r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4254
Expires: Thu, 08 Dec 2022 19:13:37 GMT
Date: Thu, 08 Dec 2022 18:02:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7247
Expires: Thu, 08 Dec 2022 20:03:30 GMT
Date: Thu, 08 Dec 2022 18:02:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 17:08:13 GMT
content-type: application/json
age: 3270
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11088
Expires: Thu, 08 Dec 2022 21:07:31 GMT
Date: Thu, 08 Dec 2022 18:02:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZZB+khv0lZ/EdeeA89zVrFNyvU3vB3TkIFNDkWzbD7tBoMsBXKurTJMDq9H9HYa4L65kq0tNQ74=
x-amz-request-id: DAT6VJB146NS8VE2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 17:48:00 GMT
age: 883
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 18:02:43 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mkkuei4kdsz.com/680/200.html
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/680/200.html
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /680/200.html HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 08 Dec 2022 18:02:43 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.24.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65451)
Hash 4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15966267
expires: Tue, 28 Nov 2023 18:02:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8TkooS%2Bt3EAQXSYUA9sDfpmAj1jIVp1oK0o5z7lO1pZhhxvLPcg%2BZCz7uR%2B9A5Pf4V6eOErRb%2BdnjCWh1cyn3tDYmSn1v7vZgOpIKBeaB4DMMjLgkE0CSucJ%2F0BKHfuXxgOII6HU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 776769e64b3eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 814abe752aa0a8c5f21a50a04a14fdb3
0b5db09b5ac30948dac5e0dd2dc8b171e6a8851b
d820c9fe909a20b7b11a28c26508cb8a536aae64c6c7094a0d8f9b0e3e705c56
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D820C9FE909A20B7B11A28C26508CB8A536AAE64C6C7094A0D8F9B0E3E705C56"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14987
Expires: Thu, 08 Dec 2022 22:12:30 GMT
Date: Thu, 08 Dec 2022 18:02:43 GMT
Connection: keep-alive
mkkuei4kdsz.com/favicon.ico
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/favicon.ico
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/680/200.html
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 08 Dec 2022 18:02:43 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
domaincntrol.com/?orighost=http://mkkuei4kdsz.com/680/200.html
104.26.10.61200 OK 28 B URL HTTP/2 domaincntrol.com/?orighost=http://mkkuei4kdsz.com/680/200.html
IP 104.26.10.61:0
File type ASCII text, with no line terminators
Hash 7aae16ed70d2e07943585bbb1cd02b55
3209123510c034e6e38ca45edf14307f1375a8f5
51bfb53a70df6adc48f0670be59a16a657ab5a2bafc176973a32d5c36a4fc5d3
GET /?orighost=http://mkkuei4kdsz.com/680/200.html HTTP/1.1
Host: domaincntrol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:43 GMT
content-type: text/javascript;charset=UTF-8
content-length: 28
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5DmiWUw%2BVRnQcC2aeAN0Fdtf2NGyDX2KJuyaDMwPJxmLzynjgkLfBCkQcYFlpDTf9GbZYSwmt0aBYAv73fM8vZDybWRHe%2B160DgcRizMIxuz0O2pDSDXagFT4GeVPueZeNA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776769e7bda0b52d-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 17:07:55 GMT
age: 3289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1227
Cache-Control: max-age=141875
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:44 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:27:19 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nCfOVSAiIYAZ2UTFqZ3y1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Xhk29b/x+rczqVR5CUMS4j43zMk=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5532
Expires: Thu, 08 Dec 2022 19:34:56 GMT
Date: Thu, 08 Dec 2022 18:02:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5532
Expires: Thu, 08 Dec 2022 19:34:56 GMT
Date: Thu, 08 Dec 2022 18:02:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5532
Expires: Thu, 08 Dec 2022 19:34:56 GMT
Date: Thu, 08 Dec 2022 18:02:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5532
Expires: Thu, 08 Dec 2022 19:34:56 GMT
Date: Thu, 08 Dec 2022 18:02:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EeYw3qxRNMEhtLkUrHQe5b1H_f2k-5BWSZV4LEZ9U64rqm7Addv_Dw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 06:56:32 GMT
age: 39972
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:35:32 GMT
age: 66432
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 67569
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcHU93cetsY4-vWHpT2xXozH1T7J3_1X8n6Yjd6lOuF8HbkpTQDerg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:13:24 GMT
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
age: 71360
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wFqXeAYHSBcj85PiuqhV790clAMWg_NHMCO5Q5WARXDaohFWZdeCig==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:19:17 GMT
age: 67407
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 68326
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ww2.mkkuei4kdsz.com/
64.190.63.136200 OK 1.3 kB IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (700)
Hash 4527b6095b1c55e77c8c71e60e14eadb
39fc90690ff4bc6cba338d5221cb3606d4cb0ee9
c886cf8178510184c21adf8efb1e45b4c9f50b5675f27dcd0fa3b6bb22ba3b46
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Thu, 08 Dec 2022 18:02:44 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_zfi2IAQMFhbeJz7TohoVHVtJWU2hwm7Lrp9mU2CS1tg8fh6Um4KcOzzYJ6LQkNLWAjiGBQP1WU+h5qP7TrTizQ==
last-modified: Thu, 08 Dec 2022 18:02:44 GMT
x-cache-miss-from: parking-7887f445cc-btv6c
server: NginX
content-encoding: gzip
ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDUyMjU2NGRhZjJmMzE2NjNkYTI1MDA0MGE5OTdhZjkxMTQ2MDhi&crc=1e2b779388c4dfbbce8ebcc9adda46ce039273ec&cv=1
64.190.63.136200 OK 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDUyMjU2NGRhZjJmMzE2NjNkYTI1MDA0MGE5OTdhZjkxMTQ2MDhi&crc=1e2b779388c4dfbbce8ebcc9adda46ce039273ec&cv=1
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDUyMjU2NGRhZjJmMzE2NjNkYTI1MDA0MGE5OTdhZjkxMTQ2MDhi&crc=1e2b779388c4dfbbce8ebcc9adda46ce039273ec&cv=1 HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
HTTP/1.1 200 OK
date: Thu, 08 Dec 2022 18:02:45 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
x-cache-miss-from: parking-7887f445cc-mflss
server: NginX
ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
64.190.63.136302 Found 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Thu, 08 Dec 2022 18:02:45 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Thu, 08 Dec 2022 18:02:45 GMT
location: /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
x-cache-miss-from: parking-7887f445cc-dv59s
server: NginX
ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
64.190.63.136302 Found 311 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a310c836a9af1876ba2d185b41395392
134498481b330af536f91127c19cae1720d285df
a5f8edd4de2395b6e490f48ad1444a582a6dac8fadbf4628adc3d019c3ddd12d
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DlVoDbpxE-r0_0&v=NzUxNTQwODZiYmUxYjRmNWNkNmQxZjg1Yzg4Y2UyMGEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MjI2YzQ0ODAzYTUuMzc2NjI0NzkJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTIyNmM0NDgwN2YyLjM0NDA1MjI3CTE2NzA1MjI1NjQJYWRfNjNfMA==&l=OAliYzdmNWQyYzY5MzQ1ODE2NDFmOTQxMmJkY2RkMTM2YgkwCTM1CTAJYTNlNjZiZmJhNGMxYmM2YWY3NWE2OTViMjNiMWQzN2QJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA1MjI1NjQJMC4wMDAyNDgJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Thu, 08 Dec 2022 18:02:45 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Thu, 08 Dec 2022 18:02:45 GMT
location: http://xml.sedodna.com/click?i=lVoDbpxE-r0_0
x-cache-miss-from: parking-7887f445cc-kvn97
server: NginX
xml.sedodna.com/click?i=lVoDbpxE-r0_0
173.239.53.32302 Found 0 B URL HTTP/1.1 xml.sedodna.com/click?i=lVoDbpxE-r0_0
IP 173.239.53.32:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=lVoDbpxE-r0_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q598DCNMo1BwQRHtayhot8RBG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3y5e_nBQiXE6GfSNEilPBGXVy87PrisPDUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkivbwBSM2-aCwGfnGUX8Ust3pgHSpHpxrEMVVVJwO6AN_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5J91FRePygU0iRwO6brpVDHgSjqCq5HYlqOkMTtMYYl4n9jWMRH-RnumLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_T4dbkE2gZnKXFqGCqPm8wM5g3vAmzJgVMicBtNsug3y7ZhYfllFLn3PZxoXmK-zYs9AcBCqFUHomTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaSvigfGpu-qG7Fj3Ztem_1paIZQPVW7Sae1ztzRSvlUCkJ8nO0t_xR89sWQC6MwYwSmzsSNtuC-rNWrVJFxBXEiTysjaX7863iyFz_C4mlqrmN6ZTJk1fseIedozOvh8r9KlsereocjznpE44DY7LZQawDi-Dmm-PmxVXhhO7BTQV4jm677_ZX-Os5XGYrwKSvS5-xlGe0EOpU80L84loquu401UL1S-EnCWMKhHKi5ajUWvFb9cvSH1gt0PJ8CmbhEF7lvgOr3qBPxLVtKHwT29XyG96y3w1nN_2_xqZNQ46nMLiGuSuVqhPO53HpcEDf1dVwyZHuj1fkQpriNLUhJP3E7DteiWSvZGiNYnRjuN44AXCX1t-lsXXAyec0jrU7dXQ8-qxjaKlMi4yMLnwxL8L3PGXT7lMfWQ_FH0tOCEIQP5G2oPQOEn8XPsUGn7jrq9xdXFZN8UKHwsG0FCPpuh5a8IM-uXwwbQff73Sp7GQg9Kfngrve5yPKFFPdWytt09s8JEhLEQ3Rn1G_1MAS9Cax70Zcim0sg5bSTdWcYVZECtIe9BmV44lgd9nsM6YSj4aw70247WFtX5464EfUFmc81ilIzjn4z4SfHbi0RDkNyZWkkqHJjkEBFdWvLV8bJeOKALeLI7Jr_xuySUD8SPlua8KcUM0qAZbYz551kewMTxZlzE3DR1yJ52SsCoH3bB_5VceLdIX7AIyiLGumliRCmuI0tSEk_mxwxSNkqhtuP4YzkjMRWG1aofU65Q9qgfWMp2KO2d4JCg9T-mfi_SOTGcrR9fSiBZncoWwO3HW44AIfpS31EWedozOvh8r9Ia7BL9HBrFzugYcy37DKOd
Pragma: no-cache
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 05ca7bb5c72d0b027add77c4f39e6850
23b8627fc0768e1da94afedee9fc610c8150770c
cf3081d784cad56d974346030ea63930834f773b8c82c3181b00f68f0e71056d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 07:25:44 GMT
Expires: Thu, 15 Dec 2022 07:25:43 GMT
Etag: "23b8627fc0768e1da94afedee9fc610c8150770c"
Cache-Control: max-age=565977,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776769f3f870b506-OSL
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q598DCNMo1BwQRHtayhot8RBG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3y5e_nBQiXE6GfSNEilPBGXVy87PrisPDUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkivbwBSM2-aCwGfnGUX8Ust3pgHSpHpxrEMVVVJwO6AN_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5J91FRePygU0iRwO6brpVDHgSjqCq5HYlqOkMTtMYYl4n9jWMRH-RnumLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_T4dbkE2gZnKXFqGCqPm8wM5g3vAmzJgVMicBtNsug3y7ZhYfllFLn3PZxoXmK-zYs9AcBCqFUHomTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaSvigfGpu-qG7Fj3Ztem_1paIZQPVW7Sae1ztzRSvlUCkJ8nO0t_xR89sWQC6MwYwSmzsSNtuC-rNWrVJFxBXEiTysjaX7863iyFz_C4mlqrmN6ZTJk1fseIedozOvh8r9KlsereocjznpE44DY7LZQawDi-Dmm-PmxVXhhO7BTQV4jm677_ZX-Os5XGYrwKSvS5-xlGe0EOpU80L84loquu401UL1S-EnCWMKhHKi5ajUWvFb9cvSH1gt0PJ8CmbhEF7lvgOr3qBPxLVtKHwT29XyG96y3w1nN_2_xqZNQ46nMLiGuSuVqhPO53HpcEDf1dVwyZHuj1fkQpriNLUhJP3E7DteiWSvZGiNYnRjuN44AXCX1t-lsXXAyec0jrU7dXQ8-qxjaKlMi4yMLnwxL8L3PGXT7lMfWQ_FH0tOCEIQP5G2oPQOEn8XPsUGn7jrq9xdXFZN8UKHwsG0FCPpuh5a8IM-uXwwbQff73Sp7GQg9Kfngrve5yPKFFPdWytt09s8JEhLEQ3Rn1G_1MAS9Cax70Zcim0sg5bSTdWcYVZECtIe9BmV44lgd9nsM6YSj4aw70247WFtX5464EfUFmc81ilIzjn4z4SfHbi0RDkNyZWkkqHJjkEBFdWvLV8bJeOKALeLI7Jr_xuySUD8SPlua8KcUM0qAZbYz551kewMTxZlzE3DR1yJ52SsCoH3bB_5VceLdIX7AIyiLGumliRCmuI0tSEk_mxwxSNkqhtuP4YzkjMRWG1aofU65Q9qgfWMp2KO2d4JCg9T-mfi_SOTGcrR9fSiBZncoWwO3HW44AIfpS31EWedozOvh8r9Ia7BL9HBrFzugYcy37DKOd
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q598DCNMo1BwQRHtayhot8RBG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3y5e_nBQiXE6GfSNEilPBGXVy87PrisPDUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkivbwBSM2-aCwGfnGUX8Ust3pgHSpHpxrEMVVVJwO6AN_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5J91FRePygU0iRwO6brpVDHgSjqCq5HYlqOkMTtMYYl4n9jWMRH-RnumLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_T4dbkE2gZnKXFqGCqPm8wM5g3vAmzJgVMicBtNsug3y7ZhYfllFLn3PZxoXmK-zYs9AcBCqFUHomTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaSvigfGpu-qG7Fj3Ztem_1paIZQPVW7Sae1ztzRSvlUCkJ8nO0t_xR89sWQC6MwYwSmzsSNtuC-rNWrVJFxBXEiTysjaX7863iyFz_C4mlqrmN6ZTJk1fseIedozOvh8r9KlsereocjznpE44DY7LZQawDi-Dmm-PmxVXhhO7BTQV4jm677_ZX-Os5XGYrwKSvS5-xlGe0EOpU80L84loquu401UL1S-EnCWMKhHKi5ajUWvFb9cvSH1gt0PJ8CmbhEF7lvgOr3qBPxLVtKHwT29XyG96y3w1nN_2_xqZNQ46nMLiGuSuVqhPO53HpcEDf1dVwyZHuj1fkQpriNLUhJP3E7DteiWSvZGiNYnRjuN44AXCX1t-lsXXAyec0jrU7dXQ8-qxjaKlMi4yMLnwxL8L3PGXT7lMfWQ_FH0tOCEIQP5G2oPQOEn8XPsUGn7jrq9xdXFZN8UKHwsG0FCPpuh5a8IM-uXwwbQff73Sp7GQg9Kfngrve5yPKFFPdWytt09s8JEhLEQ3Rn1G_1MAS9Cax70Zcim0sg5bSTdWcYVZECtIe9BmV44lgd9nsM6YSj4aw70247WFtX5464EfUFmc81ilIzjn4z4SfHbi0RDkNyZWkkqHJjkEBFdWvLV8bJeOKALeLI7Jr_xuySUD8SPlua8KcUM0qAZbYz551kewMTxZlzE3DR1yJ52SsCoH3bB_5VceLdIX7AIyiLGumliRCmuI0tSEk_mxwxSNkqhtuP4YzkjMRWG1aofU65Q9qgfWMp2KO2d4JCg9T-mfi_SOTGcrR9fSiBZncoWwO3HW44AIfpS31EWedozOvh8r9Ia7BL9HBrFzugYcy37DKOd
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q598DCNMo1BwQRHtayhot8RBG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3y5e_nBQiXE6GfSNEilPBGXVy87PrisPDUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkivbwBSM2-aCwGfnGUX8Ust3pgHSpHpxrEMVVVJwO6AN_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5J91FRePygU0iRwO6brpVDHgSjqCq5HYlqOkMTtMYYl4n9jWMRH-RnumLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_T4dbkE2gZnKXFqGCqPm8wM5g3vAmzJgVMicBtNsug3y7ZhYfllFLn3PZxoXmK-zYs9AcBCqFUHomTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaSvigfGpu-qG7Fj3Ztem_1paIZQPVW7Sae1ztzRSvlUCkJ8nO0t_xR89sWQC6MwYwSmzsSNtuC-rNWrVJFxBXEiTysjaX7863iyFz_C4mlqrmN6ZTJk1fseIedozOvh8r9KlsereocjznpE44DY7LZQawDi-Dmm-PmxVXhhO7BTQV4jm677_ZX-Os5XGYrwKSvS5-xlGe0EOpU80L84loquu401UL1S-EnCWMKhHKi5ajUWvFb9cvSH1gt0PJ8CmbhEF7lvgOr3qBPxLVtKHwT29XyG96y3w1nN_2_xqZNQ46nMLiGuSuVqhPO53HpcEDf1dVwyZHuj1fkQpriNLUhJP3E7DteiWSvZGiNYnRjuN44AXCX1t-lsXXAyec0jrU7dXQ8-qxjaKlMi4yMLnwxL8L3PGXT7lMfWQ_FH0tOCEIQP5G2oPQOEn8XPsUGn7jrq9xdXFZN8UKHwsG0FCPpuh5a8IM-uXwwbQff73Sp7GQg9Kfngrve5yPKFFPdWytt09s8JEhLEQ3Rn1G_1MAS9Cax70Zcim0sg5bSTdWcYVZECtIe9BmV44lgd9nsM6YSj4aw70247WFtX5464EfUFmc81ilIzjn4z4SfHbi0RDkNyZWkkqHJjkEBFdWvLV8bJeOKALeLI7Jr_xuySUD8SPlua8KcUM0qAZbYz551kewMTxZlzE3DR1yJ52SsCoH3bB_5VceLdIX7AIyiLGumliRCmuI0tSEk_mxwxSNkqhtuP4YzkjMRWG1aofU65Q9qgfWMp2KO2d4JCg9T-mfi_SOTGcrR9fSiBZncoWwO3HW44AIfpS31EWedozOvh8r9Ia7BL9HBrFzugYcy37DKOd HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 18:02:45 GMT
content-length: 0
set-cookie: rhid=82512655308; Max-Age=15552000; Expires=Tue, 06-Jun-2023 18:02:45 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p201298.mybettermb.com/adServe/domainClick?ai=gQySgi_KOattG6QT9YQYKGSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF5WuqH1PyQUHtehCim1Vz8ibM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_C21HgEYiy61CJfyk5hiIvclGOMSQjHsLKOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_ns-Cm35MG9zEITCssQBo5b-JQfRlNh3Q-ND6d5qY-PB7JWMt11ucqtjA&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukMiX8pOYYiL3Kc7GNsZXY0PasHZqIU5AkG26X3Sz3FmkjVhQcmczR_qOwn2h5h2sL6FRZVWoKEahQ&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=ntzDoPN7Tjk&rr=1&abtg=0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5c6022d88ea8dec97b2a459ae424f085
776ff14bda6c9444258e11f8bbdc9ae6ba9d98ac
0562c0dbce0846e31f992c00266c6e1ce323be45b6923d806052297a038a54aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3505
Cache-Control: max-age=135896
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:46 GMT
Etag: "639188ed-117"
Expires: Sat, 10 Dec 2022 07:47:42 GMT
Last-Modified: Thu, 08 Dec 2022 06:49:17 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5c6022d88ea8dec97b2a459ae424f085
776ff14bda6c9444258e11f8bbdc9ae6ba9d98ac
0562c0dbce0846e31f992c00266c6e1ce323be45b6923d806052297a038a54aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3505
Cache-Control: max-age=135896
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:46 GMT
Etag: "639188ed-117"
Expires: Sat, 10 Dec 2022 07:47:42 GMT
Last-Modified: Thu, 08 Dec 2022 06:49:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14081a6c39769bd945b4ed60c2f21e70
697995e97221d9644dbeb3466c0d8f4653d8512c
aa53b7b9f7e3410422fd8ce744a6ab1b37bdcfa14f305968f33738a076f2d152
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "AA53B7B9F7E3410422FD8CE744A6AB1B37BDCFA14F305968F33738A076F2D152"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Fri, 09 Dec 2022 00:02:42 GMT
Date: Thu, 08 Dec 2022 18:02:47 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14081a6c39769bd945b4ed60c2f21e70
697995e97221d9644dbeb3466c0d8f4653d8512c
aa53b7b9f7e3410422fd8ce744a6ab1b37bdcfa14f305968f33738a076f2d152
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "AA53B7B9F7E3410422FD8CE744A6AB1B37BDCFA14F305968F33738A076F2D152"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Fri, 09 Dec 2022 00:02:42 GMT
Date: Thu, 08 Dec 2022 18:02:48 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A400%2C400italic%2C700%2C700italic%2C300italic%2C300
142.250.74.74200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C400italic%2C700%2C700italic%2C300italic%2C300
IP 142.250.74.74:0
Hash 1d7e93af2ede4d842ed3c5f0998bc041
d0d16c3b162ce742eeb65ca5a2569e9a0c661aca
3f946edc12a07fb35d76f9db2a0c11a3aa0710f9aeee9ca14f47b4bd20bf542d
GET /css?family=Roboto%3A400%2C400italic%2C700%2C700italic%2C300italic%2C300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestschemes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 18:02:49 GMT
date: Thu, 08 Dec 2022 18:02:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 15e5f7ae81ed18f023b87cace47cd258
72c3c3ab02487f3f741b4c46de40867c912cce05
d399a4a76f44625bbd46809d0e2b3add79f4ee32eb605dba0346a14030858b39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 02:29:46 GMT
Expires: Thu, 15 Dec 2022 02:29:45 GMT
Etag: "72c3c3ab02487f3f741b4c46de40867c912cce05"
Cache-Control: max-age=548214,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77676a0e7d78b506-OSL
shopify.pxf.io/vnqve3
35.201.76.231302 Found 389 B IP 35.201.76.231:0
Hash 4ba74149026eb545869103f6d4c13117
bf419a786db0e8a230ad326ce6e5949708e2d7e9
97eec7248dda0b54a6bffc5fb3f0413876bfc3c292f19cfef4b7fcf391189cef
GET /vnqve3 HTTP/1.1
Host: shopify.pxf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestschemes.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Thu, 08 Dec 2022 18:02:50 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fshopify.pxf.io%2Fc%2F2086072%2F1061744%2F13624%3Fsvlink%3D5836977%26level%3D1%26srcref%3Dhttps%253A%252F%252Fbestschemes.com%252F&cid=13624&tpsync=yes
content-type: text/html; charset=utf-8
content-length: 233
date: Thu, 08 Dec 2022 18:02:50 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a1fe46ffc11ad7847f1713fd7fa3c461
ffebe97c4aca7bdaadda5d499e4e0bee479c5618
59c4501bea449a997cd5cd022541371f6f693996440f5ff7083db7cd5bfafe1d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 17:55:46 GMT
Expires: Tue, 13 Dec 2022 17:55:45 GMT
Etag: "ffebe97c4aca7bdaadda5d499e4e0bee479c5618"
Cache-Control: max-age=430974,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77676a0f7be0b50c-OSL
www.ojrq.net/p/?return=https%3A%2F%2Fshopify.pxf.io%2Fc%2F2086072%2F1061744%2F13624%3Fsvlink%3D5836977%26level%3D1%26srcref%3Dhttps%253A%252F%252Fbestschemes.com%252F&cid=13624&tpsync=yes
34.95.127.121302 Found 906 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Fshopify.pxf.io%2Fc%2F2086072%2F1061744%2F13624%3Fsvlink%3D5836977%26level%3D1%26srcref%3Dhttps%253A%252F%252Fbestschemes.com%252F&cid=13624&tpsync=yes
IP 34.95.127.121:0
Hash a87dab480e40748c016747dda6ac08c0
523e95165ff733c4543311332e3c13585f70fb99
2c059bd0264d2b19c9f7e6740eca464c9043b71af163eff6f90e0104a9bd85f4
GET /p/?return=https%3A%2F%2Fshopify.pxf.io%2Fc%2F2086072%2F1061744%2F13624%3Fsvlink%3D5836977%26level%3D1%26srcref%3Dhttps%253A%252F%252Fbestschemes.com%252F&cid=13624&tpsync=yes HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestschemes.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Thu, 08 Dec 2022 18:02:50 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Wed, 27 Nov 2024 18:02:50 GMT; HttpOnly; SameSite=None
location: https://shopify.pxf.io/c/2086072/1061744/13624?svlink=5836977&level=1&srcref=https%3A%2F%2Fbestschemes.com%2F&brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f&brwsrsig=X6PSOsSTV3vH3LW0TRwPc2KsRzNSYA
content-length: 0
date: Thu, 08 Dec 2022 18:02:50 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopify.pxf.io/c/2086072/1061744/13624?svlink=5836977&level=1&srcref=https%3A%2F%2Fbestschemes.com%2F&brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f&brwsrsig=X6PSOsSTV3vH3LW0TRwPc2KsRzNSYA
35.201.76.231301 Moved Permanently 0 B URL HTTP/2 shopify.pxf.io/c/2086072/1061744/13624?svlink=5836977&level=1&srcref=https%3A%2F%2Fbestschemes.com%2F&brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f&brwsrsig=X6PSOsSTV3vH3LW0TRwPc2KsRzNSYA
IP 35.201.76.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/2086072/1061744/13624?svlink=5836977&level=1&srcref=https%3A%2F%2Fbestschemes.com%2F&brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f&brwsrsig=X6PSOsSTV3vH3LW0TRwPc2KsRzNSYA HTTP/1.1
Host: shopify.pxf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestschemes.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Thu, 08 Dec 2022 18:02:50 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=87601e18-7722-11ed-9ec9-d90eb3934b0f; Domain=.pxf.io; Path=/; Secure; Max-Age=62208000; Expires=Wed, 27 Nov 2024 18:02:50 GMT; HttpOnly; SameSite=None
irld=Lwew0IwzAbUix0VW2GT12C1EYT5AT10X3E3%3AfQ2nX2eSNf0D1; Path=/; Secure; Max-Age=15552000; Expires=Tue, 6 Jun 2023 18:02:50 GMT; HttpOnly; SameSite=None
location: https://www.shopify.com/free-trial?irclickid=UFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0&irgwc=1&partner=2086072&affpt=
content-length: 0
date: Thu, 08 Dec 2022 18:02:50 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a1fe46ffc11ad7847f1713fd7fa3c461
ffebe97c4aca7bdaadda5d499e4e0bee479c5618
59c4501bea449a997cd5cd022541371f6f693996440f5ff7083db7cd5bfafe1d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 17:55:46 GMT
Expires: Tue, 13 Dec 2022 17:55:45 GMT
Etag: "ffebe97c4aca7bdaadda5d499e4e0bee479c5618"
Cache-Control: max-age=430974,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77676a102cd4b50c-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5000f69b7aaa62638c7988b983ce0f9f
169fa28cad364d86bec62bd9060d303f71fb13b4
5b90abf19c3c250c1f99efdabd6fa31feacf3d4ef1f2f8e33e1e9a07334a752a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B90ABF19C3C250C1F99EFDABD6FA31FEACF3D4EF1F2F8E33E1E9A07334A752A"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=908
Expires: Thu, 08 Dec 2022 18:17:58 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 15e5f7ae81ed18f023b87cace47cd258
72c3c3ab02487f3f741b4c46de40867c912cce05
d399a4a76f44625bbd46809d0e2b3add79f4ee32eb605dba0346a14030858b39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 02:29:46 GMT
Expires: Thu, 15 Dec 2022 02:29:45 GMT
Etag: "72c3c3ab02487f3f741b4c46de40867c912cce05"
Cache-Control: max-age=548214,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77676a0f4ec7b506-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5000f69b7aaa62638c7988b983ce0f9f
169fa28cad364d86bec62bd9060d303f71fb13b4
5b90abf19c3c250c1f99efdabd6fa31feacf3d4ef1f2f8e33e1e9a07334a752a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B90ABF19C3C250C1F99EFDABD6FA31FEACF3D4EF1F2F8E33E1E9A07334A752A"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 08 Dec 2022 22:11:07 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/T3-testimonial-icon@desktop-539cc9b2a32e855a5b3e7010bcc8d4e75bd3f8819c8074f7cc377a8fb7b1241b.png
162.159.135.68200 OK 2.4 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/T3-testimonial-icon@desktop-539cc9b2a32e855a5b3e7010bcc8d4e75bd3f8819c8074f7cc377a8fb7b1241b.png
IP 162.159.135.68:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6a26f8b1c203473c3346a987a3eaa432
d7580f93913723779a8a63c14889dc2c49035fe8
ee3f2b2f1ce4002ee156302d32a79f6fe119905d06a502c3ff733f4aabbbf07e
GET /shopifycloud/brochure/assets/landers/short-lander/free-trial/T3-testimonial-icon@desktop-539cc9b2a32e855a5b3e7010bcc8d4e75bd3f8819c8074f7cc377a8fb7b1241b.png HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: image/webp
content-length: 2414
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/T3-testimonial-icon@desktop-539cc9b2a32e855a5b3e7010bcc8d4e75bd3f8819c8074f7cc377a8fb7b1241b.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 29ebbc3b-6f8a-4026-a0ba-d457444b8261
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 14:45:37 GMT
cf-cache-status: HIT
age: 8997393
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fo4VTllNhpx9Zt7ungjny2MF5Jd7gaP2nxfNaniHy%2Fxxz3xDqZA39NyqcD51zQ%2BvrD7nHHdpZ70pyU1vgGkxcB9nVo6P9nwuBPh9WlksvfCYsjN2LBmUQfTYtpE8xam9wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=112.167, imageryFetch;dur=54.609, imageryProcess;dur=56.807;desc="image", cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 77676a142e4d0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/incentives-hero-desktop-d4e74bbb76284c154edfcb24e7610847ac8bcefa5602c39f90d7cce8f74ec4fd.png?quality=75
162.159.135.68200 OK 166 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/incentives-hero-desktop-d4e74bbb76284c154edfcb24e7610847ac8bcefa5602c39f90d7cce8f74ec4fd.png?quality=75
IP 162.159.135.68:0
Size 166 kB (165974 bytes)
Hash 006adb545b85013f855d3a9c082cd3ec
8caabf92f65f0860fddfb8462c1b18a5b5db24e4
b55efa352f8e62c79bfc9bac9e98c3a2b0bd79783f1d005f163a4a15c1c9514a
GET /shopifycloud/brochure/assets/landers/short-lander/free-trial/incentives-hero-desktop-d4e74bbb76284c154edfcb24e7610847ac8bcefa5602c39f90d7cce8f74ec4fd.png?quality=75 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: image/webp
content-length: 162104
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/landers/short-lander/free-trial/incentives-hero-desktop-d4e74bbb76284c154edfcb24e7610847ac8bcefa5602c39f90d7cce8f74ec4fd.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 29fc8a5d-327a-483b-b2d8-a7b02c3df3df
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sun, 02 Oct 2022 00:38:58 GMT
cf-cache-status: HIT
age: 5734399
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OIhdF3N6MoibODzzE%2BBy75xb4X8yPrGwug07h97l7bQcxHgGrr0G7UvTKoOJnWzpG8q2%2BECE0E3Sa8YhLu4RbaxVmtVHQLbbH%2FOlTbxHTd1QbXFk4Q09CojyQbdPC%2BTZIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=4602.351, imageryFetch;dur=21.972, imageryProcess;dur=4578.571;desc="image", cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 77676a142e4c0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
www.shopify.com/free-trial?irclickid=UFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0&irgwc=1&partner=2086072&affpt=
162.159.130.71200 OK 51 kB URL HTTP/2 www.shopify.com/free-trial?irclickid=UFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0&irgwc=1&partner=2086072&affpt=
IP 162.159.130.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6996)
Hash 87cf3cee1f875db670339a9c8a17ee1f
d3f67d56b1990d9c1f263ba35467e1b90a161b27
60cfa6025838c0e60e6e945147a63e56bb2d84b439b51ef30df4610e299dca76
GET /free-trial?irclickid=UFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0&irgwc=1&partner=2086072&affpt= HTTP/1.1
Host: www.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestschemes.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Save-Data
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/icr-signup-block-f746952a542a2746c5e18b3a6196d2f6a45cca85f0b1525208d33082c6d09ba3.css>; rel=preload; as=style
etag: W/"71e3e8b7096a49395bec62a097f5f919"
cache-control: max-age=0, private, must-revalidate
x-request-id: 257c2d85-c397-4bbe-a4db-4506463b2cdb
x-runtime: 0.157845
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=index&source%5Bapp%5D=Brochure&source%5Bcontroller%5D=landers%2Fshort&source%5Bdomain%5D=www.shopify.com&source%5Bsection%5D=brochure&source%5Buuid%5D=257c2d85-c397-4bbe-a4db-4506463b2cdb
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy-report-only: default-src 'self' https:; child-src 'self' https: data:; connect-src 'self' https: wss:; font-src 'self' https: data:; img-src 'self' https: data:; media-src 'self' https: data:; object-src 'self' https:; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'; report-uri /csp-report?source%5Baction%5D=index&source%5Bapp%5D=Brochure&source%5Bcontroller%5D=landers%2Fshort&source%5Bdomain%5D=www.shopify.com&source%5Bsection%5D=brochure&source%5Buuid%5D=257c2d85-c397-4bbe-a4db-4506463b2cdb
x-dc: gcp-us-central1
cf-cache-status: BYPASS
set-cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; domain=.shopify.com; path=/; expires=Fri, 08 Dec 2023 18:02:50 GMT; SameSite=Lax; secure
_shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; domain=.shopify.com; path=/; expires=Thu, 08 Dec 2022 18:32:50 GMT; SameSite=Lax; secure
_y=629069bd-3528-40af-a9b5-d44316b42c9e; domain=.shopify.com; path=/; expires=Fri, 08 Dec 2023 18:02:50 GMT; SameSite=Lax; secure
_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; domain=.shopify.com; path=/; expires=Thu, 08 Dec 2022 18:32:50 GMT; SameSite=Lax; secure
0f98ae1fc29391a657457830dda53ca1_assignment=%7B%22group%22%3A%22a6fee7cd8b89ae8f3e5659a4207807e9%22%2C%22created_at%22%3A%222022-12-08T18%3A02%3A50Z%22%7D; path=/; expires=Fri, 09 Jun 2023 08:57:26 GMT; SameSite=Lax; secure
06fc1463cae656e4aa838210171bd610_assignment=%7B%22group%22%3A%22d1ec01683e4a0240d40941589386b1a5%22%2C%22created_at%22%3A%222022-12-08T18%3A02%3A50Z%22%7D; path=/; expires=Fri, 09 Jun 2023 08:57:26 GMT; SameSite=Lax; secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k%2BMuMycDLorLiG92WaG2nhbmwguyeDdD72JTCpX8NGrrjFHW4voBICxoLxebfKFeZkLqKL8O8Jb0svo%2FFA1wBCAT53XcHqXHM5TYtsNNP8TCGgPa8247Z1EQwH3A582o2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77676a108b2e0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=160, socket_queue;dur=52.814, cfRequestDuration;dur=482.000113, earlyhints
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 95f8072f14085ada73e628724cbf86dd
1120267c782232a313effa1f9b29366dc75ffd61
84752e9fcccfe5cd86ce2d9316da6a40524dc0276632dcf2a7e89670b12464d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84752E9FCCCFE5CD86CE2D9316DA6A40524DC0276632DCF2A7E89670B12464D2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Thu, 08 Dec 2022 21:06:13 GMT
Date: Thu, 08 Dec 2022 18:02:50 GMT
Connection: keep-alive
cdn.shopify.com/static/fonts/ShopifySans--bold.woff2
162.159.135.68200 OK 50 kB URL HTTP/2 cdn.shopify.com/static/fonts/ShopifySans--bold.woff2
IP 162.159.135.68:0
Hash 62283afb4a278ae7260cf0ef6fd9934d
697a9b25e00fc25f28bbc2316f4f778385e7468c
208f8f5813f42cba9c7ed0584d607d3275a2e11b82ccd5b421cae94595fcf395
GET /static/fonts/ShopifySans--bold.woff2 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: font/woff2
content-length: 37552
access-control-allow-origin: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/static/fonts/ShopifySans--bold.woff2>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a428250f-5223-46ce-b585-1de41e5fc2af
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:01:25 GMT
cf-cache-status: HIT
age: 9038627
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lH5ym%2Fgbx2JpYM6F0reHgOA6GeeLQLX3TQhDPQqwIuNM0P5Odyyx%2FJq6MLtbkSn%2B22BedSwVz5Yv8okUcMQz%2Bhmkwj2%2BV4eUs2ImWKbH%2FBgapuYy4SfSUT%2FkwWgWUEo64g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=23.308, imageryFetch;dur=23.032, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 77676a1479bfb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/application-814ef7472f0e26292e35e0d79f12e62b52f750d8d3ed68911581ecca9bea343e.css
162.159.135.68200 OK 78 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/application-814ef7472f0e26292e35e0d79f12e62b52f750d8d3ed68911581ecca9bea343e.css
IP 162.159.135.68:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65499), with no line terminators
Hash 2c0de6cf8dffac4e5de10cd00a709ac9
885917806df01803ea9eb0326310e4f0d59ae396
04a14ecea47baa21f0946926b11762d0fb02ccb95a9e52d177dcc1f6959b2f0a
GET /shopifycloud/brochure/assets/application-814ef7472f0e26292e35e0d79f12e62b52f750d8d3ed68911581ecca9bea343e.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/application-814ef7472f0e26292e35e0d79f12e62b52f750d8d3ed68911581ecca9bea343e.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a823fff9-c420-4a8d-87a4-29bf7b03dedc
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 17 Nov 2022 22:36:36 GMT
cf-cache-status: HIT
age: 1797968
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TRjoq708caxr%2FoiE99ziaDrTKs9BNnMfrABiIkUJiRbVXKux1atqB4qTCm3Zg1aHrm99Zy4VLSqpAcHjkdTYo3SdVwES9YiPhPiXOLhbyVaNEdIK8Q%2FO4G04cxK5tQw8zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=74.685, imageryFetch;dur=74.496, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 77676a144e680b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/incentives-code-red-8a428462579af926d74e6130486ed58fefcdeea7dfbb265b8fbaf91eb44d8294.css
162.159.135.68200 OK 36 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/incentives-code-red-8a428462579af926d74e6130486ed58fefcdeea7dfbb265b8fbaf91eb44d8294.css
IP 162.159.135.68:0
File type ASCII text, with very long lines (838)
Hash d01d693bad48467aa715752e94fded60
261e0c90e9b963ff953767993aa6a6454fdf98e5
0e8864749e3ce52dbefad28c61e969fef5fb9de02333f9d0985211637ab793ac
GET /shopifycloud/brochure/assets/manifests/landers/short/incentives-code-red-8a428462579af926d74e6130486ed58fefcdeea7dfbb265b8fbaf91eb44d8294.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/incentives-code-red-8a428462579af926d74e6130486ed58fefcdeea7dfbb265b8fbaf91eb44d8294.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9b649bdc-1ab0-4432-9491-7e1ba5881d59
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 03 Oct 2022 09:06:52 GMT
cf-cache-status: HIT
age: 5734400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YDreuhBUWVXeFz8KrEbwU%2FD8bUjed6C2bfNOCa%2FzsKI1oZ0%2FP8Oh630oUSoz4rr8vpl%2BArorf%2BrvGSDhgl7OKXJD%2FQV9lLw%2BRPINtlP6RCscilFgxksd%2FYFBa%2FJ5ZJuDkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=101.866, imageryFetch;dur=101.660, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 77676a143e620b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.js
23.38.200.249200 OK 23 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.js
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (24564)
Hash 8f68030bf33cb66ef4550bbe87d5ac35
f38a77aa48dff1aec1cf22b144f5396b547dc05a
b5fb72c909055b07ae7959708ef9801ce122d7d7ea85ebd2c1d7a6710e6e4a13
GET /utag/shopify/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4f0ee2e231f9c3da943c0f2c1b02fa6b:1669840170.876569"
last-modified: Wed, 30 Nov 2022 20:29:30 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 08 Dec 2022 18:07:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 23066
X-Firefox-Spdy: h2
cdn.shopify.com/static/javascripts/vendor/bugsnag.v7.4.0.min.js
162.159.135.68200 OK 13 kB URL HTTP/2 cdn.shopify.com/static/javascripts/vendor/bugsnag.v7.4.0.min.js
IP 162.159.135.68:0
File type Unicode text, UTF-8 text, with very long lines (40523)
Hash a186724a604c7d73c307b0548e28c462
7e96a9345d7bcd175ff7ed057a28c83f99a18f71
178736189b1de37b5f1664b0d1b9066a351cdbede8405915b3e1e0311ea92c31
GET /static/javascripts/vendor/bugsnag.v7.4.0.min.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/static/javascripts/vendor/bugsnag.v7.4.0.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c1a7ffa6-3787-4a6a-bf4f-8a8bae99f278
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 00:50:43 GMT
cf-cache-status: HIT
age: 9047515
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xL4bh4KTfdf%2F17RJpjn3Ii3tBy%2BooqiDhxEBqCrCGo5oH2bzhNjtGD34d9UFVveBTMqJHV4P%2FsTc7tcDE0z28lpISKuzuGXYL1A%2BkEUhdMF6IVi%2Fdt1D07B1cdvOrn84AA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=12.846, imageryFetch;dur=12.700, cfRequestDuration;dur=55.999994
server: cloudflare
cf-ray: 77676a142975b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a23a00220fc3ccce82bdaeaaf7ed73f9
1b8f6fdb15abae27c329204e66da8d7a2574ca55
efa3f049fd0809d51ae6836699ee07ee97ba1adf8ff6278b6dd598e39fc1cf86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFA3F049FD0809D51AE6836699EE07EE97BA1ADF8FF6278B6DD598E39FC1CF86"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13382
Expires: Thu, 08 Dec 2022 21:45:53 GMT
Date: Thu, 08 Dec 2022 18:02:51 GMT
Connection: keep-alive
cdn.shopify.com/shopifycloud/brochure/bundles/latest/vendor-3336276e0b540997d0fe5d317660ed17c173ea03d86b85a8e2080bc7ba86f4f7.js
162.159.135.68200 OK 51 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/bundles/latest/vendor-3336276e0b540997d0fe5d317660ed17c173ea03d86b85a8e2080bc7ba86f4f7.js
IP 162.159.135.68:0
File type ASCII text, with very long lines (15660)
Hash de94b0ce1bf60fac57180d96be72f2e8
f13d33dd8f000ac32a58cd9654ff6c79a0c82876
ea6874092fac67897d45b49448cc2db32056f3eac9eb14ab19c4a412629e72dc
GET /shopifycloud/brochure/bundles/latest/vendor-3336276e0b540997d0fe5d317660ed17c173ea03d86b85a8e2080bc7ba86f4f7.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/bundles/latest/vendor-3336276e0b540997d0fe5d317660ed17c173ea03d86b85a8e2080bc7ba86f4f7.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f0b930e5-7dbd-4d90-84a3-e21f62c1cb9d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 06 Dec 2022 22:53:51 GMT
cf-cache-status: HIT
age: 83112
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vhO9wSoHQ2LtY34CGF40Ruf2uv8HiE94YfuhMltpQJCFQWWa%2Bcw%2BR7j7hcyQZ5CS3zLwaxgIcgRnY74kAmkWkfD1CI9eTt6pzZPwDhHLhPSJMGST81ZfKQS7QvG7iW3EMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=56.836, imageryFetch;dur=56.639, cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 77676a142e460b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/bundles/latest/runtime-df6c58db0b44c18dddcb2d656ee615deb1873f8a4a4f3feb69b97ed3022e0853.js
162.159.135.68200 OK 1.9 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/bundles/latest/runtime-df6c58db0b44c18dddcb2d656ee615deb1873f8a4a4f3feb69b97ed3022e0853.js
IP 162.159.135.68:0
File type ASCII text, with very long lines (2586)
Hash 9ea3cedfc42e37e0f110a348a20a6be7
f7d41126933ec208282407e3609b41161d387e79
97c40b41777ccc7c285d9b89718bd60275d71f0802de647af18c5a3708b02d7d
GET /shopifycloud/brochure/bundles/latest/runtime-df6c58db0b44c18dddcb2d656ee615deb1873f8a4a4f3feb69b97ed3022e0853.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/bundles/latest/runtime-df6c58db0b44c18dddcb2d656ee615deb1873f8a4a4f3feb69b97ed3022e0853.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0fe5e327-ea89-42c7-93f2-9ce4021dfdfc
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Thu, 01 Dec 2022 04:40:46 GMT
cf-cache-status: HIT
age: 652403
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PNQQPVoniLvDEN%2BRyUmzW9%2FZEM2eBSP7dUTHszTljy%2F7HPjXF9mgHpbX9WiE68rfTHkESuN6%2B%2BoXOieUUEbNJ8ER2BpjNBJjoK0BlJMNhlOeVeoMC61KCMg3M570cER6gQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=41.074, imageryFetch;dur=40.871, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 77676a142e440b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7200 OK 0 B IP 35.190.88.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://www.shopify.com/
Origin: https://www.shopify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.25.js?utv=ut4.46.202203021521
23.38.200.249200 OK 1.1 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.25.js?utv=ut4.46.202203021521
IP 23.38.200.249:0
File type ASCII text, with very long lines (1071)
Hash 08c857cdd40abfc8858c8546c76a7fe2
c619013076bb1393add382254054b9db18215aec
190b1cffd6ce6da861fad08c1cd5f67da5087a5fb83f11b2a4eacd2dd21b406a
GET /utag/shopify/main/prod/utag.25.js?utv=ut4.46.202203021521 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "3884e556b090f35cb19312872d666f9b:1667321966.439462"
last-modified: Tue, 01 Nov 2022 16:59:26 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1144
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.61.js?utv=ut4.46.202203021521
23.38.200.249200 OK 605 B URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.61.js?utv=ut4.46.202203021521
IP 23.38.200.249:0
File type ASCII text, with very long lines (396)
Hash 7fc3ed32fb59a2b627b5caed43f68671
fbd89a8dfdd0678b48f403ed4e1e9be9eeef25ee
e585ca9987d2cd242784f6b1d738db89f6d0bccd70a7c9f39af52b6057626a76
GET /utag/shopify/main/prod/utag.61.js?utv=ut4.46.202203021521 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7fc3ed32fb59a2b627b5caed43f68671:1667321963.728683"
last-modified: Tue, 01 Nov 2022 16:59:23 GMT
server: AkamaiNetStorage
content-length: 605
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.114.js?utv=ut4.46.202204201408
23.38.200.249200 OK 1.0 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.114.js?utv=ut4.46.202204201408
IP 23.38.200.249:0
File type ASCII text, with very long lines (1048)
Hash 366e1874d9d42e0357c2a2df9cdd3568
9343415dfdde42cd1753d70f9b6ddd1adda51550
7a44ec549035be831045cf9054da20cdb2906aeb6f78b0f470272f7e32e50aab
GET /utag/shopify/main/prod/utag.114.js?utv=ut4.46.202204201408 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "26e255dae26493d95355abb08af610f2:1667321961.448718"
last-modified: Tue, 01 Nov 2022 16:59:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1008
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.121.js?utv=ut4.46.202203021521
23.38.200.249200 OK 4.6 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.121.js?utv=ut4.46.202203021521
IP 23.38.200.249:0
File type ASCII text, with very long lines (1253)
Hash 361d1735bc815ba7ee34af7b459edecd
9aa1e65d00c649ba056c565c995221c3d57caa37
8ecbc0739183dc88a87ae85f745cd934c93cf3193e7a9eca80c434e0929565af
GET /utag/shopify/main/prod/utag.121.js?utv=ut4.46.202203021521 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9210378e7eaa8f0baad34b56c5639d19:1667321959.63412"
last-modified: Tue, 01 Nov 2022 16:59:19 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 4588
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.173.js?utv=ut4.46.202203071935
23.38.200.249200 OK 1.4 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.173.js?utv=ut4.46.202203071935
IP 23.38.200.249:0
File type ASCII text, with very long lines (1117)
Hash 4525b1941d63f72d3307854aa9c89e50
12abe49ec61d14384df3d5c3c956d9349a46be74
bb7112bf77909176c7613f427eeb1a8a7caa4bf420223b7c667f5bbd6d5d5fc9
GET /utag/shopify/main/prod/utag.173.js?utv=ut4.46.202203071935 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "6a8fccd69c4f38a3a81d0e7e568976f3:1667321954.465038"
last-modified: Tue, 01 Nov 2022 16:59:14 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1412
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.117.js?utv=ut4.46.202205031818
23.38.200.249200 OK 2.4 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.117.js?utv=ut4.46.202205031818
IP 23.38.200.249:0
File type ASCII text, with very long lines (1117)
Hash e89b72fb162e782c9439574b4b723f07
87ba1efaf6ca6736d2e45e80881a39e58e877868
f83ea86e18657dbc83f3672a0c00ce52cc1a5991de0420fba2c461199215993a
GET /utag/shopify/main/prod/utag.117.js?utv=ut4.46.202205031818 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "f84e5327a55c5467b193c3c6f065187d:1667321961.577513"
last-modified: Tue, 01 Nov 2022 16:59:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 2374
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.188.js?utv=ut4.46.202203071935
23.38.200.249200 OK 2.4 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.188.js?utv=ut4.46.202203071935
IP 23.38.200.249:0
File type ASCII text, with very long lines (1117)
Hash 1b54cfebc4966f762398a8c7dea0a289
58bbe76087be86cdfa29a1588b2b8cf3504d150e
c37f6f7699b36dcc53e87e253def7f5a3e8631e637d7cfd6d4ad6e6cb8fc04c6
GET /utag/shopify/main/prod/utag.188.js?utv=ut4.46.202203071935 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "773a1dc1c190252ba3271681a0dc016c:1667321961.032716"
last-modified: Tue, 01 Nov 2022 16:59:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 2358
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.189.js?utv=ut4.46.202203021521
23.38.200.249200 OK 1.6 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.189.js?utv=ut4.46.202203021521
IP 23.38.200.249:0
File type ASCII text, with very long lines (995)
Hash af0f8024db5878634a04eed74943f19c
4dba31aecddfb401849d7ab6919e994208e178aa
eb397abd61efda9d343635c7cbf1a5714ce10a4b77b1e8e36039e5b50891397a
GET /utag/shopify/main/prod/utag.189.js?utv=ut4.46.202203021521 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "a2bdf1db65f4b13956092df0da0af53c:1667321958.137691"
last-modified: Tue, 01 Nov 2022 16:59:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1640
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.206.js?utv=ut4.46.202203071935
23.38.200.249200 OK 3.0 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.206.js?utv=ut4.46.202203071935
IP 23.38.200.249:0
File type ASCII text, with very long lines (2655)
Hash ed7bd80abd49ec92610127994e456a42
cfb14b3e76a10bb78841ff3ede338f3b2fde8a4b
1b4b1535beb89ddf8e763929e71b2200271842038317017b7a37e14c87309d26
GET /utag/shopify/main/prod/utag.206.js?utv=ut4.46.202203071935 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ffa2930fd4b587837b004e93d363639d:1667321954.055917"
last-modified: Tue, 01 Nov 2022 16:59:14 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 3019
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/icr-signup-block-f746952a542a2746c5e18b3a6196d2f6a45cca85f0b1525208d33082c6d09ba3.css
162.159.135.68200 OK 2.0 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/icr-signup-block-f746952a542a2746c5e18b3a6196d2f6a45cca85f0b1525208d33082c6d09ba3.css
IP 162.159.135.68:0
File type ASCII text, with very long lines (770)
Hash 33471c2e09e6121451cabd1d552b292c
1caee8927bc96bab683dcb2f115dd10aca2833d1
57cec116bc7d83e971761befe3dc0f313d715243dd660f754cfb1cf2d9ce2286
GET /shopifycloud/brochure/assets/manifests/landers/short/icr-signup-block-f746952a542a2746c5e18b3a6196d2f6a45cca85f0b1525208d33082c6d09ba3.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/icr-signup-block-f746952a542a2746c5e18b3a6196d2f6a45cca85f0b1525208d33082c6d09ba3.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 87d56ef2-3a9b-4eb5-8148-dc840004fb61
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sun, 02 Oct 2022 14:42:07 GMT
cf-cache-status: HIT
age: 5734400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KK3SmXusrRfMEhhnxexrBImGuRscQhwR2H7jnI3yMqL66CJE1UYJKPXa3i%2FdEi72Oans3sGIXJzw73JevAWtblJS6RxInseM8iix6RNH6RtHzEY2a1JA%2FFjsZA%2FPbfX5cQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=110.189, imageryFetch;dur=109.946, cfRequestDuration;dur=58.000088
server: cloudflare
cf-ray: 77676a142e430b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.292.js?utv=ut4.46.202209301523
23.38.200.249200 OK 4.3 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.292.js?utv=ut4.46.202209301523
IP 23.38.200.249:0
File type ASCII text, with very long lines (1579)
Hash 57194844a20d2fd91f0a689350d114de
0f76dd7af86e47d81c97c38d04cfa48db5047c99
225995dc23f41d4528dfd2f94f40157c0c014a6b65445092e2d67f7cea43b37f
GET /utag/shopify/main/prod/utag.292.js?utv=ut4.46.202209301523 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "e1f9de5286c0032f4262d60d11cbaac2:1667321965.990569"
last-modified: Tue, 01 Nov 2022 16:59:25 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 4337
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.301.js?utv=ut4.46.202211281723
23.38.200.249200 OK 9.0 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.301.js?utv=ut4.46.202211281723
IP 23.38.200.249:0
File type ASCII text, with very long lines (7724)
Hash 596b015bf4d164f84e70face5e0f10d1
f7654d9f51807c30c4ad8de5aace6ca9926afb40
3fb69208c2dcf398bff1469bc69429330dcdafe9b64b86c19fbccce472654d80
GET /utag/shopify/main/prod/utag.301.js?utv=ut4.46.202211281723 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "6aa835622dcf2cf9c114d685ee43cfa6:1668629078.804233"
last-modified: Wed, 16 Nov 2022 20:04:38 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 8950
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.349.js?utv=ut4.46.202208161345
23.38.200.249200 OK 1.1 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.349.js?utv=ut4.46.202208161345
IP 23.38.200.249:0
File type ASCII text, with very long lines (1071)
Hash 5b553229901f0e78c4f501a7103d24ae
5f0428c1f01d35867d1cc686a2e879fd4b55e099
634d8c2091ae6ab2f0711231be8a86857ac86c71966d71c0c47e1a904fd06b8a
GET /utag/shopify/main/prod/utag.349.js?utv=ut4.46.202208161345 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "17df3cc751550aaadb86a8c4bed887af:1667321961.971453"
last-modified: Tue, 01 Nov 2022 16:59:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1128
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.388.js?utv=ut4.46.202208161326
23.38.200.249200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.388.js?utv=ut4.46.202208161326
IP 23.38.200.249:0
File type ASCII text, with very long lines (1071)
Hash e0b381042e0d711f1c98c788e71ca352
8f7e2a1ca692c0a6b8089fe4890ec397581b1175
fae6dcc03164f274ed719f97343bad2dfa73ea22a9098c015be06dffe8f5743e
GET /utag/shopify/main/prod/utag.388.js?utv=ut4.46.202208161326 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ced42ac03fc0061f8982878463f5ae70:1667321963.158773"
last-modified: Tue, 01 Nov 2022 16:59:23 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 1163
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.390.js?utv=ut4.46.202211221653
23.38.200.249200 OK 4.0 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.390.js?utv=ut4.46.202211221653
IP 23.38.200.249:0
File type ASCII text, with very long lines (1753)
Hash 418f58c7bf400d7605ede59c821cdee6
d00665898ff18b57124b4140fbe6d64b77702148
f10fd09f999f73fb9d6fa8ceb631d46e784eef720474d8c44aa1a09b278d4da9
GET /utag/shopify/main/prod/utag.390.js?utv=ut4.46.202211221653 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "672dbdddbc7933028c68690aae6fcfc0:1669136004.384832"
last-modified: Tue, 22 Nov 2022 16:53:24 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 4014
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.411.js?utv=ut4.46.202211302029
23.38.200.249200 OK 3.9 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.411.js?utv=ut4.46.202211302029
IP 23.38.200.249:0
File type ASCII text, with very long lines (2505)
Hash e38a54c4b3330a390f900e3270254836
f29e5c3f7021c2bdbdc189530cb02d500f0036e3
d530a8b830b0739d5c4d393037db9d7ef7ab1ca2c698094fdb23dc2aa57e7ff5
GET /utag/shopify/main/prod/utag.411.js?utv=ut4.46.202211302029 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "06bb258a02d176ddaf77464817c6edbc:1669840170.302804"
last-modified: Wed, 30 Nov 2022 20:29:30 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 3935
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 211
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 0c15b004-4b7d-4f64-a636-4a7349f485c6
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d0Sqxrwdcri3rfG0T5OHAxVuSMIHRQf%2BcRhit4s5RpUMjOkq7f%2FO%2FlXI9K7CJ%2F4jz2fvGtAau6%2Bij%2B42Nk10U9KZL6P2JbqqzpU8hKlpqxqk8MKv%2FKsALi661KdcIdAgfvagd5%2FWxcL3uFmtR5k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=121.000051
server: cloudflare
cf-ray: 77676a15d9cfb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 889 B IP 142.250.74.131:0
Hash e4ddd3e5bf4657cd65445766c42c3023
12cdbdd6c7cd66b75cb6e70d91eddd7978b0f4a3
98ac7887215836b6eb5a5221effd2e887e8971974c75fddc13d686fb38c64eae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 219
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 8723eb0f-f1fc-4696-a791-64c27e51f2fa
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJIJGbuiIWreMqJrbvNmmAZyBtQqplRhfGa74bOfBm%2FZdNQ708XrvdUFwZa6Me28oVzskNA6wg3riVre6z3LUsnUeM7Gmufe4xUhCs4VZ4ejI8UU3PT6HisdU%2BgyYCNqpbvlX2ivYBgWUzXhn%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=187.000036
server: cloudflare
cf-ray: 77676a15d9ccb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash 466be4e164e7ff752e1b9408cd035234
67eeb4de70929f5497a3fd154bbaa25de243cef5
fb81a91fb7e53ad5e2205495a33e6623b377aa2d89ec83102decb5f3978aca19
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-82702-49
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-82702-49
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 13279f2615af5bbd02eed8616289f2c5
d33d01672882b8e293786d090487e8eb6c8f497e
a3a7f23185d351945a46db8431e72466a2213da85e4aeea8dae7360650357704
GET /gtag/js?id=UA-82702-49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 18:02:51 GMT
expires: Thu, 08 Dec 2022 18:02:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a23a00220fc3ccce82bdaeaaf7ed73f9
1b8f6fdb15abae27c329204e66da8d7a2574ca55
efa3f049fd0809d51ae6836699ee07ee97ba1adf8ff6278b6dd598e39fc1cf86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFA3F049FD0809D51AE6836699EE07EE97BA1ADF8FF6278B6DD598E39FC1CF86"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13382
Expires: Thu, 08 Dec 2022 21:45:53 GMT
Date: Thu, 08 Dec 2022 18:02:51 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4ab5ac7a0624faed804ebd686bd9d6f6
742ba06fb57e45148f68e5b2d5274b6c3bf65040
c232ff8497b44068d296b6f642b92f48c99e61c247bc9b1061e1cd6c37630fed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 18:02:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 21:46:55 GMT
Expires: Tue, 13 Dec 2022 21:46:54 GMT
Etag: "742ba06fb57e45148f68e5b2d5274b6c3bf65040"
Cache-Control: max-age=444842,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77676a16daafb506-OSL
cdn.pdst.fm/ping.min.js
35.244.142.80200 OK 5.8 kB IP 35.244.142.80:0
File type ASCII text, with very long lines (26948), with no line terminators
Hash d001d1c9f5a942fa5524eeacb047e819
6ebc303d4e3fe71192400673808f37ce1c6a1d25
63882c75983a011c7ae5041061a95babb9e67fa508b0628e1c00f455ccd40b0a
GET /ping.min.js HTTP/1.1
Host: cdn.pdst.fm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu9bFuqQz9b1_6Gwb3BP-zsSJDo4xbZ6Quz7wLwxF0g46kcIGZzvdYjaLlKJI6zKjiGae5yt6lmSAZxJ5JD3CsZog
x-goog-generation: 1622234043862937
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5774
content-encoding: gzip
x-goog-hash: crc32c=oKoi/w==, md5=0AHRyfWpQvpVJO6ssEfoGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 5774
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 08 Dec 2022 17:26:57 GMT
expires: Thu, 08 Dec 2022 18:26:57 GMT
cache-control: public, max-age=3600
age: 2154
last-modified: Fri, 28 May 2021 20:34:03 GMT
etag: "d001d1c9f5a942fa5524eeacb047e819"
content-type: application/javascript;
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1440
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: e0c2cd22-dd0f-4a66-91ae-08b88e567be7
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KxAxCcInj2UzU7cBwDQm%2BK%2FiH6ecP4haV1CaFFzRWwX53jIH%2FyQ0DaUwjIGI72wM47%2F35LH28KinM8rLgCBsKpcNGq7LWXzcHda%2F8EqOHvyGwfr%2FX2AOwlXFXuU%2B6kAU9DWmJlXbcNsBVORjAq4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 77676a167aadb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1446
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 46dfffaa-6ce7-4dcb-935d-f3153fe19a0b
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lv%2FKnkJvUGOhlQBvO4IA5ywCfS9bQBx4zzTNzjqnzMAXAg06tV9UGGoEkP7IjXt4PqE%2FP64Jg%2F2lqUDyluB%2Bl%2BndaXMqg%2FDlsxggHbJJjkne3Wpe9SPA12W%2Fz4lAPmXWfRK%2BWIsrvK9uqzhW8oQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=130.000114
server: cloudflare
cf-ray: 77676a168ab8b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 60139b6e163bd4168eaeb409f6e80e98
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-12-08T18:02:50.287Z
Content-Length: 482
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 724919ea-1def-42e9-a9e3-c9ac1b398ec3
content-type: application/json
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 394
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 1d7d2cab-7263-4297-9bf7-1cd242d806ec
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uTFmvA97js1p%2BupD10PtRTj%2BLGsB40D0E8IfXSPkoJhObvzXlzKjr6kubmY%2FIqzYfz7EiQx9W%2BMHIrLGO9X%2BN4jDnp%2By6MMpAOEaNtl9AZr%2FzSV3OhefVFtILNkkNPlhSXhdpY63qa3x1PANftM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=128.000021
server: cloudflare
cf-ray: 77676a168ac1b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1428
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: eaf0cd83-69d9-4c4c-9f98-5e408337ea8d
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bja2S8KqDh4AHxXcbuTF8FSxHRjJedxrGfYvCOzXi1aEAwJbe9WJi3BnimoJO0KigVmBL410qJLq9tDii6lFVusd8SAsqfQkJQ0OlOEwLMfCgJx1OaHAnJdyxIAx6gdj6682YM%2B3mpAivjllhYs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=150.000095
server: cloudflare
cf-ray: 77676a167aafb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=shopify/main/202211302029&cb=1670522570723
23.38.200.249200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=shopify/main/202211302029&cb=1670522570723
IP 23.38.200.249:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=shopify/main/202211302029&cb=1670522570723 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Thu, 08 Dec 2022 18:12:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1433
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 3bc5fb67-86a2-4dc8-a224-1ec6fa0c6a5b
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VTuLcahhfyW1WbZGsa%2FeCprKM3D%2FKH1VRsnDIUWhlxrL9T3rAHSGZEWnwqpHahTbWOtNEwWaXrcve%2BqZ1IVlwQmeivx3zx1JhjN8s2USNdF%2FZ3agehTUh3aYmIz0fsy3G4Kfy5zDPL9V0pcvhFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=154.999971
server: cloudflare
cf-ray: 77676a167ab3b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1508
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: c90cfc76-f895-4265-8ff9-6fb44b8e6f8e
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=48EePdgdp7%2FH59t4NGhVH%2Fg0tFEX9%2FkR69Sl83VpQHfQRpXTmFTR%2BPPnHIyPXZxJxMQpdSp1dN48s%2BLEv4R%2BdyRC5gI532yBG9%2BGx%2FVBnzkYmCNT7hNwXBYnd0k1q10V4x3m7unZVawTERHPjzo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=165.999889
server: cloudflare
cf-ray: 77676a168abeb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash 466be4e164e7ff752e1b9408cd035234
67eeb4de70929f5497a3fd154bbaa25de243cef5
fb81a91fb7e53ad5e2205495a33e6623b377aa2d89ec83102decb5f3978aca19
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.bizible.com/scripts/bizible.js
152.195.15.58200 OK 32 kB URL HTTP/2 cdn.bizible.com/scripts/bizible.js
IP 152.195.15.58:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (576)
Hash 0448dae094dda931badafd809c44728c
047207b01bdefa65ef5cc3d92da870ffa2ff13ac
a00637e0bd9ed983a022ff01879b989bf903692ff572128992fd19440802a7e7
GET /scripts/bizible.js HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 68203
cache-control: max-age=86400
content-type: application/x-javascript
date: Thu, 08 Dec 2022 18:02:51 GMT
etag: "eace9e50a09d91:0"
last-modified: Tue, 06 Dec 2022 18:26:53 GMT
server: ECS (ska/F711)
vary: Accept-Encoding
x-cache: HIT
content-length: 32327
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1505
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: b860506f-439f-4a22-bf75-69d7dbafa534
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oVEpKvGIEQM3cfvASXkqyWO9kpHHpfXc8ewT6tOMu1fN73bKQ8FpV0NVx%2BsRh59z5BhmsZwu1CVw%2FbrpzN0rvMqc%2BE1M1LT369c%2BdSVXHVkwz2RwIplr9q08%2BEQOIQG%2FdXGURVSZeAPkpHIPEOE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=194.000006
server: cloudflare
cf-ray: 77676a168abdb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-monorail-edge-event-created-at-ms,x-monorail-edge-event-sent-at-ms
Referer: https://www.shopify.com/
Origin: https://www.shopify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
x-request-id: 34e9fc30-6292-4072-b0ea-7003f9f4afe1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IW6ULM8t6nPMqd4Hly4Mc0wQxDIH0pCiKyB%2FyFRNZ3nezllBpiBCbm43bZpDBIVzwgTxEhXjhdeZ%2FspRuPxS3G%2BvtucOyJE9Os%2BtvXR9fn9Rp1J3hVm0ekxQu2wubldAnxMB6vaJIbygbTmZDFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=164.999962
server: cloudflare
cf-ray: 77676a16db09b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
151.101.193.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.193.140:0
File type ASCII text, with very long lines (25224)
Hash 3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 08 Dec 2022 18:02:51 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/landers/short/free-trial-43e83f910e6eb4ea838cdbc9d05f17aec13fb0c0b1108503167c1c4fb008c3bb.js
162.159.135.68200 OK 5.4 kB URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/landers/short/free-trial-43e83f910e6eb4ea838cdbc9d05f17aec13fb0c0b1108503167c1c4fb008c3bb.js
IP 162.159.135.68:0
File type ASCII text, with very long lines (15305)
Hash bf0e603a276a0f93e993c995713035a1
c6d3935e17a3936c7aeb93de6fa287fb6e0bdbbc
eb02abfbe23c519cc377a8c061bf03a8f448f3f8c749e47202fdc8cdf8181aac
GET /shopifycloud/brochure/bundles/latest/manifests/landers/short/free-trial-43e83f910e6eb4ea838cdbc9d05f17aec13fb0c0b1108503167c1c4fb008c3bb.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/landers/short/free-trial-43e83f910e6eb4ea838cdbc9d05f17aec13fb0c0b1108503167c1c4fb008c3bb.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f8320260-5065-46e3-b6fa-2d194862c920
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 08 Nov 2022 18:52:13 GMT
cf-cache-status: HIT
age: 2589010
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9pOr0mC77%2BMAvXASpmHreA3WbrvgV4ZtaONCm%2BPNdWgytjw1%2B5HQGUd%2FvYsyMZYAiQ4xZcZNWRnyJTC8z4EXdd1ywphnFRvG%2FbfmOfKEJJn3gIr7KEYb4sK5wdS6MTAZHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=107.168, imageryFetch;dur=107.002, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 77676a142e490b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.bizible.com/m/ipv?_biz_r=https%3A%2F%2Fbestschemes.com%2F&_biz_h=-1777624096&_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_s=436e65&_biz_l=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&_biz_t=1670522570794&_biz_i=Create%20your%20online%20store%20today%20with%20Shopify&_biz_n=0&rnd=898873&cdn_o=a&_biz_z=1670522570797
152.195.15.58200 OK 43 B URL HTTP/2 cdn.bizible.com/m/ipv?_biz_r=https%3A%2F%2Fbestschemes.com%2F&_biz_h=-1777624096&_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_s=436e65&_biz_l=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&_biz_t=1670522570794&_biz_i=Create%20your%20online%20store%20today%20with%20Shopify&_biz_n=0&rnd=898873&cdn_o=a&_biz_z=1670522570797
IP 152.195.15.58:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /m/ipv?_biz_r=https%3A%2F%2Fbestschemes.com%2F&_biz_h=-1777624096&_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_s=436e65&_biz_l=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&_biz_t=1670522570794&_biz_i=Create%20your%20online%20store%20today%20with%20Shopify&_biz_n=0&rnd=898873&cdn_o=a&_biz_z=1670522570797 HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 429693
cache-control: no-cache, no-store
content-type: Image/GIF
date: Thu, 08 Dec 2022 18:02:51 GMT
expires: -1
last-modified: Sat, 03 Dec 2022 18:41:18 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F706)
set-cookie: _BUID=f1594ddef33c4760c5b89c827daab8d9; domain=.bizible.com; path=/; max-age=31536000; SameSite=None; Secure
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d44d17585c9a536c8da0e75ed90d175
9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1
6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:11:26 GMT
age: 21085
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BSLBLMOQH7P7CAP6MG40
23.36.79.17200 OK 1.7 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BSLBLMOQH7P7CAP6MG40
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2682)
Hash f114f4278a0d9c3ec4d4a9f70bb9b50b
e340f30d7efa642f56f23994a63cc4495d71720d
00b92712f2f2dd83a7fa142107793d00ab3b9d44df8f25e6f680529da114c277
GET /i18n/pixel/sdk.js?sdkid=BSLBLMOQH7P7CAP6MG40 HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221208180251C8C15F99BA3F1C8EAE0A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e51b2462e0cc96e545a9924375102061425f9fd8a5f6aabdf06a4217103070a2c8ced96c9f4e8db60fff02bc9cd56a40bd
content-encoding: gzip
content-length: 1722
x-origin-response-time: 4,23.218.220.145
x-akamai-request-id: c1491567.1588ecf9
expires: Thu, 08 Dec 2022 18:02:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 18:02:51 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Ids0VTQpZw5YSXfgxLbA3ph62N; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=4, inner; dur=3
x-parent-response-time: 104,23.36.79.13
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/shopify/main/prod/utag.177.js?utv=ut4.46.202211302029
23.38.200.249200 OK 3.0 kB URL HTTP/2 tags.tiqcdn.com/utag/shopify/main/prod/utag.177.js?utv=ut4.46.202211302029
IP 23.38.200.249:0
File type ASCII text, with very long lines (2655)
Hash 39012f146c8bb0889ad881657e8308e8
bfb072479e976517af37d6cd1632968b59e7ae0b
46be0343c8ada68c58cf6f7fbc0a69f6b6cda4be881150c29ed6c023f1eca6dd
GET /utag/shopify/main/prod/utag.177.js?utv=ut4.46.202211302029 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ff53ec6abdec9456c69b444ec05d004e:1667321966.85137"
last-modified: Tue, 01 Nov 2022 16:59:26 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 23 Dec 2022 18:02:51 GMT
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 3019
X-Firefox-Spdy: h2
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
216.239.36.54200 OK 22 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP 216.239.36.54:0
File type ASCII text, with no line terminators
Hash 8e7120c76040a47f820e8c87b95dddce
0ae6d0d5578537f5011e44f97e812069362ac7b2
e64c6bbbdbf2cc009eeb259cfb5f877274d073ea0ef1770008344cdf7d640c3c
OPTIONS /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.shopify.com/
Origin: https://www.shopify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
content-type: text/html; charset=utf-8
etag: W/"2-ROqGvmcGDXooyAXFZHZ+i4au1yQ"
function-execution-id: crc35xa0ddqf
x-powered-by: Express
x-cloud-trace-context: 4927e4cd2125ef8c772b3f90895f5ce1
content-encoding: gzip
date: Thu, 08 Dec 2022 18:02:51 GMT
server: Google Frontend
cache-control: private
content-length: 22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.bizible.com/xdc.js?_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.18
152.195.15.58200 OK 218 B URL HTTP/2 cdn.bizible.com/xdc.js?_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.18
IP 152.195.15.58:0
File type ASCII text, with CRLF line terminators
Hash 31131c355de0b4c270c0e92f6d20beb1
4317c81c2ee0e3d1f7db72477f2355435526dbf9
cc74f109758c6c99158204de6281f29cae3907f73a0c3ce4302ddb6d8f7118f5
GET /xdc.js?_biz_u=f1594ddef33c4760c5b89c827daab8d9&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.18 HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _BUID=f1594ddef33c4760c5b89c827daab8d9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
cache-control: private, must-revalidate, max-age=21600
content-type: text/javascript; charset=utf-8
date: Thu, 08 Dec 2022 18:02:50 GMT
etag: 25909891
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
server: ECS (ska/F717)
set-cookie: ARRAffinity=371b97132cc36e56b520e6cd8bc4e55ccb38e55f466e618d2f5f954e59df32ec;Path=/;HttpOnly;Secure;Domain=acct.bizible.com
ARRAffinitySameSite=371b97132cc36e56b520e6cd8bc4e55ccb38e55f466e618d2f5f954e59df32ec;Path=/;HttpOnly;SameSite=None;Secure;Domain=acct.bizible.com
vary: Accept-Encoding
content-length: 218
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTk2NTc4NGU0MA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21716)
Hash 751a8b838d6cf3cf4750f43188712786
07495015f7764ae79a9cdb42e24d37fea6264a9a
bc10e27de63aa54b7ff83e0421b88c6a802692aa432b218f6f8a05428622bc78
GET /i18n/pixel/static/main.MTk2NTc4NGU0MA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _ttp=2Ids0VTQpZw5YSXfgxLbA3ph62N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132745F774E1DED7BF563B9CF1
x-tt-trace-host: 017bcdfb1f342efa6ce7e8ef248837e909b29e38c81383d97aa45a1f344cf919c8b12ac2429d2852e5e6f30f93a065ab1c0ed2a074ff6b15568ff46eb0f574cad2bc88525a8832adc38278ffc459b96300
content-encoding: gzip
content-length: 66392
date: Thu, 08 Dec 2022 18:02:51 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1588f01b
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash b91935f1b6d4e535a7278360a59c3a42
2bec6ec3f13cc34d692bc7cc9369d63339ff451c
a3477beb0613c5e01f93739168ac9e65b6b771cf4aa19a77cfe93a340cb49d1e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136799
Date: Thu, 08 Dec 2022 18:02:51 GMT
Etag: "639181ea-1d7"
Expires: Sat, 10 Dec 2022 08:02:50 GMT
Last-Modified: Thu, 08 Dec 2022 06:19:22 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D7c4YqYJcKjMbahGHoKX78gbslBgTZGfEoqbN12PB1dxLqtbvxRqRw==
Age: 6208
monorail-edge.shopifysvc.com/v1/produce
162.159.130.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP 162.159.130.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.shopify.com/
Content-Type: application/json; charset=utf-8
X-Monorail-Edge-Event-Created-At-Ms: 1670522570522
X-Monorail-Edge-Event-Sent-At-Ms: 1670522570522
Origin: https://www.shopify.com
Content-Length: 750
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.shopify.com
access-control-max-age: 86400
x-request-id: 74cb4eb4-6163-4f52-b775-b5c0baaadef2
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wexb4jUVfy9RHUngo4%2FNO6n1DGWMQXqQ3%2F40jSpiYaYtYQBKFJKB%2Fys%2B%2FjkHlXrLLKt6WWNO6knNT3mgfoIbd%2BvmohUsx%2FyGY0SQ3oC8%2FZgzhgZyDW1I8tsIyi4yYPJS0%2Fg176dAbmiTSAHpoWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=222.000122
server: cloudflare
cf-ray: 77676a185f311c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 278fb85a4e953512d99b362066a24811
e9b4d3903bda80e213fb3407d15164191e7c55c7
06b457f816f4e17f622d504de3d6dad6acfa25cb98b29c5d90ee9d16246764c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06B457F816F4E17F622D504DE3D6DAD6ACFA25CB98B29C5D90EE9D16246764C8"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11887
Expires: Thu, 08 Dec 2022 21:20:58 GMT
Date: Thu, 08 Dec 2022 18:02:51 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1d710c2ae0ff0416ce1764fb7693d013
c1c510bda24203ddf2d803c081b623709ba55fa6
775db3bc6b40a9276261cf44642fe22183fda853674d9d16db709e0a7239b408
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collect.tealiumiq.com/shopify/main/2/i.gif
18.158.78.170200 OK 43 B URL HTTP/2 collect.tealiumiq.com/shopify/main/2/i.gif
IP 18.158.78.170:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
POST /shopify/main/2/i.gif HTTP/1.1
Host: collect.tealiumiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------21154902954770774921502494465
Content-Length: 15895
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-type: image/gif
content-length: 43
x-acc: shopify:main:2:datacloud
x-did: 0184f2e786d800aae899be76c58800050007300900918
x-region: eu-central-1
access-control-allow-origin: https://www.shopify.com
x-serverid: uconnect_i-08147176f83d0659b
pragma: no-cache
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
access-control-expose-headers: X-Region
cache-control: no-transform,private,no-cache,no-store,max-age=0,s-maxage=0
x-tid: 0184f2e786d800aae899be76c58800050007300900918
access-control-allow-credentials: true
x-ulver: a4256daeed855af0c8f6b6d366bc9bd599aef534-SNAPSHOT
vary: Origin
expires: Thu, 08 Dec 2022 18:02:51 GMT
x-uuid: 755ff3f4-153f-400f-bd13-1d1b58f5f054
set-cookie: TAPID=shopify/main>0184f2e786d800aae899be76c58800050007300900918|; Path=/; Domain=.tealiumiq.com; Expires=Fri, 08-Dec-2023 18:02:51 GMT; Max-Age=31536000; Secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5c9f9c55db8ae14eda50577aa8fe88e3
98f728d3a79355f4a76ec36602c70e4a04e3a6a4
2843e50a10c6e61e3e35b1da7809554b4269171f32b197e081309053b6ebbe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9321158.fls.doubleclick.net/activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=8284807802463;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u12=200;u18=Paid%20Landing%20Page;u19=paid;u20=en;u21=%2Ffree-trial;u23=Create%20your%20online%20store%20today%20with%20Shopify;u24=free-trial;u25=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u31=en-US;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u4=USD;u5=production;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D?
142.250.74.38200 OK 553 B URL HTTP/2 9321158.fls.doubleclick.net/activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=8284807802463;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u12=200;u18=Paid%20Landing%20Page;u19=paid;u20=en;u21=%2Ffree-trial;u23=Create%20your%20online%20store%20today%20with%20Shopify;u24=free-trial;u25=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u31=en-US;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u4=USD;u5=production;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1270), with no line terminators
Hash 88b77eca400a16e4c8690316d29db88a
4f117a266f2aea8fcbb20f954e6517e7b7327011
d4e0306aec75756c1381547a46a09b73f4b759d9a3c80cce84993c0626ef7156
GET /activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=8284807802463;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u12=200;u18=Paid%20Landing%20Page;u19=paid;u20=en;u21=%2Ffree-trial;u23=Create%20your%20online%20store%20today%20with%20Shopify;u24=free-trial;u25=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u31=en-US;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u4=USD;u5=production;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D? HTTP/1.1
Host: 9321158.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 18:02:51 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 553
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 18:17:51 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
9321158.fls.doubleclick.net/activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=5172087033753;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u6=displayed;u7=Cookies%20Notice;u9=false;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D?
142.250.74.38200 OK 483 B URL HTTP/2 9321158.fls.doubleclick.net/activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=5172087033753;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u6=displayed;u7=Cookies%20Notice;u9=false;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1007), with no line terminators
Hash 5d19237fa147530355992c5d2053f848
c4f3281118bcf541ea6efbaea5e3e46ac5435f2d
fd8c828f6896e3414520f80f420ef3f51bfbb8b22cbea17bb9ac59baecd9536b
GET /activityi;src=9321158;type=shopi0;cat=shopi0;match_id=629069bd-3528-40af-a9b5-d44316b42c9e;ord=5172087033753;gtm=2odbu0;auiddc=59984448.1670522571;u11=brochure_paid_trial_experience%3Aexposure%2Ceverest_redesign_ab%3Acontrol%2Csignup_code_red_holdout%3Aexposure;u3=https%3A%2F%2Fwww.shopify.com%2Ffree-trial;u32=629069bd-3528-40af-a9b5-d44316b42c9e;u38=%2Ffree-trial;u39=www.shopify.com;u6=displayed;u7=Cookies%20Notice;u9=false;u30=%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D? HTTP/1.1
Host: 9321158.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 18:02:51 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 483
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 18:17:51 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/1asa7agLQvo
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1asa7agLQvo
IP 142.250.74.131:0
Hash 2bf976e742352626a9895f77f36020d0
fee5557dcd6c225378a360988d96f1a754008b5e
33352f8c56d3292a13a573b4e362d2f656aefede0654a92e8fb66e48a2ab57a7
POST /s/gts1d4/1asa7agLQvo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 149d7c067085973f89305d533cc51183
847edbe6801b875c8a32ed4bd6412ca2c0b27a55
bd5800d797909fceb4c0a9ec47a7de70c37d7f0a5595628040fe2d0a20ece3cc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102002
Date: Thu, 08 Dec 2022 18:02:51 GMT
Etag: "6390fc31-1d7"
Expires: Fri, 09 Dec 2022 22:22:53 GMT
Last-Modified: Wed, 07 Dec 2022 20:48:49 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jR-EQGX-RIfpnf2aT0B8ID3mF6FhxfKcZ3ynsQdl7Yss6vk6iwKjSw==
Age: 5644
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash b91935f1b6d4e535a7278360a59c3a42
2bec6ec3f13cc34d692bc7cc9369d63339ff451c
a3477beb0613c5e01f93739168ac9e65b6b771cf4aa19a77cfe93a340cb49d1e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136938
Date: Thu, 08 Dec 2022 18:02:51 GMT
Etag: "639181ea-1d7"
Expires: Sat, 10 Dec 2022 08:05:09 GMT
Last-Modified: Thu, 08 Dec 2022 06:19:22 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C4dhi-UnRbVYB7vjv1raJMBV1kTE8aDVl_PaEZZno4-zliVZChu8TA==
Age: 6347
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 07faf910c7f7a5c850de982c2d46bc80
5988225f622832ef9de2063bf8e693378e274c67
6204f08c9cbc62cd25f44c76fe3db325a130d7469c6e97917851b1d32e8a6c79
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 08 Dec 2022 18:02:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 03:57:25 GMT
Expires: Fri, 09 Dec 2022 03:57:25 GMT
ETag: "5988225f622832ef9de2063bf8e693378e274c67"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash c461681fa7d229bdc649a8fe0256bc57
4bb210b49665f91f3f59283bc718ffce2f8e8a56
c5628978a213e1a93052a8644ece7b15459e4910979023fb456437f3d6764181
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 08 Dec 2022 18:02:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Dec 2022 20:16:18 GMT
Expires: Thu, 08 Dec 2022 20:16:18 GMT
ETag: "4bb210b49665f91f3f59283bc718ffce2f8e8a56"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1d710c2ae0ff0416ce1764fb7693d013
c1c510bda24203ddf2d803c081b623709ba55fa6
775db3bc6b40a9276261cf44642fe22183fda853674d9d16db709e0a7239b408
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
q.quora.com/_/ad/20f7c5aeac534b28919003db7695f70f/pixel?tag=ViewContent&_rnd=0.5164040095746035
3.210.42.76200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/20f7c5aeac534b28919003db7695f70f/pixel?tag=ViewContent&_rnd=0.5164040095746035
IP 3.210.42.76:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/20f7c5aeac534b28919003db7695f70f/pixel?tag=ViewContent&_rnd=0.5164040095746035 HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 08 Dec 2022 18:02:51 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,b2e55bbb06cbe5f8bd250e05af3c113c,10.0.0.114,35238,91.90.42.154,,84276805778,1,1670522571.831,0.001,,.,0,0,0.004,0.004,-,0,0,197,253,126,10,35796,,,,,,-,
Content-Length: 43
Connection: keep-alive
collect.tealiumiq.com/shopify/main/2/i.gif
18.158.78.170200 OK 43 B URL HTTP/2 collect.tealiumiq.com/shopify/main/2/i.gif
IP 18.158.78.170:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
POST /shopify/main/2/i.gif HTTP/1.1
Host: collect.tealiumiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------21892226936572788722197705229
Content-Length: 13130
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:51 GMT
content-type: image/gif
content-length: 43
x-acc: shopify:main:2:datacloud
x-did: 0184f2e786d800aae899be76c58800050007300900918
x-region: eu-central-1
access-control-allow-origin: https://www.shopify.com
x-serverid: uconnect_i-018817d6f0a406faf
pragma: no-cache
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
access-control-expose-headers: X-Region
cache-control: no-transform,private,no-cache,no-store,max-age=0,s-maxage=0
x-tid: 0184f2e786d800aae899be76c58800050007300900918
access-control-allow-credentials: true
x-ulver: a4256daeed855af0c8f6b6d366bc9bd599aef534-SNAPSHOT
vary: Origin
expires: Thu, 08 Dec 2022 18:02:51 GMT
x-uuid: 5ec22dec-838a-4cdc-8c83-6c48626b49f7
set-cookie: TAPID=shopify/main>0184f2e786d800aae899be76c58800050007300900918|; Path=/; Domain=.tealiumiq.com; Expires=Fri, 08-Dec-2023 18:02:51 GMT; Max-Age=31536000; Secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2
upx.provenpixel.com/upx.php?upx=10792&pageurl=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&referrer=https%3A%2F%2Fbestschemes.com%2F&cb=0.05566885200241267
52.70.180.252302 Found 138 B URL HTTP/2 upx.provenpixel.com/upx.php?upx=10792&pageurl=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&referrer=https%3A%2F%2Fbestschemes.com%2F&cb=0.05566885200241267
IP 52.70.180.252:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /upx.php?upx=10792&pageurl=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&referrer=https%3A%2F%2Fbestschemes.com%2F&cb=0.05566885200241267 HTTP/1.1
Host: upx.provenpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 18:02:51 GMT
content-type: text/html
content-length: 138
location: https://upx.provenpixel.com/upx.php?upx=10792&pageurl=https%3A%2F%2Fwww.shopify.com%2Ffree-trial%3Firclickid%3DUFsx8EyAuxyNR7RVoXTXjwISUkAxsbQJD1MORM0%26irgwc%3D1%26partner%3D2086072%26affpt%3D&referrer=https%3A%2F%2Fbestschemes.com%2F&cb=0.05566885200241267&ct=1
set-cookie: pxid=000f261c-639226cb-5b5a2a9a-2514c1567546; Domain=.provenpixel.com; Path=/; Expires=Tue, 07-Dec-27 18:02:51 GMT; Samesite=None; HttpOnly; Secure;
X-Firefox-Spdy: h2
trkn.us/pixel/c?ppt=17999&g=site_visits&gid=41153&ord=0.27160178784014644
54.210.129.141302 Found 0 B URL HTTP/1.1 trkn.us/pixel/c?ppt=17999&g=site_visits&gid=41153&ord=0.27160178784014644
IP 54.210.129.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/c?ppt=17999&g=site_visits&gid=41153&ord=0.27160178784014644 HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Date: Thu, 08 Dec 2022 18:02:51 GMT
Location: /pixel/c?ppt=17999&g=site_visits&gid=41153&ord=0.27160178784014644&ip=91.90.42.154&cuidchk=1
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Server: Apache
Set-Cookie: barometric[cuid]=cuid_8f64de47-41f3-40d1-85e3-f522b0b0fc9c; expires=Fri, 08-Dec-2023 18:02:51 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 0
Connection: keep-alive
analytics.tiktok.com/i18n/pixel/static/identify_7373d.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_7373d.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 905f25a6763488baff0582a11e6d4650
cbf906634f07d5e983cb8f5f30195d24a219ca41
73bf06623dd0515ca31a2f3c352cf6efce03e0ff7e7bf3ae990a19745787deda
GET /i18n/pixel/static/identify_7373d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _ttp=2Ids0VTQpZw5YSXfgxLbA3ph62N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132745F774E1DED7BF563B9D05
x-tt-trace-host: 017bcdfb1f342efa6ce7e8ef248837e909b29e38c81383d97aa45a1f344cf919c8a599ec6c025c616e50bcaf3d3e28b0e81315201e77a8c36d9dceb999beae4aa6616a7661fd70d5a724b0816ae855e12b
content-encoding: gzip
content-length: 30877
date: Thu, 08 Dec 2022 18:02:51 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1588f48e
X-Firefox-Spdy: h2
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
216.239.36.54204 No Content 0 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP 216.239.36.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.shopify.com/
Content-Type: application/json
Origin: https://www.shopify.com
Content-Length: 583
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
function-execution-id: plk8nue94nta
x-powered-by: Express
x-cloud-trace-context: b4e15aaa8834eca9fe3f49f663316211
date: Thu, 08 Dec 2022 18:02:51 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 18:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 870
Origin: https://www.shopify.com
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _ttp=2Ids0VTQpZw5YSXfgxLbA3ph62N
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202212081802522B0F97848BC83E9371C1
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e4248e93c83e6c74cad6f1dd195130b3777c5dac385ad9edd5ce347aca1768de9e3e8369b4d00f872c7a8853ecbd88756
expires: Thu, 08 Dec 2022 18:02:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Dec 2022 18:02:52 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=9, origin; dur=111
x-origin-response-time: 111,23.36.79.13
x-akamai-request-id: 1588f4e0
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/about~manifests/app-store-principles~manifests/apple-pay~manifests/augmented-reality~manif~40cc967a-76c12aa0fea3c8934ccebbb00e5be606c0535d2033411164d4d1ebcb5039ea96.js
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/about~manifests/app-store-principles~manifests/apple-pay~manifests/augmented-reality~manif~40cc967a-76c12aa0fea3c8934ccebbb00e5be606c0535d2033411164d4d1ebcb5039ea96.js
IP 162.159.135.68:0
GET /shopifycloud/brochure/bundles/latest/manifests/about~manifests/app-store-principles~manifests/apple-pay~manifests/augmented-reality~manif~40cc967a-76c12aa0fea3c8934ccebbb00e5be606c0535d2033411164d4d1ebcb5039ea96.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/bundles/latest/manifests/about~manifests/app-store-principles~manifests/apple-pay~manifests/augmented-reality~manif~40cc967a-76c12aa0fea3c8934ccebbb00e5be606c0535d2033411164d4d1ebcb5039ea96.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 08207746-5a51-40cd-a709-9c2033cde0ee
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 09 Nov 2022 15:54:37 GMT
cf-cache-status: HIT
age: 2513239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wHwwS0yG%2F60S%2Bd5EzLQoTC0cWRJ5xZe4FF0RSmF81wSFOf%2F1Ae%2FzPEayR523voADEW%2FTAKOhneXhr2Z7sJHxZ66nS9llp5tBEzGoEbYUqRuM%2F3zF7%2FEZrIDQbVCTP6P2Sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=43.831, imageryFetch;dur=43.582, cfRequestDuration;dur=16.999960
server: cloudflare
cf-ray: 77676a142e480b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-3f688bbfd3b6e1b7869703a587034783de0631b04ec84a781ec7d7103e26f4cb.css
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-3f688bbfd3b6e1b7869703a587034783de0631b04ec84a781ec7d7103e26f4cb.css
IP 162.159.135.68:0
GET /shopifycloud/brochure/assets/manifests/landers/short/free-trial-3f688bbfd3b6e1b7869703a587034783de0631b04ec84a781ec7d7103e26f4cb.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-3f688bbfd3b6e1b7869703a587034783de0631b04ec84a781ec7d7103e26f4cb.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e6ed503a-ec22-42a9-b14a-34b5537983e0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 10 Nov 2022 01:24:54 GMT
cf-cache-status: HIT
age: 2479008
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q00Z43bvpLgQwdgqZLn%2FLpzeazo4YsoXMag9YvfjUmKmHoUEK52NXzQEzgBuvvCfmlmdgVcWxGRYa5M391eTlgUEKfjprQERyNtVG%2BT7c9oukiu7obTXF%2F%2BJCvi%2BVq2BHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=123.962, imageryFetch;dur=123.714, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 77676a142e500b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p201298.mybettermb.com/adServe/domainClick?ai=gQySgi_KOattG6QT9YQYKGSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF5WuqH1PyQUHtehCim1Vz8ibM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_C21HgEYiy61CJfyk5hiIvclGOMSQjHsLKOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_ns-Cm35MG9zEITCssQBo5b-JQfRlNh3Q-ND6d5qY-PB7JWMt11ucqtjA&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukMiX8pOYYiL3Kc7GNsZXY0PasHZqIU5AkG26X3Sz3FmkjVhQcmczR_qOwn2h5h2sL6FRZVWoKEahQ&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=ntzDoPN7Tjk&rr=1&abtg=0
108.168.193.189200 OK 0 B URL HTTP/2 p201298.mybettermb.com/adServe/domainClick?ai=gQySgi_KOattG6QT9YQYKGSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF5WuqH1PyQUHtehCim1Vz8ibM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_C21HgEYiy61CJfyk5hiIvclGOMSQjHsLKOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_ns-Cm35MG9zEITCssQBo5b-JQfRlNh3Q-ND6d5qY-PB7JWMt11ucqtjA&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukMiX8pOYYiL3Kc7GNsZXY0PasHZqIU5AkG26X3Sz3FmkjVhQcmczR_qOwn2h5h2sL6FRZVWoKEahQ&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=ntzDoPN7Tjk&rr=1&abtg=0
IP 108.168.193.189:0
GET /adServe/domainClick?ai=gQySgi_KOattG6QT9YQYKGSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF5WuqH1PyQUHtehCim1Vz8ibM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_C21HgEYiy61CJfyk5hiIvclGOMSQjHsLKOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_ns-Cm35MG9zEITCssQBo5b-JQfRlNh3Q-ND6d5qY-PB7JWMt11ucqtjA&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukMiX8pOYYiL3Kc7GNsZXY0PasHZqIU5AkG26X3Sz3FmkjVhQcmczR_qOwn2h5h2sL6FRZVWoKEahQ&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=ntzDoPN7Tjk&rr=1&abtg=0 HTTP/1.1
Host: p201298.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Cookie: rhid=82512655308
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 18:02:46 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82512655308; Max-Age=15552000; Expires=Tue, 06-Jun-2023 18:02:46 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1159401_off_603313_aff_87754_cid_201298-MKKUEI4KDSZ.COM_ts_1670522566; Max-Age=3600; Expires=Thu, 08-Dec-2022 19:02:46 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
magnett.live/sfclkss/index.php?cid=41fc3914c779344
172.67.185.214301 Moved Permanently 0 B URL HTTP/2 magnett.live/sfclkss/index.php?cid=41fc3914c779344
IP 172.67.185.214:0
GET /sfclkss/index.php?cid=41fc3914c779344 HTTP/1.1
Host: magnett.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 08 Dec 2022 18:02:46 GMT
content-type: text/html; charset=UTF-8
location: https://bestschemes.com//?umx=123&aid=1488&rt=0&turl=https://shopify.pxf.io/vnqve3
x-powered-by: PHP/7.2.34
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HK67fDJbpgAS0%2F3%2Fg9u%2FdYvhdIhbzpU4hhmCc8c0jWKSt3xhopL2RT20dZptmaHI1jJpoSTXmm9TpgvR1M6dzaszg2WMs6q7ZV4kxZFvMgZy3cdoAyJ2qf2sNBDTzyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776769f83c3db4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:400,600,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito:400,600,700
IP 142.250.74.74:0
GET /css?family=Nunito:400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestschemes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 18:02:49 GMT
date: Thu, 08 Dec 2022 18:02:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-variant3-refresh-542fa6f9cb4fa1f870e58d019bee8743f0ad5258f846647f85e43f4f671156f2.css
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-variant3-refresh-542fa6f9cb4fa1f870e58d019bee8743f0ad5258f846647f85e43f4f671156f2.css
IP 162.159.135.68:0
GET /shopifycloud/brochure/assets/manifests/landers/short/free-trial-variant3-refresh-542fa6f9cb4fa1f870e58d019bee8743f0ad5258f846647f85e43f4f671156f2.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline
link: <https://cdn.shopify.com/shopifycloud/brochure/assets/manifests/landers/short/free-trial-variant3-refresh-542fa6f9cb4fa1f870e58d019bee8743f0ad5258f846647f85e43f4f671156f2.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: aff56806-bb88-48ce-ba8c-fabdb091d008
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 20 Sep 2022 17:06:02 GMT
cf-cache-status: HIT
age: 6829008
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XBZn5%2BuhCcdrffJ2h%2B1ucueZDJI7kERqfbYvVaIVAXjtufG0OghAl12lAQzF8jxRkXR7O9XodTEpX16tdjM9a%2BXY5cWjst9xLaP8M%2B4Wuebxlb14KEEoOfBbkzDiLbfKAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=108.986, imageryFetch;dur=108.755, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 77676a145e740b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/exp-verdict/js/17d2d794cf0bf51b45c55ef2e3be8660ab0259b5.js
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/exp-verdict/js/17d2d794cf0bf51b45c55ef2e3be8660ab0259b5.js
IP 162.159.135.68:0
GET /shopifycloud/exp-verdict/js/17d2d794cf0bf51b45c55ef2e3be8660ab0259b5.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shopify.com/
Cookie: _shopify_y=629069bd-3528-40af-a9b5-d44316b42c9e; _shopify_s=981d2239-6fe7-44d9-9d0d-3b6289b2f218; _y=629069bd-3528-40af-a9b5-d44316b42c9e; _s=981d2239-6fe7-44d9-9d0d-3b6289b2f218
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 18:02:50 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=600
link: <https://cdn.shopify.com/shopifycloud/exp-verdict/js/17d2d794cf0bf51b45c55ef2e3be8660ab0259b5.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ec0b4aad-d0b7-4021-aa64-93224e04a5b0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 08 Dec 2022 17:54:11 GMT
cf-cache-status: HIT
age: 450
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EzXIetcC%2FXcKPS7nXYNtsRoza%2FP1iBAUGpUGD0%2Bh6O4xcUwvQgYz0DsdBc7mCLawxU4mHTxdAIjd0pctxPz4bE1QE72mxcViMAFkOJeFdWfFALaeGTGLCP1QbI3cfBv5fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=44.510, imageryFetch;dur=44.305, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 77676a143e5a0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2