safe-pay.info/
185.230.63.107301 Moved Permanently 0 B IP 185.230.63.107:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: safe-pay.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 19 Jan 2023 12:26:29 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.safe-pay.info/
strict-transport-security: max-age=3600
Age: 8153
Server-Timing: cache;desc=hit, varnish;desc=hit, dc;desc=84
X-Seen-By: RQvnDyN5n1orR2cJk2hJbg==,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVgp9DPJ6CT17cJ4lrLdYKci,m0j2EEknGIVUW/liY8BLLiGPmC7AkK2XYsrZYc2K9rceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRaljjnLRuHIcj6AV2KYnbdy7bL7WiJGAfshytp+clncuQnepQOmyTUZa7FNn6t0Dq2VA==,2UNV7KOq4oGjA5+PKsX47JsWNB/NSpKXnjnMMfR0HfS8ZDY613cHYLbuhNMgAom1
Cache-Control: no-cache
X-Wix-Request-Id: 1674131189.28333244108291344
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18142
Expires: Thu, 19 Jan 2023 17:28:51 GMT
Date: Thu, 19 Jan 2023 12:26:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7190
Expires: Thu, 19 Jan 2023 14:26:19 GMT
Date: Thu, 19 Jan 2023 12:26:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 11:34:32 GMT
content-type: application/json
age: 3117
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2941
Expires: Thu, 19 Jan 2023 13:15:30 GMT
Date: Thu, 19 Jan 2023 12:26:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ER01iTDL6i02fVyltN3gjNLazsa83Zs2LqWHdI/dwbn2seRh7+cNCAG0+iuatKa0S9FD8RXBAmAk3XclNAA0sA==
x-amz-request-id: 01PZARXVX5G278VZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 11:45:52 GMT
age: 2437
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 12:26:29 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ded910d6a68063d824c02fc42a2b28a9
2ee78d49d07632844bac2220eff972eed831ec24
db43c3fcfc0dc942463f813f6531d8f643d2a042c01cf057edfff81ca4e560eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 16 Jan 2023 09:29:29 GMT
Expires: Mon, 23 Jan 2023 09:29:28 GMT
Etag: "2ee78d49d07632844bac2220eff972eed831ec24"
Cache-Control: max-age=334378,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f1f88f80b49-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 12:17:27 GMT
age: 543
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ded910d6a68063d824c02fc42a2b28a9
2ee78d49d07632844bac2220eff972eed831ec24
db43c3fcfc0dc942463f813f6531d8f643d2a042c01cf057edfff81ca4e560eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 16 Jan 2023 09:29:29 GMT
Expires: Mon, 23 Jan 2023 09:29:28 GMT
Etag: "2ee78d49d07632844bac2220eff972eed831ec24"
Cache-Control: max-age=334377,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f236cde0b49-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6112
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 12:26:30 GMT
Last-Modified: Thu, 19 Jan 2023 10:44:38 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 66e4ca409035fd4261385db539e3a48a
4209f54d444e8687410c29e853670f66bfcf3adb
7e011b1d33f92e124096b4273c53986b35747b70dd0befbc3e78390af7c46917
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:07:40 GMT
Expires: Thu, 26 Jan 2023 04:07:39 GMT
Etag: "4209f54d444e8687410c29e853670f66bfcf3adb"
Cache-Control: max-age=574268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f24be0e0b49-OSL
static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.3abcee26.bundle.min.js
34.96.106.200200 OK 25 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.3abcee26.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5ddd4afb1de85871a5d9afe6b5a86235
c06d85120dd060e573afd66ff6a6ddf8130e9d61
99979cba6749c0b4766e51f69b802508b92f16a7dfa04fd115d8d531d45a248d
GET /services/wix-thunderbolt/dist/thunderbolt-commons.3abcee26.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 24676
vary: Accept-Encoding
x-amz-replication-status: REPLICA
x-amz-version-id: uxliJ3q6YhyesfVoiWOTMTOgzagAp3Bh
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 236500045 234632133
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1674112716.379791273450910201
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 19 Jan 2023 07:18:36 GMT
cache-control: public, max-age=7776000, immutable
age: 18474
last-modified: Thu, 19 Jan 2023 06:46:40 GMT
etag: W/"25ad60310aaad09ee212a552d3148abb"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js
34.96.106.200200 OK 3.1 kB URL HTTP/2 static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (7849)
Hash 4b6098bb7a5117dc2d4f7f3cd878ce02
32c87e5fafae4aa5000662e8cc4590e4b86a12b2
ded04e66730230757b89ecab062e82862b63c49cfcb5c410f957474933f54716
GET /services/tag-manager-client/1.705.0/siteTags.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 3092
vary: Accept-Encoding
x-amz-replication-status: REPLICA
x-amz-version-id: tMdd3gNZg3QA3O.jbnMbXDc0pFPNujsf
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 460948005 363111616
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchsyoANA5L58iE/4UOTdE0x,aVxMblM8KFG3we5NLvyVczcu59EpmtW9m1QeKn/Zhei8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1674092239.45877206436437846
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 19 Jan 2023 01:37:19 GMT
cache-control: public, max-age=7776000, immutable
age: 138232
last-modified: Wed, 28 Dec 2022 13:39:32 GMT
etag: W/"82ef8cd522818464cafdf4bf58ab1ffa"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js
34.96.106.200200 OK 11 kB URL HTTP/2 static.parastorage.com/services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (28487)
Hash c40dc701562be616202806c6e3506e17
5573ed5aeed9388b31c01b82a2cfc96f5063e166
abc28c66fb78bfe2ae66dfbe2b51a7cf1bbf9e2a8b7977ee0a830f2deb32651b
GET /services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 10915
vary: Accept-Encoding
x-amz-replication-status: REPLICA
x-amz-version-id: 659cd95GUOVBSbkFTy1fNrG_JGwqEnff
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 1026239219 918720931
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1674092239.462759316877523896
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 19 Jan 2023 01:37:19 GMT
cache-control: public, max-age=7776000, immutable
age: 50167
last-modified: Sun, 01 Jan 2023 11:26:37 GMT
etag: W/"1a43b92000b13afb468cf1e405fa25db"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js
34.96.106.200200 OK 36 kB URL HTTP/2 static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (682)
Hash c88aca3ce8fd7ec85ff55d835e476dcc
66f5f5ddcff30e3b7425ca4995c27ab19fee025f
c2c5ce710d0420daa825ffff8ade4628c84ab0dad9c066d356e91c47f5dec485
GET /unpkg/react-dom@16.14.0/umd/react-dom.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 36048
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: br
x-varnish: 1026107489 913348395
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1674092239.60577274923415754
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 19 Jan 2023 01:37:19 GMT
cache-control: public, max-age=7776000, immutable
age: 52188
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: "c5abc87541fe6bb0f43f22af475a8b20"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/d513e15e-8f35-4129-ad05-481815e52625.woff2
34.96.106.200200 OK 17 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/d513e15e-8f35-4129-ad05-481815e52625.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 17176, version 1.0\012- data
Hash 289fbfeed5013eb4bb1638deea01cc65
2dfdd0abf443218089684bcbfe1755eff19909aa
9c9224b0743c9ae4c456fdb5a45303c1110253b1a88f6d143cedf2b4acb9032e
GET /services/third-party/fonts/user-site-fonts/fonts/d513e15e-8f35-4129-ad05-481815e52625.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 17176
x-amz-version-id: bXTlr_GbZMylwgMdVneu96vaI.2aONgN
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 571711086 442991060
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
via: 1.1 varnish (Varnish/6.0), 1.1 google
access-control-max-age: 3000
x-wix-request-id: 1673330736.4194450158292598963
date: Tue, 10 Jan 2023 06:05:36 GMT
cache-control: public, max-age=7776000, immutable
age: 800454
last-modified: Tue, 17 Apr 2018 11:10:59 GMT
etag: "b6efd05c765793d0613d4c65585e8edb-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2
34.96.106.200200 OK 17 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 17216, version 1.0\012- data
Hash fc02a3c78cac0f6ab99c6c19f004d02d
7bcc73042c63c86637084549daad26aed3621d64
0ddce0e617794fd30b60e5c829fe12b9d7eeba14e561e7d89da5fcaf2fe900c3
GET /services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 17216
access-control-allow-methods: GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-version-id: ZJhEgw5338rDGW18OcyggGHIv4bi5qCO
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 724981885 652969753
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
via: 1.1 varnish (Varnish/6.0), 1.1 google
x-wix-request-id: 1673054413.3754234285990710071
date: Sat, 07 Jan 2023 01:20:13 GMT
cache-control: public, max-age=7776000, immutable
age: 1076777
last-modified: Tue, 17 Apr 2018 11:11:01 GMT
etag: "ef4257ccfa0fce4d914b23a28aa6fdf4-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/26091050-06ef-4fd5-b199-21b27c0ed85e.woff2
34.96.106.200200 OK 18 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/26091050-06ef-4fd5-b199-21b27c0ed85e.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Hash f6d461ea1dd535b05e21e1bc477b99cb
09990f428b4c8b3d16fe5420c039ba2b8f9ed270
d493e43a39a2c5a022d4a1295f952f22079088c74dece36e94f2f8a760648819
GET /services/third-party/fonts/user-site-fonts/fonts/26091050-06ef-4fd5-b199-21b27c0ed85e.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 18212
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-version-id: LyS3RoQEhoS65ThKNJ05SMC6e6eU301O
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 570639630 442831129
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
via: 1.1 varnish (Varnish/6.0), 1.1 google
x-wix-request-id: 1673329127.4564449122534138960
date: Tue, 10 Jan 2023 05:38:47 GMT
cache-control: public, max-age=7776000, immutable
age: 802063
last-modified: Tue, 17 Apr 2018 11:10:57 GMT
etag: "adefa22d63c85887c8b1a434ccd6afeb-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4ea7e185dd6eceaa4a12dad813e93a9a
58b14ef28917a35701decb7deb1c512a9abb36e5
433e95bf36a6a53d3eaab41905a136177955619788c6596be58380f4c1f58027
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 20:16:27 GMT
Expires: Tue, 24 Jan 2023 20:16:26 GMT
Etag: "58b14ef28917a35701decb7deb1c512a9abb36e5"
Cache-Control: max-age=459595,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f2548c40b3d-OSL
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff
34.96.106.200200 OK 30 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff
IP 34.96.106.200:0
File type Web Open Font Format, TrueType, length 30192, version 1.0\012- data
Hash 4dc77f0ff1474412272ba230b085d035
e2558f88d8f2878b4a5510967d107223b6c29bd1
c629b3ce163a14df3b642f01044a989647ebbdb0f7d5d1d95783bdce89a8a666
GET /services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 30192
vary: Accept-Encoding
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-version-id: SrI8Ume8vDgKKgLFS9l.Y3rzDdxM77DG
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 1058139983 972351693
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchsyoANA5L58iE/4UOTdE0x,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1672639192.475379809725341549
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Mon, 02 Jan 2023 05:59:52 GMT
cache-control: public, max-age=7776000, immutable
age: 1491998
last-modified: Tue, 17 Apr 2018 11:10:52 GMT
etag: "08f04fa3c9ecd2d0608ad6ae9f4416eb-1"
content-type: application/x-font-woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.227.109.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.227.109.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rFUkVcL/Cdpu2oBl2zAxQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gQh9+NjriNKGxAwfk+Q2SzMak/A=
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/aee74cb3-c913-4b54-9722-6001c92325f2.woff2
34.96.106.200200 OK 14 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/aee74cb3-c913-4b54-9722-6001c92325f2.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 13560, version 1.0\012- data
Hash 2ea951905c7fb7663a62128efa9081f1
b271a8f516cb7f4767442caede16753762dfd91d
91d729a4ca0a2e9cfc5b411476df256b9d6aee6402d25a30ecd674d13d6d7013
GET /services/third-party/fonts/user-site-fonts/fonts/aee74cb3-c913-4b54-9722-6001c92325f2.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 13560
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-version-id: K0TRmSJVzgFjYxA2aYqNNjHCAKSC1Lbi
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 387610710 323681695
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1673726561.9973637961291810201
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Sat, 14 Jan 2023 20:02:41 GMT
cache-control: public, max-age=7776000, immutable
age: 404629
last-modified: Tue, 17 Apr 2018 11:10:44 GMT
etag: "633579d9f21d48c3fca7309be0cf61c7-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/5cee8d6e-89ad-4d8c-a0ac-584d316b15ae.woff2
34.96.106.200200 OK 16 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/5cee8d6e-89ad-4d8c-a0ac-584d316b15ae.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 16392, version 1.655\012- data
Hash 79ffd6e903f395e58b055688f99b6841
9203e3996e16b171df17f7098898d9d371a42838
f768d7d23beb04ac8689141c0e74f9c691f3d80f32b1c80c0bee7b2d4cfc99b4
GET /services/third-party/fonts/user-site-fonts/fonts/5cee8d6e-89ad-4d8c-a0ac-584d316b15ae.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 16392
x-amz-version-id: BD9JUdeK9JmHeNO_vsWnRE7tJqEHXKBl
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 965152801 779832631
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchsyoANA5L58iE/4UOTdE0x,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
via: 1.1 varnish (Varnish/6.0), 1.1 google
access-control-max-age: 3000
x-wix-request-id: 1673331207.06844689308811230471
date: Tue, 10 Jan 2023 06:13:27 GMT
cache-control: public, max-age=7776000, immutable
age: 799983
last-modified: Tue, 17 Apr 2018 11:11:01 GMT
etag: "521b701d690a3e1127480375ee3be582-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 66e4ca409035fd4261385db539e3a48a
4209f54d444e8687410c29e853670f66bfcf3adb
7e011b1d33f92e124096b4273c53986b35747b70dd0befbc3e78390af7c46917
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:07:40 GMT
Expires: Thu, 26 Jan 2023 04:07:39 GMT
Etag: "4209f54d444e8687410c29e853670f66bfcf3adb"
Cache-Control: max-age=574268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f24dafcb527-OSL
static.wixstatic.com/media/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg
34.102.176.152200 OK 6.3 kB URL HTTP/2 static.wixstatic.com/media/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f9c45d184ee798eadfc1474039d69813
7a4eefec019a3a2131b14bf759dc30e781da9115
6bc5b84845ad54f544b34ad653414ad924844b0dbe47f4c65072018beb1e4d88
GET /media/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_1ff8025b9d0e4717ab2caaa30e3a385c~mv2.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
content-length: 6334
access-control-allow-origin: *
vary: Accept
wix-tracer: 2KXpPdEmjVMlAYlm3V2Q4a04Fyp
x-seen-by: image-manipulator-776b7b8545-226bz
timing-allow-origin: *
via: 1.1 google
date: Thu, 19 Jan 2023 12:19:18 GMT
cache-control: public, max-age=15552000, immutable
content-type: image/webp
age: 432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.wixstatic.com/media/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg
34.102.176.152200 OK 5.2 kB URL HTTP/2 static.wixstatic.com/media/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d84232d03c3a502b228af833e853bc25
8b9a4a0c351d111c78f6a7c7e3e1994fa561639a
f2119975d594175b716349215a294ab6336675025c71980d8bdc02709f4c1e89
GET /media/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_6ca1a517dda3425baaf51760279f557c~mv2.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
content-length: 5230
access-control-allow-origin: *
vary: Accept
wix-tracer: 2KXpPbOPMY4OcgCGKvjyyXJ2GfO
x-seen-by: image-manipulator-776b7b8545-w45dp
timing-allow-origin: *
via: 1.1 google
date: Thu, 19 Jan 2023 12:19:18 GMT
cache-control: public, max-age=15552000, immutable
content-type: image/webp
age: 432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.wixstatic.com/media/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg
34.102.176.152200 OK 6.8 kB URL HTTP/2 static.wixstatic.com/media/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cd59570ba0658d70f4b1792f0bc5882d
26b3d67c676fa068417e138bda71eb21681fdf57
bf306f78d053873e7cf09164603f0274426957b675e51be9b56c7912c887810f
GET /media/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg/v1/fill/w_289,h_460,al_c,lg_1,q_80,enc_auto/035244_e558496de77a4ca09af43f1551a96e89~mv2.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
content-length: 6824
access-control-allow-origin: *
vary: Accept
wix-tracer: 2KXpPYgHu62pCxM7iVebAWwKyj8
x-seen-by: image-manipulator-776b7b8545-5mnzr
timing-allow-origin: *
via: 1.1 google
date: Thu, 19 Jan 2023 12:19:18 GMT
cache-control: public, max-age=15552000, immutable
content-type: image/webp
age: 432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 66e4ca409035fd4261385db539e3a48a
4209f54d444e8687410c29e853670f66bfcf3adb
7e011b1d33f92e124096b4273c53986b35747b70dd0befbc3e78390af7c46917
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:07:40 GMT
Expires: Thu, 26 Jan 2023 04:07:39 GMT
Etag: "4209f54d444e8687410c29e853670f66bfcf3adb"
Cache-Control: max-age=574268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f24fc0f1c0a-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 66e4ca409035fd4261385db539e3a48a
4209f54d444e8687410c29e853670f66bfcf3adb
7e011b1d33f92e124096b4273c53986b35747b70dd0befbc3e78390af7c46917
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:07:40 GMT
Expires: Thu, 26 Jan 2023 04:07:39 GMT
Etag: "4209f54d444e8687410c29e853670f66bfcf3adb"
Cache-Control: max-age=574268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f24fff1b509-OSL
static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js
34.96.106.200200 OK 25 kB URL HTTP/2 static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (4143)
Hash 9661f391f69ddbf1e8bbf879c1c69660
60e78567cd82d5dec158be4ae4d365f45412fb36
59fe3fa5daacb2b18c734a563d4e8e9df1f51eb24672249ca4962f3132149191
GET /unpkg/lodash@4.17.21/lodash.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 25102
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 640497242 574035855
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1673382506.321571827712818226
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Tue, 10 Jan 2023 20:28:26 GMT
cache-control: public, max-age=7776000, immutable
age: 748684
last-modified: Sun, 21 Feb 2021 02:37:42 GMT
etag: W/"9becc40fb1d85d21d0ca38e2f7069511"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8a140cb049d9227730fbbddb3da905cd
686a3c091ba274dad8e034a46b0e9b2009a09bbf
fd8817cebc42288e2c002eca4caef8dc73aa3cca6d39cc94c2fc643d68f07d13
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:33:55 GMT
Expires: Thu, 26 Jan 2023 04:33:54 GMT
Etag: "686a3c091ba274dad8e034a46b0e9b2009a09bbf"
Cache-Control: max-age=575843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f251e5e0b49-OSL
static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js
34.96.106.200200 OK 4.7 kB URL HTTP/2 static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (574)
Hash 98af04861581703b8f33819f777e19f5
68333056e788b1276646537149661537143ddc8a
9b4dce05c51788fcb566e1b8bbfc8f9df48249035b9d2cb8633011b7bd26c5dc
GET /unpkg/react@16.14.0/umd/react.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 4703
vary: Accept-Encoding
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 78916077 16669913
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1673382502.73457314106418226
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Tue, 10 Jan 2023 20:28:22 GMT
cache-control: public, max-age=7776000, immutable
age: 748688
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: W/"63d498e143f421cc44dfb64f22fef270"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/wix-thunderbolt/dist/main.557c88e1.bundle.min.js
34.96.106.200200 OK 43 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/main.557c88e1.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb9387df13d86bddca249ed9b028275e
4f3b575a3b02993c7b6f78b751886d88dbb98a71
3b65dc25341a8a3bb93770b15f2cf9d4015abd565a1ed020f8469a4dac85a45d
GET /services/wix-thunderbolt/dist/main.557c88e1.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 42920
vary: Accept-Encoding
x-amz-replication-status: REPLICA
x-amz-version-id: GGG4LGn5hTdiKPBvq2EVI1neVtKJhWJs
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 236500047 226130248
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1674112716.3817911532684510201
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 19 Jan 2023 07:18:36 GMT
cache-control: public, max-age=7776000, immutable
age: 18474
last-modified: Thu, 19 Jan 2023 06:46:37 GMT
etag: W/"561cc8bf6eca0cf7096ee05e2d3ee002"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 66e4ca409035fd4261385db539e3a48a
4209f54d444e8687410c29e853670f66bfcf3adb
7e011b1d33f92e124096b4273c53986b35747b70dd0befbc3e78390af7c46917
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:07:40 GMT
Expires: Thu, 26 Jan 2023 04:07:39 GMT
Etag: "4209f54d444e8687410c29e853670f66bfcf3adb"
Cache-Control: max-age=574268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f264cc8b527-OSL
static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Futura_Complete/v1/FuturaLTW05-LightCondensed.woff2
34.96.106.200200 OK 27 kB URL HTTP/2 static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Futura_Complete/v1/FuturaLTW05-LightCondensed.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), CFF, length 27056, version 0.0\012- data
Hash 28b219cda3e40f97d4941fa7558d54f9
46fc127bc2e094ddc9086140a8963b9ab648cbce
3600918ad2d761ef9b19e45cc0ae3ab013ac129630e6b0a0d4445d47148c6e04
GET /services/santa-resources/resources/viewer/user-site-fonts/fonts/Futura_Complete/v1/FuturaLTW05-LightCondensed.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 27056
access-control-allow-methods: GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-version-id: DqPQbrRVbJbuuMrhFq9_7DGANaUMpUHn
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 85099221 55239564
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1672563386.9643717300649275253
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Sun, 01 Jan 2023 08:56:26 GMT
cache-control: public, max-age=7776000, immutable
age: 1567804
last-modified: Fri, 22 Jul 2022 10:32:07 GMT
etag: "f5ff7053456961ffa73fe45f07a16529-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-35Light.woff2
34.96.106.200200 OK 25 kB URL HTTP/2 static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-35Light.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 24560, version 1.6553\012- data
Hash 73b063eff2271c7bccf0b9f7b1d6c584
f940d44f19a9edb8b2c0e47c5ee40f98fe8bc413
8f0df435bfdc31c4ae406019c9d872754028b5ecb2125dc9322890f42af1a308
GET /services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-35Light.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 24560
x-amz-version-id: 5gDO2e1MScBABnXoDejVaW1AFh11iwu3
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 36282603 1685832
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVczcu59EpmtW9m1QeKn/Zhei8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1673332930.085445209559468960
via: 1.1 varnish (Varnish/6.0), 1.1 google
access-control-max-age: 3000
date: Tue, 10 Jan 2023 06:42:10 GMT
cache-control: public, max-age=7776000, immutable
age: 798260
last-modified: Fri, 22 Jul 2022 10:32:30 GMT
etag: "cfd0e9c0e3047cda5f6ddd9948b5a59f-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-85Heavy.woff2
34.96.106.200200 OK 27 kB URL HTTP/2 static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-85Heavy.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 26744, version 0.0\012- data
Hash 7b5433a0792406d84a858438b3a0d50a
9134013132790a87987d07b847350e540f078eeb
60a711365e42e9442527a5a8d08ab37ad5da6144eb67cb13de8baaf5ba7e1f9e
GET /services/santa-resources/resources/viewer/user-site-fonts/fonts/Avenir_Family_Pack/v1/AvenirLTW05-85Heavy.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 26744
x-amz-version-id: NYyF0qIZMhsYX2b5Q3F9z.Xgk6t9YwZZ
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 545925609 529582634
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVczcu59EpmtW9m1QeKn/Zhei8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1672323542.0723498854735527160
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 29 Dec 2022 14:19:02 GMT
cache-control: public, max-age=7776000, immutable
age: 1807648
last-modified: Fri, 22 Jul 2022 10:32:30 GMT
etag: "696bab1e7c9b7828a90fd8ba5b0f7242-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4ea7e185dd6eceaa4a12dad813e93a9a
58b14ef28917a35701decb7deb1c512a9abb36e5
433e95bf36a6a53d3eaab41905a136177955619788c6596be58380f4c1f58027
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 20:16:27 GMT
Expires: Tue, 24 Jan 2023 20:16:26 GMT
Etag: "58b14ef28917a35701decb7deb1c512a9abb36e5"
Cache-Control: max-age=459595,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f26cdfe1c0a-OSL
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=67&tts=1179&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=67&tts=1179&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=67&tts=1179&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:30 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8a140cb049d9227730fbbddb3da905cd
686a3c091ba274dad8e034a46b0e9b2009a09bbf
fd8817cebc42288e2c002eca4caef8dc73aa3cca6d39cc94c2fc643d68f07d13
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 12:26:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 04:33:55 GMT
Expires: Thu, 26 Jan 2023 04:33:54 GMT
Etag: "686a3c091ba274dad8e034a46b0e9b2009a09bbf"
Cache-Control: max-age=575843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf8f2619890b3d-OSL
static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js
34.96.106.200200 OK 8.9 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (29952)
Hash 02537e6d273cda09d3e9e82ed93ad8f2
4a4677c085a912bb3c0c31ccaa8941cc7a5c9e7e
3128a15e25f35ee50a9ff11f1e1955b82bd8da2872e405a1561d8b58f0ad4d0c
GET /services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 8904
vary: Accept-Encoding
x-amz-replication-status: REPLICA
x-amz-version-id: t47dIRc_6VvcSStx5.LVr9l8hOFAHAhy
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 265213173 266439763
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1673509184.4791735740912423897
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 12 Jan 2023 07:39:44 GMT
cache-control: public, max-age=7776000, immutable
age: 622006
last-modified: Thu, 12 Jan 2023 07:27:54 GMT
etag: W/"70907ed6d12fe21fe280fdbfedb80690"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=262&tts=1374&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=262&tts=1374&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&st=2&ts=262&tts=1374&url=https%3A%2F%2Fwww.safe-pay.info%2F%3F&v=1.11571.0&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:30 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&name=partially_visible&duration=1674131190120&pageId=xkzux
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&name=partially_visible&duration=1674131190120&pageId=xkzux
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&name=partially_visible&duration=1674131190120&pageId=xkzux HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:30 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&platformOnSite=true
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&platformOnSite=true
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=false&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&ish=false&isb=false&vsi=102310df-7893-42c7-a24f-b51182fe05d6&caching=miss,miss&pv=visible&pn=1&v=1.11571.0&url=https%3A%2F%2Fwww.safe-pay.info%2F&st=2&ts=46&tsn=1159&platformOnSite=true HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:30 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
static.wixstatic.com/media/3b8f7a94808e44feae1d422322d70f92.jpg/v1/fill/w_980,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/3b8f7a94808e44feae1d422322d70f92.jpg
34.102.176.152200 OK 91 kB URL HTTP/2 static.wixstatic.com/media/3b8f7a94808e44feae1d422322d70f92.jpg/v1/fill/w_980,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/3b8f7a94808e44feae1d422322d70f92.jpg
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 855c13bc75dad4088660a24acf6089be
0de8d8976ad6de11e7ac446350ef82023a708708
d99ee269188732e7d7f4b27967967833b980f2e9bfc24f4d290c0cacb96a9955
GET /media/3b8f7a94808e44feae1d422322d70f92.jpg/v1/fill/w_980,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/3b8f7a94808e44feae1d422322d70f92.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 19 Jan 2023 12:26:30 GMT
content-type: image/webp
content-length: 90834
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2KXqHskCnvozCzYTX99OIWLlhdv
x-seen-by: image-manipulator-776b7b8545-7h7dh
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_8ef841140d072eeef2989698baa34b61_23.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
34.96.106.200200 OK 12 kB URL HTTP/2 siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_8ef841140d072eeef2989698baa34b61_23.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
IP 34.96.106.200:0
Hash 8fbe121df68f791b5bfc9e45914035b2
573cbe9f05381981670256e2b5414708f8fea6ec
5526d22db6e044ea1f2737194896631570450b285c2dc214a6b061af73566bf6
GET /pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_8ef841140d072eeef2989698baa34b61_23.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 12:26:30 GMT
content-type: application/json
etag: W/"100bd-uYljWdUFbMGowJW5Ip+Wm42nXxk"
x-wix-request-id: 1674131190.7348089637612623897
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
x-varnish: 282517163
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR377MgboBQKyB2cy+aZvw1lxd,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxtsVM1Bm5MsVuv9abtUZwOG,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++foyiGUbfj08DPToJWVQ0qJX,7npGRUZHWOtWoP0Si3wDp3pk+fOCkUHYAkRreQULO2E=,o/Sof6cnxBFRHBk8PsHvE40A2VjfxCeXG89BXK8CglsmBy7hwH+l+fNRpMPY9Iv3dwmi4nRklr7IW8CfqKrIwQ==,xTu8fpDe3EKPsMR1jrheEGKO70dQtdLarR7i0leYdWI=,X0+kt7XXQOUL1jfJ/HiBIkR0aQGoH3Plkw6Yrsk/ljq3D70o97C2kTx3r1CWwSmwiYki8YR89a3enHan5oSiK/lvfHPi1NlPt4rf3rLE0dM=,xTu8fpDe3EKPsMR1jrheEIza6TGFN2WUakn383K3Ziw=,xTu8fpDe3EKPsMR1jrheEDw/8KWYIUW+koMs4S6waiQ=,tznMqpp3e1oucszW+OT1FLh8T4MEhn1c+9Th3wE6xACRY/lj88CKfErSk+U8Qx57xvTkvJpZJ3BSQGQRmN3J/1iB5QmpRe2J37zq9nDD6cs=
accept-ranges: bytes
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
via: 1.1 varnish (Varnish/6.0), 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.safe-pay.info/_api/v2/dynamicmodel
34.117.168.233200 OK 7.4 kB URL HTTP/2 www.safe-pay.info/_api/v2/dynamicmodel
IP 34.117.168.233:0
File type JSON data\012- , ASCII text, with very long lines (17668), with no line terminators
Hash fbeda5af5e72c361db0c5cce2c9c0593
0e525d362cb5358b43588c0516745740c17f6475
a3c4d398a5da711def51e79139d87216ff72f17891488f68814115e27c3e8ec5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_api/v2/dynamicmodel HTTP/1.1
Host: www.safe-pay.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.safe-pay.info/
Connection: keep-alive
Cookie: ssr-caching=cache#desc=miss#varnish=miss#dc#desc=eun1_g; XSRF-TOKEN=1674131190|MUhTPlHx3tor
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 19 Jan 2023 12:26:30 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
strict-transport-security: max-age=3600
x-wix-request-id: 1674131190.3362352001528905
age: 0
x-seen-by: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMeQIdToiofjAEzH7pCvFyPU,qquldgcFrj2n046g4RNSVBKUaXHrucSLmP/C0nqrtU9YgeUJqUXtid+86vZww+nL,2d58ifebGbosy5xc+FRalp+jNFQzL9U7m1pAdmYFCMUgMgbCR8OYmcd/vcJqARbjXjasSmn6KEfJMcGqErZkCMhqBRNoShyAXlE30Z9qva0=,2UNV7KOq4oGjA5+PKsX47PeE4JkJeK48Oko5cEfOjJRYgeUJqUXtid+86vZww+nL,7npGRUZHWOtWoP0Si3wDp3pk+fOCkUHYAkRreQULO2E=,xTu8fpDe3EKPsMR1jrheEDb/jGovqN0k6dreWxRDvuw=,m86p0LbwQP79i4nFFg3YpkkTZv72hogh6h9s44SivJR1iqMTqgSixErDL2rfoiYeiLmOBCJX9PwPq0FFNfh5cw==
cache-control: no-cache, no-store
vary: Accept-Encoding
server-timing: cache;desc=miss, varnish;desc=miss, dc;desc=eun1_g
set-cookie: hs=2112390680; Path=/; Domain=www.safe-pay.info; HTTPOnly
svSession=c6fa0f8d0be3037111aec95abddae4dad5b840384534c87277e033132229637698d753593a725474fa5bb47c153d98f81e60994d53964e647acf431e4f798bcd046a7564e69b3a7fc4b55243d63f58348992ba66da5a5ec8503b1b822d695dabfa290ac751f3a1ffa5b818de671d55c100b9c96fad74cb345ba05af0c8fb88b558bd89a1edd99527892ee11050d4993f; Max-Age=63158399; Expires=Sun, 19 Jan 2025 12:26:29 GMT; Path=/; Domain=www.safe-pay.info; Secure; HTTPOnly; SameSite=None
x-content-type-options: nosniff
content-encoding: br
server: Pepyaka/1.19.10
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frog.wix.com/site-members?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2023&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=5&evid=698&biToken=e84f5218-2434-40ee-853d-5f4a84a7257a&context=undefined&ts=911&viewmode=undefined&visitor_id=2e401d01-1c60-4bf7-bac6-949d6a88ce68&site_member_id=undefined&site_settings_lng=ko&browser_lng=ko&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908210
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/site-members?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2023&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=5&evid=698&biToken=e84f5218-2434-40ee-853d-5f4a84a7257a&context=undefined&ts=911&viewmode=undefined&visitor_id=2e401d01-1c60-4bf7-bac6-949d6a88ce68&site_member_id=undefined&site_settings_lng=ko&browser_lng=ko&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908210
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /site-members?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2023&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=5&evid=698&biToken=e84f5218-2434-40ee-853d-5f4a84a7257a&context=undefined&ts=911&viewmode=undefined&visitor_id=2e401d01-1c60-4bf7-bac6-949d6a88ce68&site_member_id=undefined&site_settings_lng=ko&browser_lng=ko&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908210 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_63ec91fb305605b195342fa10c968db1_22.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
34.96.106.200200 OK 30 kB URL HTTP/2 siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_63ec91fb305605b195342fa10c968db1_22.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
IP 34.96.106.200:0
Hash d241fafa174f2fd960703ce42bbb4371
7718d7deb098f7fc58637df2989c74442553b5ac
c07f8f34d3f3a974e8440ebd4c7599f77fc337888c865a213edc29df41309d6b
GET /pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2051.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.safe-pay.info&fileId=d5fdb234.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=ko&languageResolutionMethod=QueryParam&metaSiteId=e84f5218-2434-40ee-853d-5f4a84a7257a&module=thunderbolt-features&originalLanguage=ko&pageId=58d110_63ec91fb305605b195342fa10c968db1_22.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10189.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=6d24ddff-c453-4b83-9e47-7239910ea4c8&siteRevision=23&staticHTMLComponentUrl=https%3A%2F%2Fwww-safe-pay-info.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 12:26:30 GMT
content-type: application/json
etag: W/"9a4d-txUHHguUBObPZb6w40GbFalpkyo"
x-wix-request-id: 1674131190.7398216336203910201
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
x-varnish: 153549633
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR375iK9ipUuWu57EktsrV6pBx,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxvUc7ZxxxFIibajI5AWadta,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++fpvmsx7F26ZosK16z37zuo4,7npGRUZHWOtWoP0Si3wDp545VfEBiRjNdXx0hJr5t9M=,o/Sof6cnxBFRHBk8PsHvE1wF1hH4AGxFXKIw4UfgjavCTPyGZerrrFqL434Tzdk9Q+/hXVu6WomuLW63YNCusw==,xTu8fpDe3EKPsMR1jrheEMwvvM+8/wcc7PfSDvZss7I=,X0+kt7XXQOUL1jfJ/HiBIkR0aQGoH3Plkw6Yrsk/ljq3D70o97C2kTx3r1CWwSmwppK7z4w+KnYC6FfAXA69XWKYOGbsgxQQWN/5WP9Ax9FYgeUJqUXtid+86vZww+nL,xTu8fpDe3EKPsMR1jrheEMwvvM+8/wcc7PfSDvZss7I=,xTu8fpDe3EKPsMR1jrheEI2tg3baoGEgGRE062jmO6Q=,tznMqpp3e1oucszW+OT1FLh8T4MEhn1c+9Th3wE6xAC6EJZPGejdt+bMfeDuEM+XRvc/G01YICHk9djtvQb7dViB5QmpRe2J37zq9nDD6cs=
accept-ranges: bytes
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
via: 1.1 varnish (Varnish/6.0), 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frog.wix.com/bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2056&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=72&evid=520&widgets_ids=NO_APPS&apps_ids=NO_APPS&page_number=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908491
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2056&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=72&evid=520&widgets_ids=NO_APPS&apps_ids=NO_APPS&page_number=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908491
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2056&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=72&evid=520&widgets_ids=NO_APPS&apps_ids=NO_APPS&page_number=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311908491 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.224.41.60204 No Content 0 B IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1772
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fcbf055926917326f50e88d3fe1eaefd
d2b6744516fa5e88677d350cf33652e326532a12
0c0a74a1bba92c5a4e3139a5a69330640af51871655ac92093573925e6498fcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 12:26:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2354&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=642&tts=2353&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311911492
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2354&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=642&tts=2353&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311911492
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2354&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=642&tts=2353&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311911492 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sar=1280x1002&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&sr=1280x1024&st=2&ts=1284&tts=2396&url=https%3A%2F%2Fwww.safe-pay.info%2F&v=1.11571.0&vid=2e401d01-1c60-4bf7-bac6-949d6a88ce68&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7|1&vsi=102310df-7893-42c7-a24f-b51182fe05d6&wor=1280x1024&wr=1280x939&_brandId=wix
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sar=1280x1002&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&sr=1280x1024&st=2&ts=1284&tts=2396&url=https%3A%2F%2Fwww.safe-pay.info%2F&v=1.11571.0&vid=2e401d01-1c60-4bf7-bac6-949d6a88ce68&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7|1&vsi=102310df-7893-42c7-a24f-b51182fe05d6&wor=1280x1024&wr=1280x939&_brandId=wix
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=e84f5218-2434-40ee-853d-5f4a84a7257a&pid=xkzux&pn=1&sar=1280x1002&sessionId=95ff0e93-2f08-44d4-8331-848c7efb32a5&siterev=23-__siteCacheRevision__&sr=1280x1024&st=2&ts=1284&tts=2396&url=https%3A%2F%2Fwww.safe-pay.info%2F&v=1.11571.0&vid=2e401d01-1c60-4bf7-bac6-949d6a88ce68&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7|1&vsi=102310df-7893-42c7-a24f-b51182fe05d6&wor=1280x1024&wr=1280x939&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/pa?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2413&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=76&evid=1109&pid=xkzux&pn=1&viewer=TB&pt=static&pa=editor&pti=xkzux&uuid=58d1103e-14af-449f-98a6-0b299f2807fb&url=https%3A%2F%2Fwww.safe-pay.info%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311912043
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/pa?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2413&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=76&evid=1109&pid=xkzux&pn=1&viewer=TB&pt=static&pa=editor&pti=xkzux&uuid=58d1103e-14af-449f-98a6-0b299f2807fb&url=https%3A%2F%2Fwww.safe-pay.info%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311912043
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pa?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2413&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=76&evid=1109&pid=xkzux&pn=1&viewer=TB&pt=static&pa=editor&pti=xkzux&uuid=58d1103e-14af-449f-98a6-0b299f2807fb&url=https%3A%2F%2Fwww.safe-pay.info%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311912043 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
wixlabs-wix-faq-11.appspot.com/index?pageId=masterPage&compId=comp-l1kuhblm&viewerCompId=comp-l1kuhblm&siteRevision=23&viewMode=site&deviceType=desktop&locale=ko&tz=Asia%2FTokyo®ionalLanguage=ko&width=980&height=371&instance=2oHxBeOgRlvAeaFKg9YiFjcj0ZhT61CnmZzaISeKFfw.eyJpbnN0YW5jZUlkIjoiN2E1MzdjNjAtODQ5Mi00YjFjLTk1MzQtMDEwNGFhYzI5NjE2IiwiYXBwRGVmSWQiOiIxNGM5MmQyOC0wMzFlLTc5MTAtYzlhOC1hNjcwMDExZTA2MmQiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsImJpVG9rZW4iOiI5MjFjMmU3OC1hMGE2LTBiZjItMTAwOS01ZTRlMmU2NWIzNmMiLCJzaXRlT3duZXJJZCI6IjU4ZDExMDNlLTE0YWYtNDQ5Zi05OGE2LTBiMjk5ZjI4MDdmYiJ9¤cy=JPY¤tCurrency=JPY&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%2C%22BSI%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%7D&vsi=102310df-7893-42c7-a24f-b51182fe05d6
142.250.74.116200 OK 3.4 kB URL HTTP/2 wixlabs-wix-faq-11.appspot.com/index?pageId=masterPage&compId=comp-l1kuhblm&viewerCompId=comp-l1kuhblm&siteRevision=23&viewMode=site&deviceType=desktop&locale=ko&tz=Asia%2FTokyo®ionalLanguage=ko&width=980&height=371&instance=2oHxBeOgRlvAeaFKg9YiFjcj0ZhT61CnmZzaISeKFfw.eyJpbnN0YW5jZUlkIjoiN2E1MzdjNjAtODQ5Mi00YjFjLTk1MzQtMDEwNGFhYzI5NjE2IiwiYXBwRGVmSWQiOiIxNGM5MmQyOC0wMzFlLTc5MTAtYzlhOC1hNjcwMDExZTA2MmQiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsImJpVG9rZW4iOiI5MjFjMmU3OC1hMGE2LTBiZjItMTAwOS01ZTRlMmU2NWIzNmMiLCJzaXRlT3duZXJJZCI6IjU4ZDExMDNlLTE0YWYtNDQ5Zi05OGE2LTBiMjk5ZjI4MDdmYiJ9¤cy=JPY¤tCurrency=JPY&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%2C%22BSI%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%7D&vsi=102310df-7893-42c7-a24f-b51182fe05d6
IP 142.250.74.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7389)
Hash 69ebd813ab9fbfdf44f5fa01162eb2ab
86a8f8fda31f959cf12161ce2da39b4b22c92a1a
5fc41d82dfcfd3d4f6db16127ac7da545670caed854bf107e0263dce652b328a
GET /index?pageId=masterPage&compId=comp-l1kuhblm&viewerCompId=comp-l1kuhblm&siteRevision=23&viewMode=site&deviceType=desktop&locale=ko&tz=Asia%2FTokyo®ionalLanguage=ko&width=980&height=371&instance=2oHxBeOgRlvAeaFKg9YiFjcj0ZhT61CnmZzaISeKFfw.eyJpbnN0YW5jZUlkIjoiN2E1MzdjNjAtODQ5Mi00YjFjLTk1MzQtMDEwNGFhYzI5NjE2IiwiYXBwRGVmSWQiOiIxNGM5MmQyOC0wMzFlLTc5MTAtYzlhOC1hNjcwMDExZTA2MmQiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsImJpVG9rZW4iOiI5MjFjMmU3OC1hMGE2LTBiZjItMTAwOS01ZTRlMmU2NWIzNmMiLCJzaXRlT3duZXJJZCI6IjU4ZDExMDNlLTE0YWYtNDQ5Zi05OGE2LTBiMjk5ZjI4MDdmYiJ9¤cy=JPY¤tCurrency=JPY&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%2C%22BSI%22%3A%226c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1%22%7D&vsi=102310df-7893-42c7-a24f-b51182fe05d6 HTTP/1.1
Host: wixlabs-wix-faq-11.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.safe-pay.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2c5a-CNaNtUPBQa1hqAB+ZBVSumb5DKE"
vary: Accept-Encoding
content-encoding: gzip
x-cloud-trace-context: 683460fac06d2f44f40777a49749a131
date: Thu, 19 Jan 2023 12:26:31 GMT
server: Google Frontend
cache-control: private
content-length: 3430
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fcbf055926917326f50e88d3fe1eaefd
d2b6744516fa5e88677d350cf33652e326532a12
0c0a74a1bba92c5a4e3139a5a69330640af51871655ac92093573925e6498fcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 12:26:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Thu, 19 Jan 2023 13:21:10 GMT
Date: Thu, 19 Jan 2023 12:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Thu, 19 Jan 2023 13:21:10 GMT
Date: Thu, 19 Jan 2023 12:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Thu, 19 Jan 2023 13:21:10 GMT
Date: Thu, 19 Jan 2023 12:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Thu, 19 Jan 2023 13:21:10 GMT
Date: Thu, 19 Jan 2023 12:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3279
Expires: Thu, 19 Jan 2023 13:21:10 GMT
Date: Thu, 19 Jan 2023 12:26:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 511bbd0c410838e4a978d471d361d876
706be1b2636ad65bf5fe78ef7301af472c015275
e124c1ba6059fb613d0ab8f7ad37f4524323e7bbde851f78e9e5727c7d20f19f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: 42bb326d-889c-4b91-b989-47c1fd650afa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e96pVF61oAMF76g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8a4a1-2f33e6be45e298a7120d1119;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 02:02:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 68BfqCCeDzqQURstD87lSuWaXjwrqVQnXX8ws6EeFfQtbu_ad9JEgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 05:26:43 GMT
etag: "706be1b2636ad65bf5fe78ef7301af472c015275"
content-type: image/jpeg
age: 25189
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b8f931fb5afe958e67fce9e1822dac4
5732887999b819f6facc6f4608a407b5a09adf75
3c6c787e700f8139ec0eeaad93923f647f9efa5ce60120fc0aab52fa9588efaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5005
x-amzn-requestid: 647dd62e-6b47-4298-9457-c7f37e653e0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e5qLKEX6IAMFX0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c6f0ad-3dc1396c1b3662fa4ec5f1fa;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 19:02:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ge_XozSe44BAhC-fFiu-u8Oa4jd8Uctn4O3fmdLCavhYpcSVrhNMww==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 17:42:33 GMT
age: 67439
etag: "5732887999b819f6facc6f4608a407b5a09adf75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1b47910c4f71976f73a884bcae6f9bc
26c0d42fddb2a02d9878c34a76874710c92a9d30
9c5ce4945939b126cd36202f5afb8009ce790a792270ec31cc22099e4cd12a24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3861
x-amzn-requestid: c8fbb2e1-9ec6-42c0-8030-9be785e8913e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9TegFNEoAMFwqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c865f6-04a9e7db684e88ed69e1bd43;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wTiBoiSa1euVzUKPwlAWWZD-fYwMQGxgvRRzr1ALkrFY5VV3zeL9Jg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:52:42 GMT
age: 52430
etag: "26c0d42fddb2a02d9878c34a76874710c92a9d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 159d5f1e013b1a3b713aeadad55e3e1c
98eb5bdc0c81a275f6f113f07f93bd280fb933b8
7e9222460265eb1ae26bcc75a29d3034a6533738fd1ed0586ea37614e11b9085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10394
x-amzn-requestid: e5bef07b-72c7-47e8-8019-6b9bd06ffbd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7Mr9H8GIAMFUEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c78e4c-21ffe7c616629dfb0a4b5107;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 06:14:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qxIHrQt5eASBfeHl-HPRbhyrG5W_ZMGA4tSFoPhY0CxywdQlk4WkTA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 11:17:18 GMT
age: 4154
etag: "98eb5bdc0c81a275f6f113f07f93bd280fb933b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F698f24eb-f312-4a20-b261-be41dd92564c.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F698f24eb-f312-4a20-b261-be41dd92564c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffb6957f05eb26875b60b795a1a0e818
44c2febdf59c4f08401e7c3edd0837dd4b1a8886
0fdb841fbf2f336f58cc4b63d271c8cdd3fba345de4c774651826ea24e3628b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F698f24eb-f312-4a20-b261-be41dd92564c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6399
x-amzn-requestid: e4b80b20-8aad-47aa-9059-7f7729f901bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7UZ1ExQoAMFXKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79aa5-66622b6c3e8fd210011618c5;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:07:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vft6w7_C0wITMZHJIKtgk1N4jnzneplWHUZhPz_JyHmSI9kcEMK-SA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 07:25:58 GMT
age: 18034
etag: "44c2febdf59c4f08401e7c3edd0837dd4b1a8886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 816accd72419764cabc1d038af58446c
ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08
d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vPjapwQ2XBhjwPeNVzi3NQ0YSMyseKuyavdCo2CTFoxrRkiKXVu7lw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 01:36:26 GMT
age: 39006
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.224.41.60204 No Content 0 B IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4185
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:31 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=1331&_lv=2.0.985%7CC&evid=872&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311924850
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=1331&_lv=2.0.985%7CC&evid=872&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311924850
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=1331&_lv=2.0.985%7CC&evid=872&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311924850 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wixlabs-wix-faq-11.appspot.com
Connection: keep-alive
Referer: https://wixlabs-wix-faq-11.appspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:32 GMT
server: nginx
access-control-allow-origin: https://wixlabs-wix-faq-11.appspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3734&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=643&tts=3734&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925264
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3734&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=643&tts=3734&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925264
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3734&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=643&tts=3734&pid=xkzux&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925264 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:32 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3736&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=644&tts=3736&pid=xkzux&stage=undefined&stageNum=40&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925285
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3736&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=644&tts=3736&pid=xkzux&stage=undefined&stageNum=40&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925285
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3736&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_siteMemberId=undefined&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&appId=14c92d28-031e-7910-c9a8-a670011e062d&widget_id=14c92de1-0e02-cbe5-98e9-c3de44d63a55&instance_id=comp-l1kuhblm&src=42&evid=644&tts=3736&pid=xkzux&stage=undefined&stageNum=40&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311925285 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:32 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.224.41.60204 No Content 0 B IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1818
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:32 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&ts=3289&tsn=4401&dc=84µPop=eun1_g&caching=miss%2Cmiss&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&st=2&url=https%3A%2F%2Fwww.safe-pay.info%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=xkzux&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11571.0&_brandId=wix&_siteBranchId=undefined&_ms=4401&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16741311931936&tti=2351&tbt=104&iframes=1&screens=5&countScripts=28&startTimeScripts=1450&durationScripts=793&mttfbScripts=15&attfbScripts=14&tbdScripts=407958&countImages=5&startTimeImages=1598&durationImages=310&mttfbImages=10&attfbImages=45&tbdImages=111441&countFonts=9&startTimeFonts=1471&durationFonts=264&mttfbFonts=26&attfbFonts=22&tbdFonts=201163&entryType=loaded&duration=1971&ttlb=1315&dcl=1729&transferSize=76775&decodedBodySize=314070&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&ssrDuration=391&ssrTimestamp=1674131190405&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&ts=3289&tsn=4401&dc=84µPop=eun1_g&caching=miss%2Cmiss&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&st=2&url=https%3A%2F%2Fwww.safe-pay.info%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=xkzux&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11571.0&_brandId=wix&_siteBranchId=undefined&_ms=4401&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16741311931936&tti=2351&tbt=104&iframes=1&screens=5&countScripts=28&startTimeScripts=1450&durationScripts=793&mttfbScripts=15&attfbScripts=14&tbdScripts=407958&countImages=5&startTimeImages=1598&durationImages=310&mttfbImages=10&attfbImages=45&tbdImages=111441&countFonts=9&startTimeFonts=1471&durationFonts=264&mttfbFonts=26&attfbFonts=22&tbdFonts=201163&entryType=loaded&duration=1971&ttlb=1315&dcl=1729&transferSize=76775&decodedBodySize=314070&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&ssrDuration=391&ssrTimestamp=1674131190405&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&vsi=102310df-7893-42c7-a24f-b51182fe05d6&_av=thunderbolt-1.11571.0&isb=false&ts=3289&tsn=4401&dc=84µPop=eun1_g&caching=miss%2Cmiss&session_id=95ff0e93-2f08-44d4-8331-848c7efb32a5&st=2&url=https%3A%2F%2Fwww.safe-pay.info%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=xkzux&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11571.0&_brandId=wix&_siteBranchId=undefined&_ms=4401&_lv=2.0.985%7CC&_mt_instance=YFdZRfWOH2taj-BU5K0IxlxYGoSk2uKovfBHZcOzVVI.eyJpbnN0YW5jZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiZTg0ZjUyMTgtMjQzNC00MGVlLTg1M2QtNWY0YTg0YTcyNTdhIiwic2lnbkRhdGUiOiIyMDIzLTAxLTE5VDEyOjI2OjMwLjQxMloiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjJlNDAxZDAxLTFjNjAtNGJmNy1iYWM2LTk0OWQ2YTg4Y2U2OCIsInNpdGVPd25lcklkIjoiNThkMTEwM2UtMTRhZi00NDlmLTk4YTYtMGIyOTlmMjgwN2ZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16741311931936&tti=2351&tbt=104&iframes=1&screens=5&countScripts=28&startTimeScripts=1450&durationScripts=793&mttfbScripts=15&attfbScripts=14&tbdScripts=407958&countImages=5&startTimeImages=1598&durationImages=310&mttfbImages=10&attfbImages=45&tbdImages=111441&countFonts=9&startTimeFonts=1471&durationFonts=264&mttfbFonts=26&attfbFonts=22&tbdFonts=201163&entryType=loaded&duration=1971&ttlb=1315&dcl=1729&transferSize=76775&decodedBodySize=314070&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&ssrDuration=391&ssrTimestamp=1674131190405&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:33 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=2157&_lv=2.0.985%7CC&evid=860&tab_name=&num_of_questions=3&num_of_categories=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311933051
3.224.41.60204 No Content 0 B URL HTTP/2 frog.wix.com/wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=2157&_lv=2.0.985%7CC&evid=860&tab_name=&num_of_questions=3&num_of_categories=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311933051
IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wixlabs-ugc?_msid=e84f5218-2434-40ee-853d-5f4a84a7257a&_appId=14c92d28-031e-7910-c9a8-a670011e062d&_instanceId=7a537c60-8492-4b1c-9534-0104aac29616&_siteOwnerId=58d1103e-14af-449f-98a6-0b299f2807fb&_siteMemberId=&_visitorId=2e401d01-1c60-4bf7-bac6-949d6a88ce68&_viewMode=site&_bsi=6c5ea1be-074d-41a8-ae54-d19453cff1f7%7C1&src=63&comp_id=comp-l1kuhblm&hosting=wixlabs-ugc&_brandId=wix&_siteBranchId=undefined&_ms=2157&_lv=2.0.985%7CC&evid=860&tab_name=&num_of_questions=3&num_of_categories=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16741311933051 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wixlabs-wix-faq-11.appspot.com
Connection: keep-alive
Referer: https://wixlabs-wix-faq-11.appspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:33 GMT
server: nginx
access-control-allow-origin: https://wixlabs-wix-faq-11.appspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.224.41.60204 No Content 0 B IP 3.224.41.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1291
Origin: https://www.safe-pay.info
Connection: keep-alive
Referer: https://www.safe-pay.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 12:26:33 GMT
server: nginx
access-control-allow-origin: https://www.safe-pay.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
www.safe-pay.info/
34.117.168.233200 OK 0 B IP 34.117.168.233:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.safe-pay.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 19 Jan 2023 12:26:30 GMT
content-type: text/html; charset=UTF-8
link: <https://static.parastorage.com/>; rel=preconnect; crossorigin;,<https://static.parastorage.com/>; rel=preconnect;,<https://static.wixstatic.com/>; rel=preconnect; crossorigin;,<https://static.wixstatic.com/>; rel=preconnect;,<https://siteassets.parastorage.com>; rel=preconnect; crossorigin;,
x-wix-request-id: 1674131189.90223518792928905
content-language: en-US
strict-transport-security: max-age=3600
age: 0
x-seen-by: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMeQIdToiofjAEzH7pCvFyPU,qquldgcFrj2n046g4RNSVOEcKTWnPkUHK4qOWpouMik=,2d58ifebGbosy5xc+FRalt3D3pi3ZdGmUmkWG4NEKaTsxqLjYHeDGI1khGViJSx2XjasSmn6KEfJMcGqErZkCIFzTOLu6FPuVs5fBlyMPWI=,2UNV7KOq4oGjA5+PKsX47F5BsGrV9wopHJr0QwUp44Wa46R9xNIlpQ4eUPYpBuqs,7npGRUZHWOtWoP0Si3wDp3pk+fOCkUHYAkRreQULO2E=,m86p0LbwQP79i4nFFg3YpgU/0elzWC6yAvVG7f2syrNbFmvdoENPQhWvRHoY5J1fvGQ2Otd3B2C27oTTIAKJtQ==,xTu8fpDe3EKPsMR1jrheEI2rJdoCwqv9YGH5LiSFcyU=,xTu8fpDe3EKPsMR1jrheEMPe4j+sYRR4GGWpUI+Do4g=,LoUK8/saGAmOxZWtpubo2leTAIKm/bEWaMRniwm9S9wL05xaCpyk7TpZGGV35qDlNIq1sQGAldIaHS4pWO3TkQ==,xTu8fpDe3EKPsMR1jrheEMPe4j+sYRR4GGWpUI+Do4g=,xTu8fpDe3EKPsMR1jrheEPgIKO21KHGamIqv1pgZrTo=,/a5ccLSK1HEmwPNg/x6OuhwVf+M/llv4ecAdPJ9TQidnAJ1YB4BMKGJvw5SDSfaeCab7D+ZXCVZtObyGX6L0Pg==
vary: Accept-Encoding
set-cookie: ssr-caching=cache#desc=miss#varnish=miss#dc#desc=eun1_g; Max-Age=20; Expires=Thu, 19 Jan 2023 12:26:50 GMT
XSRF-TOKEN=1674131190|MUhTPlHx3tor; Path=/; Domain=www.safe-pay.info; Secure; SameSite=None
server-timing: cache;desc=miss, varnish;desc=miss, dc;desc=eun1_g
cache-control: private,max-age=0,must-revalidate
x-content-type-options: nosniff
content-encoding: br
server: Pepyaka/1.19.10
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2