Overview

URL slotsmanyy.top/
IP104.21.56.82
ASNCLOUDFLARENET
Location
Report completed2022-09-27 09:30:16 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-27 2 slotsmanyy.top Sinkholed
2022-09-27 2 slotsmanyy.top Sinkholed
2022-09-27 2 slotsmanyy.top Sinkholed
2022-09-27 2 slotsmanyy.top Sinkholed
2022-09-27 2 slotsmanyy.top Sinkholed
2022-09-27 2 slotsmanyy.top Sinkholed


Files

URL stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-4385212 (...)
IP  64.233.162.155
Magic gzip compressed data, max compression\012- data
Size 3325
MD5 26465ae3618f94755b0544c677be262d
SHA1 3e3d14f3a260ca5afd5a67cbbbbfeea05437c081
SHA256 365fcb863403630fceebf59b03110b5142305987efe69843d2a5cbbe320e83b5
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (66)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS client-builds.production.gorgias.chat (1) 30191 2021-03-16 16:38:55 UTC 2022-09-27 08:50:08 UTC 104.18.29.180
mnemonic passive DNS r3.o.lencr.org (19) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.77.32
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-27 05:02:33 UTC 172.64.155.188
mnemonic passive DNS pkg.covet.pics (12) 33528 2020-10-01 00:34:12 UTC 2022-09-27 00:44:11 UTC 172.67.68.98
mnemonic passive DNS app.backinstock.org (1) 12850 2018-09-20 09:37:05 UTC 2022-09-27 05:54:21 UTC 172.64.193.36
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-27 04:53:14 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS static.socialshopwave.com (3) 39913 2020-09-22 17:56:09 UTC 2022-09-27 09:30:07 UTC 54.230.111.110
mnemonic passive DNS s.adroll.com (2) 2553 2012-06-27 18:27:26 UTC 2022-09-27 05:45:16 UTC 143.204.55.72
mnemonic passive DNS cdn.yottaa.com (1) 10543 2017-03-29 07:09:51 UTC 2022-09-27 05:54:21 UTC 151.101.86.133
mnemonic passive DNS cdn.sajari.com (1) 77044 2017-02-23 06:03:26 UTC 2022-09-27 09:30:05 UTC 35.190.50.98
mnemonic passive DNS monorail-edge.shopifysvc.com (2) 2944 2019-08-29 18:44:35 UTC 2022-09-27 04:27:25 UTC 104.16.255.71
mnemonic passive DNS ps.sloyalty.com (2) 99528 2018-09-12 03:04:53 UTC 2022-09-27 09:30:06 UTC 54.230.111.81
mnemonic passive DNS stats.g.doubleclick.net (3) 96 2013-06-02 22:47:44 UTC 2022-09-27 04:52:22 UTC 64.233.162.155
mnemonic passive DNS shopify.covet.pics (3) 33545 2016-02-05 15:31:55 UTC 2022-09-27 00:44:11 UTC 104.26.1.14
mnemonic passive DNS www.youtube.com (1) 90 2013-05-30 23:21:49 UTC 2022-09-27 04:57:20 UTC 142.250.74.78
mnemonic passive DNS fonts.shopifycdn.com (4) 5049 2018-05-10 18:25:54 UTC 2022-09-27 05:26:21 UTC 104.16.254.71
mnemonic passive DNS upsells.boldapps.net (1) 28965 2014-01-16 06:36:06 UTC 2022-09-27 09:30:06 UTC 104.16.108.18
mnemonic passive DNS app-cdn.productcustomizer.com (1) 47400 2019-06-05 12:09:12 UTC 2022-09-26 14:01:36 UTC 143.204.55.72
mnemonic passive DNS widgets.automizely.com (1) 24499 2020-11-30 16:37:41 UTC 2022-09-27 09:30:06 UTC 104.19.169.102
mnemonic passive DNS s.pinimg.com (2) 732 2017-01-13 22:40:08 UTC 2022-09-27 05:24:02 UTC 23.38.200.197
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS ocsp.sca1b.amazontrust.com (6) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-27 04:52:24 UTC 157.240.200.14
mnemonic passive DNS formbuilder.hulkapps.com (1) 24328 2017-09-05 06:42:42 UTC 2022-09-27 06:18:28 UTC 172.67.73.117
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.110
mnemonic passive DNS cdn.shopify.com (18) 2327 2012-06-22 18:37:14 UTC 2022-09-27 05:08:09 UTC 104.16.255.71
mnemonic passive DNS loox.io (1) 15969 2015-08-30 16:25:38 UTC 2022-09-27 08:09:26 UTC 172.67.73.138
mnemonic passive DNS activity.wisepops.com (2) 34159 2022-01-26 12:41:59 UTC 2022-09-27 08:42:15 UTC 172.67.74.220
mnemonic passive DNS s.sloyalty.com (5) 103630 2014-10-06 21:58:00 UTC 2022-09-27 09:30:07 UTC 104.26.13.178
mnemonic passive DNS ip2c.org (1) 43208 2015-06-22 19:54:51 UTC 2022-09-27 09:30:07 UTC 77.55.216.90
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-27 05:12:42 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS ocsp.digicert.com (10) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS slotsmanyy.top (6) 0 2020-07-13 12:05:25 UTC 2022-09-27 09:29:59 UTC 104.21.56.82 Unknown ranking
mnemonic passive DNS ro.boldapps.net (2) 41479 2015-11-04 22:05:33 UTC 2022-09-27 09:30:03 UTC 104.16.108.18
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-27 05:04:23 UTC 142.250.74.174
mnemonic passive DNS config.gorgias.chat (1) 15168 2020-07-22 09:13:21 UTC 2022-09-27 03:23:03 UTC 104.18.29.180
mnemonic passive DNS app.directededge.com (2) 83356 2021-11-08 14:16:47 UTC 2022-09-27 09:30:06 UTC 66.228.41.129
mnemonic passive DNS api.ipify.org (1) 3267 2014-10-27 13:09:35 UTC 2022-09-27 06:29:18 UTC 54.91.59.199
mnemonic passive DNS sdks.automizely-analytics.com (1) 23614 2022-01-17 11:20:02 UTC 2022-09-27 09:30:07 UTC 104.21.81.142
mnemonic passive DNS assets.gorgias.chat (2) 16344 2021-10-12 21:58:46 UTC 2022-09-27 07:01:30 UTC 104.18.29.180
mnemonic passive DNS ct.pinterest.com (5) 852 2015-03-12 08:12:48 UTC 2022-09-27 05:22:15 UTC 151.101.84.84
mnemonic passive DNS assets1.adroll.com (1) 30075 2015-05-05 09:07:05 UTC 2022-09-27 09:30:06 UTC 143.204.55.62
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 35.161.6.128
mnemonic passive DNS secure.apps.shappify.com (1) 33669 2013-11-30 12:54:35 UTC 2022-09-27 09:30:06 UTC 104.17.96.24
mnemonic passive DNS popup.wisepops.com (1) 13717 2015-07-29 09:50:12 UTC 2022-09-27 08:42:15 UTC 172.67.74.220
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.36
mnemonic passive DNS e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-09-27 05:36:01 UTC 23.36.76.226
mnemonic passive DNS ocsp.pki.goog (17) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-27 04:38:43 UTC 157.240.200.35
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS shopify.covet.pics (3) 33545 2016-02-05 15:31:55 UTC 2022-09-27 00:44:11 UTC 172.67.68.98
mnemonic passive DNS loader.wisepops.com (1) 12332 2015-08-04 16:37:53 UTC 2022-09-27 06:53:15 UTC 172.67.74.220
mnemonic passive DNS www.google.no (4) 25607 2016-04-05 19:50:59 UTC 2022-09-27 05:08:12 UTC 142.250.74.3
mnemonic passive DNS img0.socialshopwave.com (1) 55828 2015-03-30 13:08:52 UTC 2022-09-27 00:15:09 UTC 54.230.111.110
mnemonic passive DNS track.cmcassets.com (2) 118062 2021-12-10 14:47:27 UTC 2022-09-27 09:30:06 UTC 52.48.144.75
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-27 08:12:18 UTC 142.250.74.66
mnemonic passive DNS d.adroll.com (1) 1530 2015-03-06 22:06:59 UTC 2022-09-27 06:46:22 UTC 52.211.202.0
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-27 04:39:28 UTC 142.250.74.72
mnemonic passive DNS media.receiptful.com (1) 124272 2015-05-31 19:42:03 UTC 2022-09-27 09:30:06 UTC 54.230.111.53
mnemonic passive DNS gift-reggie.eshopadmin.com (1) 163244 2017-02-01 11:08:47 UTC 2022-09-27 09:30:06 UTC 54.225.105.40
mnemonic passive DNS commerce.campaignmonitor.com (1) 179056 2020-10-08 19:43:46 UTC 2022-09-27 09:30:06 UTC 99.84.191.101
mnemonic passive DNS cdn.wisepops.com (2) 29028 2020-03-10 12:11:12 UTC 2022-09-27 01:16:12 UTC 172.67.74.220
mnemonic passive DNS dev-clickstream.shoptelligence.com (1) 125045 2019-03-11 10:59:35 UTC 2022-09-27 09:30:07 UTC 35.241.26.46
mnemonic passive DNS qoe-1.yottaa.net (1) 8096 2017-05-08 10:52:28 UTC 2022-09-27 00:16:48 UTC 140.174.14.148
mnemonic passive DNS www.automizely-analytics.com (1) 21705 2022-01-11 07:44:58 UTC 2022-09-27 07:20:56 UTC 34.96.97.208
mnemonic passive DNS productreviews.shopifycdn.com (1) 9519 2014-11-24 12:01:19 UTC 2022-09-27 06:14:16 UTC 104.16.254.71


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 104.21.56.82

Date UQ / IDS / BL URL IP
2022-09-27 09:30:16 +0000
0 - 0 - 6 slotsmanyy.top/ 104.21.56.82

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-28 04:48:05 +0000
0 - 0 - 2 infocons.ro/cb/afcu 104.21.8.97
2022-11-28 04:47:28 +0000
0 - 0 - 12 sltube.org/e/4j57gDmZgqdz26Xb 172.67.194.87
2022-11-28 04:47:07 +0000
0 - 0 - 1 provinerrigandsalz.tk/ 104.21.7.171
2022-11-28 04:46:44 +0000
0 - 0 - 2 frejobsalert.com/video-la-varit%E2%80%A6 104.21.23.90
2022-11-28 04:45:48 +0000
0 - 0 - 1 videjoo.com/us/flix/ 172.67.129.44

Last 1 reports on domain: slotsmanyy.top

Date UQ / IDS / BL URL IP
2022-09-27 09:30:16 +0000
0 - 0 - 6 slotsmanyy.top/ 104.21.56.82

Last 4 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-03 03:49:24 +0000
0 - 0 - 4 recycleglobal.xyz/ 104.21.11.186
2022-11-03 03:43:48 +0000
0 - 0 - 3 getdepressed.xyz/ 172.67.146.114
2022-11-03 03:43:49 +0000
0 - 0 - 8 getdepressed.xyz/ 104.21.79.152
2022-11-18 14:47:09 +0000
0 - 0 - 6 webgranitecold.xyz/ 172.67.132.124


JavaScript

Executed Scripts (124)


Executed Evals (9)

#1 JavaScript::Eval (size: 803, repeated: 1) - SHA256: f096fd2b64d51350dfd87bc83a9d8f05538675d128345e7892f0df491cd02565

                                        (function() {
    for (var c = [], d = document.getElementsByClassName("product"), a = 0; a < d.length; a++) {
        var b = d[a],
            f = b.querySelector(".product__description__name").innerText,
            g = b.querySelector(".product-thumbnail__quantity").innerText,
            e = b.querySelector(".product__price").innerText.split("$")[1];
        b = b.querySelector(".product__price").innerText.split("$")[1];
        c.push({
            id: f,
            quantity: g,
            price: e,
            item_total: b
        })
    }
    d = document.querySelector(".total-line--subtotal").innerText.split("$")[1];
    a = document.querySelector(".total-line--shipping").innerText.split("$")[1];
    f = document.querySelector(".total-recap__final-price").innerText.split("$")[1];
    g = 0;
    c = {
        items: c,
        subtotal: d,
        shipping: a,
        tax: g,
        total: f
    };
    e = document.querySelector(".os-order-number").innerText.slice(-6);
    console.log(e, d, a, g, f);
    e && (c.order_id = e);
    return JSON.stringify(c)
})();
                                    

#2 JavaScript::Eval (size: 494, repeated: 1) - SHA256: 7c5110b3a848870a9044f1e737677c3d96b24b7947286c50109a744b62d43f95

                                        (function() {
    var a = function() {
        var a = "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g, function(a) {
            var b = 16 * Math.random() | 0;
            a = "x" == a ? b : b & 3 | 8;
            return a.toString(16)
        });
        return a
    };
    if (window.location.pathname.includes("order-receipt")) localStorage.setItem("ST_CART_CONFIRMED", !0);
    else if (localStorage.getItem("ST_CART_CONFIRMED") || !localStorage.getItem("ST_CART_ID")) localStorage.removeItem("ST_CART_CONFIRMED"), localStorage.setItem("ST_CART_ID", a());
    return localStorage.getItem("ST_CART_ID")
})();
                                    

#3 JavaScript::Eval (size: 346, repeated: 1) - SHA256: 182380912378f7ae57fc2b0d9bf53a13b107df158f7afed5efe09a0029f040ef

                                        (function() {
    function b() {
        var a = window.dataLayer.filter(function(a) {
            return c.includes(a.event)
        });
        return a[a.length - 1]
    }
    var c = "st_replace_item st_change_occasion st_change_ensemble st_select_item st_add_to_cart st_save_item st_see_in_store st_special_offers st_social_sharing".split(" "),
        a = b();
    return a = JSON.parse(a.st_event_detail).ensemble.id
})();
                                    

#4 JavaScript::Eval (size: 80, repeated: 1) - SHA256: ba83f78df2f2fcec79f2210d21dba051e1b30c78c65636e7232ddbf47588f7b0

                                        (function() {
    return document.querySelector("shoptelligence-dc-widget") ? !0 : !1
})();
                                    

#5 JavaScript::Eval (size: 401, repeated: 1) - SHA256: b626defecb062411a69ad666c52578ac41c7776dd2de20bdcdb9c141030e2994

                                        (function() {
    function b() {
        var a = window.dataLayer.filter(function(a) {
            return c.includes(a.event)
        });
        return a[a.length - 1]
    }
    var c = "st_dc_replace_item st_dc_select_item st_dc_add_to_cart st_replace_item st_change_occasion st_change_ensemble st_select_item st_add_to_cart st_save_item st_see_in_store st_special_offers st_social_sharing".split(" "),
        a = b();
    return a ? -1 !== a.event.indexOf("_dc_") ? "dc" : "ie" : ""
})();
                                    

#6 JavaScript::Eval (size: 49, repeated: 1) - SHA256: 5cd5db1d7d90fb6bcdd3784c9243c180720fb5f0e42b305fae9bc199c593f3dc

                                        (function() {
    return (new Date).getTime() / 1E3 | 0
})();
                                    

#7 JavaScript::Eval (size: 512, repeated: 1) - SHA256: eaead3db1333afef7854d4abe32d81236557805c5d2894d3ed6da610f93174cc

                                        (function() {
    var c = "ST_UUID",
        a = document.cookie.match("(^|;)\\s*" + c + "\\s*\x3d\\s*([^;]+)");
    a = a ? a.pop() : "";
    var b = new Date,
        d = 365E3;
    b.setTime(b.getTime() + 864E5 * d);
    b = b.toUTCString();
    "" === a && (a = "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g, function(a) {
        var b = 16 * Math.random() | 0;
        a = "x" == a ? b : b & 3 | 8;
        return a.toString(16)
    }));
    document.cookie = c + "\x3d" + a + "; expires\x3d" + b + "; path\x3d/;";
    (c = document.querySelector("shoptelligence-widget iframe")) && c.contentWindow.postMessage({
        ST_UUID: a,
        expiration: b
    }, "*");
    return a
})();
                                    

#8 JavaScript::Eval (size: 77, repeated: 1) - SHA256: 980a51d1fcc795398efa7c225297d1767982f6a1da60958a6d616ae774da6153

                                        (function() {
    return window.location.pathname.includes("/products/") ? !0 : !1
})();
                                    

#9 JavaScript::Eval (size: 81, repeated: 1) - SHA256: d1e0131a6d0e069441581c028310749880fc76be9629613236d3f867e66f4249

                                        (function() {
    return document.querySelector("shoptelligence-cui-widget") ? !0 : !1
})();
                                    

Executed Writes (0)



HTTP Transactions (183)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 08:53:36 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fUjBjHUBYIomuT5bOHxTs6pxQQwkH6-gjXzeyV6CbixWTob75_kPVw==
Age: 2187


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10756
Expires: Tue, 27 Sep 2022 12:29:19 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: L1yszfbsiiUCAMN0GD_whhPgixKtCUHh9EbR4DS3kCgaQcuQ3BiaFA==
age: 350
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 09:30:03 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4519
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:03 GMT
Last-Modified: Tue, 27 Sep 2022 08:14:45 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6669
Expires: Tue, 27 Sep 2022 11:21:12 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6669
Expires: Tue, 27 Sep 2022 11:21:12 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6669
Expires: Tue, 27 Sep 2022 11:21:12 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6669
Expires: Tue, 27 Sep 2022 11:21:12 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6669
Expires: Tue, 27 Sep 2022 11:21:12 GMT
Date: Tue, 27 Sep 2022 09:30:03 GMT
Connection: keep-alive

                                        
                                            GET /rapid.min.6.1.7.js?key=tCefTF5vmKJ4dA HTTP/1.1 
Host: cdn.yottaa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: nV8S92Y0H8zErw/6geFlrkNdxKaOpKplRLCxrkGsaW6dNKizZyBT20Uj0/25HoMiXxdLp0qv7aY=
x-amz-request-id: 0RY3PX1MBYNJQSFF
last-modified: Tue, 12 Apr 2022 19:39:15 GMT
etag: "e4553a89c25b9cf9bf40ed621b1e5c14"
server: AmazonS3
cache-control: max-age=640800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 09:30:03 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1628-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664271004.630643,VS0,VE230
vary: Accept-Encoding
timing-allow-origin: *
content-length: 22585
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   22585
Md5:    4d484430046ec75e957f95fb4d8a10a8
Sha1:   7ceb1f4e697bdf80d13ffe340287548134896abe
Sha256: 24d942781c229ea9166d2daedc832cdaf4edf395f13154eb8503fa3701562fdc
                                        
                                            GET / HTTP/1.1 
Host: slotsmanyy.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.21.56.82
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 27 Sep 2022 09:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Content-Language: en
Content-Security-Policy: block-all-mixed-content; frame-ancestors *; upgrade-insecure-requests;
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YxzXPLNG%2FXxeot%2FXj1uU57OM7BFmPkllqVu%2B8FPHE%2FeZonWbGIGceEw6R7%2FIEjPzyG9taUI%2F8j7Qf3fgl%2BHTWeLfi3vn0DosCHyDvjcaMkTpSZo9v1aubIxbpDUWypttf5flMw%3D%3D"}],"group":"cf-nel","max_age":604800}
Server-Timing: processing;dur=32, db;dur=10
Set-Cookie: _shopify_s=7b722a46-cb29-46a3-b442-aeb055793bd9; Expires=Sat, 27-Aug-22 08:43:30 GMT; Domain=burkedecor.com; Path=/; SameSite=Lax
Strict-Transport-Security: max-age=7889238
Vary: Accept
X-Alternate-Cache-Key: cacheable:985c80ca98dbf7d98f9bd740aef2e721
X-Cache: hit, server
X-Content-Type-Options: nosniff
X-Dc: gcp-us-east4,us-east1,gcp-us-east1
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-Request-ID: a7e512b7-dbd9-432d-bc0d-d6ebc90c45d5
X-ShardId: 35
X-ShopId: 1530623
X-Shopify-Stage: production
X-Sorting-Hat-PodId: 35
X-Sorting-Hat-ShopId: 1530623
X-Storefront-Renderer-Rendered: 1
X-XSS-Protection: 1; mode=block
alt-svc: h2=":443"; ma=60
Server: cloudflare
CF-RAY: 751337ea2c550b61-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10405), with CRLF, CR, LF line terminators
Size:   93392
Md5:    c5feca5a9049637abf46514a99b63f91
Sha1:   9a420dc9d673921c5388b2caa7b4926234c09579
Sha256: 12626f89f6f4bd0af9826e0cf58e5d7114035ad4cafbc7df1229da8f0ea1f2e3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/files/1/0153/0623/t/218/assets/cscode_discount_js.js?v=27920415831523197561661500415 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0153/0623/t/218/assets/cscode_discount_js.js>; rel="canonical"
server-timing: imagery;dur=38.499, imageryFetch;dur=26.884
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 811a8e57-009a-4128-a356-e58c32da770d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 23 Sep 2022 01:41:07 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Tx0GQjsE2Nby4Mm0dfbQh05ClUGVSNmJwunU2TBptEqg8is5OaTjTg2nFthOXIKG4Q4Hv4N%2Bd%2Bz%2BK6dBMEZSJCijbRmsknr%2Bn2rTG4RZYqUCVojftUlSkVQg2zeXHq5sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed3f8bb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   56263
Md5:    b4dd72967edfc678ca4b3ef9af2b9178
Sha1:   86820fd0a26ab0b3f40463f6a476477c05b4499c
Sha256: 11180bcd3167301ec70a345577e5b3969615b4223265247fe40c9cdefc1173b9
                                        
                                            GET /widget/NJb4JWxsd_/loox.1587675587934.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: loox.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.73.138
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:04 GMT
x-powered-by: Express
cache-control: public, max-age=129600
expires: Mon, 26 Sep 2022 16:37:01 GMT
vary: Accept-Encoding
last-modified: Sun, 25 Sep 2022 04:37:01 GMT
cf-cache-status: HIT
age: 84442
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ic3hLT5yYYgmqHOdSvFYzcDkldv50d4aeRf2NfA3Juinv2nETrKQyhGhkDow4EStjXsQWo2Gm37eBL%2Ffbu7bUJHq%2BWFH1YIcp%2F5lgP7Newm46PPNe2qdBV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ef1c320b49-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31064), with CRLF, LF line terminators
Size:   12398
Md5:    728d9a14fd1f88830bc55a6848a79db7
Sha1:   07c7d906bbc0a19e7399e937e81bf236f2ef8e33
Sha256: 38b9793cabecb76f0eb6fcedc0b87689c061df77cabbc8392b766afba58f27d6
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 09:10:46 GMT
Expires: Tue, 27 Sep 2022 09:38:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kUjx75F8SRA7c-2JmOIOb13nErpyM9y1kQWf3dPKlv-F_hkvLz0sng==
Age: 1158


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
server-timing: imagery;dur=25.704, imageryFetch;dur=25.481
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c70ed509-a8e9-47a2-8b58-d6f6a77a0c38
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 27 Sep 2022 09:25:05 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3d0vvK3LhJCcxI7Z4tS%2BvoQYSXvRnoMAFudWY41kgaLW6wVRhT6xljlrQaPW9PU15MxRVSR3b%2B042qI1nTXyQcvpTWz%2BMys5JRwAxYPxDY3kuQBiscg2rS6NMR3FtWu4UQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed2f69b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32755)
Size:   14803
Md5:    b9e852c885f60efad52455221f8b6840
Sha1:   5deec1231a838c1478889b20aab8e1f8f2bf7a09
Sha256: 4fb15036c803d39c7877c6b8b570f1a099d916e0a6d4e9573b8dd773c1e76be7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3055
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:04 GMT
Last-Modified: Tue, 27 Sep 2022 08:39:09 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /s/files/1/0153/0623/t/218/assets/bold-upsell.css?v=5278972578550296291659637877 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0153/0623/t/218/assets/bold-upsell.css>; rel="canonical"
server-timing: imagery;dur=36.039, imageryFetch;dur=33.558
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 85dedda9-5934-4728-b55f-02ee3ef97713
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 00:54:06 GMT
cf-cache-status: HIT
age: 343026
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hc%2F8mCc5Khnn%2FNLDUDwJ34rkV7NwzLrUUVrTfTA8rgHRRApewfLrXXeZ%2FFury5orE0RtZWkzP%2BmIQwc8W2n0jxlZ8n%2BXp7z%2FXRlUbU0srSiAQuTI1YhKrTsfXDUSqcJqbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed2f6bb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19211)
Size:   9689
Md5:    e86e8123c75b6a64aee5fc4cdef19b4c
Sha1:   cda0c94aacf2790c1f83a9067035db4841ba6c4b
Sha256: f701f639fa9383e2964027070f581cf384b07d93d1fd8bf32b032a5cae6ee31b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DF385253ED0218931EFE04024F2925611F0C7E4087E8D01A7CD56F8B714EB912"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Tue, 27 Sep 2022 11:24:39 GMT
Date: Tue, 27 Sep 2022 09:30:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DF385253ED0218931EFE04024F2925611F0C7E4087E8D01A7CD56F8B714EB912"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Tue, 27 Sep 2022 11:24:39 GMT
Date: Tue, 27 Sep 2022 09:30:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DF385253ED0218931EFE04024F2925611F0C7E4087E8D01A7CD56F8B714EB912"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Tue, 27 Sep 2022 11:24:39 GMT
Date: Tue, 27 Sep 2022 09:30:04 GMT
Connection: keep-alive

                                        
                                            GET /twentieth_century/twentiethcentury_i3.0053f3718225e27d210d71fce1d5b9595680817b.woff2?h1=YnVya2VkZWNvci5jb20&h2=YnVya2UtZGVjb3IuYWNjb3VudC5teXNob3BpZnkuY29t&hmac=119843bdd06af808f40e7ab43b86816847385097e73194917fb7e0b90c17f788 HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.254.71
HTTP/2 401 Unauthorized
content-type: text/plain;charset=UTF-8
                                        
date: Tue, 27 Sep 2022 09:30:04 GMT
content-length: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZS2BivNjPL%2BFVTQ0v21NUbsSEFXXhs0KV6YG3%2FQFv8VnTRvUsuwcnnLKbrWjCX8pHoXuwvwxe%2BRZnHe0iIPVjkSZWUu%2F%2FKLBWJ81thAKf9Kj2bA3KX1TUS3T1F3EaLv5hJLGXNqu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337f338960b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   21
Md5:    9db32e8ec4f1649c02b3d51d39d74276
Sha1:   21562e834acd63ec09adab2242463c6dcfa069bf
Sha256: 5bf7e62e0503662d005127ff08560df2541a339c23175f79be103ce5548b2bce
                                        
                                            GET /twentieth_century/twentiethcentury_n6.0d3b76303d4b4a3612edbc69654ac2a8ca6886a4.woff2?h1=YnVya2VkZWNvci5jb20&h2=YnVya2UtZGVjb3IuYWNjb3VudC5teXNob3BpZnkuY29t&hmac=a821044f61b3da11d5efd3e36936b02fbb40f1bc62f51680c26b7751b3d1f9d1 HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.254.71
HTTP/2 401 Unauthorized
content-type: text/plain;charset=UTF-8
                                        
date: Tue, 27 Sep 2022 09:30:04 GMT
content-length: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=78lFEHFQcliY60LqSeLD04X39sa1OU79D8KJqYuohomWlSxsU6lbfNNfWGSzoLwOOEoagmn%2BQ4%2BNLLBrfmz1GIb2cuVgywBW8zXmlqaqt%2Bzz%2BS7ZQN4%2BSc7fjFhdi3IWjxPBmtuI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337f338950b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   21
Md5:    9db32e8ec4f1649c02b3d51d39d74276
Sha1:   21562e834acd63ec09adab2242463c6dcfa069bf
Sha256: 5bf7e62e0503662d005127ff08560df2541a339c23175f79be103ce5548b2bce
                                        
                                            GET /monotype_goudy/monotypegoudy_n4.5e36f5b2580b76c68cda2666d673173548acdd5e.woff2?h1=YnVya2VkZWNvci5jb20&h2=YnVya2UtZGVjb3IuYWNjb3VudC5teXNob3BpZnkuY29t&hmac=7582c99a8edf936eebde88b6942110182b28c30677845f3a04c879990e69c79a HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.254.71
HTTP/2 401 Unauthorized
content-type: text/plain;charset=UTF-8
                                        
date: Tue, 27 Sep 2022 09:30:04 GMT
content-length: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O32AaoB4pmjmogqHhYw%2FJYlItbhUVFhAHPVfp4ri6BtbrrDRlgaHB%2BA%2BUmujH%2B5kKNoqbj5pQ5WJmcdWkN0sFYI4O6GdPLkp%2BNEXIhom19R6w52EZC6eD05XcjtmUk4j0dASFbmX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337f338980b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   18808
Md5:    545e389b9cd6241726be2ad090df8414
Sha1:   a1d02771016a8bb0f5d6102e7997ee0be78850d1
Sha256: 682ed676ac276dc0a4e1155aeba0040aa112da34717183e44458dec69c727ff1
                                        
                                            GET /api_public/translations?_=1659652724&shop_url=burke-decor.myshopify.com HTTP/1.1 
Host: ro.boldapps.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Origin: http://slotsmanyy.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.108.18
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 09:30:04 GMT
p3p: CP="NON DSP LAW CUR ADM DEV TAI PSA PSD HIS OUR DEL IND UNI PUR COM NAV INT DEM CNT STA POL HEA PRE LOC IVD SAM IVA OTC"
x-content-type-options: nosniff
strict-transport-security: max-age=15724800; includeSubDomains
expires: Tue, 27 Sep 2022 21:30:04 GMT
cache-control: public, max-age=43200
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: cache-control, accept, origin, Content-Type
last-modified: Tue, 27 Sep 2022 09:30:04 GMT
cf-cache-status: MISS
set-cookie: __cf_bm=keS8OYlBkBd2u8pcWHvevkuF2lvUgzM.ksKl8H.gfrg-1664271004-0-ATYBlr+OZ8wsM145XiQQertChlxwhxd7Dp/2cz8d4eJa/2f2GR01i/ucfeWW73Sm4m0KNQ058pyXF04MM71+MXI=; path=/; expires=Tue, 27-Sep-22 10:00:04 GMT; domain=.boldapps.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 751337f1cfa10af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1560
Md5:    956bdc5199ce45c79c75249d8ac7f477
Sha1:   265f9d8be777b53d7db4dab1371f84e2a15fc129
Sha256: 5ae8a05793a1d6e10fed8cca36fde6c25023a1a5fe701dd39517802a6e01339e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DF385253ED0218931EFE04024F2925611F0C7E4087E8D01A7CD56F8B714EB912"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Tue, 27 Sep 2022 11:24:39 GMT
Date: Tue, 27 Sep 2022 09:30:04 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OcVpQn1Ausyu3lRsM0g8Xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.6.128
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uAn70Le8IPMrfDUpnz69ZZuUJJo=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:04 GMT
Server: ECS (amb/6BA7)
Content-Length: 278

                                        
                                            GET /twentieth_century/twentiethcentury_n6.c396df293741c34c7c780d8677bc681d3c3ecd42.woff?h1=YnVya2VkZWNvci5jb20&h2=YnVya2UtZGVjb3IuYWNjb3VudC5teXNob3BpZnkuY29t&hmac=dcab89ef5b689704dcca70e801f797b9828248805787feabc2524eb5cd05fae9 HTTP/1.1 
Host: fonts.shopifycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.254.71
HTTP/2 401 Unauthorized
content-type: text/plain;charset=UTF-8
                                        
date: Tue, 27 Sep 2022 09:30:05 GMT
content-length: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y37dCchaG5kXYBSU4c5oXTgK2B4gcQw85f7%2BYUrrreufmQIT18kioMdc1%2F9LJzu3BjZ4VgFDZ3ypyuLm1B0VN0eHU3EybeOURRzbaNkqxOwDh6chccD%2FJhSG9s0c9WQHIGDOc5Fa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337f74c670b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   21
Md5:    9db32e8ec4f1649c02b3d51d39d74276
Sha1:   21562e834acd63ec09adab2242463c6dcfa069bf
Sha256: 5bf7e62e0503662d005127ff08560df2541a339c23175f79be103ce5548b2bce
                                        
                                            GET /s/files/1/0153/0623/t/218/assets/jquery.zoom.min.js?v=127655014540499679121659637862 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0153/0623/t/218/assets/jquery.zoom.min.js>; rel="canonical"
server-timing: imagery;dur=46.132, imageryFetch;dur=45.956
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 80109acf-51f1-4b0d-b16d-0a14172b742e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 05:56:11 GMT
cf-cache-status: HIT
age: 2035024
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ooa30YyJjcd%2BSuKafbN5vtEFi3Qi8aY3%2BpaF9ePb3A5WDArhyi6wuCcf4KGsTeD2BWsz90ltf3VWeWY%2BRZUezAurFZM5tK2CV%2BwzKI7F6FjUOBmOblK4Y0LU6qRT7EKB5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed3f7fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2550)
Size:   1151
Md5:    e156750fce2a079ebb2ba90e095d337d
Sha1:   c173466849c4a71831916c5c6150b44fef4e93dd
Sha256: 23c57b0d8ba6020c02879c3a333da7da899749a5f0ff445f73d09cb782746edc
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "02721969C188063627CD7C1040E7C0ABA9DB144FBDE7FC0BDE00648389EB4DA0"
Last-Modified: Tue, 27 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Tue, 27 Sep 2022 15:30:04 GMT
Date: Tue, 27 Sep 2022 09:30:05 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-WZGBHRP HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 09:30:05 GMT
expires: Tue, 27 Sep 2022 09:30:05 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22181)
Size:   53190
Md5:    106ab2f4a872a2fd344c62cb3a4bede7
Sha1:   72703ff6d485bef24aed6b9b4582ec5d4f849c1c
Sha256: 3a81438970420cc90033f80a37573058eb6569f25b2fcd538acb89e3bedc0451
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/files/1/0153/0623/t/218/assets/theme.js?v=103288005589606364981659992925 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0153/0623/t/218/assets/theme.js>; rel="canonical"
server-timing: imagery;dur=111.246, imageryFetch;dur=78.642
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6d788a81-c3a5-4b80-b18d-c2933bac8aa8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 27 Sep 2022 06:54:04 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ctj1QwQxjjJPnOkeUkIMHOl%2BKuTZkRcaPxsyOkk0J%2FaaUPBCuuPbD%2BuVbzAIKVpOBBL%2FocPzeaOrbRiWg1qRH3Dc8yuZWiglc%2FE5kC1sxRaddpjPSWcs6saFWUS0DX1M%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed4fa6b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   121910
Md5:    426b6cbc05d0c6dd787837eb287c00da
Sha1:   44c10a778c2d3b22236eada9944aaeb8fa0f031d
Sha256: e85f07847bd43933f96f30d15d260ddd0842588fa84a0402acbb17c71c226137
                                        
                                            POST /s/gts1d4/yjNbbLONUF4 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16779
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16779
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16779
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8342bc11-d95e-4085-a7ca-d421aba94a91.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4573
x-amzn-requestid: ff35a66a-caf2-4ff4-b850-01a584fc2aa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8FzLIAMFSPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-5b4a410a2827baf5598d58e7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NFjYOqhUeb3yyjMNWpoBNq_xcsX3wXvc3-rqJt4cGbJXY9Sxr5KpDA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 15:29:19 GMT
age: 64847
etag: "9f99fa947a603fd6b10ff149e379cd04ad83d27a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4573
Md5:    efaaa002eb6251769ea6dbf306ced3a1
Sha1:   9f99fa947a603fd6b10ff149e379cd04ad83d27a
Sha256: 238e0ca1aa29223416c34ef2dfcc6570c00e27a98991d91efc16e9bc4083c197
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 42048
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11881
x-amzn-requestid: 4562e550-9c0f-407b-be2a-3c5d8901d444
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2apSEPuIAMF5TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c0b08-5c5f052f146d25a7190412d1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:13:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EAiLlHN2h6EPX0idrlQG4TIyGBMt_In0_Tpy79foal99j4xoRasO-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:23:49 GMT
age: 39977
etag: "3b660de9902fbfcf2efb477f40480b08545ebc5f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11881
Md5:    91d97447a6a35813e57d942f685544c4
Sha1:   3b660de9902fbfcf2efb477f40480b08545ebc5f
Sha256: 08c1ea19c4918273da12c9a2e962edf4463c486a30f60c8a279a45e5edcf972a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbde62996-d83a-4f97-a8ad-f7719aff0bff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7701
x-amzn-requestid: 63bfd7b5-f18e-4396-99a8-fb24dee1ee0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGCmmGswoAMF2zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324af6-04fa1b18525182b7213f844c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:59:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KT47E-2_0O70MgMbGzSjvVaFrWwQybXKo_dkWMw2vnqBElOZtT_Big==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
age: 30251
etag: "2f7876bd0e4b52aa04ccf1c2a45359156eaefb97"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7701
Md5:    9ff2dbdbf6d450f0d9774777b3c5aa6e
Sha1:   2f7876bd0e4b52aa04ccf1c2a45359156eaefb97
Sha256: 4c2184b8150834adf1e9ec807f3175b6fcd574920a98c857db2cfb01b78da2fe
                                        
                                            GET /cart.json?ts=1664271003631 HTTP/1.1 
Host: slotsmanyy.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.56.82
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 09:30:05 GMT
cf-cache-status: DYNAMIC
cache-control: no-store, no-cache, must-revalidate, max-age=0
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bW%2Fv%2Bi9KnNUkA5OiyYGmgqPFFrMttMedP%2BKQaGuythippxK5OgWdj5885hmQW6eAiJfvUCq6pAdWAFQgCoKbjV2N8lvJzmhePQrMDNmXZ5o9Qe0izF%2B6aG%2BufKUoo0J2aWAgtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
x-content-type-options: nosniff
x-dc: gcp-us-east4
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 4f3f741c-c346-4c35-8a93-c1ec2dfffb3b
x-sorting-hat-podid: 35
x-sorting-hat-shopid: 1530623
x-xss-protection: 1; mode=block
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server: cloudflare
cf-ray: 751337fa7d6eb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9001)
Size:   16153
Md5:    222c1ba4bee8fdd7acc6427a0b1011d6
Sha1:   b6c323a966a1a43658be1c0f5da5dba51cee3e0a
Sha256: 8cad6dc0ecd80fe2fd9642dc15e28e029dbb23df9a75343c830a2aee8ac1439c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qkOlqM6tJ90H9572YLE0J-s79edBSceM5hLbJtyyuH86xdW8juoktA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:28:31 GMT
age: 72095
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8255
Md5:    fa70ece15044b7318cb11ae5e37a64e7
Sha1:   04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
Sha256: 8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "69F596BCACDEC9E52E2DDE2D2E5F009CFE129852BAA89647FD03A70DA06BB080"
Last-Modified: Sat, 24 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4969
Expires: Tue, 27 Sep 2022 10:52:55 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "69F596BCACDEC9E52E2DDE2D2E5F009CFE129852BAA89647FD03A70DA06BB080"
Last-Modified: Sat, 24 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4969
Expires: Tue, 27 Sep 2022 10:52:55 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:06 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 09:46:09 GMT
Expires: Sun, 02 Oct 2022 09:46:08 GMT
Etag: "defbd633a54f929ea0ab343e754904a8c126f544"
Cache-Control: max-age=432361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751337fbdd35b518-OSL

                                        
                                            GET /embed/1/loader.js HTTP/1.1 
Host: cdn.sajari.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.50.98
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycdvSc8c_4lId82VkYrgcgVAr2ySf_VmmOtBNvTc3Bk7FEsRAr4_sURDZIKBBJQxhrZmW8n7cxQrlgTLKPyxB7o_VVw
x-goog-generation: 1661920512487050
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 179
content-encoding: gzip
x-goog-hash: crc32c=gEY+DA==, md5=YZVSftTpmC5nEp7NU3dI8w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 179
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 27 Sep 2022 09:30:06 GMT
expires: Wed, 27 Sep 2023 09:30:06 GMT
cache-control: no-cache
last-modified: Wed, 31 Aug 2022 04:35:12 GMT
etag: "6195527ed4e9982e67129ecd537748f3"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   179
Md5:    6195527ed4e9982e67129ecd537748f3
Sha1:   8f0c09ee9c14c91b3011e1b7a0f84c2bcbc86c9a
Sha256: 941635557649d5b895446e103db5218eac164a1b1c49c73f9b200e957b466a91
                                        
                                            GET /v2_ui/js/UpsellTracker.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: upsells.boldapps.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Cookie: __cf_bm=K8MET_bLkTu9S_7gdJYwQ1p7rt3DVH7xXvIkQ0Hd4Yk-1664271003-0-ATEg4vpU9COPJ7VIMRQfSbE2N4evt+bwwHh1anjuVpe2JfcCmw5SUONA5BwiRaFb11TRtdo99MKMKIlfKfB9Jqw=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.108.18
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
content-length: 36795
last-modified: Thu, 15 Sep 2022 16:54:05 GMT
etag: "25328-5e8ba17d5c540-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=172800
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 94629
expires: Thu, 29 Sep 2022 09:30:06 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 751337fcad94b503-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   36795
Md5:    a3c55764b72830c999fb5769aec3ad34
Sha1:   1869a0d7c8b2268431d0dae8742afd4f5c3f6309
Sha256: 98a9bb70f9a5bb55fb3e95f30098b7138d5343064e9b0e8ead7ee75afadca16a
                                        
                                            POST /unstable/produce_batch HTTP/1.1 
Host: monorail-edge.shopifysvc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 219
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: http://slotsmanyy.top
access-control-max-age: 86400
x-request-id: 9fa35397-fb12-4d5a-898f-28aece410ead
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FAhFA1qNdMzTP6cZcK8R6PR4E2FsYODFICcbKQ4FJTxS8Y8vORNamk5LWmxkssyrln1FFmCMWrAsFkte%2Bqq91t74ClDVP3OwqniqZuOz7EjRl4FinZX1uSHE2dFVU8THz%2BWbLEgead1A5%2BX0vA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337fc286bfabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /s/files/1/0153/0623/t/218/assets/vendor-scripts-v0.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:03 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0153/0623/t/218/assets/vendor-scripts-v0.js>; rel="canonical"
server-timing: imagery;dur=72.498, imageryFetch;dur=52.513
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 309178a6-187c-4fc5-8436-73c5651179ca
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:05:12 GMT
cf-cache-status: HIT
age: 2762575
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lSJpRu8Ycqp6TE0vqnXJq7M9dr0nUVnPgaMKa0Eyu%2FeqQFcfsLW5fCpQZQX5%2FLpy4UNyLwefttDIVQnyuqWhocOrZHT8GeFP%2Bf6JoDtPzsjC7iUSJF%2BFN6i0dp0lZhvGOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ed3f7eb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65088)
Size:   52219
Md5:    5bb7673e0fb5bd708412cb32f8120fa8
Sha1:   5c2fa295b69cad4166ac4bc36ec73f99ffb05638
Sha256: 0f5b32d48d2317e932b816fb6d50b1d00d7f27cab3c6a7bfa2c7f98560a27496
                                        
                                            POST /unstable/produce_batch HTTP/1.1 
Host: monorail-edge.shopifysvc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 223
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.255.71
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: http://slotsmanyy.top
access-control-max-age: 86400
x-request-id: 29ab03e6-d513-4d5c-8d91-e6f833ee2dbf
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X6o%2BQQu8jlxgBBqKlxs%2FQA9Jq%2FM4Pu3XYMYGNFU0Ted3hXWag%2FPFT3T5Qcong%2Bei9JlAjSKU47FtOGsXNurxksr%2FlFkriV9xAzRUwESq0OAVtFHz96iG7jkVtzQQgP4R%2FA%2F3ql8qEBOC4E6mOIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751337fc2869fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/yjNbbLONUF4 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ssw-empty.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: img0.socialshopwave.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 0
last-modified: Wed, 17 Feb 2021 08:32:48 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 19:22:55 GMT
cache-control: max-age=31536544
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZCjt_IyXi-xxUfr99FFxTeGdSI2vupsppeSHNWgWLIDxPk6rvsryGA==
age: 482834
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2940
Md5:    858fa8128aee05a6cac07ff59095f0db
Sha1:   14c744b16642169a5941ccee4d6fea7ce6bf5c50
Sha256: 57fea43223a5f1366f40bfdd5942514528061f50c73bfb875c90796a1fc591e3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A100E51F15C0F471744B25F36ECD884B0052C36F3916626F89EB7F9BCCCA02E2"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9192
Expires: Tue, 27 Sep 2022 12:03:18 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6562
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 07:40:44 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 08:03:14 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NOGMaUSaqlTUjG5pwLSCoYi8mcgFP4qlldwY7UhapHqyAb5x0KWoUQ==
Age: 5212

                                        
                                            GET /assets/storefront/product-customizer-v2-91f2d773657c1368280324d3731b17e1308111ca84ed16603c109005e2891ad1.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: app-cdn.productcustomizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.72
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 13333
server: Cowboy
last-modified: Thu, 09 Jun 2022 22:46:53 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
via: 1.1 vegur, 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
date: Tue, 27 Sep 2022 06:45:31 GMT
cache-control: public, max-age=10000
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j_dHGz7i3tWUb3M-NdiPDErnNwXXcYBB88uWa9iEr2_7HHhy8ZE7GQ==
age: 9922
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32863)
Size:   13333
Md5:    2517216c608204540912719027270ad7
Sha1:   a81d582624131003966e36f3cc1cb64afc258757
Sha256: 86002a57f413e75013388850bab18214efee0cf90a37a0a11fd634639b0d2f6f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rjuRZCSbGaWopHyjGpbujKLE-Gs066XAI8trV5fj9cp2hobe3Axy_A==

                                        
                                            GET /scripts/shopify.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: media.receiptful.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.53
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-length: 11327
server: Cowboy
x-xss-protection: 1; mode=block
content-encoding: br
access-control-allow-origin: *
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Mon, 26 Sep 2022 14:05:37 GMT
etag: W/"2c3f-1837a1e1b68"
date: Tue, 27 Sep 2022 02:40:51 GMT
via: 1.1 vegur, 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OzMqbVrHRjCVG6cp_5Ez3OL1BPd5NNxAcS2NCorHYQyNVjqZZy2a-Q==
age: 24555
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (44834), with no line terminators
Size:   11327
Md5:    34e4fc78138d8ead24bd8401c3a71838
Sha1:   81dcbf4738924d093e2061d506dfb2c4473b6bdf
Sha256: 48512a13679ebcb0e630c31d5a0b0160d79f718cd84eb465b97abf9d979862a3
                                        
                                            GET /apps/upsell/upselljsscript.php?shop=burke-decor.myshopify.com HTTP/1.1 
Host: secure.apps.shappify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.96.24
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
cf-bgj: minify
cf-polished: origSize=96020
expires: Tue, 27 Sep 2022 17:30:06 GMT
last-modified: Tue, 27 Sep 2022 05:01:38 GMT
vary: Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 16108
cache-control: public, max-age=28800
set-cookie: __cf_bm=iSq7.0qvNCGUzyul2ICakM.b6TjdzCRBJP8K5ZrL7sc-1664271006-0-AaZjT4Hqi+Hdx7HWE/KyBT8g0+xXOLOSDca2QUfN3OpDKMLQ0Gs4r8b5dz0n/Ra2WI8684iylI1Y2XWz50JTnLs=; path=/; expires=Tue, 27-Sep-22 10:00:06 GMT; domain=.shappify.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 751337fdeb8c0b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   34207
Md5:    2c0b1d6a0e67923c7c7a39ec8e82be90
Sha1:   20fcfa67e4eb3b52300bd7ada64392b83aa99875
Sha256: 90e1218d54f3b062f7d1b565038c9a6bbe573da81a87771900ba0ca62a5d6eb4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2393
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 08:50:13 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1070C24BF1A8AFC86A2B42F30C35850AC4E7D35A907A7AAFFFE4DA6DC77800F2"
Last-Modified: Sun, 25 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2505
Expires: Tue, 27 Sep 2022 10:11:51 GMT
Date: Tue, 27 Sep 2022 09:30:06 GMT
Connection: keep-alive

                                        
                                            GET /assets/email_cart_updater.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: app.directededge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         66.228.41.129
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 4923
Connection: keep-alive
Status: 200 OK
Cache-Control: public, must-revalidate
Vary: Accept-Encoding, Origin
X-Request-Id: 02bcb12b-f109-4898-b65a-72a4242cd632
ETag: "95f4fc4a3841703fd7aab189a5ee2f729cdf4134b1e17b945acfd77bf814d8d2"
X-Runtime: 0.001235
Date: Tue, 27 Sep 2022 09:30:06 GMT
X-Powered-By: Phusion Passenger(R) 6.0.14
Server: nginx/1.18.0 + Phusion Passenger(R) 6.0.14


--- Additional Info ---
Magic:  ASCII text
Size:   4923
Md5:    771d3bd1b976524872b29d52e7211e9d
Sha1:   a8290f8f4f5f6df83bbb6c7081b9ffc7b9df2d23
Sha256: 95f4fc4a3841703fd7aab189a5ee2f729cdf4134b1e17b945acfd77bf814d8d2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 08:31:54 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RiuUlzcROz6n_LTazeHQmIuARGOoyympc2SNl5YugmpL06D4fpEooA==
Age: 3492

                                        
                                            POST /log-nt/event HTTP/1.1 
Host: qoe-1.yottaa.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1989
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         140.174.14.148
HTTP/2 200 OK
content-type: text/json
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: X-Results-Data-Source
cache-control: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- data
Size:   28481
Md5:    8feb7424114b010f9e0e9c9bb67ca38e
Sha1:   18abe5b981a352cab08ba349fc4f07aefb82f25e
Sha256: 146f4055710b090a9550666ec76feceeddcbaa76fac6069546354fa93b6edb93
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Server: ECS (amb/6BA7)
Content-Length: 727

                                        
                                            GET /v2/burkedecormyshopifycom/storefront/shopify/widget/?shop=burke-decor.myshopify.com&lang=en&root=&origin=http%253A%252F%252Fslotsmanyy.top%252F&jsv=2&version=&minimized=0 HTTP/1.1 
Host: ps.sloyalty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.81
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
content-length: 6487
cache-control: s-maxage=300,maxage=0
date: Tue, 27 Sep 2022 09:27:35 GMT
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
referrer-policy: same-origin
server: nginx
x-cache-status: MISS
vary: Accept-Encoding,Cookie
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 85SwE6Xros-SQd-ju7PBFtTIkzwBV3sl4WdFp38KWCtAXsC68YZ7_w==
age: 151
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (737)
Size:   6487
Md5:    939b6f01beb19c28a92071a00f4be532
Sha1:   aa1b2dcc76e50d31485f7ac32f4242e2393af5ad
Sha256: a0f1712ea4a31a4a57812701fd02526200a28da867b22d5484f04394bafa655a
                                        
                                            GET /static/js/agglomeration.js?shop=burke-decor.myshopify.com HTTP/1.1 
Host: gift-reggie.eshopadmin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.225.105.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.1.19
Date: Tue, 27 Sep 2022 09:30:06 GMT
Content-Length: 26464
Last-Modified: Wed, 31 Aug 2022 19:25:42 GMT
Connection: keep-alive
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (333)
Size:   26464
Md5:    92efa9aea566e2ffea4074c54b980629
Sha1:   8e2f7adff1764030402aadc90ca14c0813efeda3
Sha256: 894e27f648c8a0da99afc5f3dc97954d86a40c0ed512c9023a4b28c857dda61b
                                        
                                            OPTIONS /?v=1.3.3&site=iT3iAvEcwC&session=546cac79-0e2a-47c2-a6ad-d90895cd1628 HTTP/1.1 
Host: activity.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://slotsmanyy.top/
Origin: http://slotsmanyy.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.74.220
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BqV66xk%2FiKu0Ksf4PU5rr8R1QW0ec0tp35eX1ZxvHn9foViGOkPrTaPSv10EJafyeaJg40%2BjHMIVw4hiZwCpE8xd0Wvwx5SNdgCds3dJ05%2Fazb%2F3R4t%2Fm8EarAY%2BFxEOp3589EuJvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337ffd95e0afe-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /aftership/gmv.js?organization_id=7794f560f2684dc78b21f66d1e9867e2&shop=burke-decor.myshopify.com HTTP/1.1 
Host: widgets.automizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.169.102
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
cf-bgj: minify
cf-polished: origSize=1815
etag: W/"a0629c9eea780e8f21ab0bdb2518e3e7"
last-modified: Thu, 17 Mar 2022 03:16:05 GMT
x-amz-id-2: YgHXeokCHiduQ3EFkgsayPpt9nMkOdSNgW5S9ybdVfSdacQxVcc4YI2du6G344qreUYQJLMb+D0=
x-amz-meta-x-frame-options: deny
x-amz-request-id: 5JFEGDS3JPVREBXE
cf-cache-status: REVALIDATED
expires: Tue, 27 Sep 2022 13:30:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 751337fd7c59b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1814), with no line terminators
Size:   3402
Md5:    de1ac7d6ee5a98794a1bb8fdbd8d7e3f
Sha1:   5d9d00f4d9aafa1da6392f081a8516ddd75acd54
Sha256: ee0858cf441c4501eed55559c49e0d00ce2237fecc7ba6a53fd0028f0086f636
                                        
                                            GET /v2/burkedecormyshopifycom/displays/shopify/anonymous/?shop=burke-decor.myshopify.com&lang=en&root=&origin=http%253A%252F%252Fslotsmanyy.top%252F&jsv=2&page=home&hidden= HTTP/1.1 
Host: ps.sloyalty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.81
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
content-length: 4867
cache-control: s-maxage=300,maxage=0
date: Tue, 27 Sep 2022 09:28:05 GMT
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
referrer-policy: same-origin
server: nginx
x-cache-status: EXPIRED
vary: Accept-Encoding,Cookie
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4eCcVvLd8HtGgTdiVqsz-SH5F71VARGMPUIxxO7Uxil0sYk49ODxFg==
age: 121
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (728)
Size:   4867
Md5:    5d9698f59ce961478089a1155ee59c90
Sha1:   19f7675dd97ee055730cd7582213bb78fd270086
Sha256: e2aff3a3f5841a5b442ebaa5ac00d21a5c06df20b32b2f40e047b092074d7039
                                        
                                            GET /minicart/tag?shop=burke-decor.myshopify.com HTTP/1.1 
Host: app.directededge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         66.228.41.129
HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Status: 400 Bad Request
Cache-Control: no-cache
Vary: Origin
Referrer-Policy: strict-origin-when-cross-origin
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
X-Request-Id: 31ee53ee-f5e5-4c3f-8864-208e16497f66
X-Download-Options: noopen
X-Runtime: 0.006948
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 09:30:06 GMT
X-Powered-By: Phusion Passenger(R) 6.0.14
Server: nginx/1.18.0 + Phusion Passenger(R) 6.0.14


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   14
Md5:    8a8a16171c8cf9f0d1ab70bfc8df3cff
Sha1:   3e8254aa85625f3aa8f2d62e9c18c6a0eba81661
Sha256: 764c1fc76d133daf93038144b64afe8ae17235cd565c30ac3871cbe489cc6693
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 09:20:29 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -SfHHqUxTktuZs60uzqODXI6ruVj0NPY9k6sWionBspCjPguLMhsXQ==
Age: 577

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:06 GMT
Last-Modified: Tue, 27 Sep 2022 09:01:25 GMT
Server: ECS (dcb/7FA4)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hiuQ8R5z4zjU4ma1KGRNJPxtPgwfJkExItfD1J2DiO1h5l3b6THTgw==
Age: 1722

                                        
                                            POST /g/collect?v=2&tid=G-CBLQSK68DY&gtm=2oe9l0&_p=820862559&cid=1849227820.1664271004&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664271004&sct=1&seg=0&dl=http%3A%2F%2Fslotsmanyy.top%2F&dt=Burke%20Decor%20features%20designer%20home%20furnishings%20and%20modern%20home%20decor%20%E2%80%93%20BURKE%20DECOR&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: http://slotsmanyy.top
date: Tue, 27 Sep 2022 09:30:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /?format=json HTTP/1.1 
Host: api.ipify.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.91.59.199
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: Cowboy
Connection: keep-alive
Access-Control-Allow-Origin: http://slotsmanyy.top
Vary: Origin
Date: Tue, 27 Sep 2022 09:30:07 GMT
Content-Length: 21
Via: 1.1 vegur


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   21
Md5:    7d69c71af0f191e9a72db6153f8018d1
Sha1:   f67c5f2887bc05654b47f76e9621e53a4091aed1
Sha256: 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
                                        
                                            POST /?v=1.3.3&site=iT3iAvEcwC&session=546cac79-0e2a-47c2-a6ad-d90895cd1628 HTTP/1.1 
Host: activity.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 256
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.74.220
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJ1mitaESnNZafLz%2FQZWmqwtobuxv8CIPOjOO9iwn5AEMRsqU3qu4nLQInjOpjf40AjjGi89zU27H%2F0DIZ1cpnnlh%2BIzHhTugD6Z6XEy3vQLjYpBB86ZCkCV0xOfyPOD4SBX8cocxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75133800aa4c0afe-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /tracking/page HTTP/1.1 
Host: track.cmcassets.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://slotsmanyy.top/
Origin: http://slotsmanyy.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.48.144.75
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
access-control-allow-credentials: true
cache-control: public, max-age=86400
access-control-allow-origin: http://slotsmanyy.top
access-control-allow-methods: POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
apigw-requestid: ZHNY3iY9joEEPwg=
X-Firefox-Spdy: h2

                                        
                                            GET /widget?user=burke-decor.myshopify.com&slug=2022-pop-up-0 HTTP/1.1 
Host: commerce.campaignmonitor.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         99.84.191.101
HTTP/2 403 Forbidden
content-type: text/plain; charset=utf-8
                                        
content-length: 9
server: Cowboy
x-xss-protection: 1; mode=block
access-control-allow-origin: http://slotsmanyy.top
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-expose-headers: X-Commerce-LoggedIn
etag: W/"9-PatfYBLj4Um1qTm5zrukoLhNyPU"
set-cookie: cm-commerce.session=s%3AjR_3mTdd9p61Dj-KMeRf_QTxWjBT9CAt.TN5pxDbpahWhzBuxQ0P%2FkJKYl6WD15oHFk3rmJssThg; Path=/; HttpOnly; Secure; SameSite=None
date: Tue, 27 Sep 2022 09:30:07 GMT
via: 1.1 vegur, 1.1 6ec872fa8051a500a5a9ab5ec50a79ba.cloudfront.net (CloudFront)
x-cache: Error from cloudfront
x-amz-cf-pop: IAD89-C2
x-amz-cf-id: fDDoKw1QQIrStEBtaiXSRBlU7DyD0XVtaGaFOsUHlsQ26pxOILuhNw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    722969577a96ca3953e84e3d949dee81
Sha1:   3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
Sha256: 78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
                                        
                                            POST /tracking/page HTTP/1.1 
Host: track.cmcassets.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 255
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.48.144.75
HTTP/2 204 No Content
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
access-control-allow-origin: http://slotsmanyy.top
access-control-allow-credentials: true
apigw-requestid: ZHNY5jwvjoEEPCg=
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /my-wisepop HTTP/1.1 
Host: popup.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 111
Origin: http://slotsmanyy.top
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.74.220
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
vary: Accept-Encoding
cache-control: no-store
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
access-control-allow-headers: *
x-cloud-trace-context: c18bfb7f46450a94a271073833182a90
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UXrKJm0394AEcYtCXJsLLfTBf62z5rirbqALF1Dg4jms68j4KMQ9q49hJi28amMOB4jFlfM6HvPqL7fUHjBA3IOEJaWaRwKtCjJv0zkRzQFIeND8pjjTswG4j8juJw2SydnGeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75133800ca6f0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2462
Md5:    85e970d53524f8ab16750fc1fee85b8c
Sha1:   cc5870050aa81eba553d06dcf8ce0e1d71324b88
Sha256: 999aec63f66165c46ad21d1031c21a62dc68f22afbfe66fd48b89f0eeec29ac9
                                        
                                            GET /@covet-pics/covet-pics-widget@0.104.0/dist/covet-pics-widget/p-ae8aaed8.js HTTP/1.1 
Host: pkg.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"264-W2EooMI1gHD+XZBQftKPaBLw8s4"
via: 1.1 fly.io
fly-request-id: 01GDNEGS7H0E7NZ8AM5Y9T929W-lga
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lj%2BbDy8YIxjD5enwQVUILk2a9aky3oDzBTYLN1dDNhX2eITFOgNMRNXZnZyC%2FQoxQt9H07nFhOVTKCp7QRpRyMt8mvCzSBs2g%2FAdpCAmGyfzSqhPMXkngLCGL59b4%2BRx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751338013cfa1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (559)
Size:   75932
Md5:    9d82506ea0a80d94ec8d0ef1e2bc1562
Sha1:   265176824911ec64941f9f60d57509cf9d356a56
Sha256: 657ae475277a4e866673a6cf8df841b96f3d6208ace68df97f15b672021d131b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4183
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:07 GMT
Etag: "63319b83-117"
Last-Modified: Tue, 27 Sep 2022 08:20:24 GMT
Server: ECS (amb/6B7D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /site_media/static/CACHE/js/output.d5b9419cb9c9.js HTTP/1.1 
Host: s.sloyalty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ps.sloyalty.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.26.13.178
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
x-amz-id-2: IhjN+kGPOKBiKJwbWsqCraxyKHqk2u6BTURLO+fLCT2auQyh3n+PJga3hZaLFMdmXKPk6w8x9Pw=
x-amz-request-id: KCPE2YDMQXSK42R6
last-modified: Mon, 23 Nov 2020 09:23:48 GMT
etag: W/"95633eee2534970b3d7f26924c498f96"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5531
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FizovAMUWfPDPjcSPynQWmEn7xP%2BgRDTesP0VMq6QMlIk8u0yTkpN%2FRJZ3h5EssBxS%2BYeen91ciMarxE1KX32xh94jxmiJnk12Exd1h%2FxWX%2FBjMK7kRVIYf7SRTRUUVq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75133802bfb1b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12248)
Size:   77918
Md5:    7d311ce368b571b2257a15f5eb9d33f1
Sha1:   0ee3fd3182625b255b721488e25ecad184561c4a
Sha256: 17bf2dda8dd4d0d13c03c1a271ef1163ad7eb3bdd9410dd3586a7d9555e69198
                                        
                                            GET /analytics/v1/dc.js HTTP/1.1 
Host: sdks.automizely-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.81.142
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
x-amz-id-2: vEyYUyTE9T4B3gqHa9Kn1MrJ6QTPMmJC0Nqg1BOEO2tXuxbn7KZzwfG0F3+dDV+OxRspj7m3AW4=
x-amz-request-id: PDTHY4Z4818GQTS1
cache-control: public, max-age=14400
last-modified: Fri, 23 Sep 2022 08:52:19 GMT
etag: W/"5a6cbde92cbf510667dba105b4f51232"
cf-cache-status: HIT
age: 37
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rW5xJyOxRIctXRQje06TF4GHeQGMxZ%2B773VvGLAhIDcMA2lNG0tkv%2BxlZvSY%2BJfVZjejTYVJDmtfvwAM9T5oLZEgWpEwlsVq774kMd8sZTI%2BDH5PNU5%2FN47bWAx%2FW57bCA06ESJzhb8ijG0p4wyowg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751338037c30b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (41896), with no line terminators
Size:   14002
Md5:    808f6bf67763627bbca1fd71579b2f0e
Sha1:   967d0f31cc03966e6a86b11128a41cc8011b222a
Sha256: 03e49c7937c40ca52e1934408a4164e057242ff2ed84621707ff42e3fdee990d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2684
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:07 GMT
Last-Modified: Tue, 27 Sep 2022 08:45:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /91.90.42.154 HTTP/1.1 
Host: ip2c.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         77.55.216.90
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 09:30:07 GMT
Transfer-Encoding: chunked
Connection: close
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   15
Md5:    5de584e071b72f8c81cba5e3e0e6642b
Sha1:   15f01cee7c504555e25a313b1b79d0a08c28195b
Sha256: 4ee01207987a9d8664e6b4a6cd6efeab89fe2ecd3c4942c7caf7ee809f09632f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Tue, 27 Sep 2022 08:41:09 GMT
expires: Tue, 27 Sep 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 2938
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6391
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:07 GMT
Last-Modified: Tue, 27 Sep 2022 07:43:36 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /shared/wisepops/ada47f52e78b5e387f5a87bb104fca43/349589.js?v=1657711435000 HTTP/1.1 
Host: cdn.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.74.220
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
x-guploader-uploadid: ADPycducJ5DT7oPcWfATNZTLIUl7X8g2YYK4D_9kHXxEzpSMiGBnUDXNxFAkV22acARQMWQTisQYsZ9HqE64vnQHHpPalFHCiNCO
x-goog-generation: 1655228428215991
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 559666
x-goog-hash: crc32c=o9uSkQ==, md5=DXrIsn3Lrq8jwmOIMAXreg==
x-goog-storage-class: STANDARD
expires: Mon, 19 Sep 2022 16:19:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Jun 2022 17:40:28 GMT
etag: W/"0d7ac8b27dcbaeaf23c263883005eb7a"
age: 670247
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X5yNR0%2BWoSbDPld5UfVpFry7gIeOD0kvz1xME7bFmnxjX%2B4G8mxdrBs2dfcb5Etaua9ygchRUJV06E7RdqjhnNiqDC6nm7cBkyXksI9WrAI4MYMBAS%2FgrsntpKZDHgnZSMc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75133802db30b512-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (55220)
Size:   187148
Md5:    50cebfe088ceef2ae756c8f419a0807a
Sha1:   e09ce721e93b6edf4f84530a02e13aa2e67bdb4e
Sha256: 28a1c248097535d520e46990a668afa51bb87c49959c0e8ae356344fe7cde0f3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 1esmNPNoQqzL3Zq9/5luKqKPOtB5qvTI1lCqXDywrc58hh/h7Mzufb2FBt7VblC+GuI7X9wBAaQ6CHE3dfh9qw==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 09:30:07 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            GET /bis/widget/49215_1652154884.js?v=6&shop=burke-decor.myshopify.com HTTP/1.1 
Host: app.backinstock.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.193.36
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
p3p: CP="Not used"
x-frame-options: ALLOWALL
etag: W/"eb52051a79e7d1f494ed563912156c03"
last-modified: Tue, 10 May 2022 03:54:44 GMT
cache-control: public, max-age=2629746
x-request-id: 6aa49d4a-94c4-4646-b7f6-59a57d4e3567
x-runtime: 0.119658
strict-transport-security: max-age=63072000; includeSubDomains
cf-cache-status: HIT
age: 372774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=If4C7iaEmSEj5SHGRDp9BaQADCgoYp0rdgQeZozaqlYizNsj844Q9dhNL3mPPqn5LcGwKFREA1M3IIHQXq%2FGw3Fo%2B7OfcZHGjI7mSOFQFi4Y%2B7e6BqvcrndB3mqhgVywk3c5OE81"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751337fdfbac7717-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32766)
Size:   76568
Md5:    447db98ee40a270b3e5f57b074b75486
Sha1:   0b1acceb1a6227029846bada6a27fff3d1f4c3d9
Sha256: 8fe022db5d431d0f4b0e221dbcddd39662d9d404078a9842ca5960ce80f8f003
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6087
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:30:07 GMT
Last-Modified: Tue, 27 Sep 2022 07:48:40 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ct/core.js HTTP/1.1 
Host: s.pinimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.197
HTTP/2 200 OK
content-type: application/javascript
                                        
etag: "cd5f811dc7c19de8566479150bc37ef8"
cache-control: max-age=7200
accept-ranges: bytes
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1146), with no line terminators
Size:   1146
Md5:    cd5f811dc7c19de8566479150bc37ef8
Sha1:   d17e9c54bce997b95bd0b6fceb0ad936077bbbf8
Sha256: dbcef3b5ce770e8a3e8350473f04fbe627a78fa93a4441a24afec965643733e8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ps.sloyalty.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 482159
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/4t60UoLRRHw HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /site_media/static/CACHE/css/output.1bd79c09762a.css HTTP/1.1 
Host: s.sloyalty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ps.sloyalty.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.13.178
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
x-amz-id-2: yWuinGvkkBEZDJzRyaZaDogZkWL+k9iQkuC/wTPG9px1EAJsArZIyO5xZwMKs3BobUbwVllWcEw=
x-amz-request-id: KJJDDWVHBDNXEMZ9
last-modified: Mon, 10 Jan 2022 08:00:12 GMT
etag: W/"deaf44b84deacbdfb0de9fabfe7cf636"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2DDpOkJDVY7kGJXosOYAoFJJpyRKlKAIY5kANKPUK0w7TN4i8c8GU1apcV%2FmnM%2Bif7JRBIDESCllaJ6si5qU1eag%2F%2BJVsl6FF%2BMYaL%2BHKaywwssXnBJaO2t07a0FhBFY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751338029f95b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   18888
Md5:    144192b56d1e4e450b0fcb23ede3f8ef
Sha1:   b3d1273328c7e66cd769ae72ab1cf0eef6cfadf1
Sha256: e0903560ee36ffb4f2ba5ae729ca1592d13c89d31efb168bcfdfe82e0c00f3f4
                                        
                                            GET /shared/images/wisepops/c.56727/dd947e9e383346fef37fe488bb2f409a.jpg HTTP/1.1 
Host: cdn.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.74.220
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
content-length: 179028
cache-control: public, max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=842474
content-disposition: inline; filename="dd947e9e383346fef37fe488bb2f409a.webp"
vary: Accept
etag: "dd947e9e383346fef37fe488bb2f409a"
expires: Fri, 23 Sep 2022 11:13:01 GMT
last-modified: Fri, 27 May 2022 02:14:23 GMT
x-goog-generation: 1653617663845159
x-goog-hash: crc32c=peDUWQ==, md5=3ZR+njgzRv7zf+SIuy9Amg==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 842474
x-guploader-uploadid: ADPycdvVlDHBjmXicoE4eAiCaa9kHw3lMuwSdhVp5um4Eplz_pnfd_2MQcTuXU6VeuRP9bmuVLEOpNS0RveIN8xo1QuFRZMFyCHr
cf-cache-status: HIT
age: 343026
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7kgtZM3tHdEtOvlYvQmsVXimIEVd5Gna5FYqqdoi%2Fqm%2Fol1TBft84Q7CIDSY7vLwZmOkty2UmSWUAFieCxbqmMlXCgTj9LfoY%2BepDOUiyyR9xUqbyZn3atL39SC50q%2BWQSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75133807b9f7b512-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 2048x1364, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   179028
Md5:    38df2b6adb039255f6527ed7e5aaee5c
Sha1:   516c48364e33fd5932f7733892229cdb2c8d1034
Sha256: a3f458e17c0a2253ab4ab4d74f5386805197a1eee76986d1fd54fd54330de695
                                        
                                            GET /@covet-pics/covet-pics-widget@0.104.0/dist/covet-pics-widget/p-55d3f33f.js HTTP/1.1 
Host: pkg.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"275f-InYHpUyQuScAzez17teDxqioYqo"
via: 1.1 fly.io
fly-request-id: 01GDNEGS57N5Q6ZRX9BX4E605N-lga
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2F0aEVN2YKERoYEbqvUgmhkWZd6aLalzm0FP6jHOGiMLtSgLr52GG4XjINUdfFIJEWR7cJym8EzrILAyffXHolVTBW0aimBUoc8OCaokwgqwJJzrio23hS7o0LKdJYZy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751338013cf71c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9640)
Size:   75396
Md5:    cacde7a7712336d463af6900b1891ce1
Sha1:   06973cfa58763a014af0d4b7c6ddc1c189109253
Sha256: da56e05a06fafcbe21f479bf38d2c114cbbed589d9bd4093f49647246c5386bd
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-4385212-20&cid=1849227820.1664271004&jid=240628986&gjid=1268792382&_gid=1827622639.1664271006&_u=aCDAgUADBAAAAG~&z=1072672368 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.162.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://slotsmanyy.top
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 27 Sep 2022 09:30:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-4385212-1&cid=1849227820.1664271004&jid=1205788629&gjid=2125647688&_gid=1827622639.1664271006&_u=aCDAAUADAAAAAC~&z=1120787770 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         64.233.162.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://slotsmanyy.top
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 27 Sep 2022 09:30:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-4385212-25&cid=1849227820.1664271004&jid=1057008856&gjid=601573753&_gid=1827622639.1664271006&_u=aCDAAUADAAAAAC~&z=1890190259 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         64.233.162.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://slotsmanyy.top
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 27 Sep 2022 09:30:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   3325
Md5:    26465ae3618f94755b0544c677be262d
Sha1:   3e3d14f3a260ca5afd5a67cbbbbfeea05437c081
Sha256: 365fcb863403630fceebf59b03110b5142305987efe69843d2a5cbbe320e83b5

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ps.sloyalty.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:14:12 GMT
expires: Mon, 25 Sep 2023 18:14:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 141356
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ps.sloyalty.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:21 GMT
expires: Thu, 21 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 482147
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /collect?v=1&_v=j97&a=820862559&t=pageview&_s=1&dl=http%3A%2F%2Fslotsmanyy.top%2F&ul=en-us&de=UTF-8&dt=Burke%20Decor%20features%20designer%20home%20furnishings%20and%20modern%20home%20decor%20%E2%80%93%20BURKE%20DECOR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aCDAAEADAAAAAC~&jid=1316246665&gjid=1141031873&cid=1849227820.1664271004&tid=UA-127116907-1&_gid=1827622639.1664271006&_r=1&gtm=2wg9l0WZGBHRP&cd1=055019c4-1175-41b4-b8e0-4a9806d7c87c&cd2=1664271003&cd4=0&cd5=0&cd11=416b279cf6423e23e75ec248a9f05da2&cd12=true&cd15=0&cd16=&cd22=117bb5d4-b3da-46b4-8bf7-7a2eb2ff706e&did=BwiEti&z=1363997060&cssid=295293730.1664271006&css=(direct)&csm=(none)&csc=(direct)&cst=&csa=&csg=&guid=c4c7017a-69b9-0a15-f06b-59bd029f4058 HTTP/1.1 
Host: dev-clickstream.shoptelligence.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.241.26.46
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
content-length: 29
date: Tue, 27 Sep 2022 09:30:08 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   29
Md5:    0691534d4075c46dd00aecc23051f556
Sha1:   63112c2253654e61dda1fce5535f00ff26a8bc22
Sha256: 16f4290dfcd337157c07d43cbd24632e74ef6047e4a9cda0ba6eea48ce400616
                                        
                                            GET /729fe35f1663a359929ebf7801f419f3509fc9fb/static/js/697.js HTTP/1.1 
Host: assets.gorgias.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.29.180
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
content-length: 16857
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31536000, s-maxage=31536000, no-transform
cf-bgj: minify
etag: "27d74bf2db81aa630f9b7608679e4ded"
expires: Sat, 23 Sep 2023 14:24:44 GMT
last-modified: Fri, 23 Sep 2022 14:21:57 GMT
x-guploader-uploadid: ADPycdvqdxlTFVt3v1AOPfXHZYFLQLk2xc7i1KEV8bY7-XZe-e5WyUU0PNbTylv_M8F_GYxH4wA14D9qNoUhB2xuYa3xX8dRLjR-
x-goog-generation: 1663942917863646
x-goog-hash: crc32c=9mjHHg==, md5=J9dL8tuBqmMPm3YIZ55N7Q==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7240
cf-cache-status: HIT
age: 323219
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75133809997b1c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16857
Md5:    b7ea7bcde1672b3f5ef978d203f88c8f
Sha1:   0d8d5db428582d12c971c2b80dcd02c4ee9b2764
Sha256: 9995417944e4ce00753ce8e698ceaa6a81b82ebe93ff61850c0355cda93de6d0
                                        
                                            GET /729fe35f1663a359929ebf7801f419f3509fc9fb/static/js/gcmw.js HTTP/1.1 
Host: assets.gorgias.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.29.180
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
content-length: 626820
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31536000, s-maxage=31536000, no-transform
cf-bgj: minify
cf-polished: origSize=626823
etag: "25d6206d4ffab44ddbfa32302217adad"
expires: Sat, 23 Sep 2023 14:24:45 GMT
last-modified: Fri, 23 Sep 2022 14:21:57 GMT
x-guploader-uploadid: ADPycdvIYUXADsBoUQDZJoCAV2otnacdZYRDxOc_NJtvdoOcdQpl0K-05yCxhC9rds2z-fsquh1h4kqjfzc8gkCf_hLD
x-goog-generation: 1663942917041764
x-goog-hash: crc32c=vMtwtA==, md5=JdYgbU/6tE3b+jIwIhetrQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 159416
cf-cache-status: HIT
age: 321913
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75133809997d1c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   626820
Md5:    c14dd08b797221edf0154d465abb189b
Sha1:   6f0cd7aed3e4d6e4bb8e6d862eaee834ccd17576
Sha256: 088b1f095fc9416b3f46d39236fc40fdeff6a034458cddb0a03af523690e38c4
                                        
                                            GET /@covet-pics/covet-pics-widget@0.104.0/dist/covet-pics-widget/p-62511a7e.js HTTP/1.1 
Host: pkg.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"812-ksTvMOAPpjdX38KYYoG8yzXUM68"
via: 1.1 fly.io
fly-request-id: 01GDNEHE6EDV4DNTYRRPX2GC4H-lga
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ifpktQVHfnKWKT1vKMrfhe%2FIa2un0oOoXyifqK79wsDMK290M2%2BJ2JbQXx49huZyU6GKVX8gJak2bIlD%2Fws12PLApUv2MPiLaANZv0Zpk5YmRzs0ENvUhRWaq%2By0qGqm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751338065a3e1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2013)
Size:   1492
Md5:    73127f437702a5aed573184e3ae49cdf
Sha1:   471d84830fa51a98527898a826c478fd3903c570
Sha256: cb8eb5054de56f5377456a19af1379a19a6af58583f92b5e91770c107955c03a
                                        
                                            GET /site_media/static/CACHE/js/output.d04c8c26e1c3.js HTTP/1.1 
Host: s.sloyalty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ps.sloyalty.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.26.13.178
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
x-amz-id-2: suP/w+ng0tT+gIO21WjrYZxOb9PxtVEtkcedoQMpyP0/7kVhTFZp6AReOC6bjB9vbvkkP0woJsY=
x-amz-request-id: XN5XV10EQWB2G36M
last-modified: Tue, 22 Mar 2022 07:36:06 GMT
etag: W/"fae7e8fbee9016b826fe9b18daa76c76"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f5PApa9vXqrxNZLwlMcqHLJDYVFFRBUbrHROXToDVykBzSgOnK%2FMHOziP2BwiRcaph51dsGa6pguvX0S9hqPgMwfR1vWkO64RCfN0lK9SZTYAIIgZFX3ETDBgqGeHY2C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751338029f94b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2743)
Size:   97413
Md5:    c7a0d1d04822b41c4190922377ebe488
Sha1:   8f2ed8871db2628c86a0f6f902d87bcd6dc5e017
Sha256: f0f85cc3c7d2284cbf507a42c3a593f0deecf205ef70d523181489ec0e7ad85d
                                        
                                            GET /ssw-assets/core-eb95d031c1.critical.css HTTP/1.1 
Host: static.socialshopwave.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 23 Sep 2022 09:15:40 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 26 Sep 2022 18:47:10 GMT
etag: W/"eb95d031c1fd1e55b462b649c9925aed"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eEBoNGhH9Bc_oXEfbzD-gZskQZwJY1npkarNQ4IqkRLjBfhE-xqPNQ==
age: 53056
cache-control: max-age=31536544
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   58311
Md5:    57194bf3c1b2f44d7f6c47a3f1825d39
Sha1:   45dc4f795d9202bf41ae587e15dd5a7ccb9ee76e
Sha256: 9706b1c94322073a8d1a1906ad56ea17f4655daaa23b9b4b257d6ecfc4686c18
                                        
                                            GET /api/v1/embed/212536 HTTP/1.1 
Host: shopify.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Origin: http://slotsmanyy.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
status: 200 OK
cache-control: max-age=0, private, must-revalidate
access-control-allow-origin: *
vary: Origin
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
access-control-max-age: 7200
x-xss-protection: 0
x-request-id: eab72e14-597c-49dc-86f4-1409c552b1ee
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
x-download-options: noopen
p3p: CP="Not used"
etag: W/"c7231c3ebd419272ffc03a0e9a565cd6"
x-runtime: 0.020613
x-content-type-options: nosniff
access-control-request-method: *
x-powered-by: Phusion Passenger 6.0.7
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Zmi1%2BMXqMcX8Ll0hDmY6x%2Fo3GC%2Fi4Vwc8smxU7OCmgtrGumvq7qcuJTtb%2FUBc7YaNEFnBXIUfg9qP1eSLOBVc%2FCf%2Ftp1UiYDL5u8NkohZGoTn3dNrgERyiPmnC0ZELXHau8XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7513380a0e081c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (13489), with no line terminators
Size:   27568
Md5:    8adf088e0d2d0b25e0e2506a15fd3980
Sha1:   a27bf7635cb19c2765829feead3bd1be6c1cafc8
Sha256: 95c988d2aef57f291cabe07137979e6c49d8dc29133e0d4927b7c00cf9334a1b
                                        
                                            GET /@covet-pics/covet-pics-widget@0.104.0/dist/covet-pics-widget/p-6cd1c290.js HTTP/1.1 
Host: pkg.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:07 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1c7e-D/Hlycvjc91l8GmdhClWVpH3Z8g"
via: 1.1 fly.io
fly-request-id: 01GDNEH86WQZF0DEHATKGE20XA-lga
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pMeh%2FhpPJeiYNfkfe09jUIAatCSA2ua8mL0WdRPQAVv9Ojx6sx6ul%2BY3z2BxFp0kVl%2FqFtcRlcL%2BkhBEaO177BHY2ndrOFdOy4AYPEMjQCgm%2FP%2BTxi6gT82e0LkpiVoM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751338065a3c1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7241)
Size:   129778
Md5:    2375bce4fdeb1da628aea33df4c5c7ea
Sha1:   a35342ee0e9cb1f5881a94f8e811964697b0f57e
Sha256: b8d9a7261dfec0d035ac994f84db7246592f89bc18394147770c78e94b7d452d
                                        
                                            POST /api/v1/beacons/gallery_view HTTP/1.1 
Host: shopify.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 37
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.1.14
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
vary: Origin
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
access-control-max-age: 7200
x-xss-protection: 0
x-request-id: 163bf4ba-6c9c-4fbb-9745-19b6b2f46429
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
x-download-options: noopen
p3p: CP="Not used"
x-runtime: 0.003597
x-content-type-options: nosniff
access-control-request-method: *
x-powered-by: Phusion Passenger 6.0.7
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ejwHFnrJhHyBqNNwhgb6gb9aN7dkxfrI3JZ7tuSXhcwCMKnZvKitJffC8V7ciA8yGv2QVlRdBs4KH7rUV5WcW%2BEROhoJ6obK7%2BuOOdoq6hFtCvLqrCWk5SBleQQ4usaNK%2Bhj3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7513380bfc34fabc-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   371083
Md5:    c80b7455acf99961094bc1acd942bd5e
Sha1:   d0f71ae9c95d44dc97e971fb82ab08d4ca8ae8dc
Sha256: 2025a9adde939f53783d691409e2690a90260ce7d7ce2fcce4c8b44524e2f447
                                        
                                            GET /get-loader.js?v=1&site=iT3iAvEcwC HTTP/1.1 
Host: loader.wisepops.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://slotsmanyy.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.74.220
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 27 Sep 2022 09:30:06 GMT
vary: Accept-Encoding
x-cloud-trace-context: 5f147177897787b10b1bf2dd88677a37
cache-control: private, max-age=1800
cf-cache-status: EXPIRED
last-modified: Tue, 27 Sep 2022 05:01:38 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAcRBgj9t88l0SanhT%2F1695GT5WKkmiyoUr6YV1BSrcjxFCwZuufL7yNry7r9S%2FkA9NUlEzpdlyF6Om9qfkMkomoxYJnNAj0OYTk0agncmpsDEHZJ41UuXmxsP%2FSJgoe0orTZC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751337fc7954b512-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (37605)
Size:   108607
Md5:    474f7046dcf30374e93544cafc8359f3
Sha1:   ae2538930e6f9d55eb32ecf025dcf2b46a932016
Sha256: 00434a48df6be8b1570a7cdbd7526e0114d828f9415688c73e4cfe91c9c74595
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7BFD8C23E0F98D9AD626EBF3E1E7C60CDE84035B5D5EAED09484FBFAF14ACF0C"
Last-Modified: Sun, 25 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6642
Expires: Tue, 27 Sep 2022 11:20:51 GMT
Date: Tue, 27 Sep 2022 09:30:09 GMT
Connection: keep-alive

                                        
                                            GET /ssw-assets/core-e375b9d670.library.js HTTP/1.1 
Host: static.socialshopwave.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 16 Sep 2022 09:46:12 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 07:39:21 GMT
etag: W/"e375b9d670798ded5a0300c0e5b17e9c"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RFIrIUc1dsIFjtj7YjAU80bh7CuCIk6kru1gulSYYzJ3YAvzlTETMg==
age: 8559
cache-control: max-age=31536544
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   100742
Md5:    d786c06e2b08ac1e9dc9815d25a16903
Sha1:   f8a85d00ef023b6ffc4d17cfc3d3eb6ae49b830e
Sha256: 310396eb657f4ac733ff276ad87622deff315b8f048e1f557c22ca31806264ef
                                        
                                            POST /analytics/collect?v=2&gtm=amwcp1&sr=1280x1024&ul=en-US&cid=1849227820.1664271004&dl=http%3A%2F%2Fslotsmanyy.top%2F&dr=&dt=Burke%20Decor%20features%20designer%20home%20furnishings%20and%20modern%20home%20decor%20%E2%80%93%20BURKE%20DECOR&sid=abb26a54-9750-4d42-9844-c8035e709447&_psc=as&en=page_enter&ep.kit=3.3&epn.event_time=1664271006014&ep.platform=WEB&ep.user_id=&ep.session_id=abb26a54-9750-4d42-9844-c8035e709447&ep.log_id=c097ec08-248b-4df3-ba87-ce18a5e7cf60&ep.environment=production&ep.product_code=automizely&ep.collector=GTAG&ep.0app_platform=shopify&ep.0app_key=burke-decor&ep.0app_names%2B=%5B%22aftership%22%5D&ep.0__organization_id=&ep.1page_referrer=&ep.1page_location=http%3A%2F%2Fslotsmanyy.top%2F&ep.1page_id=34206.14420356&ep.1page_type=home&ep.1page_sn=P00001&ep.km=app_connections%2Cpage HTTP/1.1 
Host: www.automizely-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         34.96.97.208
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: _am=deleted; Path=/; Max-Age=0; HttpOnly; Secure; SameSite=None
date: Tue, 27 Sep 2022 09:30:09 GMT
vary: Origin
access-control-allow-origin: http://slotsmanyy.top
access-control-allow-credentials: true
x-kong-upstream-latency: 18
x-kong-proxy-latency: 0
via: kong/2.5.1, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7BFD8C23E0F98D9AD626EBF3E1E7C60CDE84035B5D5EAED09484FBFAF14ACF0C"
Last-Modified: Sun, 25 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6642
Expires: Tue, 27 Sep 2022 11:20:51 GMT
Date: Tue, 27 Sep 2022 09:30:09 GMT
Connection: keep-alive

                                        
                                            GET /@covet-pics/covet-pics-widget@0.104.0/dist/covet-pics-widget/p-b0432848.entry.js HTTP/1.1 
Host: pkg.covet.pics
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://slotsmanyy.top
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.68.98
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:30:08 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1d473-sEMoSL6AYI56pfiGynU+bju1PNI"
via: 1.1 fly.io
fly-request-id: 01GDNEHKHQYG73TBGS7WS5BEHV-lga
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T4aNokNyrzRjt476Gete6sh1ryZriFkHq0i6dy0HBy%2BJXGQ7lggw1HhktCv5Miqa6SDA5Q1F4vrlQUBeXluSxm5TgwMdKAwWX4mDWrsXm2ZCin4SxW%2Bgn4PWR%2FRLDKAv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7513380c18131c06-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26855
Md5:    0d4c74359700f99fd3e54e97f2e01623
Sha1:   0044c1c3f764c5b9200960958657a69fd728eb1f
Sha256: 57d63f7ecad2f22b36d7effea142cdbf61f3eaaf8300ad2fa5f64cbb837e2ef7
                                        
                                            GET /j/HSFMMSVBGZCJVLMJ6TTL6R/roundtrip.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.72
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:07:03 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: IY17iysKuuCV1q5cDYMKNRg_JTa_WBaM
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 27 Sep 2022 09:30:09 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"c9e4ba0430fa786aff9ecf1565be9986"
Vary: Accept-Encoding
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
Age: 802
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w0QqzEqMtUMgPk4OYQmeyOTn0gNM3bNS_hXCcrCzLCTMSSOOpJ6oMg==


--- Additional Info ---
Magic:  ASCII text, with very long lines (1326)
Size:   23308
Md5:    f136a32d8dc4627535ad4006f0dc3017
Sha1:   36b2223427df2727dffe6af92e2d48b8ae00eec4
Sha256: 11258705958826fef2a4eb97853d2889c6e25ed4e1c086353ee79dd7d5bc9916
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/291-537-5388/?random=1664271005715&cv=9&fst=1664271005715&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fslotsmanyy.top%2F&tiba=Burke%20Decor%20features%20designer%20home%20furnishings%20and%20modern%20home%20decor%20%E2%80%93%20BURKE%20DECOR&auid=104798568.1664271004&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:30:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1094
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 27-Sep-2022 09:45:09 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2426), with no line terminators
Size:   1094
Md5:    25d09b478862dccc17d733b86d48943c
Sha1:   25b2127279bed44655ef568eeb420578a28cda87
Sha256: 26eca3051b5049b11ff0763732b32eb3f12e0571ddaee39e31056cff5c3f269c
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-4385212-20&cid=1849227820.1664271004&jid=240628986&_u=aCDAgUADBAAAAG~&z=1410687401 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:30:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-4385212-1&cid=1849227820.1664271004&jid=1205788629&_u=aCDAAUADAAAAAC~&z=796827929 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:30:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-4385212-25&cid=1849227820.1664271004&jid=1057008856&_u=aCDAAUADAAAAAC~&z=288134991 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:30:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ct/lib/main.8f82d377.js HTTP/1.1 
Host: s.pinimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://slotsmanyy.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.197
HTTP/2 200 OK
content-type: application/javascript
                                        
etag: "a6d88dfc00c49311bf8bfb0c93dd49d4"
content-encoding: gzip
accept-ranges: bytes
content-length: 18620
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (53772), with no line terminators
Size:   18620
Md5:    a6d88dfc00c49311bf8bfb0c93dd49d4