livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
403 Forbidden 3.9 kB URL HTTP/1.1 livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Hash 09e2b0c1b2b80123c19266d5cfd64aec
b9e9f76efbf41224b4a5920626a9a6323919630b
09a73ce3ef4211c78952caffc6468c6ba58587a18d69542efebc0cc23ee119f9
GET /2022/03/bachelorette-party-gift-guide/ HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Date: Wed, 02 Nov 2022 18:44:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=ml447x2Fx0V5e0KSNvWtLUX9.iiZrUkFozxV.iof.YA-1667414691-0-AWTQC9KkMIg2qlRNUj0kdlyzU2SdUNkNBWwG9dHeFDRZ2djjNgACKMpaLYTZRgIIRUzAJ0ADAxjFqLYPCaqC6OI=; path=/; expires=Wed, 02-Nov-22 19:14:51 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000391701e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 763f061fe9511c02-OSL
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 59be8dfdd6f4ab82f394d3d5b927e065
dc8e8f1bbae495f84322e5efd0c42a39ef5be56c
7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2658
Expires: Wed, 02 Nov 2022 19:29:09 GMT
Date: Wed, 02 Nov 2022 18:44:51 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3258
Cache-Control: max-age=142831
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:52 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:25:23 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43ea74d83493710eb8b64a74046ff569
74dee6d9e8b796d34f2788a472b90b3f7fc79ecd
f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20940
Expires: Thu, 03 Nov 2022 00:33:52 GMT
Date: Wed, 02 Nov 2022 18:44:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zWjvArl4LFlwfDsGUPwBZHsQceupMRwySQP4UsMNhFPIvpTh2qR7qusG6IJw8lCYu5kjoo8Gn4P5E/b9NtFejw==
x-amz-request-id: WJBE719ZD3C2CBBZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 17:45:59 GMT
age: 3533
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/styles/challenges.css
200 OK 2.6 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/styles/challenges.css
IP
File type ASCII text, with very long lines (6294), with no line terminators
Hash ba2d8534d208d2a5b158507e004d7150
ab81307634698ea304a68783fa38937f562009a2
63b366fdbfea7cbec639f9a5f24714a831e171570625def9462d724b5c8fdc59
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 14:03:59 GMT
ETag: W/"635be14f-1896"
Server: cloudflare
CF-RAY: 763f06218f4e0b06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 02 Nov 2022 20:44:52 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
livealive.pureromance.com/favicon.ico
403 Forbidden 3.8 kB URL HTTP/1.1 livealive.pureromance.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (856)
Hash 3a0fd5727b3fe269f96c9a123824336f
4449d0b477229ded6ec4cb0ac5ecf3eece657c1b
b261736b005215237c193f4f768088c485fed8626972d33d2ac87f59dcb33766
GET /favicon.ico HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Connection: keep-alive
HTTP/1.1 403 Forbidden
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=txMbtVnbzJOttgjnsRaorOZK4KZoQTdB_g9tXDvWCl0-1667414692-0-AbFaxgMwEm/YKsRJLyTDDx7LzhV/76e54Ug+S9tuVa095G77P7OXjjKXO/ZpPhbnpIgbAysRlVpsn1PR7FcH2CM=; path=/; expires=Wed, 02-Nov-22 19:14:52 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=CDj7OhCdupMyqIjLuU8SjIRk_lpKFCD5h_rKKpOygUs-1667414692-0-AdY_9Gu6_pGniFqdU_YOulE_NxYcLw8GTLEdBSjjh8rEfDjHM8cLiohK4tXzUrQQe42F5vU6cPIUrSTgjPEQA5PtFPl6EqwPjEtw_2sOPCAy"}],"group":"cf-csp-endpoint","max_age":86400}
Content-Security-Policy-Report-Only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=CDj7OhCdupMyqIjLuU8SjIRk_lpKFCD5h_rKKpOygUs-1667414692-0-AdY_9Gu6_pGniFqdU_YOulE_NxYcLw8GTLEdBSjjh8rEfDjHM8cLiohK4tXzUrQQe42F5vU6cPIUrSTgjPEQA5PtFPl6EqwPjEtw_2sOPCAy; report-to cf-csp-endpoint
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 763f06219b350b3d-OSL
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=763f061fe9511c02
200 OK 42 B URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/images/trace/managed/js/transparent.gif?ray=763f061fe9511c02
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/managed/js/transparent.gif?ray=763f061fe9511c02 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 14:03:59 GMT
ETag: "635be14f-2a"
Server: cloudflare
CF-RAY: 763f06220fcf0b06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Wed, 02 Nov 2022 20:44:52 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=763f061fe9511c02
200 OK 24 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=763f061fe9511c02
IP
File type ASCII text, with very long lines (56496), with no line terminators
Hash d30961609ad776e1d71b3588e0b7e973
12d100bfd8a1134e1ae83eca1dea771813fa716e
c5652f4c028e03d64f75ed519d76d5121dbce5cdf429b42cf179b56f6efae784
GET /cdn-cgi/challenge-platform/h/g/orchestrate/managed/v1?ray=763f061fe9511c02 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/?__cf_chl_rt_tk=n7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Set-Cookie: __cf_bm=AvfkTA2ODwoux8ZvSbtCtmoLN4VpIDSOBspb6d.x0ec-1667414692-0-ASxFRbAIIDDCrzDjNuJiyMigsOXBi1Shg3XpvjiSreq/03L9LCXahbTvBuIrAAZxVIVFIPnrW6mxgmK3SjVrX/c=; path=/; expires=Wed, 02-Nov-22 19:14:52 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.9999996412662e-06
Server: cloudflare
CF-RAY: 763f06221fd30b06-OSL
Content-Encoding: gzip
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
200 OK 54 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c4101b609e736975c4702c3c1dc4db36
cd363ac7252501846507f9eddee0a5d8af13c713
2e8f1881af5227df764b6b14806bf29228095a91759e07325bd5c629b8f7f6d8
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Content-type: application/x-www-form-urlencoded
CF-Challenge: f5bd3583b630a81
Content-Length: 1816
Origin: http://livealive.pureromance.com
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=e
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: /Y7kREU1mnVGSm95WgvlwGAzTpv3XNRnrlLQg6yxggVNxgIFvzYMuVsYQC0PPcFXja2izOF3hqx9BbRNWJwe0PCxZRoL1n8HKZAkPdGOz8Kq0fBG27tKkOt2CeIbhuMVhD6/ceWDIfnf/8JFW2LJpkeKDUoGCsfZiFK/+R1PN22+ecAajXEU3ySmWmYKeDFnYtSRGi+ccZf9tnKyeErZixfpc87hpe9PmGYuuO5uqdvMfN4dF076pE4zxDnm4qIRyJVSHg1kXHN6q1mNJC2lxnuST79teYWNu0GWIOHoprU=$kymFFEKZQ7rkLclsbGB13Q==
Set-Cookie: __cf_bm=DXwTsmy_w7IhkvUkJjK5RmCZDSHnUX22t6CM5MRJ30s-1667414692-0-AbmbCYu5mRJz3lKKgbUSRfiTUwRhzQs1oRvLGJDlrPgukRQ9SijHb/WmNQ5zvTKmSy/xRyCuhcta2gReUl9I6ZE=; path=/; expires=Wed, 02-Nov-22 19:14:52 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Server: cloudflare
CF-RAY: 763f062328c80b06-OSL
Content-Encoding: gzip
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/img/763f061fe9511c02/1667414692361/n9tNhcB6irvZwmD
200 OK 61 B URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/img/763f061fe9511c02/1667414692361/n9tNhcB6irvZwmD
IP
File type PNG image data, 99 x 18, 8-bit/color RGB, non-interlaced\012- data
Hash 32f6cdab35933ff663a9a866adbab97c
76f0571b78430adfce47df28ba6b4a07c73e1935
4820b2ddac95172d3af7dbecdcaaca7d6bac050255c5336c621b8141a3436de3
GET /cdn-cgi/challenge-platform/h/g/img/763f061fe9511c02/1667414692361/n9tNhcB6irvZwmD HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=e
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cf_bm=2eCvkFcYY6kcqs5GM5dLjyHZAy2LALFmCXsLN2eP6p0-1667414692-0-AYyVZAOKzcs+32Jg51G5eKlHCV0791NRqby5yDP/LoTWo5fksOK1KJF+N7G1IWY7TPZPEwTTZ4CJ74/fglEYyVk=; path=/; expires=Wed, 02-Nov-22 19:14:52 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999997574778e-06
Server: cloudflare
CF-RAY: 763f0625eb640b06-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash fd65439b27a0101cd831309f178fbb45
4daa9343dda0f37ba734e2b5500caf2728cf89db
37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4950
Cache-Control: max-age=139466
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:52 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:29:18 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Przy+4hSb46cuGuZlkwawQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2EycURVsxHADHoYvSo0nwvBU6lc=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11942
Expires: Wed, 02 Nov 2022 22:03:56 GMT
Date: Wed, 02 Nov 2022 18:44:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11942
Expires: Wed, 02 Nov 2022 22:03:56 GMT
Date: Wed, 02 Nov 2022 18:44:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11942
Expires: Wed, 02 Nov 2022 22:03:56 GMT
Date: Wed, 02 Nov 2022 18:44:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11942
Expires: Wed, 02 Nov 2022 22:03:56 GMT
Date: Wed, 02 Nov 2022 18:44:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e6d78844aa60ad0bd62fc70779a63e8
80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949
ac1ee1c30bee586a5edd9605a514548e1e91e6ef39c55cc866cf026b8ed3df82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10496
x-amzn-requestid: 4b3864a5-5e0b-42f3-83b3-c997f66eeb55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OG_H3oIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619092-6e450a0c6393d47f4d72ce35;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8KvfFEQSkb7CkT0DUL3D6JtMUkhRJaKIuHhPnbDLCOIINyEt-1a-A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:12:59 GMT
age: 73915
etag: "80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 8436166b-f342-44e9-9a31-e25dcaa7b85c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2gEOEYRIAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f46e7-0616a6b95503fffd4f597509;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:54:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: g3OtcJnT2JfzIAvUjoLvC8pOzfwGFQ-M0cH4uwNSVcr2T9jYgCihTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:57:41 GMT
age: 71233
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d889392defc575d85e26321730c2722
28177e0094cb108a96751ba23830134e1d4b8e15
758b77490f2f67d8d4297e0060b0a310be6f03dcda4808969147e1610879e836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12840
x-amzn-requestid: c6424625-a000-41be-8043-4ac408d25086
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAG5QIAMFodA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-2d8d7616088723ab392f74ff;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nhbB7wn_tje5pEJa66ub53DJMk6pvkjSfpKsruWEuzYPDoUlm_icg==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:51:55 GMT
age: 75179
etag: "28177e0094cb108a96751ba23830134e1d4b8e15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab331970f5e4f7f2e0ff0c042095ec4e
2b72b9df83cc12db944f6d079d91d6362be036d0
35dd7f4cc581389be9e90be3e7a8663831eeeb89c261cb3eb3fcc66cb9e56f24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7026
x-amzn-requestid: f5a992f1-beb7-463c-8125-e0f74009f272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N75GyioAMFsEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904b-648797425d1d3d485d17d773;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ct2UyXUhCL58M5_X1nCM5LhPGWDxuZgav0SiSsm99PUF_ergMz34tw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:40:58 GMT
age: 75836
etag: "2b72b9df83cc12db944f6d079d91d6362be036d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8a59be5ed6ef593415005b9826daef6
457a1e3fc0e275eff74f4e067a766beebb6d4fd6
978deee7964f7fd633c89fe55c55af1c5fd24d31614af2815a39c1b0ac7491b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4234
x-amzn-requestid: aa9f90d3-5461-44ab-b3f6-7ea9f502394a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: azHeVFxhIAMF5mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635dec5b-1443a2d430081dfd19a1a65c;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 03:15:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oTUURE4zG6DBGvy0VohGnwfDbyjM-s0UP-evEHETwaXv-Yo5mHXsBw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 05:42:14 GMT
age: 46960
etag: "457a1e3fc0e275eff74f4e067a766beebb6d4fd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80a15bf497eed7ce0dc0bab1fc27c18d
5da512cc8d716ed6d83db95ffe40a8113aca3036
5f7fc4ccda5c71792416faa54964966731c1d3b612b56891f9d5e5e8f3c69666
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7495
x-amzn-requestid: 4980bd4a-9383-47d4-81de-3c1f1788f917
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N9sFbOoAMF7mQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619057-1451572557667da827b5d123;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:32:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NM1DGRHUQS98x4ZZdBupZAloibcrqieultKoescIzjnRnAMylp3B5g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:06:59 GMT
etag: "5da512cc8d716ed6d83db95ffe40a8113aca3036"
content-type: image/jpeg
age: 74275
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
200 OK 3.4 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
IP
File type ASCII text, with very long lines (4436), with no line terminators
Hash eff3ec1db9e315861237aa3ace23c8b5
e0afa16d33dd29d9d49135f939cdcf61dab7b33e
c164519956408b5d0e4e007241a3b472e12752620fe09bf7ca20694687040207
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Content-type: application/x-www-form-urlencoded
CF-Challenge: f5bd3583b630a81
Content-Length: 15217
Origin: http://livealive.pureromance.com
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=b
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:55 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: tRa8Ed+xbiAVrw8QbyJ2wJk4XhPAwMEYuToGTGj8Xy8=$BFS2KkFfLSnOglQ9BEgTDw==
Set-Cookie: __cf_bm=BaTcXXQ5.OxzC_FUfGj59nVEvLcc.kRfYB_k02PShYM-1667414695-0-AbzCFfjU14vy/I1K31E9Xt3HGPj6ci1JvDBtk/kgRfrMlxmklWirhxNnOFd9juxKZfuGW9vSJsfH8rcdZU+H5nI=; path=/; expires=Wed, 02-Nov-22 19:14:55 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f06352d0c0b06-OSL
Content-Encoding: gzip
challenges.cloudflare.com/turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit
302 Found 0 B URL HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 02 Nov 2022 18:44:55 GMT
content-length: 0
location: /turnstile/v0/b5a25e40/api.js?onload=_cf_chl_turnstile_l&render=explicit
cache-control: max-age: 300
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f063579e60b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
200 OK 35 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81
IP
Hash 3577cb7c586d7abb1200e36a187f5baf
ba0ade414dddb40cb4156917e6e8b7fc2169bfad
486bf1faf1d3f918de9936f040849b84c9cdf138b7cea5a0d25295c000c25e0e
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/0.6423530441956139:1667412482:2SRExk6A-RvD5c8fwypxNBxJpN8bGJICcNXUmq3J2TE/763f061fe9511c02/f5bd3583b630a81 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Content-type: application/x-www-form-urlencoded
CF-Challenge: f5bd3583b630a81
Content-Length: 15923
Origin: http://livealive.pureromance.com
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=b
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_out: TqXKqtIoK26lKI8yfS3gpSsEjc4lK+3nILzhwZg6FiWulo8+Xsz3Y4SGHqS4IQsMtepHgZm62WcuabIUrd31ew==$0/l9HEFqxswgbCMd+rzDkQ==
cf_chl_out_s: p2CDQoAiflRPoMVv6oTQ7DWF71ss8kIRLkJAFB6xiyOsCFAf2WP46mbDCadAskS3MoujbKs4q4IkAU8mOQtFQyqMEodpYoWd2no/vZvU7pZrrMsyDXmbCZuT8fQz4jPO0UKScYxXcXfWy18FZPr6eElL3KaohYfORtvojBmkJyYLhvAp5c1IKIVGFuYLeBCA$XKMwdNy3qFOgd4kU9ovauA==
set-cookie: cf_chl_rc_m=;Expires=Tue, 01 Nov 2022 18:44:56 GMT;SameSite=Strict
__cf_bm=RHxk640UKhcy_1vM.UL2JWpKrP.1di3Akp3hFHzcEE0-1667414696-0-ARGqRrE169ArsZq3dBCZimKoNstp9Pa8BAhpdujMES7ysvnsA9QvFXDNhMH5BUW1Kz9fycux86aS7fCW6cxypk0=; path=/; expires=Wed, 02-Nov-22 19:14:56 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Server: cloudflare
CF-RAY: 763f063cee290b06-OSL
Content-Encoding: gzip
livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
200 OK 18 kB URL HTTP/1.1 livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 17c0e3fc71ac7b3bc4b8450129d78a6f
9acd83d4f3f63a6a988a2ccfc1925f93ef726c3c
b204ca2ccd72422411566ddc76e28b9e851fbbb590ed6a9ac89c4a1708daa804
POST /2022/03/bachelorette-party-gift-guide/ HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/?__cf_chl_tk=n7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE
Content-Type: application/x-www-form-urlencoded
Content-Length: 1807
Origin: http://livealive.pureromance.com
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.0.22
cf-edge-cache: cache,platform=wordpress
X-Pingback: http://livealive.pureromance.com/xmlrpc.php
Link: <https://livealive.pureromance.com/wp-json/>; rel="https://api.w.org/", <https://livealive.pureromance.com/wp-json/wp/v2/posts/4772>; rel="alternate"; type="application/json", <https://livealive.pureromance.com/?p=4772>; rel=shortlink
Cache-Control: max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:56 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: DYNAMIC
Set-Cookie: cf_chl_2=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.pureromance.com
cf_chl_prog=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.pureromance.com
cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250; path=/; expires=Thu, 02-Nov-23 19:44:56 GMT; domain=.pureromance.com; HttpOnly
__cf_bm=Fe7FLohIHLLtMx.g6fQoJBb3fphLkcabALlpE3rHh8c-1667414697-0-AcNzUW/txpd4XMoN7CPlVzoOl24+ou0CADDxocq6WSE9vYKjHiUD4rsJnKmaR8IlaBwMld8Y03LCo/CEnbwr3PU=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f063e1f7d0b06-OSL
Content-Encoding: gzip
creator.zmags.com/channels.js
301 Moved Permanently 0 B URL HTTP/1.1 creator.zmags.com/channels.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /channels.js HTTP/1.1
Host: creator.zmags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://creator.zmags.com/channels.js
Cache-Control: max-age=300
Expires: Wed, 02 Nov 2022 18:49:57 GMT
Date: Wed, 02 Nov 2022 18:44:57 GMT
Connection: keep-alive
Timing-Allow-Origin: *
creator.zmags.com/channels.js
200 OK 36 kB URL HTTP/2 creator.zmags.com/channels.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ff60dd7f15d48e90791d46031164e18f
feaeaad0bd3a192d36eb77c0837f8814a2e18a8e
83552a23e2a8e56182925e1df72d1dab696048e23c0d8f468a9e22bf25553e74
GET /channels.js HTTP/1.1
Host: creator.zmags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://livealive.pureromance.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QzV7OhmrUDW0ZO0OeqAWb+x01/1huQERRIJFFGj67JNACpO4bG6fHKGjg0c91pWCAGi4SwG/BsU=
x-amz-request-id: EHTN2N9BTYXW0ATZ
x-amz-replication-status: PENDING
last-modified: Mon, 31 Oct 2022 14:52:36 GMT
etag: "ff60dd7f15d48e90791d46031164e18f"
x-amz-storage-class: REDUCED_REDUNDANCY
content-encoding: gzip
x-amz-version-id: OfCJEnFC6X_LMLChnjbcBfk.xGy._gEx
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
content-length: 36042
cache-control: max-age=300
expires: Wed, 02 Nov 2022 18:49:57 GMT
date: Wed, 02 Nov 2022 18:44:57 GMT
vary: Accept-Encoding
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9b619d8e2a4af135be1bde1f6b3510a4
d296f39e4f26b135a34243770222f4ed2207e071
1b637f60fffa792733ec71bfd32812c0b342af64623f59147b2d37300e117ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
livealive.pureromance.com/wp-content/plugins/look-ruby-core/assets/core.css?ver=2.1
200 OK 732 B URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/look-ruby-core/assets/core.css?ver=2.1
IP
File type ASCII text, with CRLF line terminators
Hash 145de2c26c8aae6a9bb71a0defc2ce41
465a6c6e218c567a8f50360f69e88c85304f1942
cb559ddf7672739abc5044558fb96b89f4aca1d1b15ca54552fd3205c25f1f26
GET /wp-content/plugins/look-ruby-core/assets/core.css?ver=2.1 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:57 GMT
Content-Type: text/css
Content-Length: 732
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:11:47 GMT
ETag: "48042c-b00-5d95601fe0d8c-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=2KKHbA8zh4srzlnRDxLi9O7.Ia_qxx91iRPpm18qQus-1667414697-0-Af4ytHTTUk9T5SSMVnK8J7K7PtS/IoBHWDeEqffRhoDcYhw35ayrAU5enlkoMnZY+CQFSeOQN1NwYmxtj1GeKsI=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Server: cloudflare
CF-RAY: 763f06422be80b06-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
200 OK 2.1 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
IP
File type ASCII text, with very long lines (7609)
Hash b7c2fd201680d0fdae258d6e7c0b0e16
d6b0c3c069b8c33115b8e33c5ce1eff64ef33139
3457dbccf9f39fb5588b077fbe22d0059bdb686e7298ff7b3c4b8154fe550580
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:57 GMT
Content-Type: text/css
Content-Length: 2081
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "4215c5-1dba-5ead8bb255c3c-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=jzYymi7PdEoeue.88LDRYKBgFvBI6IzbQwm.hA7.NEM-1667414697-0-ATfHFITEAJOkaPyS0HRFXsS6NVA+b34QlvBcP7ELDZnf4ZKqAWx16We3wUxZWxGPSXgVk5VjFOe8Z17RgyIDIeA=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=8.0000002071756e-06
Server: cloudflare
CF-RAY: 763f06422dd3b50f-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9b619d8e2a4af135be1bde1f6b3510a4
d296f39e4f26b135a34243770222f4ed2207e071
1b637f60fffa792733ec71bfd32812c0b342af64623f59147b2d37300e117ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
livealive.pureromance.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
200 OK 4.0 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP
File type ASCII text, with very long lines (42839), with no line terminators
Hash e7d460fe41c87ad9e87c0695426d2f92
f16685ccaa6474b82a282f394ef673b27f07fcc9
b92e0e744425caad084ada130f27b25b00c07eecbca8de743686ab33d3cf100f
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:57 GMT
Content-Type: text/css
Content-Length: 3984
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "4215c8-a757-5ead8bb255c3c-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=SJZN0QpwkIfXCaXoNDQz0VRH5J3PaHwf.R1TaSlQrW0-1667414697-0-AbIdecoEL0RXG5jhkgNinT28UUE3e+N4nbw3amPC79xuol9BN7a0knRh6OQShdRl9QkFLYcxVjKlwq35qux62XU=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.9999999798019e-06
Server: cloudflare
CF-RAY: 763f06422a78fab4-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9b619d8e2a4af135be1bde1f6b3510a4
d296f39e4f26b135a34243770222f4ed2207e071
1b637f60fffa792733ec71bfd32812c0b342af64623f59147b2d37300e117ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png
403 Forbidden 4.7 kB URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1648)
Hash fe4d3979d6187cb3f0adfd0010e54c3b
66bfbfe6a0bd48ea1279be14efa5bac3a837e58b
3264edf2f7b0ef2b441ceedc69f4324ee373bd19a8dd84993f96ead43b0ce0f8
GET /wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
set-cookie: __cf_bm=3a_zgIK0wH4tpIB.V3PUeiDpK9Z8qrnTyU2jnO5ZcnY-1667414697-0-AT6Rq/1jXWyg8e6H6MLo5Chh7KCOk4ibDNRZibRXj9uOZtbF5Dd4jvlrZfh43l7EnjHyHZDIFb/Ninogu0GfYMA=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0642983bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/b5a25e40/api.js?onload=_cf_chl_turnstile_l&render=explicit
200 OK 3.7 kB URL HTTP/2 challenges.cloudflare.com/turnstile/v0/b5a25e40/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP
File type ASCII text, with very long lines (8715)
Hash 0235c779e834be6aa9a9459a620dde52
71804da1cc9b6f411166d89e77036bf7b5fcfd64
98fbc75d00da2df7b63b7e16bc3f6decb46e32e9a908002759dcb23f898f31d4
GET /turnstile/v0/b5a25e40/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 18:44:55 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0635aa0c0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash f4a45cf753f236d62619ddcc9d4967b7
2702749cba4cc20fd3f75c230363bc313bf64133
76e80414e1610bda7f2c43d2ee353984432d0c07b6c126049ad43274655fa0e7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157714
Date: Wed, 02 Nov 2022 18:44:57 GMT
Etag: "63626741-1d7"
Expires: Fri, 04 Nov 2022 14:33:31 GMT
Last-Modified: Wed, 02 Nov 2022 12:49:05 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dFFohESzQJKjO9iPFAeu_G8BA4WcpWMP3P6IWwf2LqW6ZSQgABf2dw==
Age: 6266
livealive.pureromance.com/wp-content/themes/look/assets/external/external-style.css?ver=4.4
200 OK 15 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/external/external-style.css?ver=4.4
IP
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash 947d7d54ebd15e6dbb07e0ca57eba407
bbaf83ac922aa39f9d56c43edadb16c68a64e131
522803a64f5c8d579bd252d480d7e9f98f2484ff26f04962b29cd2af781f0d50
GET /wp-content/themes/look/assets/external/external-style.css?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:57 GMT
Content-Type: text/css
Content-Length: 14564
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:01:46 GMT
ETag: "440c3d-14626-5d955de31cd18-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=gi3fU1PXAOzHCIjxA2YeKU0LgzLMw6wdlouODx9WZuk-1667414697-0-AeS+qQvxadqjNXVuBi8iOZ8qRrusuq5svb8LPX0QatkX/40Ky+aBaiLqCUXRXxQLrKz8wuHBOAgW+VqfIMxoktk=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f0643cad4b50f-OSL
ttgcommon-70004prd.s3.amazonaws.com/PR-Customizations/mp_linkcode.js
200 OK 1.9 kB URL HTTP/1.1 ttgcommon-70004prd.s3.amazonaws.com/PR-Customizations/mp_linkcode.js
IP
File type exported SGML document, ASCII text, with CRLF line terminators
Hash 02f4bbb33735ee9a84cf0dab3d28cf16
924942c4c90a63cf52bb8d22f04861a52d087b18
724d6c75b4b7b300f6a6eb62313bcfa89f5aa8429a44d06ac69c6a0d8f0bc8a4
GET /PR-Customizations/mp_linkcode.js HTTP/1.1
Host: ttgcommon-70004prd.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: QE0ZfDiMTXcqGC+hCeGT2jfqzC5K9mpKwJIFS0OJZ9bd+5nbiyKSMXHc1iv0bjBqV0vT1snUuq8=
x-amz-request-id: KF8TXHEQ4A2YGFQV
Date: Wed, 02 Nov 2022 18:44:58 GMT
Last-Modified: Tue, 25 May 2021 17:20:12 GMT
ETag: "02f4bbb33735ee9a84cf0dab3d28cf16"
x-amz-version-id: UBEyt4vbSoOjl.7emdOuwbQeaDwobVU3
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1901
livealive.pureromance.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
200 OK 890 B URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP
Hash 77844a96d72d03c84c5e6970c1fe631b
5f02982c93cf4bf4f70d77ea6dfe04d2efcd9b81
0b5162518ddfdb56914db022a95c1a5eca3271ae2f062cfaa939cc5b7094d63c
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 890
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "4215cf-fbc-5ead8bb255c3c-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=cWyTmYHVmQuFK3LDVpSeeGsSZqp2ZKvRL.L2d7kKu5o-1667414698-0-AU+jboIQLLI2tF8GgkQ4hotw3Atu8PnGdThA+5W9gNzazkJvhIm02NGXImk8zb4kvLvuS+xjz/aeYCBrU5+L8wM=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.9999999823267e-06
Server: cloudflare
CF-RAY: 763f0642290cb51b-OSL
livealive.pureromance.com/wp-content/themes/look/assets/css/theme-responsive.css?ver=4.4
200 OK 5.4 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/css/theme-responsive.css?ver=4.4
IP
File type ASCII text, with CRLF line terminators
Hash f281a990fd7e537b77c6681fc74d7664
1943532abc8d69cdeaa3c3c103e72150ff657f5e
d991962c05f54d4b4bf128bc7ce47e9ec97ab0dbd69ceb518187a41014599e28
GET /wp-content/themes/look/assets/css/theme-responsive.css?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 5376
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:01:40 GMT
ETag: "440c2e-a781-5d955ddcef3e2-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=Zns.Kqs.x9M4dttvnHd1X.CbBGuzCpY8N48Om55FcpE-1667414698-0-AVgxQqQjquQEmBCYxjGGvfPDZYSwnr7eF3z3A1EVVlDZ2DWCvTtMT5j/L296G7mv0c06Q0CX5j9kSMsnIFSLwng=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Server: cloudflare
CF-RAY: 763f0645785fb50f-OSL
livealive.pureromance.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
200 OK 12 kB URL HTTP/1.1 livealive.pureromance.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 11681
Connection: keep-alive
Last-Modified: Mon, 04 Jul 2022 12:10:37 GMT
ETag: "980625-15b64-5e2f99fa9e940-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=ZXdNano24nMwgGFZwPh4L7sFwTOZlL9yDDG5ifDzOL0-1667414698-0-AUFz6C3O4QhaOFlF/ZvHSYXKnyMupF2YrstPzXsPKhCzE64WQn0MkwlJWkvbUi8Js4X2mXIMFrPuexeGcpknd7Q=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.0000001010631e-06
Server: cloudflare
CF-RAY: 763f06422b181c0e-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0
200 OK 7.3 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0
IP
File type ASCII text, with very long lines (45857), with no line terminators
Hash 5b7f76b9021caeed57532323bd9ac803
9102ac2f9cc75ac35c7f05f2f086615d99183502
a9e164289a6bcc2f3ec0917b351510c460a1b0de40d02f51563c110c7dbd9c3f
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 7260
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "4215cc-b321-5ead8bb255c3c-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=2LlO.L.radduNJ9Pm4kqwjmBFG1ZFm.kr.5s2XSNsqc-1667414698-0-AX01sTV+n8Z6TANWSKm5aq5idLm+IPTDMqliQOw0yyPyoQMIXPHL13akfirmacG99d0pWH5FK0l9Tr9lkE4FLow=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f064239b50b4d-OSL
livealive.pureromance.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/1.1 livealive.pureromance.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 4169
Connection: keep-alive
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "9a0049-2bd8-5b45debe27b80-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=V.lbS6VVwzAcBQ1TmOXjNZjLZa3E5OY0I.HjtVMYf3I-1667414698-0-AZ14/nxF7Q5R+XGUfpmPYVE/vQOgg5SyTB8yYiVFkhAxlKd65twmSBY9EdvauOafgXapBUz6q/ZsqMuDgPlFtnw=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f06470ffb1c0e-OSL
livealive.pureromance.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 31 kB URL HTTP/1.1 livealive.pureromance.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 30908
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "9a0051-15db1-5bd3006388300-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=lJBP3dVDVThkzpwk0liL0T61fwSEGKCvRgPobZmA_X4-1667414698-0-AUjGrf+OTegrwlam8PrA1ZtJqzKjGw0tclHAFV2gAd51yun4Ys6XVMV22t4eLufVyKADWbEGgYTl3Iolal4Q+Ps=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f0646fcf0b50f-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
200 OK 7.9 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
IP
File type ASCII text, with very long lines (1518)
Hash af7b8363167c766fc5c415c5831609de
2fe2c8d1f1c7e256c3b9cd97b50098c60bd50d3e
1371f4af47e8ab2d5de2d86f16942e0d89acd924c9065c823c6e22295d384b8d
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 7883
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "421592-56cd-5ead8bb2548b4-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=VUu0noouEfckis2a4yxL2wn4DGQqiFA2r8a2nGK_Ez0-1667414698-0-AQT02iT3ZyxwItmCABQaYJKup+AUrM5sl9JIF6fB54c+mwTuqoWnJ+QiXc4uoAJGB5dUE4pQP/hfR6Nqlz4LC3k=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.9999999798019e-06
Server: cloudflare
CF-RAY: 763f06472dfe0b4d-OSL
livealive.pureromance.com/wp-content/plugins/twenty20/assets/css/twenty20.css?ver=1.5.8
200 OK 1.1 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/twenty20/assets/css/twenty20.css?ver=1.5.8
IP
Hash abac8fe2dd19d1bfeee769ad3cc57cfc
2cb8d5c0c5c64259e9403498108b0da529f4865f
2b3a8b89861ed898c4b3fac936e51e183056a4915374d3bd1442103384d2ff94
GET /wp-content/plugins/twenty20/assets/css/twenty20.css?ver=1.5.8 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 1109
Connection: keep-alive
Last-Modified: Mon, 02 May 2022 14:03:51 GMT
ETag: "5e06ef-1a61-5de07dca7872a-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=WLmiRR7XkaYBgz0q3y.qlBZ7NqO_P6nrnuMmiLAOwAI-1667414698-0-AbN3RgdnhwJyOJOE0vnz9LMj1vlsrmdsefOn5MxF89DxyI5dYd2qh6DNFUOdjATs8mdcs7fS9dd5fRcvUXUma9A=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.9999996412662e-06
Server: cloudflare
CF-RAY: 763f06439d7b0b06-OSL
livealive.pureromance.com/wp-content/themes/look/assets/css/theme-style.css?ver=4.4
200 OK 20 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/css/theme-style.css?ver=4.4
IP
File type ASCII text, with CRLF line terminators
Hash 09865e553714f1f39a5e69217fd187f1
ea1212050d541132e678a4f07ae29e08f688e0bd
aca9a723ae778c5194dae2ec351312344033e1e7ae78629d0c68f16b4045800e
GET /wp-content/themes/look/assets/css/theme-style.css?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 20211
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:01:39 GMT
ETag: "440c2d-23b8f-5d955ddc66c3f-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=PFvK9BAzu1FPd.ZmNtMQvtzB2aHw2R5sQL91AAlWEqo-1667414698-0-ARHIzppAZwi4yzdhkE68mQAf9kpah3V5F0Wh3co/0SAjiM6XNNKzdq4nCZ8iNabXxUm9zLxaIM7LPHIbp0kQOCI=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f0643ec27fab4-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
200 OK 2.2 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 3db40b3f7c407d30d76f440e241f5ad5
f9af12bf4d63638552de17e006c6e2b67fb5fa97
6deec47a77d780ae266a29dfcdcb0caec7f130886c6cf9789a956e868f8a0dc4
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 2171
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "421598-18c5-5ead8bb2548b4-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=WIzhtDgnMJWoDjObLHn2LjZI0Fkd9tvw9Eef1r1wm3k-1667414698-0-AULNsRXW6EJ2AkIxZCtdwAa7wOAiMmB7dFrJHS5Xe2OOKHedFMjNNoGqPa//RCkYZAdxkCF3WTN86REif5VXQcc=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=9.000000090964e-06
Server: cloudflare
CF-RAY: 763f0648bf320b4d-OSL
livealive.pureromance.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 655 B URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 14:04:18 GMT
ETag: W/"635be162-4d7"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 763f0649f8400b4d-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 04 Nov 2022 18:44:58 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0
200 OK 35 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash b719eda115973f0f9757a052ad87ecf7
38c8bb8e6bdf3bdb9419d08962074ed24b4dd93a
5c3db1932398ccd9f07b590c6b97297adb8cf8049d2ad1380a8bf56cefc2e11c
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 34590
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "421594-2f1d4-5ead8bb2548b4-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=NeXtIFf8nqpVaBM3gMgTjSvWXGYxWIGMojJRBwDPkb8-1667414698-0-AUNvyWDyJpsGBCBEK7RPEpJUYAV4409c6Ivvv0t7N1MPCARnpuMyC6gYrWFRO/UJ+WBy8+x6Eg+VW0o615h4ksk=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f0648bba90b06-OSL
livealive.pureromance.com/wp-content/themes/look/style.css?ver=4.4
200 OK 306 B URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/style.css?ver=4.4
IP
Hash 32dba929d8e24d1749e2cb3c8729e055
d5dbb121c0b07c620524e4455979fea2f3348877
d25d41a06ff154dac198dff0850e0e21bc808123a42d6dbbfe5832cdf4e773e8
GET /wp-content/themes/look/style.css?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: text/css
Content-Length: 306
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 19:59:31 GMT
ETag: "4407e6-1fb-5d955d61c124e-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=YxYUySpJ_iPY_gACSnqnvduJB1PyDsZ8OLkm6QRYqYI-1667414698-0-ATmASS6y0gYNQ9CBdaMDe8LAtTJggG373+qNPccrK9FPWC4c05DdAkVonzIBXdYXVKrcyGaUr/GckKhcaa+ELiM=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.9999999823267e-06
Server: cloudflare
CF-RAY: 763f0646df7cb51b-OSL
livealive.pureromance.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
200 OK 5.0 kB URL HTTP/1.1 livealive.pureromance.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Content-Length: 5009
Connection: keep-alive
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
ETag: "9812ab-48b9-5dc6eb878efc0-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=.PE2O5acP_Ds9YGwN_EEA.Bk7Bw58DY6886GGUvuQsg-1667414698-0-AXpYWKnwzv+9qFf0ZBqG+mQWNDe7Xt84zL6OberEvYT44WX8TDwI1imRjTeL/+sRJnx82Q2YOancugL4C/7k0qg=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f064a08440b4d-OSL
livealive.pureromance.com/wp-content/plugins/look-ruby-core/assets/core.js?ver=2.1
200 OK 170 B URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/look-ruby-core/assets/core.js?ver=2.1
IP
File type ASCII text, with no line terminators
Hash ef992fe3251ba67ab08ca9140b1cb12e
1a0b200f7273393442af902cd8219fe2b943f726
f2c27f89ad17b6816f08cda2ee94b275a1ef4655ec15c3a6f5008a4d3996330e
GET /wp-content/plugins/look-ruby-core/assets/core.js?ver=2.1 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: minify
Cf-Polished: origSize=278
ETag: W/"48042b-116-5d95601f60ea1-gzip"
Expires: Thu, 02 Nov 2023 18:44:58 GMT
Last-Modified: Thu, 03 Mar 2022 20:11:46 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Set-Cookie: __cf_bm=K3rN9Dv.Gi3zMifwcNxHt10cLmlxv9uYMStTgBB_7p0-1667414698-0-AWsLmaZcePhBKa+HeYdv9JA5EEezT5q4/QCldIVy28jxqeUc2N8Cuarmg/uMMZTEA7rFAVRNL5W/006cA0QcybQ=; path=/; expires=Wed, 02-Nov-22 19:14:58 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f064a5d970b06-OSL
Content-Encoding: gzip
livealive.pureromance.com/wp-content/plugins/twenty20/assets/js/jquery.event.move.js?ver=1.5.8
200 OK 2.0 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/twenty20/assets/js/jquery.event.move.js?ver=1.5.8
IP
File type ASCII text, with very long lines (5421), with no line terminators
Hash 65949c0afa898d9616911dd692fce8fb
6cbb35f65f3ec8f7653cf597027f612474f35060
81c8b57dfb5e750d542d1ad67d9b16f74d7d6977a16d6f8d4a8bd146258b96a3
GET /wp-content/plugins/twenty20/assets/js/jquery.event.move.js?ver=1.5.8 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: minify
ETag: W/"5e06ea-152d-5de07dca744c2-gzip"
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Last-Modified: Mon, 02 May 2022 14:03:51 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Set-Cookie: __cf_bm=ak68LmzvJAeev2GD7mNEn2cKqSqfioT95jD1g4.XMrk-1667414699-0-AQzV86g3n8iZnLZB4T2wtkh/k0gYXkztFtBH5Puaqo5HISrhwaTZF4U8nbXttQTlmL9ReKoyA4AUp3l92uXSokA=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f064b89590b4d-OSL
Content-Encoding: gzip
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
200 OK 9.2 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP
File type HTML document, ASCII text, with very long lines (25075)
Hash 0bfe7b8b35f14ed782c6cc66ff0e59e4
8ea52ad5ea35d338ab6cf085e11daf8caf6c3d17
3ee8c1b963cd1bec48cc7158d94b786bace54840e90bd6c5560fc16c97e11a58
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Content-Length: 9160
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "4215a2-6254-5ead8bb2548b4-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=f.EOM4zUyID2w0dy.6CTbUgvzeUqmLRTsG8BoreM3yY-1667414699-0-Abpbo0o5NBaHiSNn4T3P/xDCjhTQVW2EmW9DPNLpM7j7FDseleR4osIF7GGNzYrGNtZ2DR6piGOYbnH1eaCHb5A=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.9999998686399e-06
Server: cloudflare
CF-RAY: 763f064849351c0e-OSL
livealive.pureromance.com/wp-content/plugins/twenty20/assets/js/jquery.twenty20.js?ver=1.5.8
200 OK 915 B URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/twenty20/assets/js/jquery.twenty20.js?ver=1.5.8
IP
File type ASCII text, with very long lines (2466), with no line terminators
Hash cc0607ae9c6e1031131c9e0296a0c945
9a583f020a5e15f52010bcc06f62bbcb8d465824
1989bc1cd416c1ea222a33520cbcccd257130e97fcf6b8593fd907250c512525
GET /wp-content/plugins/twenty20/assets/js/jquery.twenty20.js?ver=1.5.8 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Content-Length: 915
Connection: keep-alive
Last-Modified: Mon, 02 May 2022 14:03:51 GMT
ETag: "5e06ec-9a2-5de07dca76bd2-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=XWdu_RZCdnmS9dRBMwjiwb1iS7auG68p6jPInAUPr5o-1667414699-0-AWhbTQmZ4yCh/oZpL7xwse/4ezqQ/8bQ3ThplmYD+KBNd3ES8hklq8V1b1p5DpbnCNWf7WptTL4D0lOf1O/D0s8=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f064b8daab51b-OSL
livealive.pureromance.com/wp-includes/js/comment-reply.min.js?ver=6.0.3
200 OK 1.4 kB URL HTTP/1.1 livealive.pureromance.com/wp-includes/js/comment-reply.min.js?ver=6.0.3
IP
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
GET /wp-includes/js/comment-reply.min.js?ver=6.0.3 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Content-Length: 1351
Connection: keep-alive
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
ETag: "981173-ba5-5dc2a2438e980-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=dO_fSCq3H.LmcY3T2Gj3d4JOXvTLDWP2YoJ_fvGbxro-1667414699-0-AcJZxmycAN+QpKcj5viy+x9PlAH18XRDUxXUQHj8mapBRBvy/0PJWxxsG/XR7HkMRL1tvIJ0WF76xoEnhr1DkKw=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Server: cloudflare
CF-RAY: 763f064bbee40b06-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
200 OK 13 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP
File type ASCII text, with very long lines (32001)
Hash e24f931251f056652e0b8ba2a0d3e6ee
161dc1e62ac932d0072b3f31e1c7374fc7798864
b550aebced99bdaf156b11639171d479c1e705df85e33cea2e958a3465b44350
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Content-Length: 12940
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
ETag: "421599-b1a7-5ead8bb2548b4-gzip"
Cache-Control: public, max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Set-Cookie: __cf_bm=WFSop.PXdOwnAcMQBx92JBVEknxcZPea59cxnHuS0ME-1667414699-0-AYceCpxlmHR9T+2fKRho61HdZdif/FPBI7JPQYZTklNBcd94przqaVF/Gmr0GtZJCHSm5rkS7beYzM6avlspRJM=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f064889cab50f-OSL
livealive.pureromance.com/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0
200 OK 1.9 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0
IP
File type ASCII text, with very long lines (760)
Hash f88182e42ec4cf58b353733061f4acea
076b40ce40c7cf7dfc8432f67c4744f3be4cffdd
71c3895e41052defe3163e2b1108f59b83362d6df18742d68a068a8011a03afd
GET /wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: minify
Cf-Polished: origSize=15370
ETag: W/"4215b1-3c0a-5ead8bb255854-gzip"
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Last-Modified: Wed, 12 Oct 2022 16:17:37 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Set-Cookie: __cf_bm=V.h0Q39MRyhyMbaW5fXqrb.6.HFQZaq0J7iZWv_rq6M-1667414699-0-AbVgxJtsxJAiy0YwPnVYzQpRM02IYv0MdM8miJm1dahZY4Dh5WfDoMwYVQQyKY9Y1cjpbQx7KCWBBfi/aY0vSxA=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.0000000132732e-06
Server: cloudflare
CF-RAY: 763f064978ccfab4-OSL
Content-Encoding: gzip
livealive.pureromance.com/wp-content/themes/look/assets/js/theme-script.js?ver=4.4
200 OK 5.8 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/js/theme-script.js?ver=4.4
IP
File type ASCII text, with very long lines (2381)
Hash 9e385b0f9b3d84a32845f68b6e07ac36
b5eb841d27a21f9e0f301b5d451db09ea566efa8
80f824bb29ed9ca004ce2a6d20ff585bfb2c4e68139b9b07d1bf9cfe2be0d51a
GET /wp-content/themes/look/assets/js/theme-script.js?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: minify
Cf-Polished: origSize=59537
ETag: W/"440c38-e891-5d955de06965e-gzip"
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Last-Modified: Thu, 03 Mar 2022 20:01:43 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Set-Cookie: __cf_bm=bLnVeVV39vFm.wElBAfLaNzynuTUK73PwNrirIZb5uc-1667414699-0-AWm95uLy6B4YRP6T9wGBsuujpEUikiAuvRpA160B5MSpD8WqZnBy4zIvdLmlKcNqvlwa6qTidzVT8CFelyW5Whc=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Server: cloudflare
CF-RAY: 763f064cee0d1c0e-OSL
Content-Encoding: gzip
c.zmags.com/assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json
301 Moved Permanently 0 B URL HTTP/1.1 c.zmags.com/assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json HTTP/1.1
Host: c.zmags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://c.zmags.com/assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json
Cache-Control: max-age=30
Expires: Wed, 02 Nov 2022 18:45:29 GMT
Date: Wed, 02 Nov 2022 18:44:59 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png
403 Forbidden 5.1 kB URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1860)
Hash dac60a525709df01c7d6e0b5e70bd072
3bde4a7ac1cb9936d510271c264132b45d71681f
ef6800a7b34fa7ef624022b6c9dbe0c41384b69aba9971dd7751435fa11edc8c
GET /wp-content/uploads/2022/01/Live-Alive-Wellness-Blog_white.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064e482db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NQNP3KW
200 OK 50 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NQNP3KW
IP
File type ASCII text, with very long lines (2677)
Hash 626fe4571d8f261ef844101d095ac08d
6d5acbeaa833aa75a6b7a289cd303d5afd4fdd44
210e5e6839ea8103c3806f8c67e88d97d79e0c63f562b9d2c8625b5086fc97e7
GET /gtm.js?id=GTM-NQNP3KW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Nov 2022 18:44:59 GMT
expires: Wed, 02 Nov 2022 18:44:59 GMT
cache-control: private, max-age=900
last-modified: Wed, 02 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
200 OK 925 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP
Hash 7092c9afc33f52566a42b2bad12c8937
739cb7b48f02c04a75c83047a6ccc5f24f98a3dd
6a0b3f9a7e1be88449817efa668e102e645bc29c1b121dfc9e340123a6656f08
GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 02 Nov 2022 18:44:57 GMT
date: Wed, 02 Nov 2022 18:44:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7b4037f614b6784bb6b750dd410c6e43
20a140462d827888c8e7922861f641e7a66551bf
5a1b87f9143203a881ac4482cb6d6a013468a99c575f5268ad2122ae8a2bd455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7b4037f614b6784bb6b750dd410c6e43
20a140462d827888c8e7922861f641e7a66551bf
5a1b87f9143203a881ac4482cb6d6a013468a99c575f5268ad2122ae8a2bd455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
livealive.pureromance.com/wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg
403 Forbidden 50 kB URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1840)
Hash 4f94cd73716dca6d3eb6ea19c3563e1b
95047c6f82a3db48345b32089643af6c8a46c9dc
3fa4de0d655ddcc22c7986d3b8665b5e14b0f86606c96262288cf88fbec747c7
GET /wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064e481bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:44:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.zmags.com/assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json
200 OK 3.1 kB URL HTTP/2 c.zmags.com/assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json
IP
File type Unicode text, UTF-8 text, with very long lines (35341), with no line terminators
Hash c1546d814a1beccf9dcaa6f85c595b4c
bdd5bd4482e0c492018d55fa6e21c8cf5ca88b10
493b780ca9131d780468527262ef9408ad8a7db7ecafcefab0e8ba8324174e05
GET /assets/channelConfigs/5cc8c6a4534c0626b1cc5fb2.json HTTP/1.1
Host: c.zmags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://livealive.pureromance.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4372hF1h2WF0GRNCKN9fYTcCNFhcZWzokdMFsg6Ou6g2Anr1XnZn++MneMxLc6CLoOgdmXJbcOk=
x-amz-request-id: 653VDKQXGK9KN9GW
x-amz-replication-status: COMPLETED
last-modified: Wed, 06 Oct 2021 06:22:54 GMT
etag: "c1546d814a1beccf9dcaa6f85c595b4c"
x-amz-storage-class: REDUCED_REDUNDANCY
content-encoding: gzip
x-amz-version-id: Cj6V5dYxEFDxXSEdYC90kURVaMngHHSm
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
content-length: 3110
unused62: 8096267
cache-control: max-age=30
expires: Wed, 02 Nov 2022 18:45:29 GMT
date: Wed, 02 Nov 2022 18:44:59 GMT
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 18:56:13 GMT
expires: Tue, 31 Oct 2023 18:56:13 GMT
cache-control: public, max-age=31536000
age: 172126
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pureromance.mpeasylink.com/mpel/mpel.js
200 OK 2.2 kB URL HTTP/2 pureromance.mpeasylink.com/mpel/mpel.js
IP
Hash 38c441a42493c18242b134cdf24695e0
91214f2042483930aa33e0aea2f9a7431f56a99d
709dd68e511cfd28556ea7d15fff2be27e9ffc9ab5c87fdd6ca770e961c7d2a9
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel.js HTTP/1.1
Host: pureromance.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"5096-1654100882000"
last-modified: Wed, 01 Jun 2022 16:28:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/themes/look/assets/images/ajax-loader.svg
200 OK 313 B URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/images/ajax-loader.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (897), with no line terminators
Hash 8eb2551ac8ca6b8d29b5aeb973a39196
cb4debf36fed7e967e661223382caedaab1cf7a3
a3c7f6e1af51a574d314500de3a26516158832fb0f953d81ffae9221b86cbb65
GET /wp-content/themes/look/assets/images/ajax-loader.svg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/wp-content/themes/look/assets/css/theme-style.css?ver=4.4
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: image/svg+xml
Content-Length: 313
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:01:43 GMT
ETag: "440c36-381-5d955ddf8c33b-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=8WbVo6kRi8wNqrzw5yFRxWiQxtAGl7RqfPudUSEc5W0-1667414699-0-AUIipkw/lYd9OY+/me+wLSRmmU59uzUNPyc09s8B2eBlE3xOT0jZheam5ElsPu14mgechRRYihQtNfxhWkjfUus=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.9999997574778e-06
Server: cloudflare
CF-RAY: 763f064e79dc0b06-OSL
livealive.pureromance.com/wp-content/themes/look/assets/external/external-script.js?ver=4.4
200 OK 42 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/external/external-script.js?ver=4.4
IP
File type ASCII text, with very long lines (51424)
Hash 688f52e0e83428c35a1bb2dcff3d8cf4
8286066d69938c0412d86d02ef0194f0fc115533
1f2be27d5f86e177763e83e771745305657f2fe0363dd92ee2b3534cc0b643c7
GET /wp-content/themes/look/assets/external/external-script.js?ver=4.4 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: minify
Cf-Polished: origSize=152304
ETag: W/"440c3c-252f0-5d955de268a39-gzip"
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Last-Modified: Thu, 03 Mar 2022 20:01:46 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Set-Cookie: __cf_bm=CxGKyjnrv6AmYRd6y6GwN38iyK9Ip3_repPBMs4e_4g-1667414699-0-ASjEZ5iGa0inbmUb4uNUC8sW/qrbe0RtbYQPGLh+xmksphLFdkY41GJJfS/ZjQ042MyuLVuwGYgjiKu2YAGiUDA=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f064cdaa90b4d-OSL
Content-Encoding: gzip
pureromance.mpeasylink.com/mpel/mpel?href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
200 OK 1.3 kB URL HTTP/2 pureromance.mpeasylink.com/mpel/mpel?href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
IP
File type ASCII text, with very long lines (1281), with no line terminators
Hash 4227266ca1f4db6229d799036834a567
7ad4cfbe54b6885cd436eabdabb1a15af58eb749
c1a09bcb5a1fbf97a13853a9602e30975d2276b6132cc53b70db6f59a579159f
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel?href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US HTTP/1.1
Host: pureromance.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/javascript;charset=UTF-8
content-length: 1281
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa OUR IND COM NAV INT STA"
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/plugins/embed-image-links/js.php?max-width-percentage=100&ver=6.0.3
200 OK 342 B URL HTTP/1.1 livealive.pureromance.com/wp-content/plugins/embed-image-links/js.php?max-width-percentage=100&ver=6.0.3
IP
Hash 2ba946a0ece306df468d96dd81c656fc
257081ca65501933ba32b27dab9c824cd44083fd
d05148f697f3055e5f030a7db017daf74953bf4908f961b814ad8295d6cb5878
GET /wp-content/plugins/embed-image-links/js.php?max-width-percentage=100&ver=6.0.3 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript
Content-Length: 342
Connection: keep-alive
X-Powered-By: PHP/8.0.22
Cache-Control: max-age=31536000
Expires: Thu, 02 Nov 2023 18:44:59 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=VSU6NIXbfxahQ7mM3BtYdRLBCAKEQ5pyTYa.GahqRgQ-1667414699-0-AfUzQcmEVg3Iz2gDe5ZmIc0L6TVtZd0mBXvHUKVtsXGeUDd4gkZoGwK/PtnUM8IL+cVz8Gjz3ccxZh0R2JnYaEc=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=6.0000000985383e-06
Server: cloudflare
CF-RAY: 763f064d0fe5b51b-OSL
livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1667404800
200 OK 18 kB URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1667404800
IP
File type ASCII text, with very long lines (38323), with no line terminators
Hash 09e5306192dae402cf0795e28b752ffb
57fbf06adaca8624203b8eb0965e09342e6984d6
e0a36fadf3756c90a330cb67b7a6bee64fb27a1ba4d9d730ae35161c0d22241c
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1667404800 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-control-type-options: nosniff
content-encoding: gzip
vary: accept-encoding
cache-control: max-age=14400, public
Set-Cookie: __cf_bm=REHSnMXmfs3u44kMFq9tpbTffbYt8YtSBEgNluKhGto-1667414699-0-AUX5tY7JMxJKYRKqoBTFOiA941+gVwTueet1xtNGDHDdYOlQhST3b7yYSPkFb59+srDF57Imlrnl8hpHzgwgpvw=; path=/; expires=Wed, 02-Nov-22 19:14:59 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Server: cloudflare
CF-RAY: 763f06517d4e0b06-OSL
platform.twitter.com/widgets.js
200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1437
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 02 Nov 2022 18:45:00 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
analytics.convertlanguage.com/el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.pureromance.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=40cd1d5f71fd47bba69b6d473ba38d64&ua=na&et=2&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&
200 OK 35 B URL HTTP/1.1 analytics.convertlanguage.com/el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.pureromance.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=40cd1d5f71fd47bba69b6d473ba38d64&ua=na&et=2&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.pureromance.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F%3F__cf_chl_tk%3Dn7Pc87iVjbhd0Ogx7CevNTElZ9j8Af_PUXotqhX0Y.o-1667414691-0-gaNycGzNAxE&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=40cd1d5f71fd47bba69b6d473ba38d64&ua=na&et=2&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F& HTTP/1.1
Host: analytics.convertlanguage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://livealive.pureromance.com/
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:44:59 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: Apache
Last-Modified: Tue, 14 May 2019 17:36:29 GMT
ETag: "23-588dc79153f13"
Accept-Ranges: bytes
pureromance.mpeasylink.com/mpel/mpel_storage.html?cmd=storePref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&siteurl=www.pureromance.com&lang=en&country=®ion=&sitelist=www.pureromance.com,pureromance.com,training.pureromance.com,www.uncoveredskincare.com,livealive.pureromance.com;es.pureromance.com,es-training.pureromance.com,es.uncoveredskincare.com,es-livealive.pureromance.com¤cy=&nonMP=false&mode=&uuid=40cd1d5f71fd47bba69b6d473ba38d64
200 OK 21 kB URL HTTP/2 pureromance.mpeasylink.com/mpel/mpel_storage.html?cmd=storePref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&siteurl=www.pureromance.com&lang=en&country=®ion=&sitelist=www.pureromance.com,pureromance.com,training.pureromance.com,www.uncoveredskincare.com,livealive.pureromance.com;es.pureromance.com,es-training.pureromance.com,es.uncoveredskincare.com,es-livealive.pureromance.com¤cy=&nonMP=false&mode=&uuid=40cd1d5f71fd47bba69b6d473ba38d64
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1325)
Hash af8506c9d0add5b0fab9a0ed0c6b6f44
52de4a19ca8b259747bce48d4fa6c88fb2b7a34a
3027b0c1f0c6d94de55aa69802e8ad5fd5b79683c48ff335c3e7b68e4095ec66
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_storage.html?cmd=storePref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F&siteurl=www.pureromance.com&lang=en&country=®ion=&sitelist=www.pureromance.com,pureromance.com,training.pureromance.com,www.uncoveredskincare.com,livealive.pureromance.com;es.pureromance.com,es-training.pureromance.com,es.uncoveredskincare.com,es-livealive.pureromance.com¤cy=&nonMP=false&mode=&uuid=40cd1d5f71fd47bba69b6d473ba38d64 HTTP/1.1
Host: pureromance.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2762-1654100882000"
last-modified: Wed, 01 Jun 2022 16:28:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Flivealive.pureromance.com
200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Flivealive.pureromance.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Flivealive.pureromance.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1152064
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 02 Nov 2022 18:45:00 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
livealive.pureromance.com/wp-content/themes/look/assets/external/fonts/fontawesome-webfont.woff2?v=4.6.3
200 OK 72 kB URL HTTP/1.1 livealive.pureromance.com/wp-content/themes/look/assets/external/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/look/assets/external/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://livealive.pureromance.com/wp-content/themes/look/assets/external/external-style.css?ver=4.4
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 18:45:00 GMT
Content-Type: font/woff2
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 20:01:49 GMT
ETag: W/"440c41-118d8-5d955de5f597e-gzip"
Cache-Control: public, max-age=2592000
Expires: Fri, 02 Dec 2022 18:45:00 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: MISS
Set-Cookie: __cf_bm=VaUiFgt36dqz4pI4NjKlM.VbbRsdNcuiaQyysjLD6cM-1667414700-0-AUN2waixnZA8NYbrJAdooVu+b9QcjSsHbgfsjcEx0mxn0sh1myudLIVrsIZaArFGyCC5yurDT+D1eCDEHqpXweQ=; path=/; expires=Wed, 02-Nov-22 19:15:00 GMT; domain=.pureromance.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=5.0000001010631e-06
Server: cloudflare
CF-RAY: 763f064e79aab50f-OSL
ocsp.digicert.com/
200 OK 313 B IP
Hash ee13aba48e67e15cecf73c11cd972aaa
3c11702f4a5b3013c76a55cc2a92db4f44dcaccb
49ba16a9fbda50feed7b94a8adf0d1acf70ccba37ac347092523b03fb63021af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1708
Cache-Control: max-age=121793
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Etag: "6361ecc1-139"
Expires: Fri, 04 Nov 2022 04:34:53 GMT
Last-Modified: Wed, 02 Nov 2022 04:06:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&subset=latin&ver=6.0.3
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&subset=latin&ver=6.0.3
IP
Hash 657fd69bc3f71e82d1cf1a70d1be84bd
8c65a4d8552c4696327063c808ec733e9f23e1ba
c0ccecac4a2b17228b4994275d78d95b8f550b023b7e06263c84e869a798390c
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&subset=latin&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 02 Nov 2022 18:44:57 GMT
date: Wed, 02 Nov 2022 18:44:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8ec7677589f4c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0rLpiYwAAAAAtDL8p7p2uRIRsqp8PTd18U1ZHMjBFREdFMDYwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 02 Nov 2022 18:44:59 GMT
X-Firefox-Spdy: h2
www.clarity.ms/tag/cqrd9tgw2a?ref=wordpress
200 OK 1.7 kB URL HTTP/2 www.clarity.ms/tag/cqrd9tgw2a?ref=wordpress
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 2c6e5733bb4ff8fa354d4b5d77943bad
b142e7ef63595fa06933464a5ce042fea2028ed0
fc3fb5b4a6c8659fe84323fc7f33ed6d9fdd7af93c7f41b5f975dc386fc70a68
GET /tag/cqrd9tgw2a?ref=wordpress HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=141ceb719a0a47e6b349d675c29ad02a.20221102.20231102; expires=Thu, 02 Nov 2023 18:45:00 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0rLpiYwAAAAAaWY9dkW2JT5p1/fMtJ+oPU1ZHMjBFREdFMDYwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 02 Nov 2022 18:44:59 GMT
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/rum?
204 No Content 0 B URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/json
Content-Length: 24444
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250; _ga=GA1.2.1011244803.1667414700; _gid=GA1.2.1116667631.1667414700; _gat=1; _gat_UA-62276-33=1; _clck=1w0tkbr|1|f68|0
HTTP/1.1 204 No Content
Date: Wed, 02 Nov 2022 18:45:00 GMT
Connection: keep-alive
access-control-allow-origin: http://livealive.pureromance.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
Server: cloudflare
CF-RAY: 763f0655fe8db50f-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&gjid=72466871&_gid=1116667631.1667414700&_u=aGDAAEIhAAAAACAAI~&z=917221541
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&gjid=72466871&_gid=1116667631.1667414700&_u=aGDAAEIhAAAAACAAI~&z=917221541
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&gjid=72466871&_gid=1116667631.1667414700&_u=aGDAAEIhAAAAACAAI~&z=917221541 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://livealive.pureromance.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 02 Nov 2022 18:45:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&RedC=c.clarity.ms&MXFR=0C78BAD7B6CD6C8A1915A887B2CD620E
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=0C78BAD7B6CD6C8A1915A887B2CD620E; domain=.clarity.ms; expires=Mon, 27-Nov-2023 18:45:00 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 02 Nov 2022 18:44:59 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 18:45:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62276-33&cid=1011244803.1667414700&jid=647606205&_u=aGDAAEIhAAAAACAAI~&z=1202246878 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 18:45:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&RedC=c.clarity.ms&MXFR=0C78BAD7B6CD6C8A1915A887B2CD620E
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&RedC=c.clarity.ms&MXFR=0C78BAD7B6CD6C8A1915A887B2CD620E
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&RedC=c.clarity.ms&MXFR=0C78BAD7B6CD6C8A1915A887B2CD620E HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://livealive.pureromance.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&MUID=1970B8D51E6060200886AA851F3761F6
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=1970B8D51E6060200886AA851F3761F6; domain=c.bing.com; expires=Mon, 27-Nov-2023 18:45:00 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DF43EE3349804196BC4A5D784F9E084D Ref B: OSL30EDGE0317 Ref C: 2022-11-02T18:45:00Z
date: Wed, 02 Nov 2022 18:45:00 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 741bd3f1ae63760ab46ae978e338cd68
fb7076b807574a5228038c0125031ac90714bbb3
539c6d94af9de8dc4d472e7df8f6c0fce915a9f741de985776f127852d20fbbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 18:45:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.clarity.ms/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&MUID=1970B8D51E6060200886AA851F3761F6
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&MUID=1970B8D51E6060200886AA851F3761F6
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=29FFECF7FADB425CAEFE73FF31EDE464&MUID=1970B8D51E6060200886AA851F3761F6 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://livealive.pureromance.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 02-Nov-2022 18:55:00 GMT; path=/; SameSite=None; Secure;
date: Wed, 02 Nov 2022 18:44:59 GMT
content-length: 42
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1391
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: http://livealive.pureromance.com
access-control-allow-credentials: true
date: Wed, 02 Nov 2022 18:45:00 GMT
X-Firefox-Spdy: h2
livealive.pureromance.com/cdn-cgi/rum?
204 No Content 0 B URL HTTP/1.1 livealive.pureromance.com/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 1098
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: http://livealive.pureromance.com/2022/03/bachelorette-party-gift-guide/
Cookie: cf_chl_2=f5bd3583b630a81; cf_chl_prog=x13; cf_clearance=34a532036f2ee4e93d0cdc257356ed4478ddf024-1667414696-0-250; _ga=GA1.2.1011244803.1667414700; _gid=GA1.2.1116667631.1667414700; _gat=1; _gat_UA-62276-33=1; _clck=1w0tkbr|1|f68|0
HTTP/1.1 204 No Content
Date: Wed, 02 Nov 2022 18:45:01 GMT
Connection: keep-alive
access-control-allow-origin: http://livealive.pureromance.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
Server: cloudflare
CF-RAY: 763f06598973b50f-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png
IP
GET /wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064e3814b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-360x250.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-360x250.jpg
IP
GET /wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-360x250.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f297cb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
pureromance.mpeasylink.com/mpel/mpel_ssd.js
200 OK 0 B URL HTTP/2 pureromance.mpeasylink.com/mpel/mpel_ssd.js
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_ssd.js HTTP/1.1
Host: pureromance.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"3276-1654100882000"
last-modified: Wed, 01 Jun 2022 16:28:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-32x32.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-32x32.jpg
IP
GET /wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-32x32.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:45:00 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f06533882b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-300x270.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-300x270.jpg
IP
GET /wp-content/uploads/2022/10/LiveAlive_SexySecrets_1500x900_en-300x270.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0651ceb2b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_Fingering_1500x900_en-360x250.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_Fingering_1500x900_en-360x250.jpg
IP
GET /wp-content/uploads/2022/10/LiveAlive_Fingering_1500x900_en-360x250.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0651ceb1b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_GynoRedFlags_1500x900_en-300x270.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_GynoRedFlags_1500x900_en-300x270.jpg
IP
GET /wp-content/uploads/2022/10/LiveAlive_GynoRedFlags_1500x900_en-300x270.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0651debdb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png
IP
GET /wp-content/uploads/2022/01/Live-Alive-Wellness-Blog.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
set-cookie: __cf_bm=tLdx3mR18paj4euA9DWPxmM3Y1QtCZFsSon00K2h5Ko-1667414697-0-AUHV/t0lTqZf03jSGpese+J3N1IeXHARKPeM93scIqzS7Hjhdu4ET9DeOpgfHMMCb2a3UN9mo1JTstUmvzQZxoA=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0642982eb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg
IP
GET /wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
set-cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f06429838b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg
IP
GET /wp-content/uploads/2020/07/The-Buzz_Bachelorette-Party-1500x900-min-760x510.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064e4818b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/08/LiveAlive_Kink_1500x900_en-110x85.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/08/LiveAlive_Kink_1500x900_en-110x85.jpg
IP
GET /wp-content/uploads/2022/08/LiveAlive_Kink_1500x900_en-110x85.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=inaRuCH82sSzoTi3fAl0kN0okA.sfu7QXzZad5kPviU-1667414699-0-AbP92FFXyOysHz1Fc00rHM08npjtLPvOoKLfauV3qpl58phospH5XYz7ktOv856Btujw1Es3_rYXeYRyd_6igk7IWcWoDjLlXS_hjqUSin6N"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=inaRuCH82sSzoTi3fAl0kN0okA.sfu7QXzZad5kPviU-1667414699-0-AbP92FFXyOysHz1Fc00rHM08npjtLPvOoKLfauV3qpl58phospH5XYz7ktOv856Btujw1Es3_rYXeYRyd_6igk7IWcWoDjLlXS_hjqUSin6N; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f2986b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-192x192.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-192x192.jpg
IP
GET /wp-content/uploads/2019/09/cropped-5cc5d99b8c57715dd7934a5965a0fa2e-192x192.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:45:00 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0653387db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://livealive.pureromance.com
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f06442dd5b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
pureromance.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F
200 OK 0 B URL HTTP/2 pureromance.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_storage.html?cmd=getpref&href=http%3A%2F%2Flivealive.pureromance.com%2F2022%2F03%2Fbachelorette-party-gift-guide%2F HTTP/1.1
Host: pureromance.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2762-1654100882000"
last-modified: Wed, 01 Jun 2022 16:28:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
200 OK 0 B URL HTTP/2 assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
IP
GET /universalscript/releases/v0.179.2/bundle.js HTTP/1.1
Host: assets.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 03 Sep 2022 23:09:05 GMT
last-modified: Tue, 05 Apr 2022 16:31:05 GMT
etag: W/"359008fe01078c59c66e034866170bd2"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aph6OVfHxNarBuIU3ktSpgPe8wL0YTWnnsRAktk_70Oli94l3p1vxw==
age: 5168154
X-Firefox-Spdy: h2
05a0f1f1e7554cce8e97b16babc61a7f.js.ubembed.com/
200 OK 0 B URL HTTP/2 05a0f1f1e7554cce8e97b16babc61a7f.js.ubembed.com/
IP
GET / HTTP/1.1
Host: 05a0f1f1e7554cce8e97b16babc61a7f.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: a_IahGt3joEFm8Q=
x-amz-cf-pop: ARN56-P2
x-backend-region: eu_west_1
date: Wed, 02 Nov 2022 18:44:57 GMT
age: 0
x-cache: Miss from cloudfront, MISS
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/7d5b064e803e437223e4524a1a7007e6-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-360x250.png
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-360x250.png
IP
GET /wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-360x250.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=9IsG7aDtxe1mjMsNnLCV9qIcKXlD6qaShl.va.K9oX0-1667414699-0-AbIpzyj6zoNuXQcjojvm4Pn_j06LsSqjIDqNT6cpOwLS3e4FBgMXQKLt7xfBKWIIgOd_hV2iDvdF2kv3AeLGottbQT9JE9esIHv73BXwAcw_"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=9IsG7aDtxe1mjMsNnLCV9qIcKXlD6qaShl.va.K9oX0-1667414699-0-AbIpzyj6zoNuXQcjojvm4Pn_j06LsSqjIDqNT6cpOwLS3e4FBgMXQKLt7xfBKWIIgOd_hV2iDvdF2kv3AeLGottbQT9JE9esIHv73BXwAcw_; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f297fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 18:44:52 GMT
content-type: application/javascript
cf-ray: 763f0622ee20b517-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"b90536c97bb07e890f4835e16aa28f70"
last-modified: Wed, 02 Nov 2022 12:12:10 GMT
strict-transport-security: max-age=0
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: -O7QxwZYs9aGWPLLMVOFy6CDODSXAWWwvQZAMPk9_3TQpiFNMIAuqg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-300x270.png
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-300x270.png
IP
GET /wp-content/uploads/2022/10/LiveAlive_SexShows_1500x900_en-300x270.png HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0651deb5b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2021/09/TheBuzz_SexToyQuiz_1500x900_en-110x85.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2021/09/TheBuzz_SexToyQuiz_1500x900_en-110x85.jpg
IP
GET /wp-content/uploads/2021/09/TheBuzz_SexToyQuiz_1500x900_en-110x85.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f2985b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2021/02/LiveAlive_HowKinky_1500x900_en-110x85.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2021/02/LiveAlive_HowKinky_1500x900_en-110x85.jpg
IP
GET /wp-content/uploads/2021/02/LiveAlive_HowKinky_1500x900_en-110x85.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f2983b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2020/07/Bachelorette-Guide-231x300.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2020/07/Bachelorette-Guide-231x300.jpg
IP
GET /wp-content/uploads/2020/07/Bachelorette-Guide-231x300.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f2989b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg
IP
GET /wp-content/uploads/2019/09/5cc5d99b8c57715dd7934a5965a0fa2e-150x150.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:57 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
set-cookie: __cf_bm=U1p4dc.g5POUz9EN7g3QMHkUCyYjm4CT3tZiHPsU2iQ-1667414697-0-Adh/db43nYHQEu4m7Plh5xoqx2fjmc+1fgX7PO1yJKedCTv/BGEcXPC0Vvu1vBANbObKvkiF+oKkP3XuEIv2/rk=; path=/; expires=Wed, 02-Nov-22 19:14:57 GMT; domain=.pureromance.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f0642983ab51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
livealive.pureromance.com/wp-content/uploads/2022/11/LiveAlive_GirlsNight_1500x900_en-360x250.jpg
403 Forbidden 0 B URL HTTP/2 livealive.pureromance.com/wp-content/uploads/2022/11/LiveAlive_GirlsNight_1500x900_en-360x250.jpg
IP
GET /wp-content/uploads/2022/11/LiveAlive_GirlsNight_1500x900_en-360x250.jpg HTTP/1.1
Host: livealive.pureromance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://livealive.pureromance.com/
Cookie: __cf_bm=x7UjA7e8eGmV3gwzewM4fJoIdCrhRG_0h8oAcOigLW8-1667414697-0-AZYsbxCD1/k2ArnG9OITSO4p8XHDo/SUpxD9I8j8y5H6IqC21m5BDss6ShzbiFZ9Y8DV3mJOXVq+vt5IStScLbg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 02 Nov 2022 18:44:59 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 763f064f297bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
104.19.190.114
23.32.108.55
3.139.212.1
104.16.56.101
93.184.220.66
23.36.76.226