoi/w==, md5=0AHRyfWpQvpVJO6ssEfoGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5774
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 14 Feb 2023 08:28:15 GMT
expires: Tue, 14 Feb 2023 09:28:15 GMT
cache-control: public, max-age=3600
age: 1635
last-modified: Fri, 28 May 2021 20:34:03 GMT
etag: "d001d1c9f5a942fa5524eeacb047e819"
content-type: application/javascript;
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.army-hurt-mouth.com/RZKSI5JYws_0DfGfnwPYy3TDPx5CddaB5ebPep4mEkA55vtNFLyVj7a8xMDfYggABC_isM2H4V4EgSiU3dM1qw~~?hid=&uid=&v=3.2.1
200 OK 35 kB URL HTTP/2 www.army-hurt-mouth.com/RZKSI5JYws_0DfGfnwPYy3TDPx5CddaB5ebPep4mEkA55vtNFLyVj7a8xMDfYggABC_isM2H4V4EgSiU3dM1qw~~?hid=&uid=&v=3.2.1
IP
Hash 2f3bab3a8e039c9729ee84bca74ed535
34aa7ae56fd396db26c1670128564821495212c9
60d23041b2631ecad45419d5db81124256aa5a07ff92a9505dd233859febd99f
GET /RZKSI5JYws_0DfGfnwPYy3TDPx5CddaB5ebPep4mEkA55vtNFLyVj7a8xMDfYggABC_isM2H4V4EgSiU3dM1qw~~?hid=&uid=&v=3.2.1 HTTP/1.1
Host: www.army-hurt-mouth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:30 GMT
content-type: application/javascript; charset=utf-8
x-backend-server: hydra-mesh1
x-robots-tag: none
x-xss-protection: 0
referrer-policy: never, no-referrer
content-security-policy: upgrade-insecure-requests
cache-control: no-cache
pragma: no-cache
x-backend-connect-time: 0.000
x-backend-response-time: 0.012
x-backend-status: 200
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 799495d06caa0afe-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fbf9fedcea38835ae93da2967e476ad3
af84194bfeb615bf048a5b4f7399986ebd16ad96
e67beaf385a0618457efcecad7c497f2c0a6ce22f125bd274d935dd94d036a1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6341
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Last-Modified: Tue, 14 Feb 2023 07:09:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash fbf9fedcea38835ae93da2967e476ad3
af84194bfeb615bf048a5b4f7399986ebd16ad96
e67beaf385a0618457efcecad7c497f2c0a6ce22f125bd274d935dd94d036a1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6348
Cache-Control: max-age=171569
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Etag: "63eb2ee7-1d7"
Expires: Thu, 16 Feb 2023 08:34:59 GMT
Last-Modified: Tue, 14 Feb 2023 06:49:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
b-code.liadm.com/a-06o0.min.js
200 OK 12 kB URL HTTP/2 b-code.liadm.com/a-06o0.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (34670)
Hash 047badd00d5bfddeefd0157fc43681ed
8c9aeef3ab7a7345270e8f255b37095dd80f79bd
4e29e52f799ea4f59137a10bb9fcbbf1edfa4969a5f95a6f55d2e15b586118d7
GET /a-06o0.min.js HTTP/1.1
Host: b-code.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 13 Feb 2023 09:30:37 GMT
cache-control: "public, max-age=86400"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bNiAHtXYLbU7hChBZzUasn7seGNRvmg4_MBFp-oYgrkEp6G5dPyUMQ==
age: 84293
X-Firefox-Spdy: h2
shop.pe/widget/widget_async.js
301 Moved Permanently 178 B URL HTTP/2 shop.pe/widget/widget_async.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 14 Feb 2023 08:55:30 GMT
content-type: text/html
content-length: 178
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.snapchat.com/p
200 OK 68 B IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 551
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:30 GMT
access-control-allow-origin: https://mudwtr.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgRGAMAgDwIm4awyNdhxBmILh/a/G+V6/LKplTqQ9xLbIzA7FZmEGukX54Zr1AwGeHpQyAAAA;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 4
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 851
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230214085530DBC87758291D2C31CBB3
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c81e0200948ca03be2ca875c1d78c5baa58625c4943dc88f75c6fe8b37c6a4425c793f2c20fa6b6d3e726b8b7320ab1f944f02863c4fadc2fca0c729fce4f77241ed2e06da6d4255cde2fbd9c72ff0ff22
x-origin-response-time: 41,23.201.31.196
x-akamai-request-id: 2f9ed95e.308a2a03
expires: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:30 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-201-31-196.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=41, inner; dur=38
x-parent-response-time: 135,95.101.10.191
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash b9bbfdb948d6f424314d5200133fcd92
6aee838231011c9cfc8b2db1af38fa4fc2cd7e7a
db1a42bc99385947ac5c7f090bd4c3131b65ccc79b32ca78413f4f427b6ab856
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 14 Feb 2023 08:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 14 Feb 2023 04:42:10 GMT
Expires: Wed, 15 Feb 2023 04:42:10 GMT
ETag: "6aee838231011c9cfc8b2db1af38fa4fc2cd7e7a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 727 B IP
Hash 70f047567ef56df1ad07054f6b66679d
5f6060fad51f432b7f0cf3e1887afd7760e50393
9c4eaa11fea5b8adaf5057d0c4b06022b7c40f6089543bb78c91eb407c5c0d21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4539
Cache-Control: max-age=129794
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Etag: "63ea92c9-2d7"
Expires: Wed, 15 Feb 2023 20:58:44 GMT
Last-Modified: Mon, 13 Feb 2023 19:43:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/s/gts1d4/Patgn0hRfbE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Patgn0hRfbE
IP
Hash 16a813e4b7e87671d180431d6eb1dc71
421c42361ff834f9b35b2a357222b91b5ead6c7e
41cdb7189942fa530858a0bf93f4efd21060f6a8278a50f71c99bc61940bd122
POST /s/gts1d4/Patgn0hRfbE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash fbf9fedcea38835ae93da2967e476ad3
af84194bfeb615bf048a5b4f7399986ebd16ad96
e67beaf385a0618457efcecad7c497f2c0a6ce22f125bd274d935dd94d036a1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6341
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:30 GMT
Last-Modified: Tue, 14 Feb 2023 07:09:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUCFMRC77UF6OITM0FG&lib=ttq
200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUCFMRC77UF6OITM0FG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2364)
Hash 9e542a1b3bf609da1d91b4e9977a8be0
cc9958070c490d3a0e358cc0a41f61f323612f59
5d7b4260c4da3b31e3b46f609bebb3894be88892327017b715652a43f38872cd
GET /i18n/pixel/events.js?sdkid=CDUCFMRC77UF6OITM0FG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230214085531CDF75B5F74DC1F46937F
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c84a2a673847138b1d668dbfda3d62957c3b9caf4ca118577f818c7f0d76580bd6e1d90d0f4d31db1b79831a8f4840fdd81ac2f5af5b06e1fb488b81eeaee3fb12dc47e259f7be375dd7605876eccdcd1c
content-encoding: gzip
content-length: 1163
x-origin-response-time: 7,23.201.31.205
x-akamai-request-id: 94f2c99.308a2b75
expires: Tue, 14 Feb 2023 08:55:31 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:31 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-201-31-205.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=7, inner; dur=3
x-parent-response-time: 98,95.101.10.191
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 815
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023021408553155C89B29C9FF5C4EDFCE
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6405f79c568a045cf8e69fcfce6dbbe672073847bb56087566c10701f5c7b3a8dcee2ffc724b8f1d2c0a131784e333c6bc0174efb31c8ff84dca261420c24bfb6ae300724aca8acb233778c6f6d124b518b992b4a5e6ad6ca28c0f8331a7d33b7
x-origin-response-time: 24,184.51.101.10
x-akamai-request-id: 1f53b830.308a2b7e
expires: Tue, 14 Feb 2023 08:55:31 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:31 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a184-51-101-10.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=24, inner; dur=20
x-parent-response-time: 114,95.101.10.191
X-Firefox-Spdy: h2
www.dwin1.com/19038.js
200 OK 15 kB IP
File type C source, ASCII text, with very long lines (54652), with no line terminators
Hash ea6d0f8c336012e56da7bd0ae31cd818
72ca2810ca7117c7722957434113de9512cd7bbd
2be5d6b89b03c89c293e602e7b62835c46a258297587db70446e68084643c4f7
GET /19038.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Fri, 10 Feb 2023 12:20:17 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: j7DD4OMW7GR8WSPBuyQmLVAZmnswSMlT
server: AmazonS3
content-encoding: gzip
date: Tue, 14 Feb 2023 08:46:00 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"67ca0f3e66ef7de4f531bcfd53d09050"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w7WYHQRCOyG_XYffMUFfCtTa5QlMSCF1AAaOK76A3NUiVUNJxd30mA==
age: 569
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=KVAmNQ
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=KVAmNQ
IP
File type ASCII text, with very long lines (2904)
Hash cd661c851d1561cac08692c82f042eed
34c0973db01a7d9a948ad116ce461279f2431b4b
f3542b2733dbbc031b44432fc5baa953b0aa65673d8acce21503d60505034784
GET /onsite/js/klaviyo.js?company_id=KVAmNQ HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-security-policy-report-only: script-src 'strict-dynamic' 'unsafe-eval'; object-src 'none'; base-uri 'none'; frame-ancestors 'self'
content-type: application/javascript
etag: W/"9face502924e6bda1d70d53ce0255e38"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27613
x-served-by: cache-lga21946-LGA, cache-bma1653-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 1
x-timer: S1676364931.145802,VS0,VE1
vary: Accept-Encoding
content-length: 1039
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 815
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230214085531572E0717C19542275B0D
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6b7cf3c38d840ba8d3457188778bbf0c80ba5b3d205a598aeece5c8711f0dd302e3220f70a078bce0ed65c81d0962e3cfac1dec2f6702a332cef62b266d697308eabb6ad73085353664531e41e2e1edc66abb48044f3ec4ca6b15d1ea1ae91586
x-origin-response-time: 17,23.45.180.110
x-akamai-request-id: 4bb3f39f.308a2e84
expires: Tue, 14 Feb 2023 08:55:31 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:31 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-45-180-110.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=17, inner; dur=15
x-parent-response-time: 109,95.101.10.191
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1
200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1
IP
File type ASCII text, with very long lines (28233), with no line terminators
Hash 725f8fee7631a0e15b68e9e6de4adf1d
17571126c536627299051e321e66309ffd33a82f
f6d5c76c429813991c8f2a6c6f378e6ba30cc49c93ed715d3875c18529912c0f
GET /onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1RakVCQTsKI6XkUyxa0Jh3adTg48BykQWVXeageTlHBKSVEAZYsfyXz5aekaHxxZ547fIr6Xets=
x-amz-request-id: VA29B2Z1WF4W3XJK
last-modified: Fri, 10 Feb 2023 19:40:42 GMT
etag: "181805fcd2e6608d4d0f89a2dc37b132"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: oJgIy_W6Xb8PYtvCrWd1YxpO_.rqcTy7
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27617
x-served-by: cache-lga21983-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 6933
vary: Accept-Encoding
content-length: 10911
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27617
x-served-by: cache-lga21935-LGA, cache-bma1667-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 4220
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27617
x-served-by: cache-lga13621-LGA, cache-bma1667-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 4222
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
200 OK 1.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
IP
File type ASCII text, with very long lines (3927), with no line terminators
Hash dad1cfca7e143c6f971f9489945f5e4a
e7df2d2e32ab7bf4642d535c12b22fe700ecef78
bd1e924b8e386b9c009cd573e58318ae3cc3cf7c846022027d269b0d4ac98428
GET /onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cidyFX9R21NtX9uwGBs6mQVv2UQoeiERHmmJg4FpaYUT9NhNCxnaQYj/yfFMLtVKqSmFIRsz3Nc=
x-amz-request-id: E6MHX49K8258SD1W
last-modified: Fri, 03 Feb 2023 16:55:57 GMT
etag: "7956ff796e65e61f53fd9de4075e1360"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: gEtCTjDdAr9iUO0b1dPiDcxMzmi647ro
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27617
x-served-by: cache-lga21920-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 6630
vary: Accept-Encoding
content-length: 1820
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.9f8be8cd7168c6551632.js?cb=1
200 OK 8.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.9f8be8cd7168c6551632.js?cb=1
IP
File type ASCII text, with very long lines (19473), with no line terminators
Hash 6fd08430a910fa37f5620360d866cace
810124d4a4b75e2e2ca858404e7b74de89123266
81440c5c627cc3afa9906c3a5e5ccc831299f08737cf478b08c6d6017616480c
GET /onsite/js/runtime.9f8be8cd7168c6551632.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KCkSmehGwnSqmOnMVstJtlV5fKrC18yB1KQpX8N6Fz0sG5Ex1LlSK/BYyAdSEyLbTKzxjx+Nt3xTE0oYikHyCCmiuVEikKgyBwPyUn3T+RM=
x-amz-request-id: PYMF9AA49CADWNT9
last-modified: Mon, 13 Feb 2023 20:43:41 GMT
etag: "14ac82a628219b2004bee7c7383d287d"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: hGZINGA9H14eG5HpdlCp7chn5xtBE35Z
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27617
x-served-by: cache-lga21931-LGA, cache-bma1667-BMA
x-cache: HIT, HIT
x-cache-hits: 36, 7931
vary: Accept-Encoding
content-length: 8049
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.a602ae49a55715ba9927.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.a602ae49a55715ba9927.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36283), with no line terminators
Hash cab6606f361d96b49cb522372288bd0a
c6f2ee84f5cf84ca3528ebe253f73a2ff80b2236
a9c2af28647d94239fda33ea40b8b0d6fa631cd32fb29e3a674f433a46cd579c
GET /onsite/js/sharedUtils.a602ae49a55715ba9927.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nevoogdJyv6slDQVUETj1FKoCCQXD70tENeZG4Zb7LY8pQKF6TPk0wt4brVJXMI6UjIiHoTm5nM=
x-amz-request-id: 7QVKQM624F9AVABD
last-modified: Mon, 13 Feb 2023 18:58:32 GMT
etag: "84d41711d6fc74b4e78481b1fb9d4541"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: obnKOj79bGtln9VnM925ejZMsP9hCsW3
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 27618
x-served-by: cache-lga21944-LGA, cache-bma1667-BMA
x-cache: HIT, HIT
x-cache-hits: 42, 7809
vary: Accept-Encoding
content-length: 14025
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a6f49ab4574d64f57249e1847ae887b
3fc366ae1ed2102c557f34e502aeb26a5f2a4b5f
441383931dc8d2af247d1f0989896898a2ada71bb6522f872499a79fe1d15ac8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a6f49ab4574d64f57249e1847ae887b
3fc366ae1ed2102c557f34e502aeb26a5f2a4b5f
441383931dc8d2af247d1f0989896898a2ada71bb6522f872499a79fe1d15ac8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-NZT5ZMWMFV>m=45je32d0&_p=1034913369&_gaz=1&cid=293335504.1676365013&ul=en-us&sr=1280x1024&_s=1&sid=1676365012&sct=1&seg=0&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&dr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&dt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-NZT5ZMWMFV>m=45je32d0&_p=1034913369&_gaz=1&cid=293335504.1676365013&ul=en-us&sr=1280x1024&_s=1&sid=1676365012&sct=1&seg=0&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&dr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&dt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NZT5ZMWMFV>m=45je32d0&_p=1034913369&_gaz=1&cid=293335504.1676365013&ul=en-us&sr=1280x1024&_s=1&sid=1676365012&sct=1&seg=0&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&dr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&dt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://mudwtr.com
date: Tue, 14 Feb 2023 08:55:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash c628f2ad161b1426c20fd8f65f7776f2
a3d4d5ff3509b5cc1a2708ae5eeebd791bb6b242
0c161e01f1414884c1616c6481ace085e96e41bda79ed85d093b3f37738b3046
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 14 Feb 2023 08:55:31 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 12 Feb 2023 23:36:11 GMT
Expires: Sun, 19 Feb 2023 23:36:10 GMT
Etag: "a3d4d5ff3509b5cc1a2708ae5eeebd791bb6b242"
Cache-Control: max-age=484238,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 799495d63dacb50c-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d80ef10030056e7307ff695813efbc6
f09c10a76dbe434a6ee610cf09f1fde5d9da2dc2
641e722747231dc53c0c20cfe252e8bba86b0b9f357d16a07fb31f6aec9ad722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-forms.klaviyo.com/forms/api/v6/KVAmNQ/full-forms
200 OK 6.5 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/KVAmNQ/full-forms
IP
File type ASCII text, with very long lines (55854), with no line terminators
Hash 1f15c8a8375719bac0bc71eba3988aee
325043c02871af8c79145d2fff49eef6b7e3a05b
a2cbab1f5492637040f34cf9c7156cd59f724fb81fa0f9279e2e3d24d055f36f
GET /forms/api/v6/KVAmNQ/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: T0F6akAgokEy8EnJDjWrzIWAO+0Wex678cIpQvmwJMAX4XlL23tDtn/VwMSMUzDzH17+F+KRmEQ=
x-amz-request-id: ESA6HFNDJVDXKZQT
last-modified: Wed, 18 Jan 2023 22:19:55 GMT
etag: "75065fa2dafb2b07fd0e391460e77302"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/KVAmNQ custom-fonts/KVAmNQ
x-amz-version-id: UHiKKpuZG6YjzTuXBXyDVcF4ZT9K.wP5
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
via: 1.1 varnish
age: 608858
x-served-by: cache-bma1668-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1676364932.651348,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 6486
X-Firefox-Spdy: h2
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
200 OK 22 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP
File type ASCII text, with no line terminators
Hash 8e7120c76040a47f820e8c87b95dddce
0ae6d0d5578537f5011e44f97e812069362ac7b2
e64c6bbbdbf2cc009eeb259cfb5f877274d073ea0ef1770008344cdf7d640c3c
OPTIONS /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mudwtr.com/
Origin: https://mudwtr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
content-type: text/html; charset=utf-8
etag: W/"2-ROqGvmcGDXooyAXFZHZ+i4au1yQ"
function-execution-id: xsb33y5unc6e
x-powered-by: Express
x-cloud-trace-context: fd1863c7575c7f821d52ab90b19bb233
content-encoding: gzip
date: Tue, 14 Feb 2023 08:55:31 GMT
server: Google Frontend
cache-control: private
content-length: 22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://mudwtr.com
date: Tue, 14 Feb 2023 08:55:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
public.fbot.me/events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr
200 OK 2 B URL HTTP/2 public.fbot.me/events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://mudwtr.com/
Origin: https://mudwtr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:31 GMT
content-length: 2
server: nginx/1.23.3
access-control-allow-origin: https://mudwtr.com
access-control-allow-credentials: true
access-control-allow-methods: POST, GET
access-control-allow-headers: Authorization, Content-Type
info: {"connection":"upgrade","host":"public.fbot.me","x-forwarded-for":"91.90.42.154","x-forwarded-proto":"https","x-forwarded-port":"443","x-amzn-trace-id":"Root=1-63eb4c83-665bd0220939d0e953b4d244","user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0","accept":"*/*","accept-language":"en-US,en;q=0.5","accept-encoding":"gzip, deflate, br","access-control-request-method":"POST","access-control-request-headers":"authorization,content-type","referer":"https://mudwtr.com/","origin":"https://mudwtr.com","sec-fetch-dest":"empty","sec-fetch-mode":"cors","sec-fetch-site":"cross-site"}
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=KVAmNQ
200 OK 403 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=KVAmNQ
IP
File type JSON data\012- , ASCII text, with very long lines (2098), with no line terminators
Hash 80b51651a0200df7ab711bf6d029d3fa
074b8d67c05ab0af3e020c874c0eb1803ab929a3
da5f68b7f95774784dd175cff3e961841495e0f56eba3f3665d3fc8a4c30722d
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=KVAmNQ HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:31 GMT
age: 4872220
x-served-by: cache-bos4672-BOS, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 9133, 1
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 403
X-Firefox-Spdy: h2
trkn.us/pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120
302 Found 0 B URL HTTP/1.1 trkn.us/pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120 HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Date: Tue, 14 Feb 2023 08:55:31 GMT
Location: /pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120;ip=91.90.42.154;cuidchk=1
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Server: Apache
Set-Cookie: barometric[cuid]=cuid_876c93e7-2858-4cbb-9ed3-78e27309e330; expires=Wed, 14-Feb-2024 08:55:31 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a6f49ab4574d64f57249e1847ae887b
3fc366ae1ed2102c557f34e502aeb26a5f2a4b5f
441383931dc8d2af247d1f0989896898a2ada71bb6522f872499a79fe1d15ac8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0b527c96484891ae258370c902a47d7
2892049ad5849b3c9705b3add505dc61c443d7fc
a323872ee27a869a6b07e993ff11ed8a7f8cdd1ae06670b1ca6292a6cc800483
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
204 No Content 0 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://mudwtr.com
Content-Length: 517
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
function-execution-id: 04ti5enlwekg
x-powered-by: Express
x-cloud-trace-context: 339503f743f25cfb10c69725a1e1c244
date: Tue, 14 Feb 2023 08:55:31 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
34.215.155.61/is
200 OK 32 B IP
File type ASCII text, with no line terminators
Hash fc843b42041104727ffeb196862a87e7
de33cf02de008b3f5066f6bcfa0e380726864de2
46277c72e050a4691070b0f1533436a488eee284f91b6441bb0caa930c094e33
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 34.215.155.61
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 14 Feb 2023 08:55:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 3
server: istio-envoy
connection: close
public.fbot.me/events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr
200 OK 513 B URL HTTP/2 public.fbot.me/events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr
IP
File type JSON data\012- , ASCII text, with very long lines (513), with no line terminators
Hash fc85810722a782f2c83f19e6b27d747f
a3c55386697236bbbe81e96b241f1a9785edf6dd
70a3153cd28a9e20c08c348ba9905234dd13cb10cd8cc5d630baa05801ca21bf
POST /events/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization:
Content-Type: application/json
Origin: https://mudwtr.com
Content-Length: 215
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: application/json
content-length: 513
server: nginx/1.23.3
access-control-allow-origin: https://mudwtr.com
set-cookie: globalId=4271e7d9-68be-4fce-8126-9bc3f176e0c6; Max-Age=315360000; Domain=.fbot.me; Path=/; HttpOnly; Secure; SameSite=None
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rp.liadm.com/j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-
302 Found 0 B URL HTTP/2 rp.liadm.com/j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE- HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 14 Feb 2023 08:55:32 GMT
content-length: 0
trace-id: 18f9dd341bedae52
vary: Origin
location: /j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-&n3pc=true
set-cookie: lidid=4b8be2b2-f3eb-4b58-a2df-25764cfa3877; Max-Age=63072000; Expires=Thu, 13 Feb 2025 08:55:32 GMT; SameSite=None; Path=/; Domain=.liadm.com; Secure; HTTPOnly
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://mudwtr.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
rp.liadm.com/j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-&n3pc=true
200 OK 13 B URL HTTP/2 rp.liadm.com/j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-&n3pc=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 97efe0b7ee61e154d57e80758bb797d8
810b4e115fe9f5ae697666febf2a9abf0b21c9ec
efabba3678b85fcab831b778ea2ddaad1e2a1e952584d3566bc39b7ccb3429d9
GET /j?dtstmp=1676365013482&aid=a-06o0&se=e30&duid=3b0690431c85--01gs7j884ycf8mgvkk9jq1tkd6&tna=v2.6.0&pu=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ext__shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&wpn=lc-bundle&refr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&c=PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vbXVkd3RyLmNvbS8iPjx0aXRsZT5NVURcV1RS4oSiOiBBIENvZmZlZSBBbHRlcm5hdGl2ZTwvdGl0bGU-PG1ldGEgbmFtZT0iZGVzY3JpcHRpb24iIGNvbnRlbnQ9Ik1VRFxXVFIgaXMgYSBjb2ZmZWUgYWx0ZXJuYXRpdmUgZmlsbGVkIHdpdGggYWRhcHRvZ2VucyAmYW1wOyBvcmdhbmljIGluZ3JlZGllbnRzLiBXaXRoIGp1c3QgYSBmcmFjdGlvbiBvZiB0aGUgY2FmZmVpbmUgb2YgY29mZmVlLCBNdWQgcHJvdmlkZXMgbmF0dXJhbCBlbmVyZ3kgJmFtcDsgZm9jdXMuIj48aDEgY2xhc3M9InR3LXRleHQtdGl0bGUgdHctZm9udC1zYW5zIHR3LW1iLTQiPkhlYWx0aHkgbWluZHMgc3RhcnQgd2l0aCBoZWFsdGh5IGhhYml0czwvaDE-&n3pc=true HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Referer: https://mudwtr.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: application/json
content-length: 13
trace-id: 47dd42725dbccac1
vary: Origin
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-pixel-event-id: 67555929-4cd5-4298-ba38-8c0ac57710d5
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://mudwtr.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
201 Created 2 B URL HTTP/2 bvl2bpup07.execute-api.us-east-1.amazonaws.com/colibri/fly
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /colibri/fly HTTP/1.1
Host: bvl2bpup07.execute-api.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 126
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
x-powered-by: Express
access-control-allow-origin: *
apigw-requestid: AUjksjMGoAMEaUg=
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz
200 OK 4.7 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz
IP
File type HTML document, ASCII text, with very long lines (15894)
Hash 36786f75981fc0efd629c4a89e1c78ec
53eae18749c15231d94fd55cc06d83ad287671e7
f41951564ca665482669a0c4e335b2720a64cd58fc983d64cbb825ef3e8df32e
GET /next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4743
date: Wed, 08 Feb 2023 15:45:56 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 10 Jan 2023 21:20:19 GMT
etag: "36786f75981fc0efd629c4a89e1c78ec"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: P72w9_b_W29qiz.RanVvc0dJmUsOmIFW
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dDVso9aHaX6Cemu7JMhGkZjF-iBaI7Wq9lH_03oVa_tQu7u2CqLcOA==
age: 493777
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.5/facebook-pixel.dynamic.js.gz
200 OK 3.3 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.5/facebook-pixel.dynamic.js.gz
IP
File type HTML document, ASCII text, with very long lines (10395)
Hash 4b03a476015c2ba9b9e74e895b97c12c
6c637bf7b7cfaadbb85b675809f52601581e760d
cc6c205c3a2d7a844b1825c4b9925f2811d0391bc937fc322ad973808e459fd5
GET /next-integrations/integrations/facebook-pixel/2.11.5/facebook-pixel.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3273
date: Wed, 08 Feb 2023 15:45:56 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 10 Jan 2023 21:20:19 GMT
etag: "4b03a476015c2ba9b9e74e895b97c12c"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 0G3BR9gYBlJsVZc.gDwNYCc.jcXW4jpg
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SCJfpvOxU_tKpwH0pQtGUo537AgL6GciqyIIiCwuhIGpQpQr5JHhEw==
age: 493777
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/klaviyo/2.2.4/klaviyo.dynamic.js.gz
200 OK 1.9 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/klaviyo/2.2.4/klaviyo.dynamic.js.gz
IP
File type HTML document, ASCII text, with very long lines (4361)
Hash e5b675d2e199628d7da96b99848c6962
db8a3bcc0b275903e3434c18fa9dba185eee8afa
a7fa157cc9a7077cbdda0308a6d15633841c3a4406403025e0746e9429bf841e
GET /next-integrations/integrations/klaviyo/2.2.4/klaviyo.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1882
date: Mon, 06 Feb 2023 10:17:03 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 10 Jan 2023 21:20:19 GMT
etag: "e5b675d2e199628d7da96b99848c6962"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: KU0n.PkwmbK55NugsoqNQkcjabSaXm0u
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s7-mouJh8FFrP7csgiaLRXD8mkbvQc2eYm5f23unckClLbt9p1PVpg==
age: 686310
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js
200 OK 2.7 kB URL HTTP/2 cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js
IP
File type ASCII text, with very long lines (334)
Hash 9dfa40f8e6bd109b617a35f02f5f86c0
2db2a31a5609b2ebd28aeb476546e17d5c920bd1
d2eaa61621cad5f96b38887744b4dae6defa167bba6e50c865b31535b185ab36
GET /analytics-next/bundles/schemaFilter.bundle.d0fc84c62e956d168cce.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 02:25:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 00:06:36 GMT
etag: W/"d6985af1d6ad9e8c2f97f24f7b27306e"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: VLQuST3Rg1zoSyN.SWag4b2R93Pv7oyc
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: myO-Wg7FQdu_BCcvMZ4WeA0awmZlnx_Ys2NzuXbVMIwLzmL-b4uIMA==
age: 2528998
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
200 OK 22 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash befb217271e2e926c7d898f1c85f6cb7
b6ca8f0b9eb7ddebc916cbc77eddab8532216748
21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 22177
date: Tue, 31 Jan 2023 17:24:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 10 Jan 2023 21:20:17 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: XSryTsiM6vN7xj.wuhafUdfSpr8DWfV5
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3zmrG6NSjpowJw8Jx7ALCcjfMdXqbFjcSS8yxBnkpwyrZQNsLoRfpA==
age: 1179057
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js
200 OK 2.9 kB URL HTTP/2 cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js
IP
File type ASCII text, with very long lines (9157)
Hash 0a814bd9a4947922365ac4b975faab07
64f4364e7de8f28c4e7c2dacbe1165e2cf9eac5f
aefcb68e647e12f768905e38cd4cd0d599077c76a6fc659adc3e09faadf10153
GET /analytics-next/bundles/ajs-destination.bundle.2cd9e450202b69d545a3.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 27 Jan 2023 02:13:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 26 Jan 2023 20:14:52 GMT
etag: W/"cc39e85781964199cd0d9501c897e385"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: jZ2L92raJDMf08tukXqdJ6aGBdPFzdTy
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6oVCLVLYPUfg2ghDQ3izg6rypbHeARttWvrtmXtTKMgmN4beWbiTZg==
age: 1579342
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
200 OK 906 B URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
IP
File type ASCII text, with very long lines (559)
Hash 485ab655b2167544ffcf5486b069fff9
14164045860d528f2bc3e1cc00ab03a5cfccd5f7
727e8805cf332dc4a1f568ed534dc8d1621a975cd533949b860509607a34243c
GET /widget/widget_async.js HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 906
last-modified: Mon, 06 Feb 2023 15:32:17 GMT
content-encoding: gzip
x-amz-meta-mtime: 1675697536.03
accept-ranges: bytes
server: AmazonS3
date: Tue, 14 Feb 2023 08:35:03 GMT
cache-control: max-age=3600, public
etag: "485ab655b2167544ffcf5486b069fff9"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ge8nFyvhNqCSXaX73IHlmE-tbb2QLzu6mrgP69pVbGpnFbTI4CqFfg==
age: 1229
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash aba7dc8c0bab7dcfb0610c0ca00cb633
c9f053efefde2a6b4b9697304fa39cdfb4b40695
b30b735cbcaee8096a265329716e90967215ad99eb84d59c7e5575ac7b193f13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4102
Cache-Control: max-age=94758
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Etag: "63ea0ba4-117"
Expires: Wed, 15 Feb 2023 11:14:50 GMT
Last-Modified: Mon, 13 Feb 2023 10:06:28 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
d3rr3d0n31t48m.cloudfront.net/widget/widget.css?v=99cf079
200 OK 13 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.css?v=99cf079
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3b5411da20504fe4111b5840e84697aa
af96e66fde98ebf8a0926cda402b0a830119fd35
9c0f9a68198d26ba731a561d61065057b0e7a8974174a7a4ce2536d61d1adaa9
GET /widget/widget.css?v=99cf079 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
content-length: 13404
date: Mon, 06 Feb 2023 15:32:51 GMT
last-modified: Mon, 06 Feb 2023 15:32:17 GMT
etag: "3b5411da20504fe4111b5840e84697aa"
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
cache-control: max-age=2592000, public
x-amz-meta-uid: 0
content-encoding: gzip
x-amz-meta-mtime: 1675697534.76
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CU1TqS4jfSvwc9hoDtEeXF90bGSiFW4cKwD6Zeg1zmqbhdnRwuUplg==
age: 667362
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B80E26F275D346C99C4D8CCD016F2C94 Ref B: OSL30EDGE0515 Ref C: 2023-02-14T08:55:32Z
date: Tue, 14 Feb 2023 08:55:32 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b6d7ddbbaf0688739eab5db1638efc86
c1fb4ba321f1eee00df9a0941e1eff9929560460
1931bc6c1b93c0d0560ee93a7320f69e1cc054058d953334f829ae1adad95a91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 837
Cache-Control: max-age=166773
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Etag: "63eb31b4-1d7"
Expires: Thu, 16 Feb 2023 07:15:05 GMT
Last-Modified: Tue, 14 Feb 2023 07:01:08 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
static.klaviyo.com/onsite/js/klaviyo.js
200 OK 553 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js
IP
File type ASCII text, with very long lines (881)
Hash 6383008d7a18a54de747a655509ac9a3
196e0d5fb6abfdd55e0384ce641bf341c3810b15
9892d4c7af6fbc39aeb904989c7d8026a3c6dddc3bb80d0aea7e50b4259f81ee
GET /onsite/js/klaviyo.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-type: application/javascript
etag: "252b8be63043e5fd780ba548e8f958d6"
server: nginx
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:32 GMT
age: 27618
x-served-by: cache-lga21974-LGA, cache-bma1653-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2005
x-timer: S1676364933.521875,VS0,VE0
vary: Accept-Encoding
content-length: 553
X-Firefox-Spdy: h2
trkn.us/pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120;ip=91.90.42.154;cuidchk=1
200 OK 42 B URL HTTP/1.1 trkn.us/pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120;ip=91.90.42.154;cuidchk=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d
GET /pixel/conv/ppt=20618;g=homepage;gid=48262;ord=1267001206;v=120;ip=91.90.42.154;cuidchk=1 HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mudwtr.com/
Connection: keep-alive
Cookie: barometric[cuid]=cuid_876c93e7-2858-4cbb-9ed3-78e27309e330
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Tue, 14 Feb 2023 08:55:31 GMT
Expires: Sun, 9 Nov 1980 12:58:00 GMT
Last-Modified: Sun, 9 Nov 1980 12:59:00 GMT
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Pragma: no-cache
Server: Apache
Set-Cookie: barometric[cuid]=cuid_876c93e7-2858-4cbb-9ed3-78e27309e330; expires=Wed, 14-Feb-2024 08:55:31 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
barometric[idfa]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 42
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 39bd8923ebd523f3d7e9a40f555e9402
d5ba449bc6c3edc72eebaf5dc66817723e387c89
14f05165df53af8abe516d752d576b901e7647ad8bef9645a621f0e634127002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash 20dcf873ff1608d745dceb84d6857da6
d17110bf379c531240ee77310be38d61e3c54777
6b6f8057e240a65dc3ed044f6249e4a12d5e9d2c4f8e18e0f44f9603ee5a03ff
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "20dcf873ff1608d745dceb84d6857da6"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
script.crazyegg.com/pages/data-scripts/0116/8490/site/mudwtr.com.json?t=1
200 OK 1.7 kB URL HTTP/2 script.crazyegg.com/pages/data-scripts/0116/8490/site/mudwtr.com.json?t=1
IP
File type JSON data\012- , ASCII text, with very long lines (4761), with no line terminators
Hash f3be7e3ff5bc7fbb659b0cfe266c5baa
2d7e6f5060b018bab3f016dc9b2082c476785b86
814951d8d184ee2b77cfbda5228541837e38a37eea5babfa677cc2a2314708b4
GET /pages/data-scripts/0116/8490/site/mudwtr.com.json?t=1 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: application/json
content-length: 1698
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Mon, 13 Feb 2023 22:49:44 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 18527
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495dcbdca1c0e-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 39bd8923ebd523f3d7e9a40f555e9402
d5ba449bc6c3edc72eebaf5dc66817723e387c89
14f05165df53af8abe516d752d576b901e7647ad8bef9645a621f0e634127002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5.js
301 Moved Permanently 0 B URL HTTP/2 cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /projects/ff2f4995-f01b-447d-85d4-9bed9e596af5.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 14 Feb 2023 08:55:32 GMT
accept-ranges: bytes
content-length: 0
location: https://cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5_eu.js
cache-control: max-age=86400
x-hw: 1676364932.cds239.sk1.hn,1676364932.cds210.sk1.c
x-hw-loc: https://cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5.js
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 39bd8923ebd523f3d7e9a40f555e9402
d5ba449bc6c3edc72eebaf5dc66817723e387c89
14f05165df53af8abe516d752d576b901e7647ad8bef9645a621f0e634127002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: qVwDaOLp4GCS88WHibxSdjfE4aGUYigeFdETENdD36ywuKVUKU8DpmplCd/hFWk1aBwAX8oZjN4eksdzzsAu5w==
content-length: 27843
x-fb-trip-id: 1904183273
date: Tue, 14 Feb 2023 08:55:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1406770/tfa.js
200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1406770/tfa.js
IP
File type ASCII text, with very long lines (59743)
Hash f4f96d461c1310e95a90d5487eb209d5
20f629a29e152734b0d5827af75cb7850b484178
1e6cefdd2fdbd2f8338b8707ee873499563952ff0546331439f47882b0426870
GET /libtrc/unip/1406770/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: V+MNAYeWXR8DeaUUF7dp5dm9i7QOda0E/ik3wUw6Rgu9R46ubp/xQwuLTO0OO4ssiGHdjGi31nU=
x-amz-request-id: Z2BY22P4DRG4P7J6
x-amz-replication-status: COMPLETED
last-modified: Sun, 12 Feb 2023 11:21:34 GMT
etag: "5bc15d61fe700a9d06940d2b10d7ffae"
x-amz-version-id: sBpt35998R6MLQWT4kSINdN_ZjVG78Bu
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:32 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1676364933.594137,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 47
content-length: 18371
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=KVAmNQ
304 Not Modified 0 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=KVAmNQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /onsite/js/klaviyo.js?company_id=KVAmNQ HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"9face502924e6bda1d70d53ce0255e38"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 14 Feb 2023 08:55:32 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"9face502924e6bda1d70d53ce0255e38"
age: 27614
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1676364933.608866,VS0,VE0
vary: Accept-Encoding
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/369166212/?random=1676365014055&cv=11&fst=1676365014055&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=1---&auid=2064992969.1676365012&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&rfmt=3&fmt=4
200 OK 999 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/369166212/?random=1676365014055&cv=11&fst=1676365014055&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=1---&auid=2064992969.1676365012&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2253), with no line terminators
Hash ce837824bba66cffcd99aeb20f9d88bb
2b2902671fef358da4548f1db1d88bd3c622a57c
97d0cc05458c70b30d5ebea001677f93998b936c2aafcd64abcb5bfae531474e
GET /pagead/viewthroughconversion/369166212/?random=1676365014055&cv=11&fst=1676365014055&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=1---&auid=2064992969.1676365012&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 999
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 14-Feb-2023 09:10:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f48f404b096233d450cf335d9f40f24e
18ce733026e09526ffba5f79822902bffcbbd4e1
547f22d026f56991f3b61db25c1331a88a3728276bed76b89619cb738c195547
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 704848873afb62f820c1b194e3620519
6b5dc73daf065a51ee2364b34f0e488902663d3d
19c8c76bb1c818f85ff5aafdf3d0bdd9e7ee2a4ec0753954d220eb2f23a234a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/369166212/?random=1676365013083&cv=11&fst=1676365013083&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=error&auid=2064992969.1676365012&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 933 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/369166212/?random=1676365013083&cv=11&fst=1676365013083&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=error&auid=2064992969.1676365012&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2047), with no line terminators
Hash 2553eac527943795b6f6a679edf22ea8
989c306f144e59c44dd6a392dcf0038b2b55f061
7fb9d20127594ed6e4acfadda2acd05cd6d09c4c62a729f7ebb1ff2fcedb2b30
GET /pagead/viewthroughconversion/369166212/?random=1676365013083&cv=11&fst=1676365013083&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&us_privacy=error&auid=2064992969.1676365012&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 933
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 14-Feb-2023 09:10:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&fmt=3&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1
200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&fmt=3&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&fmt=3&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 14-Feb-2023 09:10:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ec33afd6e21970c203dad1ec005247f7
fecf244de80795a3503605da5ce15c65522ca035
a6c61d21d16b752cb8a9f6653e2b112f2e27214d484a3d9d155f8f73bdd74107
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6497
Cache-Control: max-age=86031
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Etag: "63e9e032-1d7"
Expires: Wed, 15 Feb 2023 08:49:23 GMT
Last-Modified: Mon, 13 Feb 2023 07:01:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 727 B IP
Hash 925e92191e7c341399820ae91a0a6b26
3b424acd33eae424f4df4b0ac4d463cf06fe2898
8267e1cefb2de48dc8456af902ec1817800c2070714e57c5e5bc5bd49fc2d24b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3512
Cache-Control: max-age=95277
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Etag: "63ea0ff9-2d7"
Expires: Wed, 15 Feb 2023 11:23:29 GMT
Last-Modified: Mon, 13 Feb 2023 10:24:57 GMT
Server: ECS (amb/6B80)
X-Cache: HIT
Content-Length: 727
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&z=1406493760
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&z=1406493760
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NZT5ZMWMFV&cid=293335504.1676365013>m=45je32d0&aip=1&uid=18ea7d7a-70b8-4b71-97f0-079a240e7fcf&z=1406493760 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1676365012471&id=t2_qzqfmzvq&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=baa331d2-dc6a-44b8-af4b-7a8778708918&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1676365012471&id=t2_qzqfmzvq&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=baa331d2-dc6a-44b8-af4b-7a8778708918&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1676365012471&id=t2_qzqfmzvq&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=baa331d2-dc6a-44b8-af4b-7a8778708918&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:32 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/800407566/?random=1676365013070&cv=11&fst=1676365013070&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&label=k4T1CLjL6rcBEI6A1f0C&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&hn=www.google.com&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F>m_ee=1&us_privacy=error&auid=2064992969.1676365012&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
addstrap-ui.addshoppers.com/1.3.7/cs_addstrap.css
200 OK 7.0 kB URL HTTP/2 addstrap-ui.addshoppers.com/1.3.7/cs_addstrap.css
IP
File type ASCII text, with very long lines (42657)
Hash a73b0577de39e37c8d965f5a2ed26dd4
d7bb985ed0e851a603f61f7838ad5f503a55ff6b
c1d1bf120474a3eea8b2b8886297936ab7eebca213a82d7951f7a4ab6c66bd0d
GET /1.3.7/cs_addstrap.css HTTP/1.1
Host: addstrap-ui.addshoppers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycds2w0lQWOom9j4BZ6_pZxRTTdoezTDKHrWEacilwQ_csANdMaTt6evtHybvHanphMHmKSQCwYdnA-DBlIa6BstttA
x-goog-generation: 1652278205569317
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7018
content-encoding: gzip
x-goog-hash: crc32c=u+kkCg==, md5=pzsFd94543yNll9aLtJt1A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 7018
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Sun, 22 Jan 2023 18:03:04 GMT
expires: Mon, 22 Jan 2024 18:03:04 GMT
cache-control: no-transform
age: 1954348
last-modified: Wed, 11 May 2022 14:10:05 GMT
etag: "a73b0577de39e37c8d965f5a2ed26dd4"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 39bd8923ebd523f3d7e9a40f555e9402
d5ba449bc6c3edc72eebaf5dc66817723e387c89
14f05165df53af8abe516d752d576b901e7647ad8bef9645a621f0e634127002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 727 B IP
Hash 925e92191e7c341399820ae91a0a6b26
3b424acd33eae424f4df4b0ac4d463cf06fe2898
8267e1cefb2de48dc8456af902ec1817800c2070714e57c5e5bc5bd49fc2d24b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3512
Cache-Control: max-age=95277
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Etag: "63ea0ff9-2d7"
Expires: Wed, 15 Feb 2023 11:23:29 GMT
Last-Modified: Mon, 13 Feb 2023 10:24:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f48f404b096233d450cf335d9f40f24e
18ce733026e09526ffba5f79822902bffcbbd4e1
547f22d026f56991f3b61db25c1331a88a3728276bed76b89619cb738c195547
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
campaign.fbot.me/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/campaigns.js
200 OK 18 kB URL HTTP/2 campaign.fbot.me/1b58b650-44b4-4c38-bcb0-b9d3ee961b64/campaigns.js
IP
Hash 569df126c11954a6a8bf20586e3b5d8a
b92c1df59a8e07c69358f01c0b30bdb8002ef015
7836787889cb2f03568453acad6f9e4780cb132b6601e6222d427fc77353e150
GET /1b58b650-44b4-4c38-bcb0-b9d3ee961b64/campaigns.js HTTP/1.1
Host: campaign.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 15:24:02 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Mg4.FqqByjoHg164GofEwR3vyErlOZx6
server: AmazonS3
content-encoding: gzip
date: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: max-age=30
etag: W/"43c284018ccd10d4240cf14319a29122"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aJWix_zmtlb_-ChphBYkkSq2oPc6T-TSrz-0UYt1P1L6Yy0tUqTm4Q==
age: 25
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=647dc15
200 OK 3.8 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=647dc15
IP
File type ASCII text, with very long lines (577)
Hash eaf7f6725a9556446585ffc4426ff04f
d6a12c776d69ea9138b094e74466a785dab1b78e
cc01658104db7b937a6d79c1a50312d96f2cfec0e1e73d45990fd060e482382c
GET /widget/triggerRunner.js?v=647dc15 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3790
date: Mon, 06 Feb 2023 15:32:50 GMT
last-modified: Mon, 06 Feb 2023 15:32:17 GMT
etag: "eaf7f6725a9556446585ffc4426ff04f"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1675697536.02
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I8EhDCCps7sFdzdQuKWW8ynOk6eZxo4ZspSfLG45V5pobGUyqtaQIQ==
age: 667363
X-Firefox-Spdy: h2
script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js
200 OK 27 kB URL HTTP/2 script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js
IP
File type ASCII text, with very long lines (63889)
Hash ce24d7f195a7e0040f4ef4a79dbd1f5a
f97e0cb16de0115b664425a15994d9a853c8bfb0
48368d0d5f07fd2c54764ca98bada681268cff5283f73f99f83173ac1bcb7082
GET /pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: text/javascript
content-length: 26903
cache-control: public, max-age=31536000, s-maxage=31536000
timing-allow-origin: *
last-modified: Sun, 29 Jan 2023 09:50:22 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 53549
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495debc220b51-OSL
X-Firefox-Spdy: h2
djnf6e5yyirys.cloudfront.net/js/friendbuy.min.js
200 OK 42 kB URL HTTP/1.1 djnf6e5yyirys.cloudfront.net/js/friendbuy.min.js
IP
File type C source, ASCII text, with very long lines (32176)
Hash 44f0ddfe2d022cde2bde5d09efa1696e
b0f714c1414545321fdf8fb4e0ae2cda21c3ca78
54c427b56c105c12bfea9178f3f89c7b9f9bcfded9b49531f0877e89209ff91a
GET /js/friendbuy.min.js HTTP/1.1
Host: djnf6e5yyirys.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Oct 2021 20:51:22 GMT
x-amz-version-id: eATjcjBrymkaCY25fDl0wDYs2YHXtSAL
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 14 Feb 2023 08:32:29 GMT
Cache-Control: public, max-age=180
ETag: W/"6d60ce692f3c7b9f4a8baad4b84d05a7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cu5hjarv1QhK-8-k3x3holTuCwO0fWzmTOQ_FJJY0VpLaTLJ3_Nvhg==
Age: 1393
bat.bing.com/action/0?ti=134596063&tm=gtm002&Ver=2&mid=1e88dec0-3ae2-4a08-a7d1-3840d3754679&sid=87818af0ac4511eda092fd55f9132922&vid=878197e0ac4511eda1600fce6324c1c9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&p=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&r=https%3A%2F%2Fwww.shareasale-analytics.com%2F<=1581&evt=pageLoad&sv=1&rn=44388
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=134596063&tm=gtm002&Ver=2&mid=1e88dec0-3ae2-4a08-a7d1-3840d3754679&sid=87818af0ac4511eda092fd55f9132922&vid=878197e0ac4511eda1600fce6324c1c9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&p=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&r=https%3A%2F%2Fwww.shareasale-analytics.com%2F<=1581&evt=pageLoad&sv=1&rn=44388
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=134596063&tm=gtm002&Ver=2&mid=1e88dec0-3ae2-4a08-a7d1-3840d3754679&sid=87818af0ac4511eda092fd55f9132922&vid=878197e0ac4511eda1600fce6324c1c9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&p=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&r=https%3A%2F%2Fwww.shareasale-analytics.com%2F<=1581&evt=pageLoad&sv=1&rn=44388 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2BB27409561465402EE966B157E164CA; domain=.bing.com; expires=Sun, 10-Mar-2024 08:55:32 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1BA965F3318749F1B069D379F24D3456 Ref B: OSL30EDGE0515 Ref C: 2023-02-14T08:55:32Z
date: Tue, 14 Feb 2023 08:55:32 GMT
X-Firefox-Spdy: h2
cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5_eu.js
200 OK 18 kB URL HTTP/2 cdn.mouseflow.com/projects/ff2f4995-f01b-447d-85d4-9bed9e596af5_eu.js
IP
File type ASCII text, with very long lines (61877), with CRLF line terminators
Hash 282260ed71cb9694791c7ac33b78d788
166856344838162f8a2e6f86c0e2107723138578
beaf64984fe23adc9b1d758e766246d2f3027c1212a96767068f911b1c92393f
GET /projects/ff2f4995-f01b-447d-85d4-9bed9e596af5_eu.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mudwtr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
cache-control: max-age=86400
content-encoding: gzip
content-length: 17556
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Jan 2023 18:39:54 GMT
accept-ranges: bytes
etag: "7084069a335d91:0"
server:
x-hw: 1676364932.cds239.sk1.hn,1676364932.cds242.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/369166212/?random=1676365014055&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&fmt=3&is_vtc=1&random=3147974927&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/369166212/?random=1676365014055&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&fmt=3&is_vtc=1&random=3147974927&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/369166212/?random=1676365014055&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dblackcrow_target%7Cremarketing%7Call%7Cconversion%7Csite%7Crats%7C10%7Cmud-wtr%7Cscore_7%3Bnon_interaction%3Dtrue&fmt=3&is_vtc=1&random=3147974927&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/369166212/?random=1676365013083&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=556108671&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/369166212/?random=1676365013083&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=556108671&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/369166212/?random=1676365013083&cv=11&fst=1676361600000&bg=ffffff&guid=ON&async=1>m=45be32d0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&tiba=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=556108671&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 14 Feb 2023 08:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/134596063.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/134596063.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/134596063.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1B25DD4F42E347EA9F5E9798B339893D Ref B: OSL30EDGE0515 Ref C: 2023-02-14T08:55:32Z
date: Tue, 14 Feb 2023 08:55:32 GMT
X-Firefox-Spdy: h2
script.crazyegg.com/pages/data-scripts/0116/8490/sampling/mudwtr.com.json?t=465656
200 OK 144 B URL HTTP/2 script.crazyegg.com/pages/data-scripts/0116/8490/sampling/mudwtr.com.json?t=465656
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 21ee52eb1ce9c4cd27655a852d0c1192
b4aa252bd6e483cd71f01848bc8963ce9356860a
7920d4695fbe4c9e206062f5db1f9f90964d5df42f4f2dd1177fe51eea5a0042
GET /pages/data-scripts/0116/8490/sampling/mudwtr.com.json?t=465656 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: application/json
content-length: 144
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Tue, 14 Feb 2023 03:46:47 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 18525
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495df3ffa1c0e-OSL
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.57992c41.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.57992c41.js
IP
File type ASCII text, with very long lines (57033), with no line terminators
Hash a2989b2a8a5c2cde42b6a5ab4aadbe8c
8d491fee3e1efb9ff779a876c68cac713e95ae6a
f8e23d16e80c334666ecc019b8a1a12310ee3c73b651677ca3020ac0db650d19
GET /ct/lib/main.57992c41.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "a2989b2a8a5c2cde42b6a5ab4aadbe8c"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19688
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=c5c0b16
200 OK 48 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=c5c0b16
IP
File type ASCII text, with very long lines (778)
Hash fe9f523b732db490ff2e6acfe3915583
98acf9777838732fc6b1b7b312a8968975a8e95a
f1b9aa5c7325a608a9580bfd2d6ee187b626d850ae59658e643143178824c8ce
GET /widget/widget.js?v=c5c0b16 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 48260
date: Mon, 06 Feb 2023 15:32:51 GMT
last-modified: Mon, 06 Feb 2023 15:32:17 GMT
etag: "fe9f523b732db490ff2e6acfe3915583"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1675697534.28
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oZYItnj-h7Kkn44ncuxXa3U_46K675Jmw2G_naxQfsWEA44YXN8ToA==
age: 667363
X-Firefox-Spdy: h2
pagestates-tracking.crazyegg.com/healthcheck
200 OK 19 B URL HTTP/2 pagestates-tracking.crazyegg.com/healthcheck
IP
File type JSON data\012- , ASCII text
Hash d06f04fccf68d0b228a5923187ce1afd
5de9df9fdd66a91eed06e31981553d4ab9ccf490
830e67bda2532cd5880ee86e3b33e69721082f8458bb0df0cd4edbb1577fd375
GET /healthcheck HTTP/1.1
Host: pagestates-tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 19
date: Mon, 23 Jan 2023 11:43:55 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: Access-Control-Allow-Origin
access-control-max-age: 31536000
last-modified: Fri, 08 Jul 2022 22:25:51 GMT
etag: "d06f04fccf68d0b228a5923187ce1afd"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DP5TZ25mAq8ylD_FVWodvH5gkvf_KnKBPlJHzqK9_5FkQTyRYyywiw==
age: 1890699
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 14 Feb 2023 07:45:20 GMT
expires: Tue, 14 Feb 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 4213
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1676365014903&dep=2%2CPAGE_LOAD
200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1676365014903&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1676365014903&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://mudwtr.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1474985911227378
date: Tue, 14 Feb 2023 08:55:33 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1676364933.305fbac5
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
api.blackcrow.ai/v1/events/view?
201 Created 451 B URL HTTP/2 api.blackcrow.ai/v1/events/view?
IP
Hash 12f487368d7f0a786c1a7617a18d5393
d258298acb5547e188c1789265050b17c9cfc488
400097fe999d888c505f70994ec96db87a057da6598072b69a0c2af54ba98664
POST /v1/events/view? HTTP/1.1
Host: api.blackcrow.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Origin: https://mudwtr.com
Content-Length: 1161
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Tue, 14 Feb 2023 08:55:31 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-allow-headers: Content-Type
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: total;dur=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365014906&dep=5%2CEVENT_TAGS_ABSENT
200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365014906&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365014906&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1UUmtPV1l4TnpFdE5UZGxNaTAwT0dZNExXRmxNemt0T1ROaE5UVmhOVE0yTkRoaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://mudwtr.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1069396446836669
date: Tue, 14 Feb 2023 08:55:33 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1676364933.305fbc66
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash 4f3cc39ffcbd3be469c5e747c3618389
b84f4981f2b9146ff74a6d31be84cf167c3115b4
e7f080cfe7387bcca9e3ae45b39591ce6bfa4ca2ca6ccad8751223dc375caae9
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 14 Feb 2023 08:55:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 14 Feb 2023 02:01:42 GMT
Expires: Wed, 15 Feb 2023 02:01:42 GMT
ETag: "b84f4981f2b9146ff74a6d31be84cf167c3115b4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 571c9258205e071611050913b4242bbd
b652fca3b881a9f2f125922ce5f57b29b4b8b3e3
015aa25b02fafcd53b5c2185e297e36e3bb175a47dcc900087f86e52e10f48ca
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:33 GMT
Last-Modified: Tue, 14 Feb 2023 07:21:57 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zzH-X1H01jT6ZOOdcZ-Dpa6vbWO6CD1wn4b9aaS0DhDionkfZ2fE-w==
Age: 5616
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ovo/v17/yYLl0h7WyfzTzI44.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/ovo/v17/yYLl0h7WyfzTzI44.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15908, version 1.0\012- data
Hash 0051b92e8f10572b82f553163d74332c
61cd2fd6e7290f54a4ba42093d5293df04a54729
f15f985cf4288b6c8756d9c950c1c2f16f0f291035396c6ce463d153463640d7
GET /s/ovo/v17/yYLl0h7WyfzTzI44.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Feb 2023 05:30:46 GMT
expires: Wed, 14 Feb 2024 05:30:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:39:28 GMT
content-type: font/woff2
age: 12287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31216, version 1.0\012- data
Hash 9d57cf636bfec7981ca5ce494303afd5
442c8d98b87190d0937dfba2e55b500bfc8a95d8
64aa7a01c38e5f51aa6b7cd48decf2bd9ef228857df6ff47b0f58b38c1bdfc30
GET /s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 Feb 2023 02:13:30 GMT
expires: Sat, 10 Feb 2024 02:13:30 GMT
cache-control: public, max-age=31536000
age: 369723
last-modified: Thu, 17 Nov 2022 15:51:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 1db14f8a17a64913f43233c77cd479f5
9f3d5691379c11f41ec292408b071073c93e9c7f
f6de182e022c14cf62c4b4ed78fb000d11775dfeb5cc38b143047422489cd4e3
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 14 Feb 2023 08:55:33 GMT
Last-Modified: Tue, 14 Feb 2023 07:58:56 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: M2gNLJ7pCw43w9ZfO3K3RXDt08SFEPuCJOLadFkwgv3YZ83wFbkvbQ==
Age: 3397
api.segment.io/v1/p
200 OK 21 B IP
File type JSON data\012- , ASCII text
Hash 90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254
POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://mudwtr.com
Content-Length: 1357
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:33 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: https://mudwtr.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
tracking.crazyegg.com/clock?t=1676365015161&tk=92995ff523574da5f1c9ed34e839da65&s=417302&p=%2F&u=1168490&v=c4eb06e4b732da43da0573503e74791783c332eb
200 OK 26 B URL HTTP/2 tracking.crazyegg.com/clock?t=1676365015161&tk=92995ff523574da5f1c9ed34e839da65&s=417302&p=%2F&u=1168490&v=c4eb06e4b732da43da0573503e74791783c332eb
IP
File type ASCII text, with no line terminators
Hash b442a353efd145493cea39888d5e48cc
ba195bf2fc7042a3a11d7702fba07f5946ba5e08
9c20d7a0f237711122d5d38fb8083f9c85014ae3a7710eff83ff1ff96e437faf
GET /clock?t=1676365015161&tk=92995ff523574da5f1c9ed34e839da65&s=417302&p=%2F&u=1168490&v=c4eb06e4b732da43da0573503e74791783c332eb HTTP/1.1
Host: tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Tue, 14 Feb 2023 08:55:33 GMT
content-type: text/plain
content-length: 26
cache-control: no-store
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 601b4db8cd19aeaec5fdbdee9302f7f0
13e7398163cda398220e297d6566b0aef7347ce8
2b4903af4b8c6f6a671ae0c396beb42437d54c30065e5d7279a5e386e5ff4572
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109399
Date: Tue, 14 Feb 2023 08:55:33 GMT
Etag: "63ea54dc-1d7"
Expires: Wed, 15 Feb 2023 15:18:52 GMT
Last-Modified: Mon, 13 Feb 2023 15:18:52 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CkrBfQZLzk3CxempbQ23yuQpkh0t5pKDg5XsRlLusiV7mcttgv-wEA==
cdn1.friendbuy.com/widgets/configs/site-2d1e9cf4-mudwtr.com.json
200 OK 32 B URL HTTP/1.1 cdn1.friendbuy.com/widgets/configs/site-2d1e9cf4-mudwtr.com.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 6bb63ccaa2103e10659d28538664bb67
66c8546217d489d184c3c28ac047e343e88a0f48
6e37196d49d0d622498c3d0334561a079dec023594df012539730f20c73aa935
GET /widgets/configs/site-2d1e9cf4-mudwtr.com.json HTTP/1.1
Host: cdn1.friendbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 32
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Last-Modified: Fri, 04 Nov 2022 21:09:54 GMT
x-amz-version-id: trb5RBe5n0LHrGwVNdjiki0grbseZsQF
x-amz-storage-class: REDUCED_REDUNDANCY
Server: AmazonS3
Date: Tue, 14 Feb 2023 08:55:33 GMT
Cache-Control: max-age=180
Expires: Mon, 01 Nov 2032 21:09:53 UTC
ETag: "6bb63ccaa2103e10659d28538664bb67"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Wlmg1NP-QHzOXJQgN9vLecwJ59Sk5ahzB6BMfNuh5PobgP_msD9mIQ==
Age: 25
ct.pinterest.com/v3/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1676365014910
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1676365014910
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2612860681128&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1676365014910 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1483209527050054
date: Tue, 14 Feb 2023 08:55:33 GMT
akamai-grn: 0.274f2417.1676364933.305fca00
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365015171&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365015171&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%224f242ad5-9858-47D6-EE5E-997FED85A5C3%22%7D&tid=2612860681128&cb=1676365015171&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1385011274152326
date: Tue, 14 Feb 2023 08:55:33 GMT
set-cookie: _pinterest_ct_ua="TWc9PSY4Sjd3WUY3ck9yN3hSQjdkL1JtaFhxWTVmaXk5bVhsYlMxQm1ITlpNVzhUVnJjUEFnYkQ4UjZwNVJCdFpZK2hRT3RFdnMxM2gzOTdhem9la1pqRG5ubXRwUzJSQnFVTzNHYzJGYTBQRDR5dz0mMlFnVFdUWWRTMXBLMHdJK1d3MjlFcVlVc3VBPQ=="; Expires=Wed, 14 Feb 2024 08:55:33 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1676364933.305fca10
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=blackcrow&ed=%7B%22lead_type%22%3A%22remarketing%22%2C%22video_title%22%3A%22all%22%2C%22order_id%22%3A%22conversion%22%2C%22property%22%3A%22site%22%2C%22promo_code%22%3A%22site%22%2C%22search_query%22%3A%22rats%22%2C%22order_quantity%22%3A10%2C%22value%22%3A7%7D&tid=2612860681128&cb=1676365015168&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=blackcrow&ed=%7B%22lead_type%22%3A%22remarketing%22%2C%22video_title%22%3A%22all%22%2C%22order_id%22%3A%22conversion%22%2C%22property%22%3A%22site%22%2C%22promo_code%22%3A%22site%22%2C%22search_query%22%3A%22rats%22%2C%22order_quantity%22%3A10%2C%22value%22%3A7%7D&tid=2612860681128&cb=1676365015168&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=blackcrow&ed=%7B%22lead_type%22%3A%22remarketing%22%2C%22video_title%22%3A%22all%22%2C%22order_id%22%3A%22conversion%22%2C%22property%22%3A%22site%22%2C%22promo_code%22%3A%22site%22%2C%22search_query%22%3A%22rats%22%2C%22order_quantity%22%3A10%2C%22value%22%3A7%7D&tid=2612860681128&cb=1676365015168&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2218ea7d7a-70b8-4b71-97f0-079a240e7fcf%22%2C%22pin_unauth%22%3A%22dWlkPVptRm1PRFZoWmpZdFpEbGhOeTAwT1dJNExXRmxOek10TjJZek5URTFNalV6TkRFeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2257992c41%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
referrer-policy: origin
x-pinterest-rid: 7211136606989635
date: Tue, 14 Feb 2023 08:55:33 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZpdzVrMlc4R0RzTnFiaGsweWN2alNicEhtSWljdHhsckl6aXJZbDczSXNYV3ZOM25OYU55eHlkcVNON21FQTdnSnhTT3hsR01OdUNydDVpbGttTmhJM05BZ3NkYW5hMjM3U0FOMEJYT1lPQT0mT0lvM0dnNitPYmFHYnJOQk4rVCswT3pOTFZZPQ=="; Expires=Wed, 14 Feb 2024 08:55:33 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1676364933.305fca0e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015093&cd[location]=init&cd[eventHitId]=12&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=2&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=init&eventHitId=12&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015093&cd[location]=init&cd[eventHitId]=12&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=2&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=init&eventHitId=12&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015093&cd[location]=init&cd[eventHitId]=12&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=2&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=init&eventHitId=12&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 14 Feb 2023 08:55:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015096&cd[location]=view_request&cd[eventHitId]=13&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=3&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=view_request&eventHitId=13&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015096&cd[location]=view_request&cd[eventHitId]=13&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=3&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=view_request&eventHitId=13&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2206643536294794&ev=blackcrow%7Cvalidation&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015096&cd[location]=view_request&cd[eventHitId]=13&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=3&o=30&fbp=fb.1.1676365015081.2075394390&ic=&location=view_request&eventHitId=13&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 14 Feb 2023 08:55:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2206643536294794&ev=PageView&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015100&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=4&o=30&par[0]=%7B%22extractorID%22%3A%222529223453979228%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%222503882733268497%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1676365015081.2075394390&ic=&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=ajs-next-67607eaded8ec747cafbaa296444fb04&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2206643536294794&ev=PageView&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015100&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=4&o=30&par[0]=%7B%22extractorID%22%3A%222529223453979228%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%222503882733268497%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1676365015081.2075394390&ic=&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=ajs-next-67607eaded8ec747cafbaa296444fb04&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2206643536294794&ev=PageView&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015100&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=4&o=30&par[0]=%7B%22extractorID%22%3A%222529223453979228%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%222503882733268497%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1676365015081.2075394390&ic=&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=ajs-next-67607eaded8ec747cafbaa296444fb04&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 14 Feb 2023 08:55:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2206643536294794&ev=blackcrow_target%7Cremarketing&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015086&cd[app_name]=blackcrow_target&cd[integration_product]=remarketing&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=remarketing&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2206643536294794&ev=blackcrow_target%7Cremarketing&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015086&cd[app_name]=blackcrow_target&cd[integration_product]=remarketing&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=remarketing&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2206643536294794&ev=blackcrow_target%7Cremarketing&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015086&cd[app_name]=blackcrow_target&cd[integration_product]=remarketing&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=remarketing&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 14 Feb 2023 08:55:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2206643536294794&ev=blackcrow_target%7Clookaliking&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015090&cd[app_name]=blackcrow_target&cd[integration_product]=lookaliking&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=1&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=lookaliking&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2206643536294794&ev=blackcrow_target%7Clookaliking&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015090&cd[app_name]=blackcrow_target&cd[integration_product]=lookaliking&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=1&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=lookaliking&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2206643536294794&ev=blackcrow_target%7Clookaliking&dl=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&rl=https%3A%2F%2Fwww.shareasale-analytics.com%2F&if=false&ts=1676365015090&cd[app_name]=blackcrow_target&cd[integration_product]=lookaliking&cd[conversion_product]=all&cd[conversion_type]=conversion&cd[comparison_population]=mud-wtr&cd[comparison_group]=site&cd[comparison_type]=site&cd[threshold_setter]=rats&cd[threshold_group_count]=10&cd[score]=7&cd[event_date]=2023-02-14&cd[eventDate]=20230214&sw=1280&sh=1024&ud[external_id]=26799b545bad584afa68dd4f2c47a3db7103ebeb4695256b9bda8160e2107351&v=2.9.95&r=stable&a=seg&ec=1&o=30&fbp=fb.1.1676365015081.2075394390&ic=&app_name=blackcrow_target&integration_product=lookaliking&conversion_product=all&conversion_type=conversion&comparison_population=mud-wtr&comparison_group=site&comparison_type=site&threshold_setter=rats&threshold_group_count=10&score=7&event_date=2023-02-14&eventDate=20230214&it=1676365014529&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 14 Feb 2023 08:55:33 GMT
X-Firefox-Spdy: h2
script.crazyegg.com/pages/versioned/trackingpagestate-scripts/d9b6b28e3d84db3e4c966a5cf73af402.js
200 OK 8.0 kB URL HTTP/2 script.crazyegg.com/pages/versioned/trackingpagestate-scripts/d9b6b28e3d84db3e4c966a5cf73af402.js
IP
File type ASCII text, with very long lines (20465), with no line terminators
Hash 1f86a1773fc1857e3b329c8b737f007f
684cb8e73a937d8fc562eb83aff8888eb16347de
27ee42c685cadd3d51d7ee36273d8c7ec10ed5015a456bd22187ceeeb899fb3d
GET /pages/versioned/trackingpagestate-scripts/d9b6b28e3d84db3e4c966a5cf73af402.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:33 GMT
content-type: text/javascript
content-length: 8025
cache-control: public, max-age=31536000, s-maxage=31536000
timing-allow-origin: *
last-modified: Fri, 03 Feb 2023 09:19:35 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 53545
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495e4a91e0b51-OSL
X-Firefox-Spdy: h2
script.crazyegg.com/pages/versioned/tracking-scripts/c3c981c0480389ac38f39e7327578cf8.js
200 OK 32 kB URL HTTP/2 script.crazyegg.com/pages/versioned/tracking-scripts/c3c981c0480389ac38f39e7327578cf8.js
IP
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 24263513d0e794fdfc41b4662010152e
6ae71666d873c57de9bf5b4e381ba737f988e995
d9456bab6e31d206762691e9f1bfa5794776ef491b90861fcc3a6beab8d09ed3
GET /pages/versioned/tracking-scripts/c3c981c0480389ac38f39e7327578cf8.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:33 GMT
content-type: text/javascript
content-length: 31582
cache-control: public, max-age=31536000, s-maxage=31536000
timing-allow-origin: *
last-modified: Tue, 31 Jan 2023 08:03:23 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 53546
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495e569c20b51-OSL
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&cb=70247522572329740term%3Dvalue&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0
200 OK 1.2 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&cb=70247522572329740term%3Dvalue&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0
IP
File type ASCII text, with very long lines (2247)
Hash 20543b9c5e2fafa3c1dd9f122cb8dd2d
31d9072896cc187f3d93fc77b16275907c0ed577
5042a0b8f01f673bf898f0caee851c70440e98907c1e8b0d0071136706407dea
GET /st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&cb=70247522572329740term%3Dvalue&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 14 Feb 2023 08:55:33 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=5783f561-ac45-11ed-ac08-11f27e5942ad;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
tracking.crazyegg.com/v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65
200 OK 0 B URL HTTP/2 tracking.crazyegg.com/v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65 HTTP/1.1
Host: tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mudwtr.com/
Origin: https://mudwtr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: awselb/2.0
date: Tue, 14 Feb 2023 08:55:34 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-headers: Authorization,Content-Type,Access-Control-Allow-Origin,Access-Control-Allow-Methods
access-control-allow-methods: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
tracking.crazyegg.com/v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65
201 Created 0 B URL HTTP/2 tracking.crazyegg.com/v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v11?u=1168490&st=417302&s=5283772&tk=92995ff523574da5f1c9ed34e839da65 HTTP/1.1
Host: tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/gzip
Content-Length: 323
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
server: awselb/2.0
date: Tue, 14 Feb 2023 08:55:34 GMT
content-type: text/plain
content-length: 0
access-control-allow-origin: *
X-Firefox-Spdy: h2
trc-events.taboola.com/1406770/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=0&ssd=1&est=1676365014507&ver=36&isls=true&src=i&invt=1500&msa=9285&rv=1&tim=1676365016081&vi=1676365014505&ri=d09d8dff4a23dfb6ba3d707e11e4f1f9&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&cv=20230212-4-RELEASE&item-url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ler=other
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1406770/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=0&ssd=1&est=1676365014507&ver=36&isls=true&src=i&invt=1500&msa=9285&rv=1&tim=1676365016081&vi=1676365014505&ri=d09d8dff4a23dfb6ba3d707e11e4f1f9&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&cv=20230212-4-RELEASE&item-url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ler=other
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1406770/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=0&ssd=1&est=1676365014507&ver=36&isls=true&src=i&invt=1500&msa=9285&rv=1&tim=1676365016081&vi=1676365014505&ri=d09d8dff4a23dfb6ba3d707e11e4f1f9&ref=https%3A%2F%2Fwww.shareasale-analytics.com%2F&cv=20230212-4-RELEASE&item-url=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 14 Feb 2023 08:55:34 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://mudwtr.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
gs.mountain.com/gs
200 OK 144 B IP
File type ASCII text, with no line terminators
Hash 58a0aa4a25debefd9aeb218da15e5533
a31f1607933f165aa7cda5782c0a228c6de8bec2
bd5c29a418f433c7ccbdcb560b72aa86d33d0fa48f1fc6d54bac6c351e109493
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: guid=5783f561-ac45-11ed-ac08-11f27e5942ad
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 14 Feb 2023 08:55:34 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
analytics.tiktok.com/api/v2/performance_interaction
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/performance_interaction
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/performance_interaction HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 981
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: _ttp=2Lirpqn6LxJHGA9yH3vFrBAh4Ic
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230214085535E59ED847D4DE127510AA
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6405f79c568a045cf8e69fcfce6dbbe6754d7e9e6456b034094a56c0af63cfd1ffe158def5a08a927ccbd3ca994e5ce1eb6203666f8516f23a2253e176dc819abf2dfd5fa4e76ad719acf4dc1ad0696ca2737ef9c62f69a19ac79e1edc9c04236
x-origin-response-time: 9,184.51.101.164
x-akamai-request-id: 1e4e38c9.308a54d5
expires: Tue, 14 Feb 2023 08:55:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 14 Feb 2023 08:55:35 GMT
x-cache: TCP_MISS from a95-101-10-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a184-51-101-164.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=9, inner; dur=5
x-parent-response-time: 104,95.101.10.191
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0&cb=1676364933934638&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1676364934637
200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0&cb=1676364933934638&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1676364934637
IP
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-121174535-1&ga_client_id=293335504.1676365013&shpt=MUD%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-121174535-1%22%2C%22ga_client_id%22%3A%22293335504.1676365013%22%2C%22shpt%22%3A%22MUD%5C%5CWTR%E2%84%A2%3A%20A%20Coffee%20Alternative%22%2C%22dcm_cid%22%3A%221676365012.1%22%2C%22dcm_gid%22%3A%22293343821.1676365015%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A14%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1676365012.1&dcm_gid=293343821.1676365015&dxver=4.0.0&shaid=33828&tdr=https%3A%2F%2Fwww.shareasale-analytics.com%2F&plh=https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26&shadditional=shopify%3Dtrue%2Cgoogletagmanager%3Dtrue%2C&shcv=0.00&shcq=0&cb=1676364933934638&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1676364934637 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Cookie: guid=5783f561-ac45-11ed-ac08-11f27e5942ad
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 14 Feb 2023 08:55:35 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=5783f561-ac45-11ed-ac08-11f27e5942ad;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 15
server: istio-envoy
connection: close
transfer-encoding: chunked
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/vendor.js?v=130730028643636645441676316041
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/vendor.js?v=130730028643636645441676316041
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0137/9434/5014/t/178/assets/vendor.js?v=130730028643636645441676316041 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/vendor.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 38fd2796-35af-4e9d-9091-cae5f5cdd82c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Feb 2023 19:20:48 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0x2cOQgMq8tMIVlT%2BQwKB%2FuF%2Belz0Fi5PgQFkFuModHncd4kLDdrZHznI%2F32Vj%2BrozoatXLbLpFyP36A6Vax7Jux2iODv2DsrpCsB5OG3hVTVvTXEtl4ClaA3L2ZeqaTWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.975, imageryFetch;dur=30.488, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 799495c6cfecb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.shareasale.com/r.cfm?b=1558702&u=2311213&m=98407&urllink=https%3A%2F%2Fmudwtr.com%2F&afftrack=lb_lh9j8p
302 Found 0 B URL HTTP/2 www.shareasale.com/r.cfm?b=1558702&u=2311213&m=98407&urllink=https%3A%2F%2Fmudwtr.com%2F&afftrack=lb_lh9j8p
IP
GET /r.cfm?b=1558702&u=2311213&m=98407&urllink=https%3A%2F%2Fmudwtr.com%2F&afftrack=lb_lh9j8p HTTP/1.1
Host: www.shareasale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 14 Feb 2023 08:55:27 GMT
content-type: text/html;charset=UTF-8
location: https://www.shareasale-analytics.com/r.cfm?b=1558702&u=2311213&m=98407&urllink=https%3A%2F%2Fmudwtr.com%2F&afftrack=lb_lh9j8p&shrsl_analytics_sscid=21k7%5Fip3lx&shrsl_analytics_sstid=21k7%5Fip3lx
cf-ray: 799495bdbb7bb4e8-OSL
cache-control: no-cache
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: DYNAMIC
cf-apo-via: origin,host
pragma: no-cache
set-cookie: GC=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
GC=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
GC=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
GC=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
MERCHANT98407=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
MERCHANT98407=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
DATA98407=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
DATA98407=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
OVER98407=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
OVER98407=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
UNDER98407=0; Domain=.shareasale.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure
UNDER98407=0; expires=Mon, 13 Feb 2023 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
XD0=98407%7Bu2311213%5Derqfa4f%5Ds21k7%5Fip3lx%5Dt21k7%5Fip3lx; Domain=.shareasale.com; Expires=Thu, 06-Feb-2053 08:55:27 GMT; Path=/; Secure
XD0=98407%7Bu2311213%5Derqfa4f%5Ds21k7%5Fip3lx%5Dt21k7%5Fip3lx; expires=Fri, 14 Feb 2053 08:55:27 -0000; domain=.shareasale.com; path=/; SECURE; SameSite=None
XSJ=""; Domain=.shareasale.com; Path=/; Secure
XSJ=; domain=.shareasale.com; path=/; SECURE; SameSite=None
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
cdn.segment.com/v1/projects/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/settings
200 OK 0 B URL HTTP/2 cdn.segment.com/v1/projects/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/settings
IP
GET /v1/projects/QjCFOFVpuIONPh7syKSEJRMb9EmsQFYq/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 12 Dec 2022 17:48:35 GMT
x-amz-version-id: SCY8SYhyxRa5cnNqG2SmYJQs6DFrAzPa
server: AmazonS3
content-encoding: br
date: Tue, 14 Feb 2023 08:55:30 GMT
cache-control: public, max-age=10800
etag: W/"35e2c67ab87b7627e4101c4b5b5dde9e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tT3xJvjE_Tl4eZR7_Q57JAYSgHMnidWxuG2FQgnDsojkAOpSAfYUFw==
age: 704
X-Firefox-Spdy: h2
a.klaviyo.com/media/js/onsite/onsite.js
200 OK 0 B URL HTTP/2 a.klaviyo.com/media/js/onsite/onsite.js
IP
GET /media/js/onsite/onsite.js HTTP/1.1
Host: a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: application/javascript
cf-ray: 799495c6f99bb50b-OSL
cache-control: max-age=86400, public
content-encoding: gzip
etag: W/"63eaaf15-19737"
expires: Wed, 15 Feb 2023 08:55:29 GMT
last-modified: Mon, 13 Feb 2023 21:43:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-robots-tag: noindex, nofollow
server: cloudflare
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews.js
IP
GET /reviews-widget-plus/js/okendo-reviews.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 02:36:27 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 14 Feb 2023 08:54:46 GMT
cache-control: max-age=300
etag: W/"d8638fc571d9d5e29329955055a23672"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yLdUkv1QVHTpvWGB8Kp7NAXhehi1ZE2O-k7qPcCrgptIKCcFTPVPwQ==
age: 48
X-Firefox-Spdy: h2
mudwtr.com/?sscid=21k7_ip3lx&
200 OK 0 B URL HTTP/2 mudwtr.com/?sscid=21k7_ip3lx&
IP
GET /?sscid=21k7_ip3lx& HTTP/1.1
Host: mudwtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shareasale-analytics.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:28 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 182
x-sorting-hat-shopid: 13794345014
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=9e90e343-da55-4c8a-9a99-a2aa0895623e; path=/; expires=Tue, 14 Feb 2023 09:25:28 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Wed, 14 Feb 2024 08:55:28 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Wed, 14 Feb 2024 08:55:28 GMT
cart_currency=USD; path=/; expires=Tue, 28 Feb 2023 08:55:28 GMT
_orig_referrer=https%3A%2F%2Fwww.shareasale-analytics.com%2F; Expires=Tue, 28-Feb-23 08:55:28 GMT; Domain=mudwtr.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F%3Fsscid%3D21k7_ip3lx%26; Expires=Tue, 28-Feb-23 08:55:28 GMT; Domain=mudwtr.com; Path=/; HttpOnly; SameSite=Lax
_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf; Expires=Wed, 14-Feb-24 08:55:28 GMT; Domain=mudwtr.com; Path=/; SameSite=Lax
_s=89fee7d7-bc78-4240-86d0-ebdc7729ca33; Expires=Tue, 14-Feb-23 09:25:28 GMT; Domain=mudwtr.com; Path=/; SameSite=Lax
_shopify_y=18ea7d7a-70b8-4b71-97f0-079a240e7fcf; Expires=Wed, 14-Feb-24 08:55:28 GMT; Domain=mudwtr.com; Path=/; SameSite=Lax
_shopify_s=89fee7d7-bc78-4240-86d0-ebdc7729ca33; Expires=Tue, 14-Feb-23 09:25:28 GMT; Domain=mudwtr.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:a6cb3d22d824e4a0fda10f6f01294397
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 13794345014
x-shardid: 182
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: ed4f952b-8ecf-4480-9897-aa934c9451bf
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZNRc2QcudhCFYW1VgjwtJgczZZVM4tIYKU4mBdKU2no15hVSZgxgkTvBauHEk0N3jjc8uQ4UtyYwt0iq9x5VKI2CEPy9ulv2ZPr8IpYjHu%2F%2FNrMzqM1ZtcMbOvg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=26, db;dur=10, asn;desc="50304", edge;desc="OSL", country;desc="NO", theme;desc="2.13.23 Update", pageType;desc="index", cfRequestDuration;dur=135.999918
server: cloudflare
cf-ray: 799495c3f8e2b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/close.svg?v=51264103771918251261676316041
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/close.svg?v=51264103771918251261676316041
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0137/9434/5014/t/178/assets/close.svg?v=51264103771918251261676316041 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/close.svg>; rel="canonical"
source-length: 10057
source-type: image/svg+xml
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c2cfea5f-f48e-4397-b697-650b0d5bee48
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Feb 2023 23:39:42 GMT
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u5HyMUcNzMbTHI4idR25jrSiFlQ9FYtDaKT%2Bysza9VASyJMXTywBPMQVZpNggdCr3XeOHrqd3m4MVyNoLGqPeDe8%2Fswl8tJoMjdZMKm%2FqU5paxxgKGjgIfz55nYYJzFfeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=57.718, imageryFetch;dur=54.969, imageryProcess;dur=0.092;desc="image", cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 799495c64f4ab506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Chivo:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Ovo:ital,wght@0,400&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Chivo:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Ovo:ital,wght@0,400&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
IP
GET /css2?family=Chivo:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Ovo:ital,wght@0,400&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 14 Feb 2023 08:55:33 GMT
date: Tue, 14 Feb 2023 08:55:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.abtesting.ai/ab.js?userid=9337
200 OK 0 B URL HTTP/2 js.abtesting.ai/ab.js?userid=9337
IP
GET /ab.js?userid=9337 HTTP/1.1
Host: js.abtesting.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 14 Feb 2023 07:00:10 GMT
last-modified: Mon, 27 Sep 2021 15:22:24 GMT
etag: W/"84dc070891ef2853a3be06cf89de6f01"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p7cQqS_O3FYd3ldI1KXSdkTzoo--kpbjyjY-alXNEJ8aOgdDjcz-_A==
age: 6920
X-Firefox-Spdy: h2
static.fbot.me/friendbuy.js
200 OK 0 B URL HTTP/2 static.fbot.me/friendbuy.js
IP
GET /friendbuy.js HTTP/1.1
Host: static.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 20:11:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LkAVc5sjXSOVQiSIjFH.bFTl_0FY.c9u
server: AmazonS3
content-encoding: gzip
date: Tue, 14 Feb 2023 08:51:30 GMT
cache-control: max-age=300
etag: W/"cae0340d1b464a34cc95fd7b0425f018"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mcYSOX-cHsYvapAF4Fx6FQ6Cepmax3Oscp56ydZ8uwmfdCVsLJdGzw==
age: 250
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/f37e7b42-70b6-4edb-970b-8b96aecd800c.js
200 OK 0 B URL HTTP/2 tr.snapchat.com/config/com/f37e7b42-70b6-4edb-970b-8b96aecd800c.js
IP
GET /config/com/f37e7b42-70b6-4edb-970b-8b96aecd800c.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mudwtr.com
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:30 GMT
access-control-allow-origin: https://mudwtr.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
script.crazyegg.com/pages/scripts/0116/8490.js
200 OK 0 B URL HTTP/2 script.crazyegg.com/pages/scripts/0116/8490.js
IP
GET /pages/scripts/0116/8490.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:32 GMT
content-type: text/javascript
access-control-allow-origin: *
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
cf-bgj: minify
cf-polished: origSize=6088
last-modified: Mon, 13 Feb 2023 22:49:43 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 18528
vary: Accept-Encoding
server: cloudflare
cf-ray: 799495dc59860b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/1406770/trc/3/json?tim=1676365014512&data=%7B%22id%22%3A703%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1676365014505%2C%22cv%22%3A%2220230212-4-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmudwtr.com%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fsscid%3D21k7_ip3lx%26%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmudwtr-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1676365014511%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 0 B URL HTTP/2 trc.taboola.com/1406770/trc/3/json?tim=1676365014512&data=%7B%22id%22%3A703%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1676365014505%2C%22cv%22%3A%2220230212-4-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmudwtr.com%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fsscid%3D21k7_ip3lx%26%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmudwtr-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1676365014511%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
GET /1406770/trc/3/json?tim=1676365014512&data=%7B%22id%22%3A703%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1676365014505%2C%22cv%22%3A%2220230212-4-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmudwtr.com%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fsscid%3D21k7_ip3lx%26%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmudwtr-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1676365014511%2C%22ref%22%3A%22https%3A%2F%2Fwww.shareasale-analytics.com%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fmudwtr.com%2F%3Fsscid%3D21k7_ip3lx%26%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Tue, 14 Feb 2023 08:55:33 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1676364933.928644,VS0,VE95
vary: Accept-Encoding
x-vcl-time-ms: 95
X-Firefox-Spdy: h2
www.linkbux.com/track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181
200 OK 0 B URL HTTP/2 www.linkbux.com/track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181
IP
ASN #45102 Alibaba US Technology Co., Ltd.
GET /track/b5977VBDA7Gqk_apkOS8_aMI5ink_bclSe_bV_b2bAeTbcTvd5aQ6KEycMsDxmiknCUhL?url=https://mudwtr.com/&uid=v0304000109405700068dadfc4023905c7fa89f431181 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:27 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=dGT6uDKV; expires=Thu, 16-Mar-2023 08:55:27 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/theme.css?v=84584845903541635051676329901
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/theme.css?v=84584845903541635051676329901
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0137/9434/5014/t/178/assets/theme.css?v=84584845903541635051676329901 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 14 Feb 2023 08:55:29 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0137/9434/5014/t/178/assets/theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f3516ea4-2ef4-41bc-a00f-35aad2517b6c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Feb 2023 23:13:11 GMT
cf-cache-status: HIT
age: 18526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IohcBOQKS2NExyKfXD85iE%2BsSeBtB4%2FNoB1D1JRUOFStDAy1fmn8RAyIOi5CiB%2FlUjdmWrKPHd2foWD6sBfYkhxuFLBG%2BvsvXrhl9tYe%2FweuTHhnXRsrrEdR2Is2PtK5Cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=98.401, imageryFetch;dur=79.470, cfRequestDuration;dur=148.000002
server: cloudflare
cf-ray: 799495c64f43b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tp88trk.com/scripts/sdk/everflow.js
200 OK 0 B URL HTTP/2 www.tp88trk.com/scripts/sdk/everflow.js
IP
GET /scripts/sdk/everflow.js HTTP/1.1
Host: www.tp88trk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mudwtr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Feb 2023 08:55:30 GMT
content-type: text/javascript
cache-control: max-age=14400
vary: Origin
x-eflow-request-id: c76a7e04-4e16-4cef-bb64-eaf2dc99cc9b
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
198.11.181.248
23.227.38.65
104.18.3.187
2.18.172.195
185.146.173.20
93.184.220.29
141.226.228.48
52.213.152.139