cdn.cloudfastin.top/image/2022/11/26d75392974a709203e226612d014672112e2315ae0e86d927da72447e3a851d.gif
200 OK 200 kB URL GET HTTP/2 cdn.cloudfastin.top/image/2022/11/26d75392974a709203e226612d014672112e2315ae0e86d927da72447e3a851d.gif
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type GIF image data, version 89a, 966 x 200\012- data
Size 200 kB (199938 bytes)
Hash 23928f70bbde84bf35fc4cd28ffca6ca
c5d376ffdace8bb0390cba86955761ff7ecb4226
10df6d94566c5850e8db4fbd6f3e40ffcf0804a908f669d5346d157847d3fb0e
GET /image/2022/11/26d75392974a709203e226612d014672112e2315ae0e86d927da72447e3a851d.gif HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: image/gif
content-length: 199938
cf-ray: 8316424e3d9b56c6-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfjtCGtyoTI831SEXovy7R5x-aJdRV_HsQesDqGFoaDQ:23928f70bbde84bf35fc4cd28ffca6ca"
last-modified: Mon, 14 Nov 2022 15:19:58 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=13+208 c=0+0 v=2023.9.8 l=199938
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
priority: u=1;i=?0,cf-chb=(820;u=3;i=?0 17898;u=5;i=?0)
warning: cf-images 299 "animation too large, passing through unchanged"
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
statics.cloudfastin.top/fonts-ttf/v1/Open-Sans.woff2
200 OK 2.3 kB URL GET HTTP/2 statics.cloudfastin.top/fonts-ttf/v1/Open-Sans.woff2
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 2344, version 1.0\012- data
Hash a47b96672d775073beaf93b7e7ffff54
991c4f651960502d516ca863f382dc9793b409b6
71232fd86d1de3acb48b8b0d9297f8d861ecdaf7a468a28a7ce79ce5b57ccea7
GET /fonts-ttf/v1/Open-Sans.woff2 HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.happyleave.com/
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: binary/octet-stream
content-length: 2344
x-amz-id-2: Sj3p7BDtINiaiULQ7S0ihqKsD9ejvot7+UZwlEZE9kQhsXPif+wMYEiINeCK4ZOq4h2z5cXpemU=
x-amz-request-id: 63VJ98Q2GS5S71BK
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, DELETE, PUT, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 20 Sep 2022 06:24:21 GMT
etag: "a47b96672d775073beaf93b7e7ffff54"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: REVALIDATED
expires: Wed, 06 Dec 2023 21:30:50 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 8316424c3c30b51b-OSL
X-Firefox-Spdy: h2
o467009.ingest.sentry.io/api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7
200 OK 2 B URL POST HTTP/2 o467009.ingest.sentry.io/api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerDigiCert Inc
Subjectingest.sentry.io
Fingerprint60:82:0B:58:64:CD:37:FD:3F:C0:84:4F:0B:69:CF:58:05:15:97:9A
ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7 HTTP/1.1
Host: o467009.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.happyleave.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 403
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
o467009.ingest.sentry.io/api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7
200 OK 198 B URL POST HTTP/2 o467009.ingest.sentry.io/api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerDigiCert Inc
Subjectingest.sentry.io
Fingerprint60:82:0B:58:64:CD:37:FD:3F:C0:84:4F:0B:69:CF:58:05:15:97:9A
ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 478b411c59eb87249bea32cf7c7be5d2
023907c62eb55758905bb3c0e640b5b204ae0652
bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
POST /api/6247921/envelope/?sentry_key=8cd10bc007dc4facaae097f3cdfc5e49&sentry_version=7 HTTP/1.1
Host: o467009.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.happyleave.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 10519
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
server: nginx
date: Wed, 06 Dec 2023 17:30:51 GMT
content-type: application/json
content-length: 198
retry-after: 60
x-sentry-rate-limits: 60:transaction;profile:organization:transaction_usage_exceeded
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
statics.cloudfastin.top/fonts-ttf/OpenSans-Regular.woff2
200 OK 18 kB URL GET HTTP/2 statics.cloudfastin.top/fonts-ttf/OpenSans-Regular.woff2
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 18168, version 1.6554\012- data
Hash b2efa9125f8f10784033e1fc5ecdb3f9
a899f76efa05e137f6c4597ee7a290e6b67a49b1
abace860646cf76892a2c82f7c9f68a8807644d47bd4404759dced06a767e3b8
GET /fonts-ttf/OpenSans-Regular.woff2 HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: binary/octet-stream
content-length: 18168
x-amz-id-2: QPymj1CHnL5H34E1LNejVEnwdGcwGtJwNoMAAKGKYuojopVoJ/8sTK5q2UmLZGDPqkVF83rIHgk=
x-amz-request-id: RT6T2WDZYRQSJZDK
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, DELETE, PUT, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 20 Sep 2022 06:23:16 GMT
etag: "b2efa9125f8f10784033e1fc5ecdb3f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: REVALIDATED
expires: Wed, 06 Dec 2023 21:30:52 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 831642597efbb51b-OSL
X-Firefox-Spdy: h2
risk.xriskops.com/fp.js
200 OK 4.3 kB IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
File type gzip compressed data, from Unix\012- data
Hash b4d93bcb9238aaccc59f0938aaa4ab57
7daeb64e20282524237e6487bbb0d1b0bc0a2003
9ce5f74987911c5ccc55e570a093eefb95e6d003b4cd19b8360f92a3c1ca6f2b
GET /fp.js HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 05 Dec 2023 08:32:23 GMT
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: acw_tc=0bc1599a17018838505021519e2c0b327f00bbff1b4841f0efa292ddd43494;path=/;HttpOnly;Max-Age=1800
SERVERID=e1f72af6c8a01604a1fd3b2589ae41c6|1701883850|1701883850;Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=miCHu0W1BO16TJH0Y5qT9FUvGrAJBUqwLbMotMVfwUlnB7jM06CNkqklZjPvCrDxb7IaQFvuK19v6xA73Wb9eKKi47jxElCAjeRppzC24xknfcbLSbmaZNsjQJpCLfeYIs%2BDkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83164250d8ad067b-OSL
alt-svc: h3=":443"; ma=86400
risk.xriskops.com/sslcsid.js
14 kB URL GET risk.xriskops.com/sslcsid.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
File type gzip compressed data, from Unix\012- data
Hash ab215101b6a198e62beaecf40498073d
7772ba4aa49512a7353b1e3d8b8e307c6b6314f0
19a3a7a50f680ff727030f11408883fba1c0a1555e831551fd5fc60744e87096
GET /sslcsid.js HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: BYPASS
set-cookie: acw_tc=0bc1599817018838497866553e9a750795889d1ab9c9140e40857fdc2fc47d;path=/;HttpOnly;Max-Age=1800
SERVERID=fe5e271a934cfe7d1b04be42b26ab204|1701883849|1701883849;Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R6cxA%2BhOhi0idB9UzDj0gO%2FSn%2F%2FXOWfusSazJyQhwpyMlzSDuQ0UeHMZgAqbBXuF8O1B48yc4wFc7qDMxk9zppUr7iF58H1f6j5XqNdPEMvLjg0FDQnf8MCGLZyYcZWhQrtMrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c699e56af-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gotopaynow.com/api/logger
200 OK 0 B URL OPTIONS HTTP/2 www.gotopaynow.com/api/logger
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectgotopaynow.com
Fingerprint65:43:35:85:36:29:DE:04:DC:AE:FC:12:00:39:11:1F:10:D6:32:FE
ValidityThu, 12 Oct 2023 06:39:54 GMT - Wed, 10 Jan 2024 06:39:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/logger HTTP/1.1
Host: www.gotopaynow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-app-name,x-requested-with
Referer: https://www.happyleave.com/
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
access-control-allow-headers: content-type,x-app-name,x-requested-with
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316425f8b8eb523-OSL
X-Firefox-Spdy: h2
statics.cloudfastin.top/js/element-ui/2.13.0/theme-chalk/index.css
200 OK 35 kB URL GET HTTP/2 statics.cloudfastin.top/js/element-ui/2.13.0/theme-chalk/index.css
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d28b24857449b697847be95be3d3701d
a1bf7e57ae35d2d725ac70df613592688be57111
c954d6f71089537dd993b791472192bd20cdbe29cd71dfeb8adf8dc24f61103d
GET /js/element-ui/2.13.0/theme-chalk/index.css HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: text/css
x-amz-id-2: mD9H2vsxG0mrC0DCEXJhBzY1BndRULG3amOwnZW3NsU2Jv/s6pr+gmE/+TzkYFbII0uvbZBp4UY=
x-amz-request-id: PK7YM12177T5V3BD
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"d28b24857449b697847be95be3d3701d"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 4554
expires: Wed, 06 Dec 2023 21:30:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c2a6556c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
statics.cloudfastin.top/fonts-ttf/v1/Open-Sans.woff2
200 OK 2.3 kB URL GET HTTP/2 statics.cloudfastin.top/fonts-ttf/v1/Open-Sans.woff2
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 2344, version 1.0\012- data
Hash a47b96672d775073beaf93b7e7ffff54
991c4f651960502d516ca863f382dc9793b409b6
71232fd86d1de3acb48b8b0d9297f8d861ecdaf7a468a28a7ce79ce5b57ccea7
GET /fonts-ttf/v1/Open-Sans.woff2 HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: binary/octet-stream
content-length: 2344
x-amz-id-2: Sj3p7BDtINiaiULQ7S0ihqKsD9ejvot7+UZwlEZE9kQhsXPif+wMYEiINeCK4ZOq4h2z5cXpemU=
x-amz-request-id: 63VJ98Q2GS5S71BK
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, DELETE, PUT, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 20 Sep 2022 06:24:21 GMT
etag: "a47b96672d775073beaf93b7e7ffff54"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 2
expires: Wed, 06 Dec 2023 21:30:52 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 8316425ffa1ab51b-OSL
X-Firefox-Spdy: h2
risk.xriskops.com/md5.js
200 OK 2.0 kB IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
Hash 08f56b47ad22826a8eaf920fe61b5872
d279930da6753429de0339c9551b6ddb063242f0
b5d6827176b8835867bff2f6b2f43614ab3edd65bbdfb97387b8e4ab5db54654
GET /md5.js HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 05 Dec 2023 08:32:23 GMT
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: acw_tc=0bc1a04317018838504975548e2bb81423405947bd08e6f58d231d438f557a;path=/;HttpOnly;Max-Age=1800
SERVERID=505d221330c1538b9c845e25daf5e2d0|1701883850|1701883850;Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ijNFN3Cs%2F7zL1hjqz65Zwpg9729OvhjyoHFtgduat%2Bl076ZJmT9ognUJFUjGXSUq%2FqG7TtimUTkjyNTwCzsixJT8dN9I7vfTgEdL5B75G5ZUylNd6JwUoV5UxwdSmqqWDISs9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83164250d8ac067b-OSL
alt-svc: h3=":443"; ma=86400
pixel-conversion.apps.seabroadnet.com/api/v2/fbcapi
200 OK 0 B URL POST HTTP/2 pixel-conversion.apps.seabroadnet.com/api/v2/fbcapi
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerLet's Encrypt
Subject*.apps.seabroadnet.com
FingerprintE6:47:A0:FE:EE:1B:3B:3C:8A:22:36:54:D6:48:BA:42:10:CE:EB:0B
ValiditySat, 28 Oct 2023 07:51:17 GMT - Fri, 26 Jan 2024 07:51:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/fbcapi HTTP/1.1
Host: pixel-conversion.apps.seabroadnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 542
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:54 GMT
content-type: text/plain
content-length: 0
access-control-allow-origin: https://www.happyleave.com
access-control-max-age: 86400
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Lang
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8316426949a4712e-OSL
X-Firefox-Spdy: h2
statics.cloudfastin.top/static/v1.41.48-h.21/store/js/common/themeBasic.71a049.js
200 OK 199 kB URL GET HTTP/2 statics.cloudfastin.top/static/v1.41.48-h.21/store/js/common/themeBasic.71a049.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 199 kB (199346 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/v1.41.48-h.21/store/js/common/themeBasic.71a049.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: CiRarkmasmMOLjfq1i0rH/SS+dz4w472wk1SQVtlqARwvWaYURn4O+0lQng+Og/z1Ay5qKNLkE4=
x-amz-request-id: XEEBR0E2MJBPJ7RJ
last-modified: Tue, 05 Dec 2023 03:50:41 GMT
etag: W/"dcc1cb1f16777923ec449724325ff4b9"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: null
cf-cache-status: HIT
age: 118080
expires: Thu, 05 Dec 2024 17:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c5ad756c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
statics.cloudfastin.top/static/v1.41.48-h.21/store/checkout/js/app.6e34bd.js
200 OK 593 kB URL GET HTTP/2 statics.cloudfastin.top/static/v1.41.48-h.21/store/checkout/js/app.6e34bd.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 593 kB (592845 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/v1.41.48-h.21/store/checkout/js/app.6e34bd.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: aT5Vcluvl75YIszyNUiGy+LdVujkCKJeMgBkyIyK6vVjbixyZjbgVqC4Qlr7nHKchf9ss1io4IdyfXzkK0ZvFA==
x-amz-request-id: D4K2F1MKGRBMEEKC
last-modified: Tue, 05 Dec 2023 03:50:38 GMT
etag: W/"d495e89c41472f95695d320c441ffb19"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: null
cf-cache-status: HIT
age: 117885
expires: Thu, 05 Dec 2024 17:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c4ab756c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.gotopaynow.com/checkout.js
200 OK 866 kB URL GET HTTP/2 www.gotopaynow.com/checkout.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectgotopaynow.com
Fingerprint65:43:35:85:36:29:DE:04:DC:AE:FC:12:00:39:11:1F:10:D6:32:FE
ValidityThu, 12 Oct 2023 06:39:54 GMT - Wed, 10 Jan 2024 06:39:53 GMT
Size 866 kB (866209 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /checkout.js HTTP/1.1
Host: www.gotopaynow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 02 Dec 2023 20:36:35 GMT
etag: W/"d37a1-18c2c3f4c7f"
cf-cache-status: HIT
age: 10126
expires: Wed, 06 Dec 2023 21:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c691bb523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.happyleave.com/api/statistics/track?event_name=page_view
201 Created 0 B URL POST HTTP/2 www.happyleave.com/api/statistics/track?event_name=page_view
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/statistics/track?event_name=page_view HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 1254
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Cookie: XSRF-TOKEN=eyJpdiI6InpweWZFSGxTalFmNExEdTJvdFdHZkE9PSIsInZhbHVlIjoiRDFnZ2plNGxjTUFrNDNjM0JtNDNiXC9jTWJQYnE0YWVON2NEbTcrVkpVVnR5cXh5WEZPUE5aQ0s5VGM0NFRDcFl0eVcwZmNiSzlya1ozT3h2eHlUdFJQSGNmK1RHemsrSlJSRSt0Tm9RWW8zcVwvallMZ05WSE14KzVVZ2ZiRUt2byIsIm1hYyI6IjY4NWEzNzUyZjkzNjZkODJiNWI4ZTc4MzhmYWNhN2U3MGY4YzgzMmQxMDM1NDhlZDZlMWM2OTA1NmVmYTZiOTcifQ%3D%3D; _secure_shop_session=eyJpdiI6InQ2ajEwTGFiZHh2d0N6T2xJN3M4blE9PSIsInZhbHVlIjoiVFQrMDhqTUlZSkNSSTN0RVJDcm91YzR5bWZCZDM1cVl3TG5SQWJ3QU5cL2FvcVFiXC9XQ0xYV1dRTGVxNGhIcld1bGtOb2pOcXhzelI4WnNETHlPVjU4NHh0VzFjTVczd08yVzFlN2dvbWw2OEE4aHRjMHhCdUlrNFU0U1IraTV1byIsIm1hYyI6IjkwOGM5Mjk4NjRlNDNiYTg0ZGUwYWZmMzU5NDEwMGU2ZGZlN2I2ZGZkNmEwYWZhMDA4ZDhhZjg0YmVmZTY5NjIifQ%3D%3D; XCookie=1584edbfd5bc85abddd6ce167ff61443; XCookieTime=12/6/2023%2C%206%3A00%3A57%20PM; XCookieNumber=1701883857160jcoh33we; session_uuid=c6199420a54a41f7972843841ac1d0a65z5sWayW
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/2 201 Created
date: Wed, 06 Dec 2023 17:30:53 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InEwUWNEVUFZMWhhaTVcL0lzRG96Nk13PT0iLCJ2YWx1ZSI6IlZqS1FKTENybG1nWVo2bWI5OGlRMmtXUFpqMUNcLzdzMmlOYTRWck9kMFRwZHg2WGlZXC9UWjhBNzFXVGg3YVYweTUrRnlLUlcxZkdvZnlNS1FLWFNDZ2I5V0ZpWlFjUmx4dkQzY3RJdVdXU2JlKzhvNE1yRjdtdktkZFYyc0pobmsiLCJtYWMiOiI2ZTEwZTcwMDM2NTE3ZTRhZjQ2OTcwOWFjODBhOWMzNzBjYmM3ZGVkZDgxNTUyZWYzYzM4ZmJhNWNlZjJmMDNiIn0%3D; expires=Thu, 07-Dec-2023 13:30:53 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IlZucnVxTTg4R3l1T0FSdmtycHo3Wmc9PSIsInZhbHVlIjoiS1c4dXgxdTVGZWhZbGtIdjVOVUhFbXdreUFEaTlrVE1CSHhuR0dtVTJlTFViRTV5UkJyUU4rKzMrQlJ4V1M0eHdKdWlvWVZBalV3XC9JTStJcktGTEl0ZzVvYWgwdDQzYTBSZXRIbUFJa2ZHQnFpSGozNjlFS09rT1VHaUhmdzJFIiwibWFjIjoiYzlhZGRkMTUwZWU5NWE5MmE5MzFlOGMwNzg1YTJhYWY0NWNmN2Q2ZDllNTE0ZmU1ODk5NDhjYWM3OThmMzBiZiJ9; expires=Thu, 07-Dec-2023 13:30:53 GMT; Max-Age=72000; path=/; httponly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 83164260fae056c5-OSL
X-Firefox-Spdy: h2
www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
200 OK 219 kB URL User Request GET HTTP/2 www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
IP
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (12449)
Size 219 kB (218994 bytes)
Hash 930f6df4c3ba41e9e22b05a6a5290ecf
ee7b44ca471e99f2f53ced15b1369483d8119651
c0defdc93f972a4c9bab41600e59e3be278de3d2dd9eeb5c08e1d0022078e5f3
GET /checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjlzWm1LaU1XbGlwZWZkXC9naURcLzRHQT09IiwidmFsdWUiOiJRZVVaWW1OWGhBWERZdTcza1FyUGZESVN3ZUNoOWZ3WlpPQ0JZcURyQVA3NktwS1RPWTlHd2xKekxKTFpJRjdSRnJybHNXKyt4Z2piZitpY0dDeE5iaE5hc0ZrZ3d3QXd5MVJSUEJsOGx0WnF3MUlDY2ZIZkcxVEFJQjIzSGdzXC8iLCJtYWMiOiI2NGJlYmFmNzA3ZTk1NDVhMzBmZGRjNjk1NDZjNjI1NTYxMTczNTBhOTZmMDBhZDFkNmM4ZTdiMjUzYWI0OGY4In0%3D; _secure_shop_session=eyJpdiI6IjEwWlwvRDc3K0I5T0E5a0wrczR3b2JRPT0iLCJ2YWx1ZSI6IkcySmlrTUF4YWZ1eE81QzlOYzNQZ2ViTVhBK3NlRE16WDdWWXlub0hXZkxQRzlsUjA0alltbGM0Q21mWlhEQjJvU0RXTTFqaVVydGRQVWQ5WUcrbUJ4VWtLMEIwVDgzOUhJTEN3STQ3N2kwejduTTdzZG1rcG1CTVNWbGhzMlNuIiwibWFjIjoiZTljYzNmYzNkYTFmMTJjMjIxNzk3MjI1ODAyMjliZTVjZGE2Y2ZjYTdjNTFkNjM5Yzg1ODhlOTMyZDkxODc4MiJ9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InExMG00TlwvYXhwdWRTWGhwbGJKbkF3PT0iLCJ2YWx1ZSI6InhFTGhJR3JtYzZBQ2dRRzhGazhwUTFuemdna3hadERpNnNLSVBobVUxMTZuOWxCVER4ZlI5WHRoUlJkRHlZZExvcjczeFF2ZXBuSENEajlsblltWkRtZHltV1FPYzkwZmlFcUN0Sno1dE95M0Y2WTFZTnlQQ3NKWlJNVUZWNmZOIiwibWFjIjoiNzlhNmQ5MTYxNGMxOWE2YzljMmY2YjM1ODg5ZWFhNzEyZWMwYzJkNTIyNDM0M2M5NDlkNTNlNmUyNTNmOWQxZiJ9; expires=Thu, 07-Dec-2023 13:30:49 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IjRyMUhibHFvSTRvZzNESVBzelZPWUE9PSIsInZhbHVlIjoidno1VVBHYk5ITGJwVW55SmFib3F6MmlkamR2MGVKU3lxa2UwU2U0VHN5K3NWOHZ1VmtjYzZCWDl6MWRQXC9tU0tkWStZQ1RcL3BBcGc2cnoweFUzZkUrWWdQVFhSMVN1eW1sWExLYUdHTFwvbEU4RTU2emNKakw2MTZsdUZIU1JrQXgiLCJtYWMiOiJmOTg1NWZiMWFmNDUzNDVhYWQ0MGZkNjBjOTkzYzY0MTg3NGJjN2JkMGU4NTIwNjAxMDRkNWY5ZGQyZGM4OGNmIn0%3D; expires=Thu, 07-Dec-2023 13:30:49 GMT; Max-Age=72000; path=/; httponly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 831642460c3b56c5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudfastin.top/image/2022/10/0d92dca29896de5ad549f4f9a6c8f722ce1e9e57ffb757b142a14595266b837a-100.jpeg
200 OK 3.2 kB URL GET HTTP/2 cdn.cloudfastin.top/image/2022/10/0d92dca29896de5ad549f4f9a6c8f722ce1e9e57ffb757b142a14595266b837a-100.jpeg
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8519fbf28ae2719cdc8ddca7be06492e
c2d9385cba62e0694cfe00e3103ff6fb4d22aa8a
1f06a47364e684b8690c557fc6d2373e905768f93efa973de7d02dc63fad9645
GET /image/2022/10/0d92dca29896de5ad549f4f9a6c8f722ce1e9e57ffb757b142a14595266b837a-100.jpeg HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: image/webp
content-length: 3154
cf-ray: 8316425cac3c56c6-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cfqOv21Bus1Dl8pHi54xfnD8Wzf3Q-22UukrmHzIgBDQ:9b7853ea25f6d5809551a14e6099aa57"
last-modified: Mon, 24 Oct 2022 10:01:12 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=18+0 c=3+4 v=2023.9.8 l=3154
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
www.happyleave.com/api/statistics/track?event_name=cart.information
201 Created 0 B URL POST HTTP/2 www.happyleave.com/api/statistics/track?event_name=cart.information
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/statistics/track?event_name=cart.information HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 779
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Cookie: XSRF-TOKEN=eyJpdiI6InpweWZFSGxTalFmNExEdTJvdFdHZkE9PSIsInZhbHVlIjoiRDFnZ2plNGxjTUFrNDNjM0JtNDNiXC9jTWJQYnE0YWVON2NEbTcrVkpVVnR5cXh5WEZPUE5aQ0s5VGM0NFRDcFl0eVcwZmNiSzlya1ozT3h2eHlUdFJQSGNmK1RHemsrSlJSRSt0Tm9RWW8zcVwvallMZ05WSE14KzVVZ2ZiRUt2byIsIm1hYyI6IjY4NWEzNzUyZjkzNjZkODJiNWI4ZTc4MzhmYWNhN2U3MGY4YzgzMmQxMDM1NDhlZDZlMWM2OTA1NmVmYTZiOTcifQ%3D%3D; _secure_shop_session=eyJpdiI6InQ2ajEwTGFiZHh2d0N6T2xJN3M4blE9PSIsInZhbHVlIjoiVFQrMDhqTUlZSkNSSTN0RVJDcm91YzR5bWZCZDM1cVl3TG5SQWJ3QU5cL2FvcVFiXC9XQ0xYV1dRTGVxNGhIcld1bGtOb2pOcXhzelI4WnNETHlPVjU4NHh0VzFjTVczd08yVzFlN2dvbWw2OEE4aHRjMHhCdUlrNFU0U1IraTV1byIsIm1hYyI6IjkwOGM5Mjk4NjRlNDNiYTg0ZGUwYWZmMzU5NDEwMGU2ZGZlN2I2ZGZkNmEwYWZhMDA4ZDhhZjg0YmVmZTY5NjIifQ%3D%3D; XCookie=1584edbfd5bc85abddd6ce167ff61443; XCookieTime=12/6/2023%2C%206%3A00%3A57%20PM; XCookieNumber=1701883857160jcoh33we; session_uuid=c6199420a54a41f7972843841ac1d0a65z5sWayW
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/2 201 Created
date: Wed, 06 Dec 2023 17:30:53 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Im5sMmpvMjU0akszaXlMOFhId2p2VUE9PSIsInZhbHVlIjoiVkdcL0Z3MVwvblhYOXpkbGVSQm1BRVRWSVJZY05aRmY0cEJQOGp0YTJBQTRDa3N4RnlwTlBJY2p5THdEd0p0WXpDZEJXUzBBb1B0c1drY245eG9UU3c4c0lxSVFTaCtaNWcyUzVoN1gwaG5NXC8wYVV0VzJNSkdJYjNTd2Y1cVVGTzgiLCJtYWMiOiJkMTMxZjZkODQ3MzA5MmU2MTcxM2ZiYzk4MjhlMzkxNTRiMThlODQxZjZmZWY0M2E3YmY1YmI5NzM4MWY2YjRlIn0%3D; expires=Thu, 07-Dec-2023 13:30:53 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IllGSEIxR2o2RDg2cDNMeG5qaHpSRFE9PSIsInZhbHVlIjoieW1rSjhTV3ZNM1A5YjFFanJpOVZmRjlueFJ6bGJFellYNFRqbXErczY5UCtEcHhMTGQ4NVFselwvQ2c3djYzbW1lNkhDelRVaGExMzFGaWgzZEJ0SzdOVDAyazdjcEZLUjB2U1RJbm5RNFRVeVBYdFRZV0NxdmpVOWdzRVwvVWZXbyIsIm1hYyI6ImFkMjMyYzY1MGFhZDY3NGQ4ZDJhYmMzNmEyYzZiNTk5ODUzMjg1MjU1NGQxZDY0N2IwMTYyMTY3NGU1NGZmMTQifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:53 GMT; Max-Age=72000; path=/; httponly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 83164260dac956c5-OSL
X-Firefox-Spdy: h2
www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718/recover?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
302 Found 219 kB URL User Request GET HTTP/2 www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718/recover?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
IP
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
Size 219 kB (218994 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /checkouts/a2e123789200d2111975cc5b07252718/recover?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 06 Dec 2023 17:30:48 GMT
content-type: text/html; charset=UTF-8
location: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IjlzWm1LaU1XbGlwZWZkXC9naURcLzRHQT09IiwidmFsdWUiOiJRZVVaWW1OWGhBWERZdTcza1FyUGZESVN3ZUNoOWZ3WlpPQ0JZcURyQVA3NktwS1RPWTlHd2xKekxKTFpJRjdSRnJybHNXKyt4Z2piZitpY0dDeE5iaE5hc0ZrZ3d3QXd5MVJSUEJsOGx0WnF3MUlDY2ZIZkcxVEFJQjIzSGdzXC8iLCJtYWMiOiI2NGJlYmFmNzA3ZTk1NDVhMzBmZGRjNjk1NDZjNjI1NTYxMTczNTBhOTZmMDBhZDFkNmM4ZTdiMjUzYWI0OGY4In0%3D; expires=Thu, 07-Dec-2023 13:30:48 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IjEwWlwvRDc3K0I5T0E5a0wrczR3b2JRPT0iLCJ2YWx1ZSI6IkcySmlrTUF4YWZ1eE81QzlOYzNQZ2ViTVhBK3NlRE16WDdWWXlub0hXZkxQRzlsUjA0alltbGM0Q21mWlhEQjJvU0RXTTFqaVVydGRQVWQ5WUcrbUJ4VWtLMEIwVDgzOUhJTEN3STQ3N2kwejduTTdzZG1rcG1CTVNWbGhzMlNuIiwibWFjIjoiZTljYzNmYzNkYTFmMTJjMjIxNzk3MjI1ODAyMjliZTVjZGE2Y2ZjYTdjNTFkNjM5Yzg1ODhlOTMyZDkxODc4MiJ9; expires=Thu, 07-Dec-2023 13:30:48 GMT; Max-Age=72000; path=/; httponly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 83164243a88356c5-OSL
X-Firefox-Spdy: h2
statics.cloudfastin.top/js/vue/2.6.14/vue.min.js
200 OK 94 kB URL GET HTTP/2 statics.cloudfastin.top/js/vue/2.6.14/vue.min.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (65444), with CRLF line terminators
Hash 0a9a4681294d8c5f476687eea6e74842
10c79dd8fcda1d0e498fb93d0d0a30ae91630ea8
e6e28a8fb9b74533ece152229dafcc3ebc0f4b3dcd62879df115706bce55927d
GET /js/vue/2.6.14/vue.min.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: WkERXY9OV3WTns/Scq7Aq0enxHaTOLvl4LB065WHORV6BejYMLVI1dLN5b4ZOdjfSEMyLKzwFPyG0Zg7Ndp8nA==
x-amz-request-id: 57Z4M075S4FCCX5X
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"0a9a4681294d8c5f476687eea6e74842"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 4554
expires: Wed, 06 Dec 2023 21:30:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c5ade56c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.happyleave.com/api/store/cart/get_hot_countries
200 OK 180 B URL GET HTTP/2 www.happyleave.com/api/store/cart/get_hot_countries
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 80858552cd9bce37382e13e9509db894
5d551404f4fad59fe75d4462983168cfe126e1bb
24118bc1756e795a3b8bd0bc05ba96bed4c4cdc0e1a0f0ab07665c16c1143cb7
GET /api/store/cart/get_hot_countries HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6InExMG00TlwvYXhwdWRTWGhwbGJKbkF3PT0iLCJ2YWx1ZSI6InhFTGhJR3JtYzZBQ2dRRzhGazhwUTFuemdna3hadERpNnNLSVBobVUxMTZuOWxCVER4ZlI5WHRoUlJkRHlZZExvcjczeFF2ZXBuSENEajlsblltWkRtZHltV1FPYzkwZmlFcUN0Sno1dE95M0Y2WTFZTnlQQ3NKWlJNVUZWNmZOIiwibWFjIjoiNzlhNmQ5MTYxNGMxOWE2YzljMmY2YjM1ODg5ZWFhNzEyZWMwYzJkNTIyNDM0M2M5NDlkNTNlNmUyNTNmOWQxZiJ9
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Cookie: XSRF-TOKEN=eyJpdiI6InExMG00TlwvYXhwdWRTWGhwbGJKbkF3PT0iLCJ2YWx1ZSI6InhFTGhJR3JtYzZBQ2dRRzhGazhwUTFuemdna3hadERpNnNLSVBobVUxMTZuOWxCVER4ZlI5WHRoUlJkRHlZZExvcjczeFF2ZXBuSENEajlsblltWkRtZHltV1FPYzkwZmlFcUN0Sno1dE95M0Y2WTFZTnlQQ3NKWlJNVUZWNmZOIiwibWFjIjoiNzlhNmQ5MTYxNGMxOWE2YzljMmY2YjM1ODg5ZWFhNzEyZWMwYzJkNTIyNDM0M2M5NDlkNTNlNmUyNTNmOWQxZiJ9; _secure_shop_session=eyJpdiI6IjRyMUhibHFvSTRvZzNESVBzelZPWUE9PSIsInZhbHVlIjoidno1VVBHYk5ITGJwVW55SmFib3F6MmlkamR2MGVKU3lxa2UwU2U0VHN5K3NWOHZ1VmtjYzZCWDl6MWRQXC9tU0tkWStZQ1RcL3BBcGc2cnoweFUzZkUrWWdQVFhSMVN1eW1sWExLYUdHTFwvbEU4RTU2emNKakw2MTZsdUZIU1JrQXgiLCJtYWMiOiJmOTg1NWZiMWFmNDUzNDVhYWQ0MGZkNjBjOTkzYzY0MTg3NGJjN2JkMGU4NTIwNjAxMDRkNWY5ZGQyZGM4OGNmIn0%3D; XCookie=1584edbfd5bc85abddd6ce167ff61443; XCookieTime=12/6/2023%2C%206%3A00%3A57%20PM; XCookieNumber=1701883857160jcoh33we
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
etag: W/"52f6a28e8be86a6ca1769a93fcf9bf9b005ff91f"
set-cookie: XSRF-TOKEN=eyJpdiI6InpweWZFSGxTalFmNExEdTJvdFdHZkE9PSIsInZhbHVlIjoiRDFnZ2plNGxjTUFrNDNjM0JtNDNiXC9jTWJQYnE0YWVON2NEbTcrVkpVVnR5cXh5WEZPUE5aQ0s5VGM0NFRDcFl0eVcwZmNiSzlya1ozT3h2eHlUdFJQSGNmK1RHemsrSlJSRSt0Tm9RWW8zcVwvallMZ05WSE14KzVVZ2ZiRUt2byIsIm1hYyI6IjY4NWEzNzUyZjkzNjZkODJiNWI4ZTc4MzhmYWNhN2U3MGY4YzgzMmQxMDM1NDhlZDZlMWM2OTA1NmVmYTZiOTcifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6InQ2ajEwTGFiZHh2d0N6T2xJN3M4blE9PSIsInZhbHVlIjoiVFQrMDhqTUlZSkNSSTN0RVJDcm91YzR5bWZCZDM1cVl3TG5SQWJ3QU5cL2FvcVFiXC9XQ0xYV1dRTGVxNGhIcld1bGtOb2pOcXhzelI4WnNETHlPVjU4NHh0VzFjTVczd08yVzFlN2dvbWw2OEE4aHRjMHhCdUlrNFU0U1IraTV1byIsIm1hYyI6IjkwOGM5Mjk4NjRlNDNiYTg0ZGUwYWZmMzU5NDEwMGU2ZGZlN2I2ZGZkNmEwYWZhMDA4ZDhhZjg0YmVmZTY5NjIifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/; httponly
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8316425d3d4956c5-OSL
X-Firefox-Spdy: h2
statics.cloudfastin.top/static/v1.41.48-h.21/store/default/css/app.71a049.css
200 OK 242 kB URL GET HTTP/2 statics.cloudfastin.top/static/v1.41.48-h.21/store/default/css/app.71a049.css
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 242 kB (241984 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/v1.41.48-h.21/store/default/css/app.71a049.css HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: text/css
x-amz-id-2: vGsh5VaxHT5BHxfQPFzODGzBOV8BImeEu3N5aVnMlVfL82V9ci43uZnLV4SzqYbZ4kX1NnbtjYs=
x-amz-request-id: D4KA2ATVXWXNZ0A0
last-modified: Tue, 05 Dec 2023 03:50:57 GMT
etag: W/"37763e31ecc0d2f82513d919e692c4d2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: null
cf-cache-status: HIT
age: 117885
expires: Thu, 05 Dec 2024 17:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c2a6b56c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
statics.cloudfastin.top/static/v1.41.48-h.21/store/chunk/sentry.22a784.js
200 OK 106 kB URL GET HTTP/2 statics.cloudfastin.top/static/v1.41.48-h.21/store/chunk/sentry.22a784.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (65465)
Size 106 kB (106163 bytes)
Hash edddb4a984a9e773aeec001e715bd1b0
a0481f658931eade21f9547ed496b6d3dfdd3a2a
9896629c7faf4351f2dc658b38e27a40ea2429f3854c5d248db45edfb44786d8
GET /static/v1.41.48-h.21/store/chunk/sentry.22a784.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: application/javascript
x-amz-id-2: VAkGm5AVaMQW1zADWM4vmEU4oHGzDkVEvIXsBjlDmGHZaNMRsHcrXVdxulV7vxwbyJ58Gl85nrZeaRRgBv1S6A==
x-amz-request-id: R71CB5VTQXJXB19Z
last-modified: Tue, 05 Dec 2023 03:51:26 GMT
etag: W/"edddb4a984a9e773aeec001e715bd1b0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: null
cf-cache-status: HIT
age: 118693
expires: Thu, 05 Dec 2024 17:30:50 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 831642517a3256c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
risk.xriskops.com/risk/risk.php
200 OK 0 B URL POST HTTP/3 risk.xriskops.com/risk/risk.php
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /risk/risk.php HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1245
Origin: https://www.happyleave.com
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:30:51 GMT
content-type: text/html; charset=UTF-8
set-cookie: acw_tc=0bc1599117018838513657491e7b93581e061c035cbd987ebfc1956fcf9318;path=/;HttpOnly;Max-Age=1800
SERVERID=505d221330c1538b9c845e25daf5e2d0|1701883851|1701883851;Path=/
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1%2BfrwB%2BaSSGvuuD4Gq6SFg10hSNKu9EQHk%2FIByVgxxkIB0sfcVvaZuPOIBhWkUCYed%2FflM5ruPKRvAB8YqMARjGHIq2h6g%2FlzzACFvSOiZO9fCHUTk7aiNReC4tD7z6sDpa9Sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831642549c24067b-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
www.gotopaynow.com/sdk.js
200 OK 234 kB URL GET HTTP/2 www.gotopaynow.com/sdk.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectgotopaynow.com
Fingerprint65:43:35:85:36:29:DE:04:DC:AE:FC:12:00:39:11:1F:10:D6:32:FE
ValidityThu, 12 Oct 2023 06:39:54 GMT - Wed, 10 Jan 2024 06:39:53 GMT
Size 234 kB (234276 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sdk.js HTTP/1.1
Host: www.gotopaynow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 02 Dec 2023 20:36:35 GMT
etag: W/"39324-18c2c3f4c7f"
cf-cache-status: HIT
age: 9742
expires: Wed, 06 Dec 2023 21:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c6918b523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudfastin.top/image/f79d2fcb2dfde4dac373395d87602190a5eccf83.webp
200 OK 14 kB URL GET HTTP/2 cdn.cloudfastin.top/image/f79d2fcb2dfde4dac373395d87602190a5eccf83.webp
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ad881296dd80c86e187adc82edc7cff6
a1a55ca16d5ed45393241be809178fd319562c9e
e61c10da3e450ec291bad1051ad94790eee1ac5a72a0457de1a135e08e89de70
GET /image/f79d2fcb2dfde4dac373395d87602190a5eccf83.webp HTTP/1.1
Host: cdn.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: image/webp
content-length: 13964
cf-ray: 8316425cbc4e56c6-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cf7rgx8TRO-dAeNEAkcdmaipO7JdRV_HsQesDqGFoaDQ:1b7f0ab261d885600faf998366c568b7"
last-modified: Thu, 26 Oct 2023 15:30:42 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=16+0 c=2+26 v=2023.9.8 l=13964
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
statics.cloudfastin.top/js/element-ui/2.13.0/index.js
200 OK 567 kB URL GET HTTP/2 statics.cloudfastin.top/js/element-ui/2.13.0/index.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 567 kB (567058 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/element-ui/2.13.0/index.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: Fmd6S5DApffQFEhqgMw+WuitJIguHotRcuVyE3W5jYEh9a6sEqvejq+Q+hRB/zTEjWwBn44/jRY=
x-amz-request-id: PJ2AP48ANGNC7D2J
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"aad8e2ee90fb795b70705b06c69a8367"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 4554
expires: Wed, 06 Dec 2023 21:30:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c6afc56c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
risk.xriskops.com/index1.js?1701883856546
0 B URL GET risk.xriskops.com/index1.js?1701883856546
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index1.js?1701883856546 HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: text/html;charset=utf-8
x-powered-by: PHP/7.4.33
cf-cache-status: BYPASS
set-cookie: acw_tc=0bc1a04c17018838507867010e2e1ddfdece0d51b8140646f713b25c0958d1;path=/;HttpOnly;Max-Age=1800
SERVERID=fe5e271a934cfe7d1b04be42b26ab204|1701883850|1701883850;Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AESKNvO%2Fpw6OPGxfCZ0KprBvdMchqWsuwkjVZGFOew%2FFz6R9cBi1lw58S2sFbyG0D1MpDYf9gTDcbM8aQfWwvfmBA6toZiSKNLcrEnKTN47a%2FjeA8N5UHAcZjWvoLNKppzexSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83164250d8b2067b-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
www.happyleave.com/api/store/exchanges
200 OK 2.5 kB URL GET HTTP/2 www.happyleave.com/api/store/exchanges
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2885), with no line terminators
Hash 2cee1fe085e7a100dac820e348ce462d
19a033117f5e2e0e7722443f32e040e52a8eb83b
ce94f4fa69383749752b462c0fdcdd688d670126e5fa7a7755f1d039ea92837e
GET /api/store/exchanges HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6InExMG00TlwvYXhwdWRTWGhwbGJKbkF3PT0iLCJ2YWx1ZSI6InhFTGhJR3JtYzZBQ2dRRzhGazhwUTFuemdna3hadERpNnNLSVBobVUxMTZuOWxCVER4ZlI5WHRoUlJkRHlZZExvcjczeFF2ZXBuSENEajlsblltWkRtZHltV1FPYzkwZmlFcUN0Sno1dE95M0Y2WTFZTnlQQ3NKWlJNVUZWNmZOIiwibWFjIjoiNzlhNmQ5MTYxNGMxOWE2YzljMmY2YjM1ODg5ZWFhNzEyZWMwYzJkNTIyNDM0M2M5NDlkNTNlNmUyNTNmOWQxZiJ9
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Cookie: XSRF-TOKEN=eyJpdiI6InExMG00TlwvYXhwdWRTWGhwbGJKbkF3PT0iLCJ2YWx1ZSI6InhFTGhJR3JtYzZBQ2dRRzhGazhwUTFuemdna3hadERpNnNLSVBobVUxMTZuOWxCVER4ZlI5WHRoUlJkRHlZZExvcjczeFF2ZXBuSENEajlsblltWkRtZHltV1FPYzkwZmlFcUN0Sno1dE95M0Y2WTFZTnlQQ3NKWlJNVUZWNmZOIiwibWFjIjoiNzlhNmQ5MTYxNGMxOWE2YzljMmY2YjM1ODg5ZWFhNzEyZWMwYzJkNTIyNDM0M2M5NDlkNTNlNmUyNTNmOWQxZiJ9; _secure_shop_session=eyJpdiI6IjRyMUhibHFvSTRvZzNESVBzelZPWUE9PSIsInZhbHVlIjoidno1VVBHYk5ITGJwVW55SmFib3F6MmlkamR2MGVKU3lxa2UwU2U0VHN5K3NWOHZ1VmtjYzZCWDl6MWRQXC9tU0tkWStZQ1RcL3BBcGc2cnoweFUzZkUrWWdQVFhSMVN1eW1sWExLYUdHTFwvbEU4RTU2emNKakw2MTZsdUZIU1JrQXgiLCJtYWMiOiJmOTg1NWZiMWFmNDUzNDVhYWQ0MGZkNjBjOTkzYzY0MTg3NGJjN2JkMGU4NTIwNjAxMDRkNWY5ZGQyZGM4OGNmIn0%3D; XCookie=1584edbfd5bc85abddd6ce167ff61443; XCookieTime=12/6/2023%2C%206%3A00%3A57%20PM; XCookieNumber=1701883857160jcoh33we
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
etag: W/"8c7c0ea111c8026020cf68df1372cd9b91fce3d6"
set-cookie: XSRF-TOKEN=eyJpdiI6IlUrRDhCbkVlc0IzQUlkV25NZHM4c1E9PSIsInZhbHVlIjoiTmVDcTBFS2laVU1CcklzTmZqaHNnMVV0ejc1N05xamlKXC9BVFRxOGpjZ21Od3diMFF1dGVqaHpOb1pIa25xcThOUVVYbWg4RDZGTFJ4bk9qdmVqQnhaN3I4SmV0elZCMWh5MWFpSnFtYVBEMzllSGxSTGtoUnlzcjg5aUdvVEJIIiwibWFjIjoiNGUyMWIwOTkxNWFiM2FmZDY3Mjk3ZmYyOWI4NzQ3YzMyMWU0NDE2NmE3OTUzNTA5YmEyNmRkNjY0NGViNTgzZCJ9; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IlA5eGc0aTVjSThVTzdTK3VcL0Y0N25RPT0iLCJ2YWx1ZSI6IjZzMlwvOWlZSXA3YU5la3JhN2NOUkhMUHhWUWJTbFRDMlVUU2JNTU5NU3BUMVJHMXg1bDdMcXdEUDFiNmtyazh5RkZoYVRMNkl6MmpkYUtrV3Fha1A5WnM5dzVWb1ZTdGxWbGNkRHp6eWpaT0lBd2RYTnhUcmFrRW5OcWtEREFGMSIsIm1hYyI6ImYzMDc4ZDlkMzIyYThjMzU3MWEwNDZlY2UxOTVjZWFiNzNiYWE2YTM3MDQ2ZWY5ODlhMGFkMmIzMDQ3MTU4NGEifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/; httponly
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8316425d3d3e56c5-OSL
X-Firefox-Spdy: h2
statics.cloudfastin.top/js/jquery/3.6.0/jquery.min.js
200 OK 90 kB URL GET HTTP/2 statics.cloudfastin.top/js/jquery/3.6.0/jquery.min.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 0732e3eabbf8aa7ce7f69eedbd07dfdd
4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f
ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b
GET /js/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: PBuiaAUKm29z9XnWLyWp56x/MLiuYc7NNO5YxPCsZqLsA7VCjovTsq1ZrhzAamwhqMdlmseOyTZbj/lCwlpW4g==
x-amz-request-id: D8V883TN949Q041Z
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"0732e3eabbf8aa7ce7f69eedbd07dfdd"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 4554
expires: Wed, 06 Dec 2023 21:30:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c3a8056c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
statics.cloudfastin.top/js/bootstrap/4.6.1/js/bootstrap.min.js
200 OK 62 kB URL GET HTTP/2 statics.cloudfastin.top/js/bootstrap/4.6.1/js/bootstrap.min.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (62161), with CRLF line terminators
Hash 55d39b6bff845a12b1f838acb73c444c
b0bb1db8dd47fac76020f3dca5995f9d92defcf3
0b107098fc8b361ce610dba0d1656c620c725311e51d4417c7c57c8bda369e52
GET /js/bootstrap/4.6.1/js/bootstrap.min.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: AYlgqdVjhUwUZI/2DIw1WxDXzP0STmhun0HwKcwlqZN0mjM+2BuRq4aqGAHwa0euWLMFztngv7gDpcOD+M78zw==
x-amz-request-id: M3KFTDSH6GHTB1P5
last-modified: Tue, 20 Sep 2022 06:20:37 GMT
etag: W/"55d39b6bff845a12b1f838acb73c444c"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 4554
expires: Wed, 06 Dec 2023 21:30:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c2a6156c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
statics.cloudfastin.top/static/v1.41.48-h.21/store/checkout/js/spaCheckout.b59e03.js
200 OK 1.3 MB URL GET HTTP/2 statics.cloudfastin.top/static/v1.41.48-h.21/store/checkout/js/spaCheckout.b59e03.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectcloudfastin.top
Fingerprint60:D4:87:62:37:AB:81:0D:E2:F1:EB:A4:48:DA:FB:14:1A:F7:96:AE
ValiditySun, 01 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 1.3 MB (1311406 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/v1.41.48-h.21/store/checkout/js/spaCheckout.b59e03.js HTTP/1.1
Host: statics.cloudfastin.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:49 GMT
content-type: application/javascript
x-amz-id-2: Y15ozv7+y3pPxduqRkmiYSsA3P+1ZfF65I21dsAefG9XHZNmPvTxQOowMfHvl8/+VsTXBEBNRiYZnAePbf9LgQ==
x-amz-request-id: D4KE6S591K9C9T2K
last-modified: Tue, 05 Dec 2023 03:50:38 GMT
etag: W/"5533f65ccc8f26d31e3606a91557e958"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-version-id: null
cf-cache-status: HIT
age: 117885
expires: Thu, 05 Dec 2024 17:30:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8316424c2a6856c6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
risk.xriskops.com/core.js
200 OK 22 kB URL GET HTTP/3 risk.xriskops.com/core.js
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerGoogle Trust Services LLC
Subjectxriskops.com
Fingerprint96:59:60:E6:14:A4:2B:8F:D6:4E:B2:FB:B4:8D:E8:5B:0B:45:27:A4
ValiditySun, 29 Oct 2023 12:45:54 GMT - Sat, 27 Jan 2024 12:45:53 GMT
Hash c5bb3511f6ffe78d65c477180c97e412
a10bdb2b7bbe57610339cb5921c0b7d0f81f736b
fc3e8db8ac8e7453616a4c0db84968ea2f08212744f571308c411245f4c94c8d
GET /core.js HTTP/1.1
Host: risk.xriskops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:30:50 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 05 Dec 2023 08:32:23 GMT
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: acw_tc=0bc1599117018838504997482e7b93193b846c75d0cfde755ce0eb716fa724;path=/;HttpOnly;Max-Age=1800
SERVERID=505d221330c1538b9c845e25daf5e2d0|1701883850|1701883850;Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0rDrIMV5VwEVxc2q%2F3LCODCMXpoPy1NSDxoEM9ygWAMGv9kZQPCOcbXx7GENcDWZga7UEtHdfIwXJWf5h0n%2Bb9E5ZSAyLaf%2FUIioEpSi8CKSMeqNNaHfQNs3bCV5nOtetChIPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83164250c8aa067b-OSL
alt-svc: h3=":443"; ma=86400
www.happyleave.com/api/store/ip
200 OK 435 B URL GET HTTP/2 www.happyleave.com/api/store/ip
IP
Requested by https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Certificate IssuerCloudflare, Inc.
Subjectwww.happyleave.com
Fingerprint66:2F:34:0C:62:18:BF:E3:DB:14:54:2A:89:CA:FF:64:12:21:BA:C9
ValidityThu, 16 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (514), with no line terminators
Hash b0d063050cc2b2182af83d12851bb816
7d95369925952007620a2c416e52c821f80707bc
131b0a440b1e6fadcdda0ca04a3fc7f7c156d11937066a276d4a1bf0658796b3
GET /api/store/ip HTTP/1.1
Host: www.happyleave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LANG: en-US
X-XSRF-TOKEN: eyJpdiI6IlUrRDhCbkVlc0IzQUlkV25NZHM4c1E9PSIsInZhbHVlIjoiTmVDcTBFS2laVU1CcklzTmZqaHNnMVV0ejc1N05xamlKXC9BVFRxOGpjZ21Od3diMFF1dGVqaHpOb1pIa25xcThOUVVYbWg4RDZGTFJ4bk9qdmVqQnhaN3I4SmV0elZCMWh5MWFpSnFtYVBEMzllSGxSTGtoUnlzcjg5aUdvVEJIIiwibWFjIjoiNGUyMWIwOTkxNWFiM2FmZDY3Mjk3ZmYyOWI4NzQ3YzMyMWU0NDE2NmE3OTUzNTA5YmEyNmRkNjY0NGViNTgzZCJ9
DNT: 1
Connection: keep-alive
Referer: https://www.happyleave.com/checkouts/a2e123789200d2111975cc5b07252718?key=2b327e33dbc24a0e916690e1f8302810&step=contact_information&utm_medium=email&utm_campaign=n_checkout_reminder&utm_source=n_checkout&abt=sale
Cookie: XSRF-TOKEN=eyJpdiI6IlUrRDhCbkVlc0IzQUlkV25NZHM4c1E9PSIsInZhbHVlIjoiTmVDcTBFS2laVU1CcklzTmZqaHNnMVV0ejc1N05xamlKXC9BVFRxOGpjZ21Od3diMFF1dGVqaHpOb1pIa25xcThOUVVYbWg4RDZGTFJ4bk9qdmVqQnhaN3I4SmV0elZCMWh5MWFpSnFtYVBEMzllSGxSTGtoUnlzcjg5aUdvVEJIIiwibWFjIjoiNGUyMWIwOTkxNWFiM2FmZDY3Mjk3ZmYyOWI4NzQ3YzMyMWU0NDE2NmE3OTUzNTA5YmEyNmRkNjY0NGViNTgzZCJ9; _secure_shop_session=eyJpdiI6IlA5eGc0aTVjSThVTzdTK3VcL0Y0N25RPT0iLCJ2YWx1ZSI6IjZzMlwvOWlZSXA3YU5la3JhN2NOUkhMUHhWUWJTbFRDMlVUU2JNTU5NU3BUMVJHMXg1bDdMcXdEUDFiNmtyazh5RkZoYVRMNkl6MmpkYUtrV3Fha1A5WnM5dzVWb1ZTdGxWbGNkRHp6eWpaT0lBd2RYTnhUcmFrRW5OcWtEREFGMSIsIm1hYyI6ImYzMDc4ZDlkMzIyYThjMzU3MWEwNDZlY2UxOTVjZWFiNzNiYWE2YTM3MDQ2ZWY5ODlhMGFkMmIzMDQ3MTU4NGEifQ%3D%3D; XCookie=1584edbfd5bc85abddd6ce167ff61443; XCookieTime=12/6/2023%2C%206%3A00%3A57%20PM; XCookieNumber=1701883857160jcoh33we
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:30:52 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
etag: W/"eb48edbe7533e2964b19b177bd398c8ff0c586d0"
set-cookie: XSRF-TOKEN=eyJpdiI6IlphWnEzSDNrc2FvQ1hrOEJxejhpTmc9PSIsInZhbHVlIjoiRDVZUlRid0xqYlwvZCt4TUlsc3hKSWVNc2N4aXRLdGdpaGV6cFk4OVRPdzdKOFF2UVREQlwvSXJFZzRqNkQrYkNrWU12R3ErdDNNOEhBcmdNbTlpWUwzTjVyM2ptaWZqdGFSK2I3eThFVWltMlBVeW1uSHN0ZURub3pzOWlNMDYzdCIsIm1hYyI6IjQ3ZDY2MDE4YTI5NWMzZmU5OTk5NmE4M2MyMzkzMzIzMjliMjM4NDUzNDJmNjRjOTZlZTMzYTJjZTllNjI1NzgifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/
_secure_shop_session=eyJpdiI6IkFSMVYrU2RDOENsZzJRSWRma1hQbVE9PSIsInZhbHVlIjoiQlhCbGhKVHRlS0hwK2JsNHdZV01pbVdtXC9FNGRZdlpiRW5ha3RpRWZuWG9PN0wzMllvcDRWdVUxbis3UkZ1UXJWSGQzc3Uyd2lvdUlKVXlwOXBLZ21abGF5S0dhb29EXC8yY2ZWbXV5em00TXkrV212bWpEYUxPMDF2RTdQeitYWiIsIm1hYyI6IjlmNWYwNWM5YzRiNjcyZjg1MDNkZmE1OTk0YjQzMDFkMmNiNDk3NTZjZjYzZmIwMzcxMzkyN2RhMmMzMGQ3YTgifQ%3D%3D; expires=Thu, 07-Dec-2023 13:30:52 GMT; Max-Age=72000; path=/; httponly
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8316425ebfa856c5-OSL
X-Firefox-Spdy: h2
104.18.11.62
172.64.155.228
188.114.96.1