POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16233
Expires: Wed, 25 Jan 2023 06:23:10 GMT
Date: Wed, 25 Jan 2023 01:52:37 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12794
Expires: Wed, 25 Jan 2023 05:25:51 GMT
Date: Wed, 25 Jan 2023 01:52:37 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 01:35:08 GMT
age: 1049
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16407
Expires: Wed, 25 Jan 2023 06:26:04 GMT
Date: Wed, 25 Jan 2023 01:52:37 GMT
Connection: keep-alive
|
GET /Iguah/csvsre4112uodsu/Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 25 Jan 2023 01:52:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4%2F6HPIzQl0q84bj7ceDU2E9yWqLVsvQK%2FQkYba8%2B%2Fu1iZ8Yu59HAPXRUccyJ1SeTDD5%2B7F3Lr2DX0FECmIGxzhTb3Q%2F%2Bxh1BXQF0cUQiK0PNPPA6M7%2Fz%2B8AcxTGPV7hYczMvCo3Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ed5eda3e6bb515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: N2AAlCzXt8yQ+FIoUb7Izov5vsSbMY9p8Yu07G/G5/1R+NSQeHwYqz18ywFbUdJiFdlNZlFFxyvWziMFibNPwA==
x-amz-request-id: D1XKBSJFZD26YCW6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 01:48:23 GMT
age: 254
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Wed, 25 Jan 2023 01:52:37 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /gtag/js?id=UA-22484186-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.40
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 25 Jan 2023 01:52:37 GMT
expires: Wed, 25 Jan 2023 01:52:37 GMT
cache-control: private, max-age=900
last-modified: Wed, 25 Jan 2023 00:34:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44118
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 01:17:31 GMT
age: 2107
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3026
Expires: Wed, 25 Jan 2023 02:43:04 GMT
Date: Wed, 25 Jan 2023 01:52:38 GMT
Connection: keep-alive
|
GET /jquery-1.11.0.min.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/Iguah/csvsre4112uodsu/Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:59:06 GMT
ETag: W/"63a31f3a-1787d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xhUiakFMuztAhozfhY849eZ%2ByQ1O%2BFX5uozTUVNldkYP3T1YfxcjTlSM42tww9cxTmXp240RMQgdSDRddpZnArOf35QyisC3f4HUZajYukO2M38wSX0M%2BGBh7hsStwgWu1wX21wDDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5edcdfa0b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tdq//806GVKwbZZAJ3nKYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
44.233.165.74
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jAmbNF9khijyNyixkdq+N7dcNZg=
|
POST /s/gts1p5/KqDZQxiU_c4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:38 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /s/gts1p5/KqDZQxiU_c4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fYQd9eo2QrKfvUYTUMoZTP8mAYrmahVRbn%2BI999rCG6DfQju2hHyv36RiHP4QrCbduYk4kr1t%2FCxaWku0yzAc3BeXELZ368g0XEYT5JOG5cwQuwE56U3I2n3VqbeTuPr4Vdbz8WhuA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ed5ee3dad2b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
151.101.66.110
HTTP/2 200 OK
content-type: image/gif
access-control-allow-origin: *
cache-control: max-age=315360000, public
etag: "63d05b97-4be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 22:28:39 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 25 Jan 2023 01:52:39 GMT
age: 12138
x-served-by: cache-iad-kiad7000052-IAD, cache-bma1651-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 101
x-timer: S1674611559.290866,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1214
X-Firefox-Spdy: h2
|
GET /clicks/circaknee_files/modernizr-custom.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-114c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XqkuVxcEt407JWLwr30hDhLTvAxPWRcVFh8T7AzT8FPwvGeXcah3IEVr891va2rCWYzmYq7cfytRZGA6PzF%2BkjACzN2qdMA7EJL6PjdlsoaS6JhA9wsH5Rz6AT%2BNfOlF8J9ZL5TUVg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee50ec9b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/blueshift.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-1096"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=keMT9loJ6SXpcPiRdRl8QHwY8b0cGLXiJTkPj3Jy6bVK7e%2BVp1%2BcRYPktouRNxArUUyYN5mIfWETkuvG5Dc5grEkoCpeX2KVesaIpcr4J8z9RAbYCyReXm034gj6xhYsk5SCM5XgCw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee50d7a1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/css2.css HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/css
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-65d2"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2esmFjqHa%2BRmqnTnGHtXQvsypQGDU1bjsg3O7pKQy8wFlrwJ8aUXWf%2BPBiS%2FlvBk0SNCH00YWwwz%2BO2MkWCBvMdOP7w4KcjHkE0ioDQpqFHDtJm%2FEL8TOTAKAANWpK6LLpd5bb9sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee50aeab4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/blazy.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-1448"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KT2W1hYcWpBUDOLhwTrAXEFpeKqjfUA%2BE1A%2Ba4O04A0f4nXVdLTpyZ0Rz6Xhhfk2WN81lhyfbJoeVeyaB1m5S1QOWpuug8S45mELrIBcWjB78KlRswPGYe14Bzl8br9jU%2FhYeE04YA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee6df8fb527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10234
Expires: Wed, 25 Jan 2023 04:43:13 GMT
Date: Wed, 25 Jan 2023 01:52:39 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10234
Expires: Wed, 25 Jan 2023 04:43:13 GMT
Date: Wed, 25 Jan 2023 01:52:39 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10234
Expires: Wed, 25 Jan 2023 04:43:13 GMT
Date: Wed, 25 Jan 2023 01:52:39 GMT
Connection: keep-alive
|
GET /clicks/circaknee_files/jquery-3.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-d573"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t27crswub4NS8dxIxrZpZBsTgCE4uTdb%2FMdV6uiZbNyDYKxAF3vsznBB%2BZU5yeA3a59qTZ%2BneovUotsNGsDDErEmIoQOSjNOEHdtOCwmtqZCiSm4J3tg%2F1kiXtMSJ7QJVbBCs1ET8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee59b9fb515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9864
x-amzn-requestid: dd368937-de20-4e2a-82e3-e82bc20a806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AtgGu3oAMFaoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-7efe789a5411c14a74ec327a;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MDBCOwO8k543vmWo7ROvYyqyzju9iJIyGZvMpzHv7VqIoats0p3Nxg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 10:10:42 GMT
age: 56517
etag: "2528a659d067ce39b31d5d8a0a9943e313a4caa6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b0cb327-c176-43cd-8ce3-7ed2a48e697f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8806
x-amzn-requestid: 1f9b1ebe-d1d7-44d5-9548-4632b32fbdd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-m3gF29IAMF30A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8eb63-297056c14cf56ee52c2c7cd9;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 07:04:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QAGHqubqMG0F2s7RkDk9nYrus_r5-XOGyIhZCpMiFKfQvGwVfWULsA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:24:16 GMT
age: 59303
etag: "ee2c14f82ea1e653b993fda0839a32943c5d9f86"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11918
x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqxwEyWoAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntW_cYMwX6UWInGOxxPlwnV1AJh46X-hiLvwggRz9oa1Yno6jyE51g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 03:28:47 GMT
age: 80632
etag: "4b758cc432874384f330568177eef5a328d7e69a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10921
x-amzn-requestid: 7b8849e6-b52d-4165-b456-b200ddbb993b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtkGThIAMFb7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-1ed4803112d97956419b299e;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FUbNMfYy8ci6d78p6LCu0Gxs3jw824ZzVp6drAbl8HCDBpghlZFP7g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 03:32:39 GMT
age: 80400
etag: "b199a381ccac4628f2bfa626b44c71954713ca98"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 14682
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6231
x-amzn-requestid: 85406169-05a4-4ba9-8a20-5ed2badec48a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEXPmGB_oAMF7Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb38ca-607a23df395511207f5958cd;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 00:58:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tW2UAQbLJC3bGvFrbpeiQSQ8OkUqgIBAY4_vD_cGsfrd5FEIiJtjAw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 04:51:40 GMT
age: 75659
etag: "695d7913e35a7e086d76c38d7c6f43462b0896df"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /clicks/circaknee_files/pre-vsl.css HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/css
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-2912"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WN9yYu%2B5%2F1Qk%2FYP2%2FeR%2BTDtZm%2FOwZuhpSoNeVXj6rpKyF4MYnrybt%2F4PbP5LHHz4szKyiCb%2FicZLm9SOUJyGvJmuJU771IPah8zeR4QLrdp9U6Z45lvWTjd7A5wbc2VC2fnjSFp1zg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee7abfbb4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/ctrwowUtils-v2.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-8306"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T5NC26WyW31oyJ4tSRB3WZd85u68SjZY2YCCdcprhF1lF3mBFBrw4e%2Fu1c3y4xMHx8adePslFa%2FvSjnQE%2FOhMo4tj2WA9NUB%2FpEN1cccH427%2FA%2FrwRGl4VpuAzzqwAQ4yhBgQl1anA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee6ddfa1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v29/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 05:34:48 GMT
expires: Wed, 24 Jan 2024 05:34:48 GMT
cache-control: public, max-age=31536000
age: 73072
last-modified: Wed, 22 Sep 2021 16:13:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /clicks/circaknee_files/gtm_002.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-3e9e8"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HEQUrWukll7xN3Pnx0lv6RmjgFCB0Ac6p55kaQZPFtJkGxC26UgE0TakEMawujV0%2FXx9lWkoqD5TtLhVulU526qHATcxicrS9J%2Fm58kiCVg%2Bv1hgD%2F0D1TfvJXs7V2g5iejsEkkayA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee50b400b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/gtm.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-3a09f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cilxXe%2FL7pnlODM%2Bv5iAvxpSvO5CI4b34yP87FuOk8aKMm93QrHrz1t8JuMngGV2ktTbcjf2r92LYTGI9O4ttGmIEln73WeOzln9ueFlWcHUCP47wTTdDNV1srmgMf1hf6TO6P1KeA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee50ab9fac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /s/roboto/v29/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 21:48:33 GMT
expires: Fri, 19 Jan 2024 21:48:33 GMT
cache-control: public, max-age=31536000
age: 446647
last-modified: Wed, 22 Sep 2021 16:13:21 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v29/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15732
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 13:04:23 GMT
expires: Fri, 19 Jan 2024 13:04:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Sep 2021 16:13:20 GMT
age: 478097
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /clicks/circaknee_files/CTR_FUNNEL_TRACKING-v2.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-2241"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceUohHk2vqvISZiMQGRs1ifcvte65Wpu75FDzetMwYchutNji15VCWQYhtSSzEauemocUY%2FRjDP6PrHSzFsyhurFL6socitsCnnEKHMRHJM%2F8NjaqT2KXJ%2BhrsaC3ZbCDc7LESzPXw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee90d43b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/ctr_heatmap_tracking-v1.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-775e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hYsYvcrjVnzIYwoky%2F%2BhAeo7nsOMM%2Fq4a7qa7ZAEfZbRHjSZBLVuD1oqpouEiM3T4vLhNBvrTRXHcwyJ2wmJGcoZ0pLYwHtBGsrq5WgitOQU7iQkgs%2BfrD5hnpStVQqTPAhhft8QtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee96cbcb4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/CTR_FP_TRACKING-v2.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-a365"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=02l0wdUVSRPMWMCx6MLwJTlk%2BErzlD6zeLTdYsd7t6moY%2BdAildeUiwwpmycdTzK8qZ2NCoO9orwrvDzPNE545ZtXorobU3wVNqXIK3Bk3ckLTqTMWsZj1jBp%2FqRlr4ByGs1mZSrqg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee8984db527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/ctrwow_analytics.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-d903"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6kBKRnQu%2FW53EGsoqgZJvz333Y4ZTdOVHAB5FtQpXzqj1VntWbXxjXgsT1ipFPdaLYpIxxxbebDbdoRrOHlNOPZaIf4QVL%2FLRYrSdxdo0MkIVryuqgOe84SvvPfLMVpGBojyU1XQyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ee96ea61c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/E-v1.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-9b796"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EsK4zq0sYzhfiHokjCb77JE5WNKCA3g%2BxgbRHQo39echVFgdAYM7ear%2BgeqwILW5RoClFOlkViV6wYadQvwAmAeruWKFMHaZDoHkMP0yYHEJFxbq89hTfC%2Fova6yzV3KE7VfPDkadg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eea4cfc0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/blueshift_wow.js HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-3e23"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3JvAO4nCk%2FHHwrYjTadLC1w6NS5eJmsYViXlevegW%2FapMRkE8fA6Htub5ro5nwVXcwJdqFGs8y8eMGw7uNZPJ9ZEhHRm5cnTWPGvKsHSDXp1xyGuTOYCn%2FsUusfDq38z742D9fR5g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eeacde7b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/dmca-badge-resize.webp HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/webp
Date: Wed, 25 Jan 2023 01:52:40 GMT
Content-Length: 1386
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: "63a31f1d-56a"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gnq5TPOruaaOnbz5zDj1479nEfp4AcHlziefBGSH%2FlgmhFujN0nGota6TbPCdpV40izN0XbkIUAXijg16%2BZnPLEF2L%2FesZx5Lrxbm3ZbrEUUF%2BTNtmULJ5KGi4iftle7SI3tf%2BpSgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eeb1d83b4fd-OSL
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/caresole-logo.webp HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/webp
Date: Wed, 25 Jan 2023 01:52:40 GMT
Content-Length: 11188
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: "63a31f1d-2bb4"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6dzvNjVBeoUsBBqy2OYQ8eGVhLjSErKOScsMZ6FS%2BVnFdBpqrzv%2By9bX4A9bCXhIe3mwWmYfavAhyDcKtt2RX7B8XD71Nu6yagcL1KlA9cuf%2B1hEOrsonpxq47P7AyOSid0plQ15Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eec3c5ffac0-OSL
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/blank.htm HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
Upgrade-Insecure-Requests: 1
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/html
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FIPBBe3RjyBTllk1cxDZMvrzkBgf7G%2FE2NxQZMG7RhBXUkRtYznt%2Bhkt7%2B7krOkV3X%2BeVvOMGo48ARZq%2Bb0nFep%2FeNG%2F5y8t3%2FRBbvm6q9p9n%2FgoP0WRsRItAXH63gqJV8L%2FtUgwSg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ed5eec0f3a1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /clicks/circaknee_files/icon_shipping.webp HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/webp
Date: Wed, 25 Jan 2023 01:52:40 GMT
Content-Length: 1431
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: "63a31f1d-597"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQYHgWm4kuw4ewIb%2BFHhVvTFhLmsYk2MfRIYHdsBTswaC2uILkbJ9WGXbPGtbgpGe0QOWnLiSiD49LGZCJhNNpKobtMzzGMz67HYfjJQ5PH3GwsVFtb5Ie%2FtdLo7If%2Bs1UZ3caIv%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eec1d8f0b55-OSL
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E4ABF44275DB34453705E5C606A25E2A6E87C36068983017C53CC02E53CA0B54"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=706
Expires: Wed, 25 Jan 2023 02:04:26 GMT
Date: Wed, 25 Jan 2023 01:52:40 GMT
Connection: keep-alive
|
GET /assets/external/wistia-mux.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 35514
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-8aba"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:40 GMT
Age: 1340
X-Served-By: cache-iad-kcgs7200052-IAD, cache-bma1674-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 119, 2
X-Timer: S1674611561.686609,VS0,VE0
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
GET /clicks/circaknee_files/624bfc51d2fcbc0ebaac400b53014447.webp HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: image/webp
Date: Wed, 25 Jan 2023 01:52:40 GMT
Content-Length: 65510
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: "63a31f1d-ffe6"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RqrgQt85gAVV156UWHPsd9z2nKuftSYAjNXGsFSh%2FwUco96KtU2f%2B4AsvXIvdQ8nrzu4UpAeVuGBenO5oHCtrwh0rO7OoURoqyWNn426q4EVG4RJklJNVuREjogrVq1oOyf3xMycNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eeb3961b527-OSL
alt-svc: h2=":443"; ma=60
|
GET /embed/medias/wl3c973xo9.json?callback=wistiajson1 HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Connection: keep-alive
Content-Length: 1834
Access-Control-Allow-Origin: *
Cache-Control: public, no-cache
Content-Encoding: gzip
ETag: W/"461bc3ce2d591ffe2bd08e5b89631898"
P3P: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
Referrer-Policy: strict-origin-when-cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 34c250250a6ce95adb6c2b3e8e8b6eb7
X-Runtime: 0.056107
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:40 GMT
Age: 7263
X-Served-By: cache-iad-kiad7000112-IAD, cache-bma1640-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 9, 0
X-Timer: S1674611561.686561,VS0,VE91
Vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
GET / HTTP/1.1
Host: api.sjpf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
75.2.10.96
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=2592000, immutable, private
strict-transport-security: max-age=63072000; includeSubDomains
content-length: 208
date: Wed, 25 Jan 2023 01:52:40 GMT
X-Firefox-Spdy: h2
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.46
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 01:45:20 GMT
expires: Wed, 25 Jan 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 440
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.132
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 25 Jan 2023 01:52:40 GMT
expires: Wed, 25 Jan 2023 01:52:40 GMT
cache-control: private, max-age=3600
etag: 17232022191221729168
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15158
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /clicks/circaknee_files/blank_data/inject.css HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee_files/blank.htm
Cookie: _gcl_au=1.1.104855607.1674611558
|
search
188.114.97.1
HTTP/1.1 200 OK
Content-Type: text/css
Date: Wed, 25 Jan 2023 01:52:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 14:58:37 GMT
ETag: W/"63a31f1d-f28"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Un%2Fb5m1JxMcJbCICrvDuxxcnZE9dHgIJneVT1PtUbw3MwWQznsANIbi%2Fhjhx9mEXzt0i3s5bOizCCyaKe9%2Fhynr72NlQ9qnIpxYvJngLpCDLG0j%2FAVBNI%2BSNffuQvaK6%2BfnLj7QY%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5eedeca9fac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /assets/external/share-v2.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 15882
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-3e0a"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:40 GMT
Age: 1337
X-Served-By: cache-iad-kcgs7200069-IAD, cache-bma1674-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 158, 0
X-Timer: S1674611561.805988,VS0,VE92
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /deliveries/624bfc51d2fcbc0ebaac400b53014447.webp?image_crop_resized=1280x720 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
23.36.76.200
HTTP/1.1 200 OK
Content-Type: image/webp
Accept-Ranges: none
Access-Control-Expose-Headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
content-disposition: inline
Last-Modified: Tue, 11 May 2021 01:11:50 UTC
surrogate-key: 624bfc51d2fcbc0ebaac400b53014447 thumbnail-delivery
Content-Length: 65510
Cache-Control: max-age=31485782
Date: Wed, 25 Jan 2023 01:52:41 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
|
GET /assets/external/engines/manual_quality_video.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 25012
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-61b4"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:41 GMT
Age: 1333
X-Served-By: cache-iad-kcgs7200140-IAD, cache-bma1674-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 106, 1
X-Timer: S1674611561.175226,VS0,VE1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 01:52:41 GMT
Last-Modified: Wed, 25 Jan 2023 00:15:34 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UT9Ew4mkYjRS3l3AKz6as8XBX3GqwvYE-pxzcWCW-W3xHlNKSz6fBA==
Age: 5827
|
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: image/gif
Connection: keep-alive
Content-Length: 1214
Access-Control-Allow-Origin: *
Cache-Control: max-age=315360000, public
ETag: "63d05b7d-4be"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Last-Modified: Tue, 24 Jan 2023 22:28:13 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:41 GMT
Age: 12141
X-Served-By: cache-iad-kjyo7100120-IAD, cache-bma1674-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 60, 18
X-Timer: S1674611561.222512,VS0,VE0
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
GET /?trackingId=5f8ea23018087a1c5c16753a HTTP/1.1
Host: ctrwow-prod-analytics-socketserver.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.castprivate.shop
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Y4snW8pslleTHabT7PB8aA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
52.176.5.241
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Date: Wed, 25 Jan 2023 01:52:41 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=8bda68aa4ff6df9baa08a9393f4847cb398cfb7fed442211b32f97b8b6a23d01;Path=/;HttpOnly;Secure;Domain=ctrwow-prod-analytics-socketserver.azurewebsites.net
ARRAffinitySameSite=8bda68aa4ff6df9baa08a9393f4847cb398cfb7fed442211b32f97b8b6a23d01;Path=/;HttpOnly;SameSite=None;Secure;Domain=ctrwow-prod-analytics-socketserver.azurewebsites.net
Upgrade: websocket
Sec-WebSocket-Accept: s4GrqwMghKaN2fJ/ZAMnmfwUF8c=
Origin: http://www.castprivate.shop
X-Powered-By: ASP.NET
|
POST / HTTP/1.1
Host: fp.ctrwow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1008
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
75.2.62.78
HTTP/2 400 Bad Request
content-type: application/json; charset=utf-8
date: Wed, 25 Jan 2023 01:52:41 GMT
content-length: 218
server: nginx
access-control-allow-credentials: true
access-control-allow-origin: http://www.castprivate.shop
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=63072000
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/viewthroughconversion/781463602/?random=1674611559120&cv=9&fst=1674611559120&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgc10&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.castprivate.shop%2Fclicks%2Fcircaknee.php%3Fsid%3D1005458%26h%3DY5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU%2FMd9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE&tiba=Get%20the%20Compression%20Sleeves%20That%20Provide%20Instant%20Relief%20for%20Sore%2C%20Agi&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.130
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 01:52:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1135
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 25-Jan-2023 02:07:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-135383900-2&cid=610496931.1674611559&jid=364439537&gjid=252246210&_gid=1980011207.1674611559&_u=YEDAAUABAAAAACAAI~&z=1893347367 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
64.233.165.154
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: http://www.castprivate.shop
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 25 Jan 2023 01:52:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-22484186-3&cid=610496931.1674611559&jid=742558492&gjid=1053997957&_gid=1980011207.1674611559&_u=YEBAAUAAAAAAACAAI~&z=30076628 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
64.233.165.154
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: http://www.castprivate.shop
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 25 Jan 2023 01:52:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /pagead/1p-user-list/781463602/?random=1674611559120&cv=9&fst=1674608400000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgc10&sendb=1&frm=0&url=http%3A%2F%2Fwww.castprivate.shop%2Fclicks%2Fcircaknee.php%3Fsid%3D1005458%26h%3DY5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU%2FMd9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE&tiba=Get%20the%20Compression%20Sleeves%20That%20Provide%20Instant%20Relief%20for%20Sore%2C%20Agi&async=1&fmt=3&is_vtc=1&random=2990456210&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.131
HTTP/2 200 OK
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 01:52:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 17963
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-462b"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:41 GMT
Age: 1340
X-Served-By: cache-iad-kiad7000024-IAD, cache-bma1674-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 378, 1
X-Timer: S1674611562.503388,VS0,VE1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 01:52:41 GMT
Etag: "63ceb647-1d7"
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XMDboY-6efGGGHLJt9X6qpFAS8E1I62swXTj0xHss2-SH8DnRU6CIg==
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 01:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
54.230.111.116
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1975
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 12:16:27 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 25 Jan 2023 01:11:51 GMT
Cache-Control: max-age=3600
ETag: "72b5c14c6153ec1e7f8e78ec457b928f"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lY--DuGGSUVByH8sV6MD7xMka7xoqLHx3EA_u2VFFFXSY75sJaNSqg==
Age: 2453
|
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.66.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 150567
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-24c27"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:41 GMT
Age: 1341
X-Served-By: cache-iad-kiad7000159-IAD, cache-bma1636-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 46, 1
X-Timer: S1674611562.563998,VS0,VE1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
GET /clicks/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/f124aa22-b68f-4251-8730-5e7d42902268/dmca-badge-resize.webp?t=20211012T10425534 HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/clicks/circaknee.php?sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE
Cookie: _gcl_au=1.1.104855607.1674611558; _ga=GA1.2.610496931.1674611559; _gid=GA1.2.1980011207.1674611559; _gat_gtag_UA_22484186_3=1; _gat_gtag_UA_135383900_2=1; _clck=rvsjn3|1|f8k|0
|
search
188.114.97.1
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 25 Jan 2023 01:52:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=msZeEQAzj24RLo4U%2B9IgfcBPMxejmXQ3CpCdjRWw0e5oGpOpGdbwULZgjcifKoe6GvQbahUoCj%2BMRAB9D1ni7LMNxe5qYh4t3LEqsM2yIWCC0eOlhE5r8L24m1Phb3kBKlWtp%2Fr%2FdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ed5ef39fc60b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 701
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
20.75.32.255
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.castprivate.shop
access-control-allow-credentials: true
date: Wed, 25 Jan 2023 01:52:40 GMT
X-Firefox-Spdy: h2
|
GET /en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/61a8e210-6748-4c7c-b2a1-23ebffc86321/favicon-a5551bb1-a4db-4b5e-ab39-4afedf9403a7.png HTTP/1.1
Host: www.buycircaknee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.4
HTTP/2 200 OK
content-type: image/png
content-length: 1048
date: Wed, 25 Jan 2023 01:52:42 GMT
cache-control: max-age=31536000
last-modified: Wed, 23 Nov 2022 09:47:46 GMT
etag: "0f351fbdf834a0dfa6b09ee104664762"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OtvSZDieQWZwtMJqoVTa_DCwXt9nHCPwb04Kv9Ps75BHNOTzH3qkew==
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 01:52:41 GMT
Etag: "63cf99fb-1d7"
Last-Modified: Wed, 25 Jan 2023 01:43:52 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EOhxTl92QqM5pxLBWadVoIJWUuxpMmB-ATIERMdEfoASejoPNiFOSg==
Age: 529
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108003
Date: Wed, 25 Jan 2023 01:52:41 GMT
Etag: "63cf7844-1d7"
Expires: Thu, 26 Jan 2023 07:52:44 GMT
Last-Modified: Tue, 24 Jan 2023 06:18:44 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HR3w7TvOdk0Am3Tn0jBLUchLAadI82BcCgzYlVEA22WKeRRE_hyk7g==
Age: 5640
|
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1266
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
3.208.35.2
HTTP/2 204 No Content
date: Wed, 25 Jan 2023 01:52:42 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: fg8vvsvnieiv3ej16jby.litix.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.castprivate.shop/
Content-Type: text/plain
Origin: http://www.castprivate.shop
Content-Length: 1462
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
52.44.179.33
HTTP/1.1 200 OK
Access-Control-Allow-Methods: POST, GET
Access-Control-Allow-Origin: *
Date: Wed, 25 Jan 2023 01:52:42 GMT
Content-Length: 0
Connection: keep-alive
|
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/x-www-form-urlencoded
Content-Length: 2200
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
35.173.174.179
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Date: Wed, 25 Jan 2023 01:52:42 GMT
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Allow-Origin: *
|
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1254
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
3.208.35.2
HTTP/2 204 No Content
date: Wed, 25 Jan 2023 01:52:42 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
|
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
20.234.93.27
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=2643D182E9634B44A7BBC0EC9C524D5B&RedC=c.clarity.ms&MXFR=126758DAD551673B13074A7ED15169A7
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=126758DAD551673B13074A7ED15169A7; domain=.clarity.ms; expires=Mon, 19-Feb-2024 01:52:42 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 25 Jan 2023 01:52:41 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /c.gif?CtsSyncId=2643D182E9634B44A7BBC0EC9C524D5B&RedC=c.clarity.ms&MXFR=126758DAD551673B13074A7ED15169A7 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.castprivate.shop/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
204.79.197.200
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=2643D182E9634B44A7BBC0EC9C524D5B&MUID=3CC72401034D670735D836A502B866BC
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3CC72401034D670735D836A502B866BC; domain=c.bing.com; expires=Mon, 19-Feb-2024 01:52:42 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E4030B052D3B4A70A0751601261CE2DE Ref B: OSL30EDGE0509 Ref C: 2023-01-25T01:52:42Z
date: Wed, 25 Jan 2023 01:52:42 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /c.gif?CtsSyncId=2643D182E9634B44A7BBC0EC9C524D5B&MUID=3CC72401034D670735D836A502B866BC HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.castprivate.shop/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
20.234.93.27
HTTP/2 200 OK
content-type: image/gif
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 25-Jan-2023 02:02:42 GMT; path=/; SameSite=None; Secure;
date: Wed, 25 Jan 2023 01:52:41 GMT
content-length: 42
X-Firefox-Spdy: h2
|
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
151.101.194.110
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: keep-alive
Content-Length: 6272
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
ETag: "63cea5d6-1880"
Last-Modified: Mon, 23 Jan 2023 15:20:54 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 25 Jan 2023 01:52:42 GMT
Age: 3574
X-Served-By: cache-iad-kcgs7200084-IAD, cache-bma1674-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 398, 0
X-Timer: S1674611563.511626,VS0,VE92
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 105
|
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 99751
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
20.75.32.255
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.castprivate.shop
access-control-allow-credentials: true
date: Wed, 25 Jan 2023 01:52:41 GMT
X-Firefox-Spdy: h2
|
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/x-www-form-urlencoded
Content-Length: 2200
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
35.173.174.179
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Date: Wed, 25 Jan 2023 01:52:42 GMT
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Allow-Origin: *
|
GET /unity.gif?t=1674611561&e=pageload&r=&z=389299&x=13c25a652e2a0c05cb06a3b1dba09a85&k=c100c4a4-4e13-74bb-50c6-531502fef300&u=http%3A%2F%2Fwww.castprivate.shop%2Fclicks%2Fcircaknee.php%3Fsid%3D1005458%26h%3DY5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU%2FMd9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
|
search
52.24.135.240
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 25 Jan 2023 01:52:42 GMT
Content-Length: 42
Connection: keep-alive
access-control-allow-origin: http://www.castprivate.shop
access-control-expose-headers: etag
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
|
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7048
Origin: http://www.castprivate.shop
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
20.75.32.255
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://www.castprivate.shop
access-control-allow-credentials: true
date: Wed, 25 Jan 2023 01:52:44 GMT
X-Firefox-Spdy: h2
|
GET /tag/cgxrhsz59b?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.238.53
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: no-cache, no-store
expires: -1
set-cookie: CLID=dda02b682c324ddb9d90643c961f2a59.20230125.20240125; expires=Thu, 25 Jan 2024 01:52:42 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-cache: CONFIG_NOCACHE
x-azure-ref: 0aovQYwAAAACqHnBeMKpYRZUi6+PWTIGwQ1BIMzBFREdFMDQxMgA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 25 Jan 2023 01:52:42 GMT
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /offer.php?id=373&sid=1005458&h=Y5VHLj3JSlXaUPsYKZZa5vBL6r2gu2E69ijpi2Z8rSU/Md9WLIaPX8lq0zy_SYR6gChFMGEc4pyKMqKBws81fbE0clM9I7oKTwigbaF-iBzMtqNxrh8iFtov-dXVwPWJ3JHZMwqpj-8SBXa6BmJLLrE HTTP/1.1
Host: www.castprivate.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
188.114.97.1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 25 Jan 2023 01:52:38 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReU932zdOeT1QwDqb8bR4tBxvibXbXFtqC6p%2BLG6aex56yTJ3xjCIlVX8jVre2E4LTDd%2FiO2IJTgIEce%2BgrKBAE2rE2hWhBDSnAOVqWCSEPozA6Gr6fmEpftK7orJQo9uafCG124oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ed5ee2aa97b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /c/hotjar-1450693.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.66
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 25 Jan 2023 01:52:40 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/82b3e48d91c949ca19b7fad683e8a3e2
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L3F3IycNFOew99Ck9g8HNoCAyjnXosEzJvzpxUlezaPUYjB8BaIhAg==
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /tag/ecqx4egfsd?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
13.107.238.53
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: no-cache, no-store
expires: -1
set-cookie: CLID=e4ca49795bda40ada2f3d141d5c23054.20230125.20240125; expires=Thu, 25 Jan 2024 01:52:40 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
x-cache: CONFIG_NOCACHE
x-azure-ref: 0aIvQYwAAAADzRbo5Bc2sT6QUKblnV/QTQ1BIMzBFREdFMDQxMgA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 25 Jan 2023 01:52:40 GMT
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /eus2/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.castprivate.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.238.53
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
cache-control: public,max-age=86400
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0aNbPYwAAAABEY8COhBBQSJ4OXKejqMB5RlJBMjMxMDUwNDE3MDMxADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0aYvQYwAAAACNGhGpbYmyTYtysmyudsJ6Q1BIMzBFREdFMDQxMgA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 25 Jan 2023 01:52:41 GMT
X-Firefox-Spdy: h2
--- Additional Info ---
|
104.22.4.193
104.21.16.114