Overview

URLwizedeal.com/charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
IP 172.67.211.54 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 14:08:44 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (36)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168
kit.fontawesome.com (1) 1868 2019-12-16 19:51:31 UTC 2020-10-22 17:14:21 UTC 104.18.23.52
connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 157.240.200.14
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
static.rechargecdn.com (3) 25698 2020-11-13 19:28:35 UTC 2021-11-10 11:30:34 UTC 23.36.79.10
ocsp.digicert.com (14) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
cdnjs.cloudflare.com (4) 235 2015-04-17 20:46:33 UTC 2022-11-24 06:13:12 UTC 104.17.24.14
code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2020-04-21 12:46:20 UTC 69.16.175.42
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
kite.spicegems.org (1) 60955 2019-07-30 03:55:52 UTC 2022-11-24 09:57:32 UTC 50.116.20.68
cdn.cookielaw.org (5) 502 2014-05-20 23:23:17 UTC 2022-11-24 06:27:00 UTC 104.16.149.64
errors.client.optimizely.com (2) 7604 2018-06-21 07:01:03 UTC 2020-02-10 05:37:44 UTC 3.224.192.219
lkbx.me (1) 117868 2020-12-14 10:05:57 UTC 2022-11-23 06:20:09 UTC 47.89.248.255
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
cdn.shopify.com (13) 2327 2012-11-01 07:30:33 UTC 2022-11-24 06:10:40 UTC 162.159.135.68
img-getpocket.cdn.mozilla.net (2) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.pki.goog (1) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
cdn.optimizely.com (1) 694 2018-03-19 19:09:21 UTC 2020-05-02 23:07:11 UTC 23.38.200.155
shop.app (1) 3696 2020-04-15 21:27:58 UTC 2022-11-24 06:59:53 UTC 23.227.38.33
stackpath.bootstrapcdn.com (2) 2467 2018-06-15 20:36:43 UTC 2022-11-24 08:07:09 UTC 104.18.11.207
ka-f.fontawesome.com (2) 3598 2019-12-17 06:36:13 UTC 2020-09-25 12:57:14 UTC 172.64.203.28
www.omaze.co.uk (1) 0 No data No data 23.227.38.74 Domain (omaze.co.uk) ranked at: 145876
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.228.207.167
widget.trustpilot.com (7) 6018 2017-09-05 07:45:53 UTC 2022-11-23 22:50:56 UTC 143.204.55.110
a14464890104.cdn.optimizely.com (1) 244088 No data No data 104.110.8.48
r3.o.lencr.org (16) 344 No data No data 23.36.77.32
wizedeal.com (2) 308210 2017-09-25 04:36:55 UTC 2022-11-23 09:15:10 UTC 172.67.211.54
wizedeal.com (2) 308210 2017-09-25 04:36:55 UTC 2022-11-23 09:15:10 UTC 104.21.53.93
www.awin1.com (1) 14049 2012-07-02 19:46:12 UTC 2020-04-11 09:34:15 UTC 2.21.192.211
www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 157.240.200.35
maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-11-24 08:22:23 UTC 104.18.11.207
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
logx.optimizely.com (2) 1233 2016-10-05 13:33:23 UTC 2020-05-01 21:16:44 UTC 107.22.2.22
stackpath.bootstrapcdn.com (2) 2467 2018-06-15 20:36:43 UTC 2022-11-24 08:07:09 UTC 104.18.10.207
thunder.spicegems.org (1) 115131 2021-11-25 15:07:38 UTC 2022-11-24 11:53:34 UTC 173.255.195.55
unpkg.com (7) 11693 2016-01-07 23:26:01 UTC 2022-11-24 08:16:14 UTC 104.16.123.175

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.211.54
Date UQ / IDS / BL URL IP
2023-01-18 23:57:08 +0000 0 - 0 - 1 wizedeal.com/sports/?tg=lkbx.me/wQqb?uid=wpne (...) 172.67.211.54
2023-01-13 20:20:47 +0000 0 - 0 - 3 dhankesaritodays.in/cupiditate-asperiores/doc (...) 172.67.211.54
2022-12-18 14:53:08 +0000 0 - 0 - 1 wizedeal.com/lifestyle/?tg=lkbx.me/CsOO?uid=w (...) 172.67.211.54
2022-12-14 14:54:36 +0000 0 - 0 - 1 wizedeal.com/sports?td=enhotssureemed.com&cmp (...) 172.67.211.54
2022-12-14 13:28:54 +0000 0 - 0 - 1 wizedeal.com/sports/?td=enhotssureemed.com&cm (...) 172.67.211.54


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-01-28 10:24:23 +0000 0 - 0 - 2 samarapressteam.com/Chase/a46db506b4f8e3a7d45 (...) 172.67.216.157
2023-01-28 10:24:20 +0000 0 - 0 - 1 pastebin.com/raw/PXuJ2cR6 172.67.34.170
2023-01-28 10:23:25 +0000 0 - 0 - 1 pastebin.com/raw/xxJcr1F2 104.20.67.143
2023-01-28 10:23:23 +0000 0 - 0 - 1 pastebin.com/raw/ws7gGjLT 104.20.68.143
2023-01-28 10:23:22 +0000 0 - 0 - 1 pastebin.com/raw/ypjfsHkY 172.67.34.170


Last 5 reports on domain: wizedeal.com
Date UQ / IDS / BL URL IP
2023-01-26 09:35:51 +0000 0 - 0 - 1 wizedeal.com/click/lb/?country=US&ts=[OMNIA]% (...) 104.21.53.93
2023-01-18 23:57:08 +0000 0 - 0 - 1 wizedeal.com/sports/?tg=lkbx.me/wQqb?uid=wpne (...) 172.67.211.54
2023-01-06 20:33:02 +0000 0 - 0 - 1 wizedeal.com/charity?tg=lkbx.me/sUuW?uid=wi13 (...) 104.21.53.93
2023-01-04 15:09:07 +0000 0 - 0 - 1 wizedeal.com/gn/?step=noref&tg2=na&tg=lkbx.me (...) 104.21.53.93
2022-12-18 14:53:08 +0000 0 - 0 - 1 wizedeal.com/lifestyle/?tg=lkbx.me/CsOO?uid=w (...) 172.67.211.54


Last 2 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-25 13:07:40 +0000 0 - 0 - 1 wizedeal.com/charity/?tg=lkbx.me/sUuW?uid=wfa (...) 104.21.53.93
2022-11-24 14:08:43 +0000 0 - 0 - 1 wizedeal.com/charity?td=enhotssureemed.com&cm (...) 104.21.53.93

JavaScript

Executed Scripts (67)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (105)


Request Response
                                        
                                            GET /charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: wizedeal.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.21.53.93
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 14:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 15:08:31 GMT
Location: https://wizedeal.com/charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M130TatX7GdPNo2%2FV6h5TceY9flTG0Xpvb6WuyZ0CtFk7%2BwBKI3Kq4gLgoZykoEVpYxhPkoa%2BJKlr9s6d5RCGToLYoQ3FfaI45t7VmPfz4dd43dzFDYOBGoLSzxVlTo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f2b7959e6db500-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2379
Expires: Thu, 24 Nov 2022 14:48:10 GMT
Date: Thu, 24 Nov 2022 14:08:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13799
Expires: Thu, 24 Nov 2022 17:58:30 GMT
Date: Thu, 24 Nov 2022 14:08:31 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: IYoWZZTOUChqsU59mqKI9YNC3Jl+AU1opjbUJW26beTc1pk5RYwkAjlLXQ7w+Ndm8Wy3WWiiIyk=
x-amz-request-id: MSCJ1W6TR2V9M481
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 13:43:25 GMT
age: 1506
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4988
Cache-Control: max-age=164748
Date: Thu, 24 Nov 2022 14:08:31 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:54:19 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4989
Cache-Control: max-age=164748
Date: Thu, 24 Nov 2022 14:08:32 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:54:20 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 13:17:17 GMT
cache-control: public,max-age=3600
age: 3075
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 14:08:31 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 3579
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1638
Cache-Control: max-age=116755
Date: Thu, 24 Nov 2022 14:08:32 GMT
Etag: "637e998d-1d7"
Expires: Fri, 25 Nov 2022 22:34:27 GMT
Last-Modified: Wed, 23 Nov 2022 22:07:09 GMT
Server: ECS (amb/6BAE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4609
Cache-Control: max-age=159305
Date: Thu, 24 Nov 2022 14:08:32 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:23:37 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gs/zALEpH+FIsBiJsPT2XA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.228.207.167
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wY9eNsQsFzhhbZYFXil38kUhnFM=

                                        
                                            GET /cread.php?pref=www.wizedeal.com%2F&awinmid=21550&awinaffid=685769&clickref=lb_nyli2u&p=https%3A%2F%2Fwww.omaze.co.uk%2F HTTP/1.1 
Host: www.awin1.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lkbx.me/
Cookie: bId=HLEX_628f00ae0f3690.47151114
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         2.21.192.211
HTTP/1.1 302 Moved Temporarily
                                        
Content-Length: 0
Location: https://www.omaze.co.uk/?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae
Allow: GET
Node: Helix
P3P: policyref="http://www.awin1.com/w3c/p3p.xml", CP="NOI NID CURa ADMa PSAa HISa OUR IND UNI PUR COM NAV"
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive
Set-Cookie: aw21550=685769|0|0|1669298913|lb_nyli2u|aw|0;domain=.awin1.com;path=/;expires=Thursday, 01-Dec-2022 14:08:33 UTC;Secure;SameSite=None bId=HLEX_628f00ae0f3690.47151114;domain=.awin1.com;path=/;expires=Friday, 24-Nov-2023 14:08:33 UTC;Secure;SameSite=None
Strict-Transport-Security: max-age=86400
Awin-Akamai-Rule-Set: default

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B974D44D7B2231A9BE9FAC489076DF2C74541217E1F3731A40BF97D93FB1B126"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12988
Expires: Thu, 24 Nov 2022 17:45:01 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B974D44D7B2231A9BE9FAC489076DF2C74541217E1F3731A40BF97D93FB1B126"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12988
Expires: Thu, 24 Nov 2022 17:45:01 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CB14D52AD86DD33F9367FCC9204E11131D56EED190F2946075F36B06A14A9E73"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1945
Expires: Thu, 24 Nov 2022 14:40:58 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CB14D52AD86DD33F9367FCC9204E11131D56EED190F2946075F36B06A14A9E73"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1945
Expires: Thu, 24 Nov 2022 14:40:58 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            GET /ajax/libs/js-cookie/2.2.1/js.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 701
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec5-653"
last-modified: Mon, 04 May 2020 16:11:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 754860
expires: Tue, 14 Nov 2023 14:08:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFL3nCnUHs3Szu7c1Q6IrizNx3EsJQP6LJC8h8zTyv11nDl3x480U9vY61vPQCWVZi3v1XlKr4UFxOacHCqQIGRNIw%2BOYR35OgeBJPFnx8RF%2FqNEQJva7BAQGa40YcQaLGx8xVyj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a4ccc7b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1619), with no line terminators
Size:   701
Md5:    d3487ec81c122b621ae7809825aaf16a
Sha1:   39ca47d6d1dfb7eb00772651f65b256b14a71821
Sha256: 7914e7c5fb89e71205d6ad0cd464f2075f32971d7a513dcf877863cefb66a8f6
                                        
                                            GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 01:28:24 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qO0Qzj0jbnx31poEXjW8l9cEXKcii74BrV5yPxihQnUpqoDcyxq3oA==
age: 45611
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size:   6124
Md5:    5add60196e5f96a414fb4b9586764e5d
Sha1:   633f471b3c2fcedeef9cad90cb5bf56f5fe55588
Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3624
Cache-Control: max-age=92811
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637e3445-118"
Expires: Fri, 25 Nov 2022 15:55:25 GMT
Last-Modified: Wed, 23 Nov 2022 14:55:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1111457
expires: Tue, 14 Nov 2023 14:08:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9t%2Fk5SyKEnsKcjgQG4MA%2BXK8H7GMy6vFy6xA%2BxOmnWH7aIOoGxXztsr9fwLVyzQu1jzKiL%2FKF9Al42atpeoXYZTT%2BNdy0%2Bywj98XmTakvZtv08yNrKbKz3IyFQnr%2BB4m58d4wTPR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a4ecf8b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19015)
Size:   6157
Md5:    7b4114faa411d059a9a5ac4b5b4d9dee
Sha1:   277da4486916fa3a4ab3375f47bc98f58dbf90f6
Sha256: 60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
                                        
                                            GET /ajax/libs/lazysizes/5.2.2/plugins/bgset/ls.bgset.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 1086
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ece33f7-bd2"
last-modified: Wed, 27 May 2020 09:33:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6642854
expires: Tue, 14 Nov 2023 14:08:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sDSF6QRiCyN59qbZhguFXifnFwvx4vLmsEccINhoYFIToedoPp%2FfWS6ATVz9%2B6lX2Vh%2BR2ub8WlaxjKTVW2Fdts%2BAxSBEnmcXkuF00E7OvGX4%2BQHXQ5EDc8U1EzUaOHaKQGLG3m%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a4ecfbb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2999)
Size:   1086
Md5:    0626606417aaae98442e033026d48788
Sha1:   3397021c61a0df24f280bda41366d12b588d59b8
Sha256: dc3f679ef2a4e80617be2bf5cca574f8796c2ffbaab0ab906c6454fb2cd31d7d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3624
Cache-Control: max-age=92811
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637e3445-118"
Expires: Fri, 25 Nov 2022 15:55:25 GMT
Last-Modified: Wed, 23 Nov 2022 14:55:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13027
Expires: Thu, 24 Nov 2022 17:45:41 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            GET /ajax/libs/lazysizes/5.2.2/lazysizes.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 3119
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ece33f7-1e5b"
last-modified: Wed, 27 May 2020 09:33:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2459396
expires: Tue, 14 Nov 2023 14:08:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MnBoZywQXzGzxMPc2zJ1Ny5eVwrMOM6yXOrp9MKGQqO0QAHQVOlQSFYoEV01wQcB8Eiru9tBhb3VlXlIGjJHPgnQYuqkUGpqEDlYRxEK0j98bomnAOXbtQZOZ2Iy%2F25YkR5X6GtN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a4ecfcb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7744)
Size:   3119
Md5:    ad5f1699a15bc82d3eaa61f3b8cf04ee
Sha1:   73ccc712d59f2f73019032ea9a4543812ce36626
Sha256: a7badd211ddf7581942742d79c6dfec400d37cc4a302858d2ec8b85786389939
                                        
                                            GET /?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae HTTP/1.1 
Host: www.omaze.co.uk
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lkbx.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         23.227.38.74
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
location: https://omaze.co.uk/?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae
x-sorting-hat-podid: 85
x-sorting-hat-shopid: 27583905878
x-storefront-renderer-rendered: 1
x-redirect-reason: canonical_host_redirection
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 27583905878
x-shardid: 85
vary: Accept
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: f8f13599-09da-4547-be6c-745be4eb6193
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQv99jRLRkFPlEoQxGQe%2BlqbyVyFX0%2FbaSey8SdKNHvOK74iMhaAOkvtHwOdVw1ajo78FviZmCQAK1qDaZfPqe9A7khqWeWdhXcpg9Vwz24EgarBLqSk5y9scZK9ngiTUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=43, db;dur=5, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=241.999865
server: cloudflare
cf-ray: 76f2b7a26efc0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26827
Md5:    8de73cf150ff3de5ef8a7260daeb9124
Sha1:   75b895a2109d539f2311e35be33ef154931aac9a
Sha256: 9e1db7e6209506332822655b97b6be249c952f2e7245c3440e7e0c2ca3b004ab
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13027
Expires: Thu, 24 Nov 2022 17:45:41 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2685
Cache-Control: max-age=149858
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 07:46:12 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13027
Expires: Thu, 24 Nov 2022 17:45:41 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0275/8390/5878/files/Omaze_Logo_New_Inline_White_1_450x_png_2_7cbe20f4-02ae-419b-879a-20da9051be02.png HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: image/avif
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 6076
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/Omaze_Logo_New_Inline_White_1_450x_png_2_7cbe20f4-02ae-419b-879a-20da9051be02.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 3bb7ae51-9038-4588-89ab-ad8c4556c53f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 02 Sep 2022 06:56:57 GMT
cf-cache-status: HIT
age: 2528079
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P5HlH5sOmODBYsDYYuPg4%2FUvK8pz6jO9mbZLs%2FvhbpcBLc1EHG19iyLOYMOMWDYR513JzwR6iPDWECGCZuSLsauTmDDi2M7oHuVEtcdrZ4c5mlw%2F8VDHtKmHPVljO5VzHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=668.327, imageryFetch;dur=66.365, imageryProcess;dur=601.010;desc="image", cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 76f2b7a57e681bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   6076
Md5:    22bc94cf3bf520448672410fbda91d8f
Sha1:   517a14a89812a5d816d61521f1fd606ec0eaea35
Sha256: 87cf6f808ce69ced1ca45d4419c8e9a52e7ced9c634ad504c3cad2aa3494c9ee
                                        
                                            GET /s/files/1/0275/8390/5878/files/H12-EB2-250k-hero-1x1-opt.jpg HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 88646
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/H12-EB2-250k-hero-1x1-opt.jpg>; rel="canonical"
source-length: 96880
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 299d399d-a5db-4cf9-94bc-2f4fdf1a95c5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 23 Nov 2022 09:42:35 GMT
cf-cache-status: HIT
age: 92946
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cS5nIIpSJ64KL%2FPCAMRHq5jIqVHuGrl%2FjekzLz7%2Bs0Ndd4V7bPZRD1HTZTbRFRh7d8MdMv1YEUKffiR0WK4CH20TEfT8U5kzczEAh6RrDmLS2Cseg%2F%2B8A8W6Cfndo3nAEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=173.051, imageryFetch;dur=58.495, imageryProcess;dur=113.898;desc="image", cfRequestDuration;dur=21.999836
server: cloudflare
cf-ray: 76f2b7a57e671bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   88646
Md5:    05e382f5cf23f0552ea3d2b7e8fd0ef3
Sha1:   ef254b380481a6a129ac268a1144f3bc9d076483
Sha256: 11423d8c457d06f0314059a90f189785d198d1797c9fa073e8ecacab0a7b8e3d
                                        
                                            GET /s/files/1/0275/8390/5878/files/House_Icon_Shield_RGB_Jun21_Medium_1.png HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 29316
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/House_Icon_Shield_RGB_Jun21_Medium_1.png>; rel="canonical"
source-length: 53533
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: bdd5451f-aec8-454d-9435-e890f12bdbc5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 05 Oct 2022 20:11:40 GMT
cf-cache-status: HIT
age: 708086
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a4wE%2BzsgDPgT0hJ82Oqzv6bty6sPgZjNNr2pCukoff4qDq%2FJ64MkJdgqXVpFAvWqaG9zdCZsHAlM4te4nWbUZ8a%2BV6TjFOnlTdaeAtcsSvRFyyk1hdGBWz94G0YLaJkd5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=171.633, imageryFetch;dur=90.767, imageryProcess;dur=79.684;desc="image", cfRequestDuration;dur=26.999950
server: cloudflare
cf-ray: 76f2b7a57e661bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   29316
Md5:    28d1e0bfb350b1a4c7eecc3818bc9c69
Sha1:   344468a86df4b1e8cf8b80d6b2cfd7ab9cd08f10
Sha256: ea93cd02556f47bf591bdaf3b471ea56114ddf83421fcde6d6fe15901525393c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6180
Cache-Control: max-age=171676
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f5e5a-1d7"
Expires: Sat, 26 Nov 2022 13:49:50 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:50 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /jquery-3.2.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         69.16.175.42
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-encoding: gzip
content-length: 30125
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669298914.dop202.sk1.t,1669298914.cds069.sk1.hn,1669298914.cds222.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30125
Md5:    148f8d3ffd9cc02048c5f4d1cc83c407
Sha1:   9f2b89cfd151be6a29b4d43ad64d164fb8471046
Sha256: 4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13027
Expires: Thu, 24 Nov 2022 17:45:41 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/fundraising-regulator-vector-logo.svg?v=16953812898927032351669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/fundraising-regulator-vector-logo.svg>; rel="canonical"
source-length: 7869
source-type: image/svg+xml
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ba87c88-c29a-4640-bc43-87f1e2123d15
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rPUymXWsYrXJhoOSHC2Ng6UjH0Nl%2FcbR3bqg65ps%2Fgd2PIvRyAdP9oQaVw4ACuZrwChE8Rtlwu2awpNB0x5FoBuN4Pqx%2Bu066d86Z9MYslTLTtWn9U5GqhUAeZjkvuyROQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=20.303, imageryFetch;dur=18.428, imageryProcess;dur=0.078;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 76f2b7a57e6b1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7869), with no line terminators
Size:   3553
Md5:    1603dd30110d4605c0aa0b96ff8946bc
Sha1:   e9346cbea6562eff4dbff4724056912e474031d5
Sha256: 0e4e16693c230ffba3836bb55190de99eec1a82b98e8b40452a27e7a06f6c91b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1680
Cache-Control: max-age=148853
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 07:29:27 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1680
Cache-Control: max-age=148853
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 07:29:27 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17099
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            GET /gtm.js?id=GTM-MJL876Q HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:34 GMT
expires: Thu, 24 Nov 2022 14:08:34 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54092)
Size:   114360
Md5:    46e8e1649b19d868d810248f101bd309
Sha1:   1368a24e5a95011f9a13955b4ac4daa6aec0ca59
Sha256: 3b080f7395fcebdcf752974e8bea5046f8b5212b005e9be234ea98308165809f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17099
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17099
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17099
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17099
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            GET /flickity@2.3.0/dist/flickity.pkgd.min.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.123.175
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"e136-ppFLVfsImDkhRKQGmGrAD36fhGA"
via: 1.1 fly.io
fly-request-id: 01FQ9VZY0MM9D6E2TFNQ5YF17K
cf-cache-status: HIT
age: 29363801
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a64d48b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22161)
Size:   22221
Md5:    e66e5f4863fd845f9399ae3e9115c56b
Sha1:   c37bf18a621f44a24ab36d2ddd3f76de7e27e70e
Sha256: 5fc2c2f5d766e76723c078c3e436a04135a26bbf4041c2ba26447f3493531653
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 58842
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 58767
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 14:08:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /shopifycloud/shopify/assets/themes_support/shopify_common-8ea6ac3faf357236a97f5de749df4da6e8436ca107bc3a4ee805cbf08bc47392.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/shopify_common-8ea6ac3faf357236a97f5de749df4da6e8436ca107bc3a4ee805cbf08bc47392.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f7f39c74-e03d-423b-8dac-0bb58c0de6d1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 02:05:11 GMT
cf-cache-status: HIT
age: 7819383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Db4Z9S56KV9rBQOQDra4p%2BUvN8DQrv1BAJPIMLhzd70lipZQQhwqo3RlrAdCve9xbFjZl%2Bs6Jy1luGUuJA7azyOvwdW2%2FTp3jcbqwJYC4eXCXuxYZJokrFzo6C7fSDT%2BlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.280, imageryFetch;dur=22.082, cfRequestDuration;dur=9.999752
server: cloudflare
cf-ray: 76f2b7a5def11bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2095), with no line terminators
Size:   7493
Md5:    bff491a78120346822e0b3298cb7626a
Sha1:   9bde30ad257432c9d97d9e2fa3d26ab2141f7695
Sha256: a6a0c9bc0ba7624e92d76d03af601958bdc6f147db3bb21a752bf1908594e475
                                        
                                            GET /flickity-fade@1/flickity-fade.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.123.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity-fade@1.0.0/flickity-fade.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZCKNPW85SS58B6Z4SYCPA-ams
cf-cache-status: HIT
age: 112
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a5dca0b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4368
Md5:    9da33fcdbaa63cd527cb480f05b82500
Sha1:   f823c6db0f6287a144c980ad7427f025da52ddb7
Sha256: d93938187daa48e11e74645b53655277b8d1c89d2982dd0c5374b3cefcd29312
                                        
                                            GET /js/20290691069.js HTTP/1.1 
Host: cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.155
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-amz-id-2: vk3FGrdeuEoZMkw9V1ismFvS9myeFmMKMiWWIvCmdJTi/kmRFGW8ZA4TR12/sJWgJHdKi597sJc=
x-amz-request-id: R0EMQQ7PZ4WE0CP7
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 22:37:10 GMT
etag: "7cfa63cf463e90eba2ab816c840d89ff"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 2111
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: rtJ_HdvViZZ8qIHlM1qVmRncr5cjhsaY
accept-ranges: bytes
server: AmazonS3
content-length: 108062
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 24 Nov 2022 14:08:34 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="25";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65468)
Size:   108062
Md5:    7cfa63cf463e90eba2ab816c840d89ff
Sha1:   7f9b2e8aae484092e89f215a6518d51b83772c9a
Sha256: 8dbb1d861b710e06e2dbd47f62b8239ba1c2799d2885830f45014e9ba7b216db
                                        
                                            GET /0/js/scripttags/omaze-uk-prod/static/country-redirect.js HTTP/1.1 
Host: kite.spicegems.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         50.116.20.68
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=300, stale-if-error=300
content-encoding: gzip
etag: W/"bd90ed1e"
strict-transport-security: max-age=63072000; includeSubdomains; preload
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:34 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13996
Md5:    040c654a9fb193ed82026ea182d34256
Sha1:   f295d2abe8651421e38d3d74a568447a04ce1fc0
Sha256: b8428ae2b4175a6ff77f7d632b4f8fec66e4d0733fd0463432e792970679730f
                                        
                                            GET /b8113baeb6.js HTTP/1.1 
Host: kit.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FtKfOd88281fuOchTUgC
cf-cache-status: HIT
server: cloudflare
cf-ray: 76f2b7a5e94fb4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   456449
Md5:    49a77eb06b5d401d503580930cd77579
Sha1:   f9ec8594bbae23d7f799f5d0146fd022948a0ce9
Sha256: 9aa323cb03b14eb3df06f6729b8e9706595d26c417cf708b8d5c493d0e975390
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/vendor.min.js?v=35712911519838011251669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/vendor.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e2cab474-e024-4565-92e2-812153ffa3e7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OA1sg7QJd3KKnk%2BEzokhYzD0mNK7RFgwhYYpTyxQrLpTf0CqgYBITQV7dMfemJYvBijKAVwvr7j1BY3qsVmgls6YhhABqCwQyjzZNNI2SaL6vTbtXl00FsXO%2FHoB8mCtQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=101.783, imageryFetch;dur=101.616, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 76f2b7a5cee71bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   28607
Md5:    2b6ab1399e6079502badffa221009815
Sha1:   2d37e1aab978e1ac951a24543a1db96426b398ab
Sha256: cb4d301bf47179666d8e3ffbfcfc82fff0460c3d7858b099f4f4b237fb524ede
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/custom.css?v=101141169770123226801669200631 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e834d45f-356a-4cb4-89f0-fe85741dc345
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:52:24 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fL8sI11k6TMCaHsD51mhJ0fgE%2BKXVWNFzrUYXZP8Y2Nmqv0ziMvhziT3tb%2FpLg7JKWDiXR13AO0bjFWeRENRNGokOImxLiO7vp%2B3gTN%2BUKBTPfSPX860w02X4h3htsFMSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.999, imageryFetch;dur=56.928, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a5bed51bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15370)
Size:   47759
Md5:    639b02edecff927be816aa5ce8abe69a
Sha1:   b36eb5b8c4acad3281c49476988ab206abd21cde
Sha256: da0a0c4c0296cebf178e343565d816ad6dbd9b7250e325adee38f6b48c31cecc
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1930
last-modified: Tue, 04 Oct 2022 10:33:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 08:10:35 GMT
cache-control: max-age=86400
etag: "1b1a56d9c9fcf8acab07f238231461df"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2t42QuaRUpQLajceBjCu3_Dp0ERMlJU1WLSM33mGfGzUJhlaSfo21A==
age: 21480
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20761
Md5:    6dd18761d3006285d4625f6202be4082
Sha1:   e3f0cdd67c43fd436f8c06da8574eb770f31f28c
Sha256: a1da172f66a4a56ecc34f02e92d6a8ccf7b9155ce49a33f349417bec27016181
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1930
last-modified: Tue, 04 Oct 2022 10:33:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 08:10:35 GMT
cache-control: max-age=86400
etag: "1b1a56d9c9fcf8acab07f238231461df"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9toWvVT7onTgcMEdbdZbuj8pwcGoi09nHloaEKc6zulGfu5wVEXzUQ==
age: 21480
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4945)
Size:   1930
Md5:    1b1a56d9c9fcf8acab07f238231461df
Sha1:   72d6d8ecdb249b20852dc54d67530d0280515bc1
Sha256: 73b167681ae290cac469afde469076a7f222d5c5d2746122b2eaf5d7b4699e91
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/main.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 15505
last-modified: Tue, 04 Oct 2022 10:33:42 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 05:09:54 GMT
cache-control: max-age=86400
etag: "7634c5de39bff7b73e2df27262caface"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nA6Y7kwrrCNCqQZoTAXg94vNydndirPnUIs5vPWFusY5X2i72DEIjQ==
age: 32322
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (50697)
Size:   15505
Md5:    7634c5de39bff7b73e2df27262caface
Sha1:   73bb5656a5b7eee0c6db68d3f708046f390ccb53
Sha256: bc5f8d22d9a155ee87fe85ef326a9cc5c059a69aa5a6f7389882a88c057acc09
                                        
                                            GET /pay/session?v=1&token=48de05b2-a887-4922-a9b8-bae3c021f4da&shop_id=27583905878 HTTP/1.1 
Host: shop.app
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         23.227.38.33
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 18
x-sorting-hat-podid: -1
access-control-allow-origin: https://omaze.co.uk
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-frame-options: DENY
x-robots-tag: noindex
vary: Accept, Origin, Accept-Encoding
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' 'unsafe-inline' blob: https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifysvc.com https://hcaptcha.com https://*.hcaptcha.com; img-src 'self' https:; font-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com; object-src 'none'; frame-src 'self' https://*.shopifycs.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com
set-cookie: _pay_session=FnzDftkZzvspvQEyyI0wRZyizpAUrqsg%2B6ZFwgihBoeFIe3w11BeFLaelpZz8ClpejqfSsxIsUbP2XrnBOucfZuhku%2B6e47lnO89%2Ff8Y5i3AyVorc7EOvreRezts%2BuqbefI9IluYW87uxBjJQ%2FEGTVG3HFTcOtCUh8xNVHCEy7Gpi3rGVPZwAEuS8%2F3exJ%2F17RdskA%3D%3D--NyL2M8ycIm2arrq1--cyk7u9FoIp8MxYfRTVo4Aw%3D%3D; path=/; secure; HttpOnly
x-request-id: 30bbbd55-2d80-4d7a-8b92-8c7e562099c8
x-runtime: 0.009136
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eIgk4El3PJ%2B3Ka5q7R%2BLzTftG2HzvvtAWGt%2FZTQ04P2oSP3gVfVouhKiWZa5YQq0tr7HYSMVSB2r1aSExyGfWASQoCHOL3AjfQYyuV8VHNzRyTwtle8YIZx1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=270.000219
server: cloudflare
cf-ray: 76f2b7aa0ba20b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2995
Md5:    4134fb0a7fc2e4da042f9dbffae1e0d3
Sha1:   01b82b4bacd1c12129d90db152915913473d49f3
Sha256: 6b4aed6062b9ea481b7bfd7085091847b0831aa5416b0c7aa7783f4bfc67342a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8A14B077CB103EFF26392B571A33EA3FD7BB15D4FDC3014F5ADF87D6424AB765"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6779
Expires: Thu, 24 Nov 2022 16:01:34 GMT
Date: Thu, 24 Nov 2022 14:08:35 GMT
Connection: keep-alive

                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/application.js?v=84190962880680205521669200631 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/application.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c01418c1-c232-472b-aa1f-9bf8e39c3000
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:52:25 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vjvqDU1a6pLLsic9ujymTfWPldg7rs3UESqE%2BnNF5q6dP9sQOdpEcqZruuvzi1wkzSnbsR%2FhWQFjQHyPdLt5cq9Kf2d9ThoOtZIzoRkkjliAeF3MKF%2Bv6dWgqBImc3M9Ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=56.986, imageryFetch;dur=55.682, cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 76f2b7a57e651bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4597
Md5:    9804904a95edb70fa405b324c1c05131
Sha1:   a87accb0b8130ffebed1c6e416902f60f6c6aa51
Sha256: dc4fafe3cb22370af3d65540816b464615b4486c006254ae2fcb3fa0a13f11c7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3372
Cache-Control: max-age=148020
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637f0ceb-117"
Expires: Sat, 26 Nov 2022 07:15:35 GMT
Last-Modified: Thu, 24 Nov 2022 06:19:23 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Tue, 22 Nov 2022 16:39:23 GMT
etag: 0x8DACCA81CF94662
x-ms-request-id: 612b53d7-501e-0067-08d0-fe6b41000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44350
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7abfd9bb4f3-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    7b4564ae957eef3a8302343f44c5cfb3
Sha1:   296c38b2ae23a31d80201b32a38c02e75de27c91
Sha256: 15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
                                        
                                            GET /consent/8835818f-616c-4e34-851b-6a764cd7352e/8835818f-616c-4e34-851b-6a764cd7352e.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 1308
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ihUP72UIMk3vUHiEAenn5w==
last-modified: Thu, 29 Jul 2021 16:20:22 GMT
etag: 0x8D952ACC43BFF8C
x-ms-request-id: 10bfd882-d01e-0114-1815-b65dd7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 62366
expires: Fri, 25 Nov 2022 14:08:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7ac2b84b529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2926), with no line terminators
Size:   1308
Md5:    8a150fef6508324def50788401e9e7e7
Sha1:   f2e25a0e9e6f40a69a5b42bb6a885b3dfa254408
Sha256: ccb354493cc58c2b83a2f48f894c9f0d3069ea6000f0fdd009280082a6f1b85c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5701
Cache-Control: max-age=93057
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:59:32 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 718
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-08-02 20:43:32
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 0664d39d6640171531de1a9144d9e46c
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 108295
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7acd82ffac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7592b9ab08cc8c5f91e8717e22310105
etag: "e781b3fe7c0aad5668877a0d377743d4"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 24 Nov 2022 14:19:06 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: jrI9u6C6XqOzWiv05aDSFQ==
x-fb-debug: S8DJHlc9WzHipQ/PNBlAUntTC5IfxibkpaCh/x1neFWOKI0lGkVWdBSDtqR5/DewQoJZdx+RyLl2Sk4bFcE9Wg==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 14:08:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1687
Md5:    8eb23dbba0ba5ea3b35a2bf4e5a0d215
Sha1:   3a68380468a18b362ea4620d39e245a294972c83
Sha256: 17210322435ded590d80fae1a60d4e601e7dbd694ff826398c046c9878d097ba
                                        
                                            GET /client_storage/a14464890104.html HTTP/1.1 
Host: a14464890104.cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.110.8.48
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
x-amz-id-2: KcYVh/DptstaCeud8VkviKNtRkn7aUB7C1yY+FVcb8ulia7HAwsSon4p34Qf65vpjsmk0F9oPhg=
x-amz-request-id: K1NCT6GV62YMEEE6
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 22:37:05 GMT
etag: "c3f0bff0f72351e540a99bb74cd9fb34"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: 52p2f5xRjgu83FkMOjCStyZnaigGAScs
accept-ranges: bytes
server: AmazonS3
content-length: 886
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 24 Nov 2022 14:08:35 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1371)
Size:   886
Md5:    c3f0bff0f72351e540a99bb74cd9fb34
Sha1:   b70df4c1d090636475a5e98150cc3d244d7e3d50
Sha256: 869ea3d9e588a4efab5b40dec55e805e4c63ee7eb77f790b49fc043226a350fd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5701
Cache-Control: max-age=93057
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:59:32 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /trustbox-data/53aa8807dec7e10d38f59f32?businessUnitId=5eba01cd03d841000178dfdc&locale=en-US HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 396
cache-control: public,max-age=1800
content-encoding: gzip
date: Thu, 24 Nov 2022 14:01:17 GMT
etag: "161fba113d5f14eedfd03280b50a02a2"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AGsg5aGLG4jtvIRjqHOPFA_kq2x_npcaETOAH-PHjHQNpnFHTS2PJA==
age: 438
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (887), with no line terminators
Size:   396
Md5:    c74d3abbc5c75d6cca56aaca63a184f3
Sha1:   d703696a6eacc2b245a55809d635439fcfcd8e25
Sha256: 620824c8e9e5d2adbd8244027e21b0d478740935145ed3c59eb617d07251d268
                                        
                                            GET /en_US/sdk.js?hash=47e287106a96623b161472a38a24efc4 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 11c5dd6ace0136e88d150e3edb3d2407
etag: "fa0e58d9753b9eb376e5a912b3d589ca"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 24 Nov 2023 12:29:41 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: sVsmNchvVrLGPzRY67Qqng==
x-fb-debug: uRnV+PDop5YerQ3jN9j3Ka9e2oHMvkx5/yeHgYSLz+/nSqPIlUjoe8DXeRVpF9IaN9TzugNbgV+lraF/sWuPLA==
priority: u=3,i
content-length: 88359
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 14:08:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18530)
Size:   88359
Md5:    b15b2635c86f56b2c63f3458ebb42a9e
Sha1:   385e0efd4a38563d0b16835861c42026e3e38e52
Sha256: 847830a9f293b1ea3eb30add7cf2fb4ef9213ea0105589bbae1d4bae0a3228eb
                                        
                                            GET /stats/TrustboxView?locale=en-US&styleHeight=120px&styleWidth=100%25&theme=dark&url=https%3A%2F%2Fomaze.co.uk%2F%3Futm_source%3DAWIN%26utm_medium%3Daffiliate%26utm_campaign%3DSub%2BNetworks%26utm_publisher_id%3D685769%26awc%3D21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae&referrer=https%3A%2F%2Flkbx.me%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5eba01cd03d841000178dfdc&widgetId=53aa8807dec7e10d38f59f32 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.110
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Thu, 24 Nov 2022 14:08:34 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5JBWh3tSfOaB4LXvxiKYRdbbn-KJsVLkDya_2_IxXBqx9dl6UsKOlA==
X-Firefox-Spdy: h2

                                        
                                            GET /stats/TrustboxImpression?locale=en-US&styleHeight=120px&styleWidth=100%25&theme=dark&url=https%3A%2F%2Fomaze.co.uk%2F%3Futm_source%3DAWIN%26utm_medium%3Daffiliate%26utm_campaign%3DSub%2BNetworks%26utm_publisher_id%3D685769%26awc%3D21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae&referrer=https%3A%2F%2Flkbx.me%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5eba01cd03d841000178dfdc&widgetId=53aa8807dec7e10d38f59f32 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.110
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Thu, 24 Nov 2022 14:08:34 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A6ikzvH382H1mBn5HJlpi8VAlFQ9m4rlXJAoiEY22Po5P_bnQO-dMw==
X-Firefox-Spdy: h2

                                        
                                            GET /releases/v5.15.4/webfonts/free-fa-brands-400.woff2 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.203.28
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 76736
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "4f5ec865a8274ab291b6a42b5f70639e"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 0c60ac277ceb72dda4ddee2264e89d22.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: pSY6OV8vN7CXHztX5L3JAJVJo_NKp8lx5AZD6m-K8d_CdbZq_FCQRw==
age: 2480217
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hj4dESjE87lrpOWUeegApQrAiZzl49r3akOMeHFwGrkjVyOnUeoq%2By2Hgqp%2FelOk3wpb5efqALf3QVsLkt2V4SM1q7%2FZszX0UvQbBVGIhiJzxIhVtNASlepPk1SqiLrHfpvrkRskSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f2b7af1d9d889d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size:   76736
Md5:    4f5ec865a8274ab291b6a42b5f70639e
Sha1:   6f00f8c75208b96e585646824c4011093446acd2
Sha256: b5be0732ab1cc16692e165a7950810f0c772e400f6a2f63e1026a0b938016813
                                        
                                            GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.203.28
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 a4b14ec1411057263166d6facf9b30b8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: winbSA8Gb8uKYsJ87Y4P2w14h6O61s-_eU7QPWjBXKF0Iqhrk0Y73A==
age: 2480179
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nGyyD7dIAYTW%2B7DFlWiWFyGe0nDPJU%2BaY1QuIwoO%2Ff8zOZWIGmObiwZpk84meEro7gpTJGlQM3zdaifZcrk1vl%2FH3%2FmXQtrggoL0z4ixpS9Ai%2FQsxW%2F60RKYdkQOH7rvb4EMuP3XIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f2b7af1da0889d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Size:   78168
Md5:    a9fd1225fb2cd32320e2b931dca01089
Sha1:   44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
Sha256: c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
                                        
                                            GET /tr/?id=128952130533791&ev=fb_page_view&dl=https%3A%2F%2Fomaze.co.uk%2F%3Futm_source%3DAWIN%26utm_medium%3Daffiliate%26utm_campaign%3DSub%2BNetworks%26utm_publisher_id%3D685769%26awc%3D21550_1669298913_abfd0fa06d1811d8ee4d9147457a50ae&rl=https%3A%2F%2Flkbx.me%2F&if=false&ts=1669298915406&sw=1280&sh=1024&at= HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 14:08:35 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /scripttemplates/6.20.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 86053
content-encoding: gzip
content-md5: jOOTzA5W9ewbfwCUPpt/mw==
last-modified: Wed, 07 Jul 2021 06:41:48 GMT
etag: 0x8D941124BEC2620
x-ms-request-id: f68fa2d1-901e-0035-2d6c-c476b3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44246
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b0fc58b4f3-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65455)
Size:   86053
Md5:    8ce393cc0e56f5ec1b7f00943e9b7f9b
Sha1:   f04cb65b4dd624b54cdeedd0ae5614c4403fe073
Sha256: 9ed123900580a33e1551f98ee4fad57f6084f6006823fb922a75c8ab0a326b4c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151539
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637f197d-1d7"
Expires: Sat, 26 Nov 2022 08:14:15 GMT
Last-Modified: Thu, 24 Nov 2022 07:13:01 GMT
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _04qn6WFDuyn5yQZKwGR-aC1TMJMFR61jHp2Oy0rL-64_SCJVfKpPA==
Age: 3674


--- Additional Info ---
Magic:  data
Size:   3241
Md5:    2be4672ab201836f47fc20a867372092
Sha1:   f0f912a33d3ba510ab1b2ca2156f83dfc727e68f
Sha256: 8b021e9cba245dcb7553818af9f9bb4040e209229a71dd4c681ac50b43118294
                                        
                                            GET /consent/8835818f-616c-4e34-851b-6a764cd7352e/f1aeea99-e304-4177-abff-167053606bd7/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 15926
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ii/gOVLG+nvXT0Xh9zJ6rg==
last-modified: Thu, 29 Jul 2021 16:20:27 GMT
etag: 0x8D952ACC6EE55A2
x-ms-request-id: 13b87171-401e-003c-6168-c96c3d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 62366
expires: Fri, 25 Nov 2022 14:08:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b18affb529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (63561), with no line terminators
Size:   15926
Md5:    8a2fe03952c6fa7bd74f45e1f7327aae
Sha1:   bc0745097b8441d08384da4dfd9b53337b578065
Sha256: 79a91932c27192de54dcb4ca05bcf525e3c44dd76e9087c7b70c53770a74d78f
                                        
                                            GET /assets/js/widget.min.js?shop=omaze-uk-prod.myshopify.com HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.79.10
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycduXnVpoSDbaAe5jfbhVg3U9A9MmRDTwN0daAmXcREz0OY_LJCoU1EGS1dIawQAVhW4xxeS4tedruV8KbK9mA373Pw
x-goog-generation: 1666975008675198
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 375864
x-goog-hash: crc32c=rJYO8Q==, md5=aEn5ISOLpWHfM3lUnlae1g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
last-modified: Fri, 28 Oct 2022 16:36:48 GMT
etag: "6849f921238ba561df3379549e569ed6"
content-encoding: gzip
content-length: 117756
cache-control: public, max-age=3576
date: Thu, 24 Nov 2022 14:08:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=16, origin; dur=132
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65412)
Size:   117756
Md5:    cc8614f4992f191239615c0aa4650bf0
Sha1:   4623b4fffb5ac6a7225b2436f0f10853f1024604
Sha256: 9c5325bcffd58ca001b734ae69b8dc7ef488a2800853bcd06e6c97d3b24db0cc
                                        
                                            GET /scripttemplates/6.20.0/assets/otFloatingRounded.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 2586
content-encoding: gzip
content-md5: cvCYonhCjaPDc5Gcg5N+LQ==
last-modified: Wed, 07 Jul 2021 06:41:43 GMT
etag: 0x8D9411248E6977C
x-ms-request-id: 6da277ed-c01e-00ea-5142-ca27e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 20700
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b1ebacb529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (7980)
Size:   2586
Md5:    72f098a278428da3c373919c83937e2d
Sha1:   56e2829ff3bf141c644ce0f689124c02e9eb610c
Sha256: 14b884a32edd9ca4be097632ef16562f43b83db93e29fd6e25c19ecbc96c81eb
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1022
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         107.22.2.22
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Thu, 24 Nov 2022 14:08:36 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 89e7a846-e1c1-4107-a890-fc59e80f40be
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141277
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637ef0bb-1d7"
Expires: Sat, 26 Nov 2022 05:23:13 GMT
Last-Modified: Thu, 24 Nov 2022 04:19:07 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NlNGoSwgE9i48lNXeKwPd1uT1BR750nffKz74qZBX8mAhUshQvVLNQ==
Age: 3846

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141277
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637ef0bb-1d7"
Expires: Sat, 26 Nov 2022 05:23:13 GMT
Last-Modified: Thu, 24 Nov 2022 04:19:07 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: laPOdEMrGMyG0I6W-0ooNaiZhUiEDkNqQoBalX9pnddnCUfuM1fthA==
Age: 3846

                                        
                                            OPTIONS /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         3.224.192.219
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Date: Thu, 24 Nov 2022 14:08:36 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 330
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         3.224.192.219
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers:
Date: Thu, 24 Nov 2022 14:08:36 GMT
Connection: keep-alive

                                        
                                            OPTIONS /store/omaze-uk-prod.myshopify.com/product/2020-12/products.json HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-recharge-app
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         23.36.79.10
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-guploader-uploadid: ADPycdsPhmoBSpLJgYmjXDQTBKNBm8t85rk24LCyOd_r7pO5luo--7EzHrb4-pZzZmEwZit9vPtCr9KH8I62MUMEgzGucw
access-control-allow-origin: *
access-control-max-age: 1800
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: Cache-Control,Content-Length,Content-Type,Date,Expires,Pragma,Server,Transfer-Encoding,Vary,X-GUploader-UploadID,X-Google-Trace,x-recharge-app
content-length: 0
cache-control: private, max-age=0
date: Thu, 24 Nov 2022 14:08:36 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /store/omaze-uk-prod.myshopify.com/product/2020-12/products.json HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Content-Type: application/json
X-Recharge-App: storefront-client
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.36.79.10
HTTP/2 200 OK
content-type: application/json
                                        
last-modified: Mon, 14 Nov 2022 15:43:37 GMT
etag: "f41abd8bb014b5f557cd60e3e41e4ceb"
x-guploader-uploadid: ADPycdsZuRTxYbRbcNko4FPH-nEdq6urrnpzZRwQHtr5hvEeNRaxZiV4P5R2hnV4Gp3bYI3PZEUJ6b4getNySWxUWqn3XPM21FOt
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Expires, Pragma, Server, Transfer-Encoding, Vary, X-GUploader-UploadID, X-Google-Trace, x-recharge-app
x-goog-generation: 1668440617745660
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1364
content-encoding: gzip
x-goog-hash: crc32c=FCWpMQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1364
cache-control: max-age=60
date: Thu, 24 Nov 2022 14:08:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=12, origin; dur=123
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4546), with no line terminators
Size:   1364
Md5:    f41abd8bb014b5f557cd60e3e41e4ceb
Sha1:   f7401e397a4bb3d2f543318b7d06d26fb9caabe0
Sha256: 1ee794d52686c93801d5bcdcf398f9bdb7144e066e8cdeb9fc18b65350416ceb
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 998
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         107.22.2.22
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Thu, 24 Nov 2022 14:08:36 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 4dd8dbf6-1d00-4db4-bedb-a8162dde9724
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4635
Cache-Control: max-age=123701
Date: Thu, 24 Nov 2022 14:08:41 GMT
Etag: "637ea903-116"
Expires: Sat, 26 Nov 2022 00:30:22 GMT
Last-Modified: Wed, 23 Nov 2022 23:13:07 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /shopifycloud/shopify/assets/storefront/load_feature-a5f1052ed1a8af5abd2f31dfef1a6c95288a6be319e39bfd7072f5f196d63612.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-a5f1052ed1a8af5abd2f31dfef1a6c95288a6be319e39bfd7072f5f196d63612.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f44094e2-1cd3-459d-855a-6bb429f3de74
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 15 Nov 2022 23:26:12 GMT
cf-cache-status: HIT
age: 666378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fQZnOPwzwUX%2BxcJ3iG9hiidmNwNIeIa7iym8e2G4n4YZktzjjDc663okmG2UpO4tep6LdsZFfRoDa3QgyxpLgkB2PGYCXyY7WS6dSPzG8FvcdIujhBDYXWGcPf65WpDN1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=33.609, imageryFetch;dur=33.441, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a58e7f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/theme.min.js?v=70721350503666120211669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/theme.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ae35c83-fef2-4512-b690-8f15e1b1334c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vuxN0qo2BZ54NMF6W0DBG%2F1rIzzfAZuFCBoZyQo0nOW%2FsswyAueOGSk7vH6hyPwXqLqKV%2FL6g0Y9HIF19nJWhANVGbmFD3a6mKx9NgfoaqKTO0R4Q75PUQtWbcM4Ik3RDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=31.764, imageryFetch;dur=31.632, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a5bedd1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity-fade@1/flickity-fade.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.123.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity-fade@1.0.0/flickity-fade.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZCKNNWQ9SPSV4FHWGFAB6-ams
cf-cache-status: HIT
age: 112
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a54b71b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity@2/dist/flickity.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.123.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZ5NT2V8TEVZR3H06YWX3J-fra
cf-cache-status: HIT
age: 339
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a56bbfb4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bed70abc-c236-43d6-8349-7ffd51733329
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 25 Oct 2022 19:44:29 GMT
cf-cache-status: HIT
age: 2528079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4J1AhoSNXTbqifKTpn6t8Rz8NudEsGT85MzO0oDFWcVIXXY3ck8eC9XBupGK9hy0FUzhkSYJUUZk5gZcwkMV%2BRIVDTPkP7FcTldluHB2b%2F6jmUPBpNdI0Uf5BNH%2B%2FHuxtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=29.544, imageryFetch;dur=29.314, cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 76f2b7a57e781bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity@2/dist/flickity.pkgd.min.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.123.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.pkgd.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZBCWWDM3N6GQJAVSE2F9T-ams
cf-cache-status: HIT
age: 152
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a5ecb6b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 14745668
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7a5de4b0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9ef5eef7-df87-4932-9fd4-5fa40238eab6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 03:20:36 GMT
cf-cache-status: HIT
age: 7814864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tzjvI2aHoM4pC7nIXK0Gzwne5eP4a6NSlmshZRSOGOUyodONJ5%2BZdDOq5uqW7KZufS%2BPxapWvWbM%2B6fLHOrxiW4V9v7rZfiaXJHSrdybA8iuqB8ZD0FqYuky1wVnwdKUnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=17.149, imageryFetch;dur=16.982, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a5def01bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.135.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 831fa177-359b-43fa-b1af-96c4d1edbeb9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:53:17 GMT
cf-cache-status: HIT
age: 7805797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hYOO5Nv6MyCU%2FhvqmRWvy7FgUJYKJfgDdnkxXb2NarhHH7MaIgRoidJCWgJqdF1ANdIhJpt5H6vw7v2zU50hAVn4nv1sHN0EWD%2FnRILzqsaRFZu7hb0BcigMDA6eJSokvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=20.953, imageryFetch;dur=20.783, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 76f2b7a5dec51bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/04/2021 00:04:37
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 328ea46ce3a3d87deee2fc89d073c228
cdn-cache: HIT
cf-cache-status: HIT
age: 3644877
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7a5da4efac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: wizedeal.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.211.54
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Thu, 24 Nov 2022 14:08:31 GMT
x-powered-by: PHP/7.4.26
referrer-policy: origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=to94qVac%2FgSITuZkEOh4fmmUNul%2BYaKa6vcANtJAo78hpToW5gfgNwnCN0ziJzEuxpbEaq5sZdU0QKuPgO0Sq2UGY%2F4D7ENbumnp9M3Zl94RmZ%2Bfuxfnq9Fz%2BHUKEus%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f2b7979845b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: lkbx.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wizedeal.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         47.89.248.255
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=bSXFZpkQ; expires=Sat, 24-Dec-2022 14:08:32 GMT; Max-Age=2591999; path=/; secure; httponly discuz_2132_lang=en; path=/; secure discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /flickity-fade@1.0.0/flickity-fade.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.123.175
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"d3-O93RPgBa5RynRwlnsdxZ9jaUf1I"
via: 1.1 fly.io
fly-request-id: 01G4XEZWSW1HKM4QCXNCT4XYYH-fra
cf-cache-status: HIT
age: 14747802
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a58be1b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /0/js/scripttags/omaze-uk-prod/country_redirect_1fa25ef97f3a4865d63f43b7b829b72f.min.js?v=31&shop=omaze-uk-prod.myshopify.com HTTP/1.1 
Host: thunder.spicegems.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         173.255.195.55
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=365000000, immutable, stale-if-error=36500000
content-encoding: gzip
etag: W/"bd90ed1e"
strict-transport-security: max-age=63072000; includeSubdomains; preload
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:36 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity@2.3.0/dist/flickity.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.123.175
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"705-iG4rBnn9uZ8eW5XLtZHjveGiMLs"
via: 1.1 fly.io
fly-request-id: 01G754EEDGMX2J9V944NV9F6VR-fra
cf-cache-status: HIT
age: 12343026
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a5cc9ab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---