www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea
23.227.38.74302 Found 0 B URL HTTP/1.1 www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea
IP 23.227.38.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 30 Jan 2023 19:47:02 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 238
X-Sorting-Hat-ShopId: 46779859095
X-Frame-Options: DENY
Location: https://www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea
X-Shopify-Stage: production
Content-Security-Policy: frame-ancestors 'none'; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=17b5485b-5996-4db2-a5c3-2abf669c742c
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=17b5485b-5996-4db2-a5c3-2abf669c742c
X-Dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
X-Request-ID: 17b5485b-5996-4db2-a5c3-2abf669c742c
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kHRua3aLQ%2BnPWeu6icsPuQEb7xgZlFI21VJlQEF41EMjmINIDgqBDu3N9jtjwULhkde8h0Z4LqTP9e4lbH6MMqtIx0qq0WySYqMHh3daROO1WItVezM7yMf23HE8D08%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: cfRequestDuration;dur=309.000015
Server: cloudflare
CF-RAY: 791cb7959c3ab4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13466
Expires: Mon, 30 Jan 2023 23:31:28 GMT
Date: Mon, 30 Jan 2023 19:47:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13803
Expires: Mon, 30 Jan 2023 23:37:05 GMT
Date: Mon, 30 Jan 2023 19:47:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 19:43:13 GMT
content-type: application/json
age: 229
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8852
Expires: Mon, 30 Jan 2023 22:14:34 GMT
Date: Mon, 30 Jan 2023 19:47:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eeUz2RjP/ZT4qJKakzrbVFNODJDmIuOIjXCYWJnzedHw7e9qE4724xQyvDBf4X/cyRhMd5IJgqg=
x-amz-request-id: ASYWGYV222N51A91
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 18:50:51 GMT
age: 3371
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 232ac2d99c52eea960c38b3df73d8154
2af7739eda77ab734b710e643691634352b81d88
738c8a2bb4f77b5f42fe98dcb6dbff292b2b919643750842e971080df70b3909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "738C8A2BB4F77B5F42FE98DCB6DBFF292B2B919643750842E971080DF70B3909"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3925
Expires: Mon, 30 Jan 2023 20:52:28 GMT
Date: Mon, 30 Jan 2023 19:47:03 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 19:47:02 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 18:49:04 GMT
age: 3479
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8545
Expires: Mon, 30 Jan 2023 22:09:28 GMT
Date: Mon, 30 Jan 2023 19:47:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 232ac2d99c52eea960c38b3df73d8154
2af7739eda77ab734b710e643691634352b81d88
738c8a2bb4f77b5f42fe98dcb6dbff292b2b919643750842e971080df70b3909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "738C8A2BB4F77B5F42FE98DCB6DBFF292B2B919643750842E971080DF70B3909"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3925
Expires: Mon, 30 Jan 2023 20:52:28 GMT
Date: Mon, 30 Jan 2023 19:47:03 GMT
Connection: keep-alive
push.services.mozilla.com/
52.10.202.214101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.202.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rlYgyUCyu7wYtK19t4n40g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4c3etqMF0o0p39/56fKweef06Vc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2264
Expires: Mon, 30 Jan 2023 20:24:49 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2264
Expires: Mon, 30 Jan 2023 20:24:49 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2264
Expires: Mon, 30 Jan 2023 20:24:49 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2264
Expires: Mon, 30 Jan 2023 20:24:49 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 78837
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea
23.227.38.74302 Found 7.7 kB URL HTTP/2 www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea
IP 23.227.38.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10/authenticate?key=82da676cc3b080327b750b127eea1eea HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 30 Jan 2023 19:47:03 GMT
content-type: text/html; charset=utf-8
location: https://www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
x-frame-options: DENY
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVU0TW1SaE5qYzJZMk16WWpBNE1ETXlOMkkzTlRCaU1USTNaV1ZoTVdWbFlRWTZCa1ZVIiwiZXhwIjoiMjAyMy0wMi0yMFQxOTo0NzowMy43ODFaIiwicHVyIjoiY29va2llLm9yZGVyIn19--0e2d05092648bf8ea0b007ca58c5343fe80de54b; path=/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10; expires=Mon, 20 Feb 2023 19:47:03 GMT; secure; HttpOnly; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=xtool.com; path=/; expires=Tue, 31 Jan 2023 19:47:03 GMT; SameSite=Lax
_y=23d51ab9-4309-46b2-8a80-c26b28f476bd; Expires=Tue, 30-Jan-24 19:47:03 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_s=c3fc923d-e577-4753-8315-81de2636a83a; Expires=Mon, 30-Jan-23 20:17:03 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_y=23d51ab9-4309-46b2-8a80-c26b28f476bd; Expires=Tue, 30-Jan-24 19:47:03 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_s=c3fc923d-e577-4753-8315-81de2636a83a; Expires=Mon, 30-Jan-23 20:17:03 GMT; Domain=xtool.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=90e65c23-a5cf-4110-a45b-5e40d60d3620
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=90e65c23-a5cf-4110-a45b-5e40d60d3620
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 90e65c23-a5cf-4110-a45b-5e40d60d3620
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=exFEHfVV3KrBR8kwjuab07A6Stx7PK8da8VUvmiJDip%2BsU8euIQ9djGW3R3MLBjhjfdSxXYz4fABDVSQvlCs64qCqR6XYxYEuDozcXv4wtt95AjTEYnD0n%2FZVBG83wk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=940.999985
server: cloudflare
cf-ray: 791cb797efaab4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:56:46 GMT
age: 78619
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 23:25:02 GMT
age: 73323
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 78704
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 78387
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e63f9bf9231f8d40b42fca03277e3f0
e3b9ddc60256fccb8176fe7444cf58668256193f
6916e3db8ad0513a65d345178f6110835313756dc4a6e5bf64069b9d83a1de37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6916E3DB8AD0513A65D345178F6110835313756DC4A6E5BF64069B9D83A1DE37"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Mon, 30 Jan 2023 21:09:36 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e63f9bf9231f8d40b42fca03277e3f0
e3b9ddc60256fccb8176fe7444cf58668256193f
6916e3db8ad0513a65d345178f6110835313756dc4a6e5bf64069b9d83a1de37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6916E3DB8AD0513A65D345178F6110835313756DC4A6E5BF64069B9D83A1DE37"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Mon, 30 Jan 2023 21:09:36 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
browser.sentry-cdn.com/7.24.2/bundle.tracing.min.js
151.101.194.217200 OK 26 kB URL HTTP/2 browser.sentry-cdn.com/7.24.2/bundle.tracing.min.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (65429)
Hash 34ad770d9423c8c2de8dd8b89165dcb3
cb18264e78508fde07ba5a804c66ce4d5f296d83
06c367ab2eb47df2674e212be649d20473ea9e2d97d3fc5749a2bf9bb7f22f89
GET /7.24.2/bundle.tracing.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 09 Jan 2024 14:49:01 GMT
last-modified: Wed, 07 Dec 2022 19:02:54 GMT
etag: "34ad770d9423c8c2de8dd8b89165dcb3"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:47:05 GMT
age: 1832284
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 25804
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e63f9bf9231f8d40b42fca03277e3f0
e3b9ddc60256fccb8176fe7444cf58668256193f
6916e3db8ad0513a65d345178f6110835313756dc4a6e5bf64069b9d83a1de37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6916E3DB8AD0513A65D345178F6110835313756DC4A6E5BF64069B9D83A1DE37"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Mon, 30 Jan 2023 21:09:36 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 788401ba6625fa009e25acfe8b8bd4ac
bb024f8867116f078a4e09be63222ec4f9cbcf44
99871f30d26ecc3e7ce2f6594c4ca1612d7ca29be1e6e9b68ca279e46180a38b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6598
Cache-Control: max-age=134150
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:05 GMT
Etag: "63d76df9-117"
Expires: Wed, 01 Feb 2023 09:02:55 GMT
Last-Modified: Mon, 30 Jan 2023 07:12:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=G-3YDFWHJE79
142.250.74.40200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-3YDFWHJE79
IP 142.250.74.40:0
File type Unicode text, UTF-8 text, with very long lines (28367)
Hash 0427163c816e82cadb21a96b39581186
d734c150e588e3f1279a274a9d5940c67f57a9c9
74f532511843a7093d7d772d56d47e513820efc5a0a1eb976c0098ebaf6778ae
GET /gtag/js?id=G-3YDFWHJE79 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 19:47:05 GMT
expires: Mon, 30 Jan 2023 19:47:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79996
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 788401ba6625fa009e25acfe8b8bd4ac
bb024f8867116f078a4e09be63222ec4f9cbcf44
99871f30d26ecc3e7ce2f6594c4ca1612d7ca29be1e6e9b68ca279e46180a38b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6598
Cache-Control: max-age=134150
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:05 GMT
Etag: "63d76df9-117"
Expires: Wed, 01 Feb 2023 09:02:55 GMT
Last-Modified: Mon, 30 Jan 2023 07:12:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.js
104.26.14.249200 OK 11 kB URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.js
IP 104.26.14.249:0
File type Unicode text, UTF-8 text, with very long lines (308)
Hash fb61db2ddd525b05844e4f94030b043d
cdc4250adb58d8f9f04bfb9d085cca05b32cf76a
b58af9e124ea9a9a755b8bbefa71fe5b665a62b24840ae70863123d85cf047ab
GET /facebook-pixel/client/facebook-pixel.js HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 10:10:04 GMT
etag: W/"63c12dfc-dca1"
expires: Wed, 01 Feb 2023 03:53:17 GMT
cache-control: max-age=1209600, public
pragma: public
cf-cache-status: HIT
age: 1094028
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2BB8gLR1dhPDw5B2CJmIcFttcLRGi17AFekPY%2F%2BfIboQXlJlrza%2F12qm6VGuO4qVeJ%2Fe4kDTMS7nBgOqoOd1yXssYHpt8fF8z5yBHOTVn5DnnNWA9e2uy15seH0B2n6OJfEHnVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791cb7a799e70b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b9943d0ede56f4621a69e0c208f0f00
0aab9fec24b3b22055cb7e2be40712c2cb885927
b2c45fa40739c489125fb9150a94900f1ab59b8e2bf646e69c77ef3ee17ba9f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C45FA40739C489125FB9150A94900F1AB59B8E2BF646E69C77EF3EE17BA9F0"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9568
Expires: Mon, 30 Jan 2023 22:26:33 GMT
Date: Mon, 30 Jan 2023 19:47:05 GMT
Connection: keep-alive
www.redditstatic.com/ads/pixel.js
151.101.1.140200 OK 7.4 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.1.140:0
File type ASCII text, with very long lines (23347)
Hash 03d5db9dfd00a5719bb4c9261e6fa1bb
be9899225f59b4d3ef6fefcf0e66b72568353a94
e90f19642062e4311b58ede732592e8f29b7799661086a0bbfc68e259fd81398
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 23 Jan 2023 21:56:14 GMT
etag: "03d5db9dfd00a5719bb4c9261e6fa1bb"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:47:05 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7356
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 0559d645d807dd0e908ae3f459c2cd99
07319b2084e006303dec17b1bef25c89a20f2ebd
e60d1370cd54e87336ac69bf8bc76d22b6cff542a96a2918cbac55d60e8bab70
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 19:47:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 09:46:36 GMT
Expires: Tue, 31 Jan 2023 09:46:36 GMT
ETag: "07319b2084e006303dec17b1bef25c89a20f2ebd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 0559d645d807dd0e908ae3f459c2cd99
07319b2084e006303dec17b1bef25c89a20f2ebd
e60d1370cd54e87336ac69bf8bc76d22b6cff542a96a2918cbac55d60e8bab70
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 19:47:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 09:46:36 GMT
Expires: Tue, 31 Jan 2023 09:46:36 GMT
ETag: "07319b2084e006303dec17b1bef25c89a20f2ebd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 5c3c02eb487c27a24a65e938ccb5d533
36611471789b2c1f1fbb2ca572d7fca8232e6388
086353e485ad6cf7fdcaf4b02e355db27897b409dd89672e2e87196ec34693fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168575
Date: Mon, 30 Jan 2023 19:47:05 GMT
Etag: "63d805e5-1d7"
Expires: Wed, 01 Feb 2023 18:36:40 GMT
Last-Modified: Mon, 30 Jan 2023 18:01:09 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ChAPm33gfAJlkdJY5I6yCRzOXsIAiGr0htIYmVSOmNQcqFENVQewjA==
Age: 2131
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 5c3c02eb487c27a24a65e938ccb5d533
36611471789b2c1f1fbb2ca572d7fca8232e6388
086353e485ad6cf7fdcaf4b02e355db27897b409dd89672e2e87196ec34693fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:47:05 GMT
Last-Modified: Mon, 30 Jan 2023 18:20:36 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ETI1EP3g-LLr5X_Gv4lsPgvWCsRQeX-cSCdQxO6JgY0yP16orWt7fA==
Age: 5190
dataaccess.mblock.cc/sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAifSwiYW5vbnltb3VzX2lkIjoiMTg2MDQzODM5MjAxNDUtMGMzZTRiZmUwODkxODYtYzUwNTQyNS0xMzEwNzIwLTE4NjA0MzgzOTIyNTZkIiwidHlwZSI6InByb2ZpbGVfc2V0X29uY2UiLCJ0aW1lIjoxNjc1MTA4MDM4OTYzLCJfdHJhY2tfaWQiOjgzMzM5ODk2MywiX2ZsdXNoX3RpbWUiOjE2NzUxMDgwMzg5NjN9&ext=crc%3D-2094648128
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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%2Fnm7TmjqXmiZPlvIAifSwiYW5vbnltb3VzX2lkIjoiMTg2MDQzODM5MjAxNDUtMGMzZTRiZmUwODkxODYtYzUwNTQyNS0xMzEwNzIwLTE4NjA0MzgzOTIyNTZkIiwidHlwZSI6InByb2ZpbGVfc2V0X29uY2UiLCJ0aW1lIjoxNjc1MTA4MDM4OTYzLCJfdHJhY2tfaWQiOjgzMzM5ODk2MywiX2ZsdXNoX3RpbWUiOjE2NzUxMDgwMzg5NjN9&ext=crc%3D-2094648128
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQifSwiZGlzdGluY3RfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQiLCJsaWIiOnsiJGxpYiI6ImpzIiwiJGxpYl9tZXRob2QiOiJjb2RlIiwiJGxpYl92ZXJzaW9uIjoiMS4yMy40In0sInByb3BlcnRpZXMiOnsiJGZpcnN0X3Zpc2l0X3RpbWUiOiIyMDIzLTAxLTMwIDE5OjQ3OjE4Ljk2MiIsIiRmaXJzdF9yZWZlcnJlciI6IiIsIiRmaXJzdF9icm93c2VyX2xhbmd1YWdlIjoiZW4tdXMiLCIkZmlyc3RfYnJvd3Nlcl9jaGFyc2V0IjoiVVRGLTgiLCIkZmlyc3RfdHJhZmZpY19zb3VyY2VfdHlwZSI6IuebtOaOpea1gemHjyIsIiRmaXJzdF9zZWFyY2hfa2V5d29yZCI6IuacquWPluWIsOWAvF%2Fnm7TmjqXmiZPlvIAifSwiYW5vbnltb3VzX2lkIjoiMTg2MDQzODM5MjAxNDUtMGMzZTRiZmUwODkxODYtYzUwNTQyNS0xMzEwNzIwLTE4NjA0MzgzOTIyNTZkIiwidHlwZSI6InByb2ZpbGVfc2V0X29uY2UiLCJ0aW1lIjoxNjc1MTA4MDM4OTYzLCJfdHJhY2tfaWQiOjgzMzM5ODk2MywiX2ZsdXNoX3RpbWUiOjE2NzUxMDgwMzg5NjN9&ext=crc%3D-2094648128 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
dataaccess.mblock.cc/sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-2077415391
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-2077415391
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQifSwiZGlzdGluY3RfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQiLCJsaWIiOnsiJGxpYiI6ImpzIiwiJGxpYl9tZXRob2QiOiJjb2RlIiwiJGxpYl92ZXJzaW9uIjoiMS4yMy40In0sInByb3BlcnRpZXMiOnsiJHRpbWV6b25lX29mZnNldCI6MCwiJHNjcmVlbl9oZWlnaHQiOjEwMjQsIiRzY3JlZW5fd2lkdGgiOjEyODAsIiR2aWV3cG9ydF9oZWlnaHQiOjkzOSwiJHZpZXdwb3J0X3dpZHRoIjoxMjgwLCIkbGliIjoianMiLCIkbGliX3ZlcnNpb24iOiIxLjIzLjQiLCIkbGF0ZXN0X3RyYWZmaWNfc291cmNlX3R5cGUiOiLnm7TmjqXmtYHph48iLCIkbGF0ZXN0X3NlYXJjaF9rZXl3b3JkIjoi5pyq5Y%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-2077415391 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
3.229.250.13200 OK 0 B URL HTTP/2 abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
IP 3.229.250.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB HTTP/1.1
Host: abtest-aws-us-east-01.saas.sensorsdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: *
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-request-id: 9f4670a606ff4cc3a4c797dcf701e566
X-Firefox-Spdy: h2
abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
3.229.250.13200 OK 33 B URL HTTP/2 abtest-aws-us-east-01.saas.sensorsdata.com/api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB
IP 3.229.250.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e69dedd13564d4fa97a4fd022b6a634
08b307cf24c3e6a5b14618d5405db5de205b0d8f
a1873c2dcab290798d7eb48f955ca9abbb569327e8af99023a900a287bb42088
POST /api/v2/abtest/online/results?project-key=896235767B77DA22E7DA6D846B0C2F293BD8E4DB HTTP/1.1
Host: abtest-aws-us-east-01.saas.sensorsdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json; charset=UTF-8
Content-Length: 161
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:06 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-request-id: 6a08354f3cf54f61bce0a0bb944a7ba4
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-3YDFWHJE79&cid=554201759.1675108039>m=2oe1p0&aip=1
173.194.221.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-3YDFWHJE79&cid=554201759.1675108039>m=2oe1p0&aip=1
IP 173.194.221.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3YDFWHJE79&cid=554201759.1675108039>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:47:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
34.120.195.249429 Too Many Requests 198 B URL HTTP/2 o4504297885007872.ingest.sentry.io/api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 478b411c59eb87249bea32cf7c7be5d2
023907c62eb55758905bb3c0e640b5b204ae0652
bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
POST /api/4504297995829248/envelope/?sentry_key=c9d0da1e8eab4eb49434f34159c87b77&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.24.2 HTTP/1.1
Host: o4504297885007872.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.xtool.com
Content-Length: 13775
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 429 Too Many Requests
server: nginx
date: Mon, 30 Jan 2023 19:47:06 GMT
content-type: application/json
content-length: 198
retry-after: 4
x-sentry-rate-limits: 4:transaction:organization:transaction_usage_exceeded
access-control-allow-origin: https://www.xtool.com
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56f6f85a811f7318f7ccf394e7532406
7e92fc97d3683dcdf0d9f7d5d0af063826a21f63
c8935a9427805239f07d2e58874c0e896f144131e4b422b6641770fa198b1597
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8935A9427805239F07D2E58874C0E896F144131E4B422B6641770FA198B1597"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1948
Expires: Mon, 30 Jan 2023 20:19:34 GMT
Date: Mon, 30 Jan 2023 19:47:06 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044
23.227.60.200200 OK 17 kB URL HTTP/2 cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (33790)
Hash 669d5b3ea39397848a6fd7358ebfef2a
8c7e709a7d7615deb54c8feead0156c1c5eeeb1b
d16ee3465a0cc81b0cb21d56cbe30ecd902e364213a566c53f72bdb599be7339
GET /s/files/1/0467/7985/9095/files/abtest.min.js?v=1668133044 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0467/7985/9095/files/abtest.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ded1afb-c437-4c83-88fd-ab927bb13e91
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 23 Nov 2022 06:47:59 GMT
cf-cache-status: HIT
age: 5915151
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1R8zUr38fRoslZjIsScW0mEeeJgGlWmrvU%2F%2FbgwCQ7n6Hy41jF6vDGWbGyiDCDpoQlGmELom0Rua457gZye20Tzcflykv3yK9H9sH5hXe5TPvZQ8CVpEz1Xz%2FQG8sMBB1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.577, imageryFetch;dur=72.395, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 791cb7a6e9f40b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 19:45:20 GMT
expires: Mon, 30 Jan 2023 21:45:20 GMT
cache-control: public, max-age=7200
age: 106
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6AC21CE52C614768AE9B89AD77ECB1B8 Ref B: OSL30EDGE0221 Ref C: 2023-01-30T19:47:06Z
date: Mon, 30 Jan 2023 19:47:06 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: max-age=126317
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Etag: "63d75ff3-1d7"
Expires: Wed, 01 Feb 2023 06:52:24 GMT
Last-Modified: Mon, 30 Jan 2023 06:13:07 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539
23.227.60.200200 OK 477 B URL HTTP/2 cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (906)
Hash cffb8b1787769d9abf6eaaaaf449c85e
7e55bb00610c3476c39f03d42cb248ae77436d59
6c9f90f516bd7d994be742afd978ec30d59c97747f424bbadef9520fa3083898
GET /s/files/1/0467/7985/9095/files/care-offer.css?v=1665311539 HTTP/1.1
Host: cdn.shopifycdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:06 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopifycdn.net/s/files/1/0467/7985/9095/files/care-offer.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: eaacd915-82f2-4986-ac54-5bfc7e23f8be
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sun, 09 Oct 2022 11:24:15 GMT
cf-cache-status: HIT
age: 43
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QRhVtnFgACQ%2FbGE5OGEjgB5sNdsj3Vz%2B88MlVY9Js%2FuEumR8jJTshOvXDIL7wySYoQcHP9hmWs83%2FVqHGsq6RWmr6qvHefSuFlKFF7OM9NqgA3%2FtApUjIqzNkpdmDvYN4BIpTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=35.795, imageryFetch;dur=34.681, cfRequestDuration;dur=83.999872
server: cloudflare
cf-ray: 791cb7b01bd2b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (65451)
Hash 0f83cadc148d2ad7e53c91f6c4ee05bb
90035c5fffedf4b0f099465f6b929a030b46c92b
3f59aa77bbbed7760a9968af27d3c19ffddda021c948edf0bf0c0f828dd308ae
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 07:28:22 GMT
expires: Fri, 26 Jan 2024 07:28:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 389925
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: na8mSwc3r3IlpY+HJH2SMOojt49TgqazXJOCvJmg+7oYCSEQ61YQlGo0Ic+r+9OAW3UoiYKxUrOp7p8YV7Yk3Q==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 19:47:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1675108039297&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=c8d65f6b-5429-408e-af40-0c3ef7c34f3b&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
151.101.65.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1675108039297&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=c8d65f6b-5429-408e-af40-0c3ef7c34f3b&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4
IP 151.101.65.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1675108039297&id=t2_mh88yyc1&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&uuid=c8d65f6b-5429-408e-af40-0c3ef7c34f3b&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_65e23bc4 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Mon, 30 Jan 2023 19:47:07 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: max-age=126317
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Etag: "63d75ff3-1d7"
Expires: Wed, 01 Feb 2023 06:52:24 GMT
Last-Modified: Mon, 30 Jan 2023 06:13:07 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
20.75.202.196200 OK 0 B URL HTTP/2 dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
IP 20.75.202.196:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sensorsdata/v1/payment_successful/debug HTTP/1.1
Host: dtc.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: utoken,lang,Content-Type,Accept,Origin,Access-Control-Allow-Origin,Cache-Control
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,PATCH
access-control-allow-origin: *
date: Mon, 30 Jan 2023 19:47:07 GMT
content-length: 0
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
23.227.38.33200 OK 57 kB URL HTTP/2 checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
IP 23.227.38.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (400)
Hash e89656f3f129a8818227a99a857e6f68
8ae3dd8764c0dc0c8fd80848c863e689b8efcf21
0dfdaca21ddc5174f77b8f36771b2a18b039b991b9781dd00a5d5664481968c6
GET /46779859095/sandbox/google_maps?locale=en-US HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:07 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Tue, 31 Jan 2023 19:47:07 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.xtool.com%2F; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Fsandbox%2Fgoogle_maps%3Flocale%3Den-US; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=fb515c2b-3cef-43cd-8c01-f6c68476b5f4; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=2d6b8d0d-67df-4b2d-940e-06904539ae6a; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=fb515c2b-3cef-43cd-8c01-f6c68476b5f4; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=2d6b8d0d-67df-4b2d-940e-06904539ae6a; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=cf55cfea-7ba7-4641-8744-4c4b8d83df89
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=cf55cfea-7ba7-4641-8744-4c4b8d83df89
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: cf55cfea-7ba7-4641-8744-4c4b8d83df89
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1KO2QMq0ZNpcBdGNVCGs2geXg9zGTuuwH%2FJ%2FUFTCcW0PZ5%2FevWSqjVj8MCdW1lV2JfOY8MO6UyBu4LWP6K%2FH9lzvJrYfn6xDVxu1w0NolSKyCl4rUls%2Bhwr%2BKhvOiK21XOhXaIoe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=280.999899
server: cloudflare
cf-ray: 791cb7affc11b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
23.36.79.32200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 74c3f327c4b3002fde5ef788129d6245
f99cd82f3208a2750f5be61301719411d3456ea0
c56110fcf0f726745765a3708a795b832279b24811675e6d757a8d84c3a4b144
GET /i18n/pixel/static/main.MWE2YWY2YTgzMg.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3mEModHgaregKZEZiBT4q5Emx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825CE9047AAB28A1A92E1C9
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f0d03b7468ad8b1cb3b9a087e8ba0c9271348d0471c1aab4c6b5f4ed91206a643c3d77d2de7d14e7830204a6ea5a19be4f4e8a330ae4e711c3e2cbdf6ca25d12c
content-encoding: gzip
date: Mon, 30 Jan 2023 19:47:07 GMT
content-length: 68835
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 5beb523e
X-Firefox-Spdy: h2
dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
20.75.202.196200 OK 35 B URL HTTP/2 dtc.mblock.cc/sensorsdata/v1/payment_successful/debug
IP 20.75.202.196:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash acbbb0b6425f0ebc413b114d639f4953
8b45409d53bd69fd1ca410a0801b24940cedd216
0c5cdb9b8171e9424e466d28e627643e7da544b700a9a1edd6ebfb59ab590a9e
POST /sensorsdata/v1/payment_successful/debug HTTP/1.1
Host: dtc.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 552
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: utoken,lang,Content-Type,Accept,Origin,Access-Control-Allow-Origin,Cache-Control
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,PATCH
access-control-allow-origin: *
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 19:47:07 GMT
content-length: 35
x-envoy-upstream-service-time: 91
server: istio-envoy
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=52001541&Ver=2&mid=b8d24a59-d999-47bc-a054-9349664ae3f5&sid=e8ae6280a0d611eda43317ffbad68e0c&vid=e8ae7940a0d611ed9b92591304cb70d0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&r=<=4507&evt=pageLoad&sv=1&rn=645887
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=52001541&Ver=2&mid=b8d24a59-d999-47bc-a054-9349664ae3f5&sid=e8ae6280a0d611eda43317ffbad68e0c&vid=e8ae7940a0d611ed9b92591304cb70d0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&r=<=4507&evt=pageLoad&sv=1&rn=645887
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=52001541&Ver=2&mid=b8d24a59-d999-47bc-a054-9349664ae3f5&sid=e8ae6280a0d611eda43317ffbad68e0c&vid=e8ae7940a0d611ed9b92591304cb70d0&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&p=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&r=<=4507&evt=pageLoad&sv=1&rn=645887 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3B355F090036689313B54DA001C369F0; domain=.bing.com; expires=Sat, 24-Feb-2024 19:47:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 547AAEFF1EDF4B28A2A4E47A8D8FDEFB Ref B: OSL30EDGE0221 Ref C: 2023-01-30T19:47:07Z
date: Mon, 30 Jan 2023 19:47:07 GMT
X-Firefox-Spdy: h2
checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
23.227.38.33200 OK 0 B URL HTTP/2 checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
IP 23.227.38.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /46779859095/sandbox/google_maps?locale=en-US HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:07 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Tue, 31 Jan 2023 19:47:07 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.xtool.com%2F; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Fsandbox%2Fgoogle_maps%3Flocale%3Den-US; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=1e95d456-72a8-4ddf-8985-90b6ce31ec99; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=cd1f8c46-b6ed-420a-bbb0-1ac824718dda; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=1e95d456-72a8-4ddf-8985-90b6ce31ec99; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=cd1f8c46-b6ed-420a-bbb0-1ac824718dda; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=9165b1e2-1a63-430e-847d-505e9e2a9a94
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=9165b1e2-1a63-430e-847d-505e9e2a9a94
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 9165b1e2-1a63-430e-847d-505e9e2a9a94
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dBZIRvoURo74z%2B6uOkylWIE4pjVI%2BLj8vzxw0h1X6knp8F6DtMmNgGUSkk8Y4HKBoFQeq9tOyoP0x70aEE7PjqML%2FiFqTN5Hze3Ho3MOxoyP7K%2FeJQ1Vw2fv4o0Uj2UpGwbOETkF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=255.000114
server: cloudflare
cf-ray: 791cb7b17f12b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.3200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.3:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Mon, 30 Jan 2023 19:47:07 GMT
expires: Mon, 30 Jan 2023 19:47:07 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 817 B IP 142.250.74.131:0
Hash 36180dd4a402bbf7340480ac57a760e5
ecaff454154828f851007142b4979e81ac45cfd3
27a8b4ecee345753f070f459459a4680a90b01d7008cfd149e59aaae68d99047
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3mEModHgaregKZEZiBT4q5Emx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Mon, 30 Jan 2023 19:47:07 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 5beb563a
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
23.38.200.197200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP 23.38.200.197:0
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&rl=&if=false&ts=1675108041315&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=28c24e6646b487c42df800125517c7dc7486ee30195aef806f38210f8371eb8e&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675108041314.1407647410&it=1675108040675&coo=false&eid=043852cf-8101-468B-15B1-E62DD1B034B5&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&rl=&if=false&ts=1675108041315&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=28c24e6646b487c42df800125517c7dc7486ee30195aef806f38210f8371eb8e&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675108041314.1407647410&it=1675108040675&coo=false&eid=043852cf-8101-468B-15B1-E62DD1B034B5&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=995200427983836&ev=PageView&dl=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&rl=&if=false&ts=1675108041315&sw=1280&sh=1024&udff[em]=948d87ef6d8247198cb504d5c5a67a698cb0097201829c7afe5eda6731636ec3&udff[fn]=720036c8101f751b82cdba6e74fbd217419a2d478dd49f6d7ba6697ed3810ece&udff[ln]=b1d32b37d8c25161b7b2d941c65eeec3620e3ae00c6042552b8bae9f5c607178&udff[ph]=28c24e6646b487c42df800125517c7dc7486ee30195aef806f38210f8371eb8e&udff[ct]=673a830236462830d966e5dde83b1ef54d30d0383407a8e9c494554c48380c20&udff[st]=0be477336d3e1a8d45d820aa54755092e2ec5e0751ccdf93a8fa8fa1e10bd753&udff[zp]=60e4f954fe09debfbf8e5b54fb021640badcc2879a89110bb379c80e99a2907d&v=2.9.92&r=stable&a=shopify&ec=0&o=2078&fbp=fb.1.1675108041314.1407647410&it=1675108040675&coo=false&eid=043852cf-8101-468B-15B1-E62DD1B034B5&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 30 Jan 2023 19:47:07 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://checkout.shopify.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 78307
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1180
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3mEModHgaregKZEZiBT4q5Emx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301301947072B54C2F1BFD572AFAE00
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca138cafb07bf699f6a3b4d73da3ddbe4d5d2a787d7a6a2f70cdf43fb13e7594f74715f710e9f4af254f96f9496d88f8e557b1449b28cba5c64544a696cfabbfff1
expires: Mon, 30 Jan 2023 19:47:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 19:47:08 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=24, cdn-cache; desc=MISS, edge; dur=4, origin; dur=127
x-origin-response-time: 127,23.36.79.28
x-akamai-request-id: 5beb574a
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1144
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: _ttp=2L3mEModHgaregKZEZiBT4q5Emx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301301947072E1230A16E9B7CB72F78
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1d596ddaf70747ace331741445dfeb5940cc5c5a40a47549f9d2edfe46d135e082e99eaff19fca1c32aadfde99f5f3e540e6f84e683c869cc8f1dedade7d4be65
expires: Mon, 30 Jan 2023 19:47:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 19:47:08 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=15, origin; dur=121
x-origin-response-time: 121,23.36.79.28
x-akamai-request-id: 5beb574b
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041427&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041427&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041427&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1URTFNbU0xWmpJdFl6UXdOeTAwTm1RNUxUaG1OREV0TW1aak1EazBOall3WVdaaw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.xtool.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1435694564866360
date: Mon, 30 Jan 2023 19:47:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675108028.ec0d7ede
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675108041425&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675108041425&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675108041425&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVptTmlNV1l5TURFdFlqZGtaaTAwTkdVd0xUbGxPRGt0WVRoak1EYzJOamM0Tm1GaQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.xtool.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1071345411558088
date: Mon, 30 Jan 2023 19:47:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675108028.ec0d7edb
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675108041428
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675108041428
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613923540751&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675108041428 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1664102102237786
date: Mon, 30 Jan 2023 19:47:08 GMT
akamai-grn: 0.274f2417.1675108028.ec0d7ff0
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
dataaccess.mblock.cc/sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-806921749
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-806921749
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D-806921749 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83a74eba0b084c8072c17e42ab0245f7
bfcba7ded1326fe93ca1d5ccf987d50d6860d449
1fdf1ffd953023e8b7b03d24e0e1b79593ba3b8ad4fbab9b873706208fce4780
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 945
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d7bf9b-117"
Last-Modified: Mon, 30 Jan 2023 19:31:24 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f38a5ca58a97f0082aa37e5843a2a47
bb2b525599f74e1b83e9afbf11cc1e1a7daaf3d3
5102995d71e5f6d869f3e0a1aed6659237b5969e30fd3bf63a3c11681dee5dcd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6365
Cache-Control: max-age=86044
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d6b2fb-117"
Expires: Tue, 31 Jan 2023 19:41:12 GMT
Last-Modified: Sun, 29 Jan 2023 17:55:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c568062de5d4697be51d1fdb1e4a387e
f37974b8be48e293ce8a6428b9def3318ee47d91
731274014823346decaa7b6ed39aca1e83a4eed1319938add5355a68935fdc9d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "731274014823346DECAA7B6ED39ACA1E83A4EED1319938ADD5355A68935FDC9D"
Last-Modified: Mon, 30 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6491
Expires: Mon, 30 Jan 2023 21:35:19 GMT
Date: Mon, 30 Jan 2023 19:47:08 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a20b7a48079a12ead4168ddbbe2dcd1
27c3fabad00b82e15323f7b6738d22ba944c4620
98c71e822bed71db46d9adc154bc593a5be2fcb27fea22efa322442f73a7d893
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "98C71E822BED71DB46D9ADC154BC593A5BE2FCB27FEA22EFA322442F73A7D893"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1393
Expires: Mon, 30 Jan 2023 20:10:21 GMT
Date: Mon, 30 Jan 2023 19:47:08 GMT
Connection: keep-alive
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 4309978160348521
date: Mon, 30 Jan 2023 19:47:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675108028.ec0d866d
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 681e88f029bfa0d0d788bb693457ff24
b4ef9c6567884abc677bb12c239b6a3a33ae24c7
8100dbba893b4b0c9789349dfafbe6e5fbe4e1648fbe9c29fbc4146f8cec9390
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 869
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Last-Modified: Mon, 30 Jan 2023 19:32:39 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
api.goaffpro.com/checkout_widget.js?shop=makeblock-xtool.myshopify.com
188.114.97.1200 OK 1 B URL HTTP/2 api.goaffpro.com/checkout_widget.js?shop=makeblock-xtool.myshopify.com
IP 188.114.97.1:0
File type very short file (no magic)
Hash 9eecb7db59d16c80417c72d1e1f4fbf1
2d14ab97cc3dc294c51c0d6814f4ea45f4b4e312
41b805ea7ac014e23556e98bb374702a08344268f92489a02f0880849394a1e4
GET /checkout_widget.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: api.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1
x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
etag: W/"1-LRSrl8w9wpTFHA1oFPTqRfS04xI"
x-cache-status: MISS
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzpMavfnG%2BoV5Qe7XCfbfRxltZXglKbGs88Oc1pXvopUsG68CR7tiW8JCy899ucfyB7p1sH9Wm0qg%2BFaLxNCxkVydqm22HOQYZOH63OMP3ec20pLUOUAWUR1ArfmNLIMFe6t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b95ffc0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.1 kB IP 93.184.220.29:0
Hash 70c9c4a8a13395e007f38c8916c0ec8d
6c96cc65cb56f168a34d55175c285a81cc2b203e
77bef4b50b1ec8693905351661f81f6ba7d367006cbfe1e5e790e63a53f95671
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166093
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d80489-117"
Expires: Wed, 01 Feb 2023 17:55:21 GMT
Last-Modified: Mon, 30 Jan 2023 17:55:21 GMT
Server: nginx
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e9ae072be4953e06488f7d1ff7af1447
913b96410291659329970baf89534342ff121293
d22215c296a4b22016701647ffbe3182a60626463dfd07d4c1736efd3bab826d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166852
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d80020-1d7"
Expires: Wed, 01 Feb 2023 18:08:00 GMT
Last-Modified: Mon, 30 Jan 2023 17:36:32 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: i59shL_AiLsGC-GYbbHVEocpC_hjvMbKA7RRmwlGmt3lSz-iW1x44Q==
Age: 1889
cdn.prooffactor.com/javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com
104.26.7.186200 OK 5.8 kB URL HTTP/2 cdn.prooffactor.com/javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com
IP 104.26.7.186:0
File type Unicode text, UTF-8 text, with very long lines (14220), with no line terminators
Hash 3c25f7be5a4a042fd2c4a6f824f3f804
ac927bf86185c1532e037ae09b116fbc883196f4
6bbc410fb4ab872b4401cc20c1cc24823f9545ed9200530f31e8236276c18675
GET /javascript/dist/1.0/jcr-widget.js?account_id=shopify:makeblock-xtool.myshopify.com&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.prooffactor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsOBJWHIdAcwz2_QjZpqGikNDHJN_tIdMMCyZmA_bdr8QXJidTpH5BeyPDQZeYUkfxiX93SeMxn0XYq2TJM2b6M9A
vary: X-Goog-Allowed-Resources, Accept-Encoding
x-goog-generation: 1674226038980251
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14221
x-goog-hash: crc32c=nu4LrA==, md5=XSsSoRM+YZMltMxB9wISXw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 30 Jan 2023 19:51:25 GMT
cache-control: public, max-age=300
last-modified: Fri, 20 Jan 2023 14:47:19 GMT
etag: W/"5d2b12a1133e619325b4cc41f702125f"
age: 43
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h6ukPlAfOXWV9gJiVk8zZ9qwKaERsBRUjYp23Sihf3AlT9w1Nsp%2B5SlOF%2FZ17LJdHCnKOYus7272cJ5ajpp9nXzbzhkVgyOkcIT%2BBbBpryyM0X9k9Z64M4GXUA8SFJdKgu%2BQXkY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b94f960b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5f90bb997c0da5099bcdfaac4d6248a8
2355982f0b193cc9f74bd9da244dc64f400aeddf
f6dd005ea02956e4f263205fcf76a17df4465d705b96e69f66fb392ff55b3657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=166093
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d80489-117"
Expires: Wed, 01 Feb 2023 17:55:21 GMT
Last-Modified: Mon, 30 Jan 2023 17:55:21 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
cdn.codeblackbelt.com/js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com
104.26.3.11200 OK 103 kB URL HTTP/2 cdn.codeblackbelt.com/js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com
IP 104.26.3.11:0
File type ASCII text, with very long lines (31992)
Size 103 kB (102646 bytes)
Hash b1c6fb08b68ad7b2fb954171275e14b8
0864bd242a8661476b6c53de6e90a72c6e150c28
2bd16ed25cfc15f570d1fd9bdb0da1cd7c25dd20583d0079908d0cf10839e9ad
GET /js/modules/frequently-bought-together/main.min.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.codeblackbelt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 08:08:30 GMT
etag: W/"6473f-5f3629a9edb80-gzip"
cache-control: max-age=3600
expires: Mon, 30 Jan 2023 19:58:28 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m6k1WJJ54T57OnnYtvK%2B2n7Q8XMnrbQ5vAxcdLuHn0FM1EX14TliA4N6CrQQLzO9TdhcMs8O6O%2F0tNnIvMBodpVrbiXIv6BLPRFERubo1tdDspgtytHOv9gXPbJGgQTQFNpGuOmbog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b9d933b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3ffdd3b4e2f4b05f935884755700a20
73275a447a3b59022c1d2cfeecf5d43d37c9889e
aad2e45fbc30f6a31ad6d14e3e6ce84248c87baf02b516faeb43fa337ce6bc02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.goaffpro.com/checkout_widget.js?shop=makeblock-xtool.myshopify.com
188.114.97.1304 Not Modified 0 B URL HTTP/2 api.goaffpro.com/checkout_widget.js?shop=makeblock-xtool.myshopify.com
IP 188.114.97.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /checkout_widget.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: api.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"1-LRSrl8w9wpTFHA1oFPTqRfS04xI"
TE: trailers
HTTP/2 304 Not Modified
date: Mon, 30 Jan 2023 19:47:08 GMT
x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
etag: W/"1-LRSrl8w9wpTFHA1oFPTqRfS04xI"
x-cache-status: MISS
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zplBE%2BbN1jBmbqEPpqQo8EPLxxzuFCTWEbYXwoXF%2Fb9O%2B2EHrsY5%2B8sLpr7YpHSlv4S1R8NNv5mxE4SxafVKi7l0m58IQx%2FOnlg5FqVfwunSxrYHZ9MtGLWL%2F4MIrep1r6Bz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7ba08d10b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
my.parcelpanel.com/assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com
104.26.6.247200 OK 1.3 kB URL HTTP/2 my.parcelpanel.com/assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com
IP 104.26.6.247:0
File type ASCII text, with CRLF line terminators
Hash 79b4163713f02b8bb7d8385bb244e502
0ae328cf814bb88460321f4e9639f833ac62a340
14bf5d9f32b35e12303668330f64817219b40bfa93d279fbd11acd13652ea0f1
GET /assets/admin/custom/js/checkout.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 05:48:11 GMT
vary: Accept-Encoding
etag: W/"61b6de9b-df3"
expires: Sun, 26 Mar 2023 22:57:23 GMT
cache-control: max-age=5184000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 1
cf-cache-status: HIT
age: 420584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KPAC09VfGPDbZZuf19iise6xRPfPYashyiIC5Fbgpk0YUQFnYjpD8i2qfoVJ%2BgvbvMd2wwetEd%2BxChJCcTkTQeMUIS7aIuSIpWUty%2FJxPPR4jwIJHNZQqsd5953h%2BWrPu99oag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b98d78b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash bdc8d295b7d80c15a68aa2c72fd4bfd0
f18426bfd34171a37833708860faa479ff5ccb86
64c911729389cd37e167e522d2fa9bb936204f2e4760dc7d30c1cb53f456a980
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123118
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d758dd-1d7"
Expires: Wed, 01 Feb 2023 05:59:06 GMT
Last-Modified: Mon, 30 Jan 2023 05:42:53 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3bwujSPF-6JWUCotQf2SAjTUOpfMQkONkxAlE2jjR1d7Y8-iOIuXlw==
Age: 974
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 9fac0f48aede4059968802dc1a770c5d
6e4e1597f350da2ad29e936626272b213231a132
c000366db3e6010d1c82c2e16ea4f830242c8ef6a361003d7a9953867f8d8242
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:47:08 GMT
Last-Modified: Mon, 30 Jan 2023 18:04:42 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: l15q7rLWqry7v5fwYtwmSt9miiJSqQAWZod-ps_YVHAw3B9kAkOF2w==
Age: 6146
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfaf8dd96a4035ce2593805193de0faa
cadc95bf1129a6789b88fb1bfc3d9e368bd2201b
92e971e715091f6e553b7f7930f630c9476508c4de1261f14366c9a5650c5673
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92E971E715091F6E553B7F7930F630C9476508C4DE1261F14366C9A5650C5673"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1902
Expires: Mon, 30 Jan 2023 20:18:50 GMT
Date: Mon, 30 Jan 2023 19:47:08 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 5.9 kB IP 93.184.220.29:0
Hash 3200f4d1fbecacee5a6a914aa7781e3e
b5329e67617974e5ce6c0349d65702c48947ca40
069dcbd89eb9636f9f71bbea31ea6b328b2de51dbc0e025a9caa002b780ef72c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6397
Cache-Control: max-age=111235
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d71542-117"
Expires: Wed, 01 Feb 2023 02:41:03 GMT
Last-Modified: Mon, 30 Jan 2023 00:54:26 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
api2.goaffpro.com/order_complete
188.114.96.1200 OK 0 B URL HTTP/2 api2.goaffpro.com/order_complete
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /order_complete HTTP/1.1
Host: api2.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://www.xtool.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: Authorization,X-Shop,content-type,x-site-id,x-goaffpro-public-key,x-goaffpro-public-token,x-goaffpro-access-token
access-control-max-age: 86400
cache-control: public, max-age=86400
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gcQccYE0Qa7xR1PNFxANfWlemZ2CAzK%2FaX64l4u12mnuBUi4vBKukuI2rOpHf6wFcRLzo%2FfHNGoQPJr5WYDKOHzDVGkCjcTaJe%2Fxb%2FFqCwFI6io9lAKh2bLXkIzxSWY8k8uNaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7baec45b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8ce0af457fd50824f15b9b4ee2d671ca
9aea54d8453d69f9c51b01c746754cbc3dbe16ca
0d65ec06b2acc923c31fbb242d2e035599ca7460537b4d16d129fa44467dce52
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167883
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d808b3-1d7"
Expires: Wed, 01 Feb 2023 18:25:11 GMT
Last-Modified: Mon, 30 Jan 2023 18:13:07 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2bnpQJCFEIWHHTE_idAII5aKbeX4wzt3kkz-xdH4haK-2fM_poYXjg==
Age: 724
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2445762739a3cf01174700093c93a3cb
50fe52ca39083885ad34342f264aee4a28db906f
579f71528833ff2729ec4edb237a73796fc9f0fb290c9bf6783bfeb3968f533c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 25
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d7f646-116"
Last-Modified: Mon, 30 Jan 2023 19:46:43 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 278
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel
104.26.14.249200 OK 92 kB URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel
IP 104.26.14.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 699896054965a814b8d327148e91a2d3
f395e4a59e1f6777f595da16748503853198a613
f77ea7f5c8e8e6e7747b18e2d33311d08ad38bbc10b2a2c89a31ac604ade7eef
GET /facebook-pixel/client/facebook-pixel.php?shop=makeblock-xtool.myshopify.com&action=getAllPixel HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/json
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-headers: *
content-security-policy: frame-ancestors https://*.myshopify.com https://admin.shopify.com;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FQCXg4ZCeJ7B5xs%2FkAzGanbhM7VhjdOTPvfBdNIV8QDWsB8OiQy4FJ9UoieDBnoQ2vpLvx5KBCwgZrQy1nJmUIEGMD%2BeJeg5YnC%2Bx7p2O5uOoLOkUA7JuU4wKo3s9RocO30b0SY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b90b8fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
us-central1-production-setup.cloudfunctions.net/log-conversion?order_id=4847486206191&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=2246.44&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405
216.239.36.54200 OK 27 B URL HTTP/2 us-central1-production-setup.cloudfunctions.net/log-conversion?order_id=4847486206191&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=2246.44&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405
IP 216.239.36.54:0
File type ASCII text, with no line terminators
Hash d323f68edb2a45db6f56532fea362b2b
636d6229d2718c892a44f9b15ed8a128e5ac78db
0bfdb38db9aec8a5919413e7944ce8b2b0dbea02ac582ae278defb871424b870
GET /log-conversion?order_id=4847486206191&send_to=AW-303673729/XWBhCOq-3ogDEIHj5pAB¤cy=USD&value=2246.44&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&script_id=823631722&shop_id=makeblock-xtool.myshopify.com&adwords_account_id=5518693405 HTTP/1.1
Host: us-central1-production-setup.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.xtool.com
content-type: text/html; charset=utf-8
function-execution-id: kczwe4kwpk09
vary: Origin
x-cloud-trace-context: 2c0da999382c93b64a25442439472f46;o=1
content-encoding: gzip
date: Mon, 30 Jan 2023 19:47:08 GMT
server: Google Frontend
cache-control: private
content-length: 27
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 976ffa487009b09852f3e2d641080fea
f1d571543a4722ef7812b60201a4aa0f31f31018
1b191039b31cb387510dda5a88813366d074defeb00d247588a1e3b445c785e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159626
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d7dfee-1d7"
Expires: Wed, 01 Feb 2023 16:07:34 GMT
Last-Modified: Mon, 30 Jan 2023 15:19:10 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cNivHTCyHljrFbnXZo8XWVlHhvgnhQ7QtdAM_qm2uVbF8F-GihdCuQ==
Age: 2904
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 291eb343f680f52674b4a3eb6dba6b56
ed4182b7e4c11cc523ed7de0d6b35e90df69f2dd
67887356a99866517f404e5b5d8385dd24568e1dcb34b41c6ec3d09917354eff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8ce0af457fd50824f15b9b4ee2d671ca
9aea54d8453d69f9c51b01c746754cbc3dbe16ca
0d65ec06b2acc923c31fbb242d2e035599ca7460537b4d16d129fa44467dce52
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170006
Date: Mon, 30 Jan 2023 19:47:08 GMT
Etag: "63d808b3-1d7"
Expires: Wed, 01 Feb 2023 19:00:34 GMT
Last-Modified: Mon, 30 Jan 2023 18:13:07 GMT
Server: ECS (dcb/7F13)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J-4zMDo9NgsYY_3EXQvXnyr4sKucYZtCQsSFybigdZPI3JuGhWxZmA==
Age: 2847
master-shopify-tracker.s3.amazonaws.com/gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com
52.216.29.44200 OK 32 kB URL HTTP/1.1 master-shopify-tracker.s3.amazonaws.com/gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com
IP 52.216.29.44:0
File type ASCII text, with very long lines (31421)
Hash 561c4cf216a32602a92916ad1ce2172f
e1da663651cbd57614e6e5bf1df0c303c6a4ff84
f82a472863e87b4b70885a7be5ca960d21d0b3f84511b0814d44ed7241c1b9cc
GET /gaThankYouPageTracker.js?wPI=UA-40881605-24&e=production&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: master-shopify-tracker.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: TvZw+3Eg1YoJf7ikVgjOFfDOk/NzSmZTLNUloZvzM6/UigbIUDuFT1pRqFoRwNS3npdEMhT69YM=
x-amz-request-id: 41CJYR57XYHRYVMD
Date: Mon, 30 Jan 2023 19:47:09 GMT
Last-Modified: Thu, 19 Jan 2023 10:23:44 GMT
ETag: "561c4cf216a32602a92916ad1ce2172f"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 31500
api2.goaffpro.com/order_complete
188.114.96.1200 OK 27 B URL HTTP/2 api2.goaffpro.com/order_complete
IP 188.114.96.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e619149e5452e6cd3c693b0235aae083
1bb457d3511014786bb12a571dede9eeec6b42bb
dc9607c8da374573e1c1f39878dbe83f5cadb19a2349e95570a206ed4465ed40
POST /order_complete HTTP/1.1
Host: api2.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 6611
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:09 GMT
content-type: application/json; charset=utf-8
content-length: 27
x-powered-by: Express
access-control-allow-origin: https://www.xtool.com
vary: Origin
access-control-allow-credentials: true
etag: W/"1b-G7RX01EQFHhrsSpXHe3p7uxrQrs"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
strict-transport-security: max-age=15768000; includeSubdomains; preload
content-security-policy: default-src 'self' 'unsafe-inline'
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3XvWVrwEu%2BLZdvnX9jBNl6%2FppeAINwr1tWfS8HhFNxtJhyXgLX501NzmDSV0H%2BANE0853Cp295aRyTZCuLiefOcXPJvt0POE3B8T%2FrEP5Bn680DeDslppu8mLsNmB23TV7w5sA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7bb5cd8b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041645&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%2C%22aem_ct%22%3A%225e118a84d5f45c3960bcb4081914c5913779ec804e609278061bbf61606a3b90%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041645&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%2C%22aem_ct%22%3A%225e118a84d5f45c3960bcb4081914c5913779ec804e609278061bbf61606a3b90%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22043852cf-8101-468B-15B1-E62DD1B034B5%22%7D&tid=2613923540751&cb=1675108041645&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%2223d51ab9-4309-46b2-8a80-c26b28f476bd%22%2C%22aem_ct%22%3A%225e118a84d5f45c3960bcb4081914c5913779ec804e609278061bbf61606a3b90%22%2C%22aem_eligible_list%22%3A%5B%22ct%22%2C%22ph%22%2C%22country%22%5D%2C%22aem_ph%22%3A%2236b2ae85fe6a869d6b92e52179bfe06b7d8791ee9fa3563afd5ae8ffca7479d8%22%2C%22aem_country%22%3A%2279adb2a2fce5c6ba215fe5f27f532d4e7edbac4b6a5e09e1ef3a08084a904621%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 3915175398511084
date: Mon, 30 Jan 2023 19:47:09 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZvNU1WaTBveExjYk8rWUdKaHpHUVlKRGZVQ2tUL0I1UnkwWXNEU0ZpRzAzZ3QzcW5zRThQa21WZkZhdTJkTkpraHF1dnNNUllNZ2dzKy95akcwa3NMSXIvOVF0cEF2RExQaS9nR09mNEsrbz0mNTYrVnROWGtwa3Bhb2tHdmJKWUkzcjNYQ2tzPQ=="; Expires=Tue, 30 Jan 2024 19:47:09 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675108029.ec0d9db7
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
my.parcelpanel.com/api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version
104.26.6.247200 OK 11 kB URL HTTP/2 my.parcelpanel.com/api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version
IP 104.26.6.247:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61013bb5030c7eb5ff9794797f8b51a4
52e01612cba4faab41a8b922e3138851b4a73394
5e59394ef62edd82915e9e0a0a7e0041e0ec524cfadffb47682c16109bec331e
GET /api/checkout?shop=makeblock-xtool.myshopify.com&type=check-out-version HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: x-requested-with,content-type
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IlBrZDhjd2hLU2tDRTdyYXR3RkFyNWc9PSIsInZhbHVlIjoiR2ZNRW4rXC9WM2l1dXQySEdFTDlmb0lGY0VHNndrOUpqNVwvQUw5am1LS3dzYTFQK042Y2w4RVhtYkRMOFdKTUVoIiwibWFjIjoiZWVkZjhkNjczNGI4NTBjMzhmMTM1MDE4OWM2NDdmOTk1M2RiOWMzOTNlM2E3YTNlOTZhYTFhZTllYjY5ZGUyYyJ9; expires=Tue, 31-Jan-2023 07:47:08 GMT; Max-Age=43200; path=/; secure; samesite=none
laravel_session=eyJpdiI6IkM1YzZLdFNSaDRLbXFjQk5aYzk5SFE9PSIsInZhbHVlIjoiR3BqdUxkNXkrTnU0Q1NtVDJNcFQyZlVMTWtWZUlrY0VMWWcrUmkyYXhFRGxBdDVlYllwYko0aGZSbUJwN0p4QSIsIm1hYyI6IjA4ZjM5YWQ0MWVlODZjMzVjMWM2YTNhNTRmMTZlMjBkNDRjYzg3ZWU5OWFmZGFkOTBkOTVhZGE1ODc3OWFjNjgifQ%3D%3D; expires=Tue, 31-Jan-2023 07:47:08 GMT; Max-Age=43200; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PIMmGoBvoPPRe1R3uMMouoeaddMgBQwkiixDkU6QoY15Yv28D4HlUjRBcH%2BgosqZ0cXUMZXD40PzIIuuSRfaRKZrOMptqfDRNEiA1TGiSKu7fc%2F1FfEVQA3A4PRGJo%2F8utdwnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7bb3c9cb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
affiliatepluginintegration.cj.com/getPluginJS?shop=makeblock-xtool.myshopify.com
54.230.111.125200 OK 6.3 kB URL HTTP/2 affiliatepluginintegration.cj.com/getPluginJS?shop=makeblock-xtool.myshopify.com
IP 54.230.111.125:0
File type ASCII text, with very long lines (6270)
Hash 740a9805d2842274624f0c0e15a29227
1cca7a135fc4cffe7e2d13d87012986a112d5bff
381c849fcd23437cb2b54d891859aa8bc6de640c63214a00c275181c51a0c870
GET /getPluginJS?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: affiliatepluginintegration.cj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 6319
server: CloudFront
date: Mon, 30 Jan 2023 19:39:08 GMT
cache-control: max-age=1800
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4ZUo6WXTsVDkDB_NLW_tLXgFQuSHcZL1-Tfaa_svcBlWyBhvHdKFCA==
age: 481
X-Firefox-Spdy: h2
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com
54.230.111.103200 OK 38 kB URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com
IP 54.230.111.103:0
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 53eac29a32c7b264e7263a4f2865500d
aee1983fd8bc3d32acdc3ebe91ebd3be6215cee2
706ab809fb15355d4012f603786e633e9a3a79faa943a6ef7d86d049d8b9fea3
GET /latest/sdks/pushowl-shopify.js?subdomain=makeblock-xtool&environment=production&guid=786c62d1-c271-4c6d-a2bc-f02573db0ee2&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: d85b185b-ce92-452a-b95d-e3e69497acd5
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"26572-mLLokrv2MGEVUeXn0hloxOgiowE"
date: Mon, 30 Jan 2023 11:58:13 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1dF_Nfr1zhPMG538iXbldwRy_botB59HFXfbwxky1i76eQy6DiN2hg==
age: 28135
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f347fe8efa35a5fcfa19d592d9577b35
e56076ca5e6484154b6fffeea84f4f84b9ff0e49
e18440d686b8fd8e61e5e30ee69d9c4cd6e76b5310887cf6b36e85b9f414654b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2576
Cache-Control: max-age=102766
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Etag: "63d7031b-117"
Expires: Wed, 01 Feb 2023 00:19:55 GMT
Last-Modified: Sun, 29 Jan 2023 23:36:59 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1a294e449b59fc02b1608401ef519b21
cf79146314c5166b0107ca5bb55f0209855c1dbd
a58069d78d430716e7574cb8d5c34ec0f25374de8b46a52e43055aa5cb2a956f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr4qe3ddw9y32.cloudfront.net/awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com
54.230.245.24200 OK 3.8 kB URL HTTP/2 dr4qe3ddw9y32.cloudfront.net/awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com
IP 54.230.245.24:0
Hash 1f87b02533c2e5c5c64536d93be71db8
11740b55a45fd45cf907ff395d8e4a919b3bdc37
1304b478c519042a63bf9599cd6897a1117f89ec4f6a9c1f642a0ecf247bcf06
GET /awin-shopify-integration-code.js?aid=23114&v=shopifyApp_2.0.5&ts=1626317326263&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: dr4qe3ddw9y32.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 10:38:22 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 10:39:21 GMT
etag: W/"8a03887aadb0949525810185531df2f7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HoxVKByAmOkJ5XopmX1Eu_BagHnqBrRJ8mTd4xYP3UqQFWK6c4mTNA==
age: 32869
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=554201759.1675108039&jid=2140003325&_u=YADAAEABAAAAACAAI~&z=1386338944
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=554201759.1675108039&jid=2140003325&_u=YADAAEABAAAAACAAI~&z=1386338944
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-33&cid=554201759.1675108039&jid=2140003325&_u=YADAAEABAAAAACAAI~&z=1386338944 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=554201759.1675108039&jid=1862716626&_u=YADAAEAAAAAAACAAI~&z=112749535
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=554201759.1675108039&jid=1862716626&_u=YADAAEAAAAAAACAAI~&z=112749535
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-30&cid=554201759.1675108039&jid=1862716626&_u=YADAAEAAAAAAACAAI~&z=112749535 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-20&cid=554201759.1675108039&jid=844226188&_u=aCDAgEABBAAAAGgCIAB~&z=861949767
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-20&cid=554201759.1675108039&jid=844226188&_u=aCDAgEABBAAAAGgCIAB~&z=861949767
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40881605-20&cid=554201759.1675108039&jid=844226188&_u=aCDAgEABBAAAAGgCIAB~&z=861949767 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
216.58.207.240200 OK 18 kB URL HTTP/2 storage.googleapis.com/gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
IP 216.58.207.240:0
File type ASCII text, with very long lines (18092), with no line terminators
Hash 8d8c08adec667175b92e0e341777a38a
aab9e281f333c92c14a6253063f698bf0a854f13
cde0570b55b1e3a3c63a0783fc6a6ac13ce10cdb39929cd3accf466e3fc5c0cb
GET /gsf-scripts/global-remarketing/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtOHx4TsCMJ5jiLN1zQ1GOKC8K9PO0Y5CFCmpdkgyljC_he7fWm6TVH33L-tWjhdbQMWOvUP1-hdOSONfUBEsGk5A
x-goog-generation: 1657959096978932
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 18092
x-goog-hash: crc32c=4ewN3Q==, md5=jYwIrexmcXW5Lg40F3ejig==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 18092
server: UploadServer
date: Mon, 30 Jan 2023 19:47:09 GMT
expires: Mon, 30 Jan 2023 19:47:09 GMT
cache-control: no-cache, max-age=0
last-modified: Sat, 16 Jul 2022 08:11:37 GMT
etag: "8d8c08adec667175b92e0e341777a38a"
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
216.58.207.240200 OK 5.9 kB URL HTTP/2 storage.googleapis.com/gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com
IP 216.58.207.240:0
Hash d932a833bed3f62876f5c9e043fc48f7
1bd52f494c194376110b746ad325b8b697e38465
675cd3947ec44d250b2822406a89c38c9eb97918197f552da5300b5bbfc2a16c
GET /gsf-scripts/conversion-pixels/makeblock-xtool.js?1657959099&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt5-2CPhegARA1Hr2iLY4oRfRszFkga5bs45zxmFJef4n_1hLmPsobsxQoDs7jmq_MpupGv8o1mijw1ox_1YKGWWQ
x-goog-generation: 1657959098273546
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2752
x-goog-hash: crc32c=WEkvTQ==, md5=PMbNPLmi6Z6YDdF2lFo+AQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2752
server: UploadServer
date: Mon, 30 Jan 2023 19:47:09 GMT
expires: Mon, 30 Jan 2023 19:47:09 GMT
cache-control: no-cache, max-age=0
last-modified: Sat, 16 Jul 2022 08:11:38 GMT
etag: "3cc6cd3cb9a2e99e980dd176945a3e01"
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.one.store/javascript/dist/1.0/jcr-widget-app.a30610ab.js
172.67.73.55200 OK 70 kB URL HTTP/2 cdn.one.store/javascript/dist/1.0/jcr-widget-app.a30610ab.js
IP 172.67.73.55:0
File type ASCII text, with very long lines (43498)
Hash 0f705de56e250928fcde21ac35242008
75162065eb5839a97da01014d8c955fe8c8e54e5
2e96d4500d2d7913c6cc1cb6ae8bc7879ab60b572b8340cbb4057b05f07b830a
GET /javascript/dist/1.0/jcr-widget-app.a30610ab.js HTTP/1.1
Host: cdn.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycds3cAXd5fIcTxmzBxDnSJ_7nfcBnPYcR-7ArRo4lcfWXEWKfuTes8wvab63uzSDFP0cF3JXUK_DWaByvlC7LEfeTg
vary: X-Goog-Allowed-Resources, Accept-Encoding
x-goog-generation: 1674226038586248
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 243220
x-goog-hash: crc32c=BpyQtg==, md5=g9oi2/iuAkXvbZcFIqTfdg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 30 Jan 2023 19:01:59 GMT
cache-control: public, max-age=7200
age: 3009
last-modified: Fri, 20 Jan 2023 14:47:18 GMT
etag: W/"83da22dbf8ae0245ef6d970522a4df76"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9l8EA2VwkJvKBj6jbUEA1rig0oqOmDS2vUb7tAuFGiV8IsXbtytfCJhc91W6QEO6cYlJf5IfkMIpCVlTdyou69S2LXIvqnxbwbC81UwgfM1RGwH8ROUg%2B53mMN7NhZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7bb8e0bb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1a294e449b59fc02b1608401ef519b21
cf79146314c5166b0107ca5bb55f0209855c1dbd
a58069d78d430716e7574cb8d5c34ec0f25374de8b46a52e43055aa5cb2a956f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api-cf.affirm.com/api/v2/session/touch_track
54.230.111.51200 OK 7.7 kB URL HTTP/2 api-cf.affirm.com/api/v2/session/touch_track
IP 54.230.111.51:0
File type Unicode text, UTF-8 text, with very long lines (28511)
Hash cbc169e0bdc1814547d34c40fa5c600d
3e91190e66e4f6be2ffec1d8e66c69185a2876bf
81422b0be246682d8f03bf92182d220ef321dd9cc9b8b6b2282020db1576da53
GET /api/v2/session/touch_track HTTP/1.1
Host: api-cf.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 19:47:09 GMT
server: istio-envoy
vary: Accept-Encoding,Origin
access-control-allow-headers: Accept, Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
access-control-allow-methods: GET, OPTIONS
set-cookie: tracker_device=e269f27d-672e-4edb-bb9a-d761aea2ade1; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:47:09 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None
t_v2_s=eyIgYiI6IlpUSTJPV1l5TjJRdE5qY3laUzAwWldSaUxXSmlPV0V0WkRjMk1XRmxZVEpoWkdVeCJ9.FrmwPQ.4m9q6OsBXbVmKZf3irVtCu2FkTE; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:47:09 GMT; Max-Age=63072000; Secure; HttpOnly; Path=/; SameSite=None
3060738.3440491=e269f27d-672e-4edb-bb9a-d761aea2ade1; Domain=.affirm.com; Expires=Wed, 29-Jan-2025 19:47:09 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None
cache-control: private, no-cache, no-store, must-revalidate
x-affirm-request-id: 325a4db9-5d35-4fef-cfc4-22fa81b6d643
strict-transport-security: max-age=86400
x-affirm-cache-status: MISS
content-encoding: gzip
x-envoy-upstream-service-time: 36
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FOPjP0_lopW60GsZlIJFPqA_YdkaHWYGMkQaGO5GIpTC9QWrAT26WA==
X-Firefox-Spdy: h2
www.affirm.com/api/v2/cookie_sent
54.230.111.11200 OK 44 kB URL HTTP/2 www.affirm.com/api/v2/cookie_sent
IP 54.230.111.11:0
Hash b159794d31eb4bd8794e18f648523e75
ec35da49f343c368a104172c1a295932b38c26ac
da89a7a34d9c0f0bb3f63d5accb2bcbcdedd2b60c5b107d7f72aacb6ba2f757a
GET /api/v2/cookie_sent HTTP/1.1
Host: www.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 19:38:16 GMT
server: istio-envoy
set-cookie: DUMMY_COOKIE=DUMMY_VALUE; Domain=.affirm.com; Secure; Path=/; SameSite=None
cache-control: max-age=3600
access-control-allow-headers: Accept, Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
access-control-allow-methods: GET, OPTIONS
x-affirm-request-id: e3ea1354-7575-493a-c94d-b11956478df7
strict-transport-security: max-age=86400
x-affirm-cache-status: MISS
content-encoding: gzip
x-envoy-upstream-service-time: 12
vary: Accept-Encoding,cookie,Origin,Origin
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 06d-pgKMdFlweQX2ur11DhsnwVioFBAvwhf1xKKZUKUpDqYduHW5vA==
age: 533
X-Firefox-Spdy: h2
www.mczbf.com/tags/402870836667/tag.js
54.230.111.70200 OK 17 kB URL HTTP/1.1 www.mczbf.com/tags/402870836667/tag.js
IP 54.230.111.70:0
File type ASCII text, with very long lines (51660)
Hash 14184abb5cc40346ba653a28f30da13b
d2b99f2e9f72fb1ffe200545c6911dd5455b3744
f766ceb3a123c652e9bb4676e1e8439f459d867ae4fd7e4fbbb51058b7382414
GET /tags/402870836667/tag.js HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 30 Jan 2023 19:38:15 GMT
X-Request-ID: a3c1ab50-a0d5-11ed-b7d6-87f067e03dfb
Server: nginx
Cache-Control: max-age=1800
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iP6NM_dDRLMBVOfM1Fuc9X5VVSFOwdYVQh0SGdiU0FAAVFT0tJVvLQ==
Age: 535
cdn.giftcardpro.app/build/storefront/storefront.css
54.230.111.85200 OK 10 kB URL HTTP/2 cdn.giftcardpro.app/build/storefront/storefront.css
IP 54.230.111.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3196f7b070cbddfef0d75443df48f4c5
b3248efccc2bbc465335d8569d274cc3240a4cbe
873f151cbef05f62a907d1e919816542c5c7a91bdca49f8f9091a3cc29995bf3
GET /build/storefront/storefront.css HTTP/1.1
Host: cdn.giftcardpro.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 30 Jan 2023 11:34:38 GMT
server: nginx/1.20.0
last-modified: Sun, 29 Jan 2023 00:53:44 GMT
etag: W/"63d5c398-eb6e"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GQnMlKWfJgkTGEHo_0fbrR3F7Ofe1Wy3NRT-zJWhB3Jo5aCZGa3mXg==
age: 29551
X-Firefox-Spdy: h2
www.sjwoe.com/policy
54.230.111.49200 OK 47 B IP 54.230.111.49:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4df589e07db49a37b9f0f0f388dafe4d
dec69779c617f1a3d12b24c305887f06d2c0e7ef
b9a115127dd63e3f27882fddcf4431f2cffc43deb619586cd6becc6f23e57ba6
GET /policy HTTP/1.1
Host: www.sjwoe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 47
date: Sun, 29 Jan 2023 20:02:02 GMT
x-amzn-requestid: 7695f72f-7a35-4c18-a332-2368cd722b02
access-control-allow-origin: *
x-amz-apigw-id: fhWNLFROIAMFUtA=
cache-control: max-age=3600
x-amzn-trace-id: Root=1-63d6d0ba-4eeed1c256d6471949add1c5;Sampled=0
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c5S6ZX6IHzQZtWzdfx6d1we4invTwybPgd6iPYD-aHoyPevVCRRTRA==
age: 85508
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f93c956401676ffd9ac096e33a2e7bdc
f7bb6edf35fb6ad00eab88f8252761696225e355
22aeea74821d6b17ae16fed4bfaffeae10cdf157bfe040ab6e18faecaeea313c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:47:10 GMT
Last-Modified: Mon, 30 Jan 2023 18:04:43 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IamtFovStHVgovhT5q4zUiY2EZInK8fUdjocnXgg_rWO6yuZiWaIxg==
Age: 6147
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f93c956401676ffd9ac096e33a2e7bdc
f7bb6edf35fb6ad00eab88f8252761696225e355
22aeea74821d6b17ae16fed4bfaffeae10cdf157bfe040ab6e18faecaeea313c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 19:47:10 GMT
Last-Modified: Mon, 30 Jan 2023 18:13:03 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XoghFZJEEF_oKSh2R6h2cPGWdSxiNbSQN5O_i2RmLtyfIMTDg1QXRg==
Age: 5647
widget-api.one.store/v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&user_agent=desktop&local_time_zone=null
104.26.7.211200 OK 115 B URL HTTP/2 widget-api.one.store/v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&user_agent=desktop&local_time_zone=null
IP 104.26.7.211:0
File type JSON data\012- , ASCII text, with no line terminators
Hash aca18d1a1b6283ce8b70b348a77faade
7e5bff37b9521b7405cbba01bb4b435d85bf4f55
3b398cb799c2c7683a68a88f5fbafcf427f9bc1431d12f9bec86e3d0633bc677
GET /v1/notifications/config?account_id=shopify:makeblock-xtool.myshopify.com&page=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&user_agent=desktop&local_time_zone=null HTTP/1.1
Host: widget-api.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:09 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
prooffactor-cache: MISS
set-cookie: _session_id=buEmsI78dmNv%2BILzUJL3AlygmHIsMRqj0hIe3zg11grSc2Bxk11GRVsjd%2FuB8TS509aCPZ5W4jnccec%2Fiw%3D%3D--ebKfk9tv5Endg7tn--vD%2FITNMHqjTyJqS22cnElw%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=%2BcQoWsvZ5kv%2FRSjO8LAdEwtczyWbt9nl7Gvq4oFnDN00mGKQgtnWVilGxaBiFtXPs5FkOXJEBma9BWAkfA%3D%3D--TcEaSFoSNPGXXmmY--mQb7ceahHCO%2BFBD6B3YrBA%3D%3D; path=/; HttpOnly; Secure; SameSite=None
etag: W/"39a02fdc348807ad23bcbae7dc1e62f6"
cache-control: max-age=0, private, must-revalidate
x-request-id: 685dcef4-6f33-4720-ae07-9c0434b914bd
x-runtime: 0.030809
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2FIItRMMm2azBtujk29%2B5xS35wGRl7U7bT9PxmHbVGMqRz%2FDvmjoeoS4fnTR2HDW24%2BS4S7%2F4NfSY3ZzxcPKA83oUPeG667rz5mflCwa75BqKhncbabZ0guT4%2Fp8zQwBWVtEIp4o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7c279beb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fdd9cf39493c31a9795475075ae8db91
711bd99da7dfa2320801955e5c18fcffa465295f
ac64c612b3fec67e62a23cb87a365b10610f346a7c71f5202ac013fa086f64ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1203
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:10 GMT
Last-Modified: Mon, 30 Jan 2023 19:27:08 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
transactions.littledata.io/v2/clientID-customerID/store
3.224.145.97200 OK 0 B URL HTTP/2 transactions.littledata.io/v2/clientID-customerID/store
IP 3.224.145.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/clientID-customerID/store HTTP/1.1
Host: transactions.littledata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:10 GMT
content-type: application/json
content-length: 0
allow: POST
access-control-allow-origin: *
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: authorization,content-type,x-amz-date,x-amz-security-token,x-amz-user-agent,x-api-key
apigw-requestid: fkm9wj0JoAMEJUw=
X-Firefox-Spdy: h2
www.affirm.com/api/v2/cookie_sent
54.230.111.11200 OK 544 B URL HTTP/2 www.affirm.com/api/v2/cookie_sent
IP 54.230.111.11:0
Hash 5bc60cbdc749e85c625a65e3da78e140
ecf57018199ff97266a29a7bbae3fb4fc9abfb2f
04e7e456083ee3588f22b333cd5c0a12b2145f8a1ad7d95d1781d0e6f23edac3
GET /api/v2/cookie_sent HTTP/1.1
Host: www.affirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Cookie: DUMMY_COOKIE=DUMMY_VALUE; tracker_device=e269f27d-672e-4edb-bb9a-d761aea2ade1; t_v2_s=eyIgYiI6IlpUSTJPV1l5TjJRdE5qY3laUzAwWldSaUxXSmlPV0V0WkRjMk1XRmxZVEpoWkdVeCJ9.FrmwPQ.4m9q6OsBXbVmKZf3irVtCu2FkTE; 3060738.3440491=e269f27d-672e-4edb-bb9a-d761aea2ade1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 19:19:58 GMT
server: istio-envoy
set-cookie: DUMMY_COOKIE=DUMMY_VALUE; Domain=.affirm.com; Secure; Path=/; SameSite=None
cache-control: max-age=3600
access-control-allow-headers: Accept, Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-origin: https://www.xtool.com
access-control-allow-methods: GET, OPTIONS
x-affirm-request-id: 8d8986c3-6e05-41cb-c1a3-8d860210f555
strict-transport-security: max-age=86400
x-affirm-cache-status: MISS
content-encoding: gzip
x-envoy-upstream-service-time: 12
vary: Accept-Encoding,cookie,Origin,Origin
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vtPPw2AEcHq2mBa1rSDXnFM1VHJ44q-dnUvXqVvnb5zN3AqD1Cs4-Q==
age: 1632
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 384e3418163143e52eacf3f3952d224c
ff56ea9af12cc7c42f4283e60895eb2a2a15ffdd
a95d7de51ccae192a8a3f732f6e777b860ad717f4abcf6308d146d85cf117d5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A95D7DE51CCAE192A8A3F732F6E777B860AD717F4ABCF6308D146D85CF117D5F"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8467
Expires: Mon, 30 Jan 2023 22:08:17 GMT
Date: Mon, 30 Jan 2023 19:47:10 GMT
Connection: keep-alive
interactions.one.store/v1/partners/shopify/conversion
172.67.73.55204 No Content 0 B URL HTTP/2 interactions.one.store/v1/partners/shopify/conversion
IP 172.67.73.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/partners/shopify/conversion HTTP/1.1
Host: interactions.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 210
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 19:47:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
set-cookie: _session_id=Bl6IrkUa3sC6ekOhVulIeB%2FCgJJ6Tx9aMDBSRFAxk8isTRNy4JirPKcCc1OmZcpIX3%2FmDeQdrATWFI%2B0hA%3D%3D--JzNe1ku1Qywe0Gxl--9fUl61GWL53nALXZBOtSFQ%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=jhr7HUx2o6jGGCWvibeo1OYA%2F7UYqdn2ngWWWuJpIRQphXkURgOedXY8tKFMCUYnmLmZMj%2BwngwEOtTWtw%3D%3D--seqPeH6ZGSWnDhci--PnowvG4vNMWjGTp2TliApw%3D%3D; path=/; HttpOnly; Secure; SameSite=None
cache-control: no-cache
x-request-id: e30c68b2-89f6-4cc8-8fa9-0cd57c915b96
x-runtime: 0.005980
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AouPXPDgYwPo%2FWGC98aMx7ROWAoVwJT0v1SxrqZoP1WgPzWAPaFyPh8c6B1iRvPqTbZSdM8zP5oTiJvh7qVlc3TklBZA12THCVeOfCy7Z8XX1hRWDQSKEVJ8qOkBMLJ88V7uAyZ96VY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7c3bb27b4f7-OSL
X-Firefox-Spdy: h2
transactions.littledata.io/v2/clientID-customerID/store
3.224.145.97200 OK 2 B URL HTTP/2 transactions.littledata.io/v2/clientID-customerID/store
IP 3.224.145.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /v2/clientID-customerID/store HTTP/1.1
Host: transactions.littledata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 74
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:10 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
apigw-requestid: fkm9yi4MIAMEJfQ=
X-Firefox-Spdy: h2
www.mczbf.com/402870836667/pageInfo
54.230.111.70200 OK 68 B URL HTTP/1.1 www.mczbf.com/402870836667/pageInfo
IP 54.230.111.70:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
POST /402870836667/pageInfo HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.xtool.com
Content-Length: 1893
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 68
Connection: keep-alive
Date: Mon, 30 Jan 2023 19:47:10 GMT
X-Request-ID: e2af7b12-a0d6-11ed-8200-092cd8502ce3
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IN4XcIjZvLFPHYM9-hqTGm5rWjNrgsJQLLtsk3Zu9ruuVk4cm60lsQ==
interactions.one.store/v1/analytics/visits
172.67.73.55204 No Content 0 B URL HTTP/2 interactions.one.store/v1/analytics/visits
IP 172.67.73.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/analytics/visits HTTP/1.1
Host: interactions.one.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 287
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 19:47:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-expose-headers: *
access-control-max-age: 1728000
proof-factor-user-country-code: NO
set-cookie: _session_id=RSMYxAHX6%2BFRWK%2BCMUklvLoz3IFYWwB9Tx1hHWLx8CrbAhNWdT6j%2Bb0ylARCRSBS7KFkv%2FFv%2FNyc4NdRkQ%3D%3D--MdYF9xVTNOYZw%2BJ6--pqCh9UBc%2BfQOknUisY0P7g%3D%3D; path=/; HttpOnly; Secure; SameSite=None
_session_id=bZeGzwcMjxcKbntAdTKbtMJHJfrss8nYaiWP8Dde5bLsjaKFnT3FaqsveM8Qg1yRnM6zv98qJpCfuXViCQ%3D%3D--2e84ex4Me98vQh1X--w4i5hquGuiazh9k7AsvptQ%3D%3D; path=/; HttpOnly; Secure; SameSite=None
cache-control: no-cache
x-request-id: 5b807b74-44d0-4e85-9fad-f0ab3bf50e42
x-runtime: 0.011236
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OSYAG4036VIwLRf0Aysi%2FzciBqxp1copMerN6G%2BIAr62bU%2F5mQsTaQzzq1VikgzTWhcT9Tb1FCMingZ8B%2BOAlnM2AjtjjV2I0latOIyynwQa6xPOu2zBo04aFjUER0qhk3IK9ZhHu7w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7c3cb31b4f7-OSL
X-Firefox-Spdy: h2
affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
161.35.97.142204 No Content 0 B URL HTTP/1.1 affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
IP 161.35.97.142:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /affiliatery/api/cart-mapping HTTP/1.1
Host: affiliatery-app-api.staqlab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.xtool.com/
Origin: https://www.xtool.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 19:47:10 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://www.xtool.com
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 7200
Access-Control-Allow-Methods: GET,HEAD,PUT,POST,DELETE,PATCH
Access-Control-Allow-Headers: content-type
X-SERVER-INST: S2
googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043675&cv=11&fst=1675108043675&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 974 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043675&cv=11&fst=1675108043675&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2117), with no line terminators
Hash b4c789b5e584ac75c88246d44259f69e
50cbaa0862f1f9a6465a5e0a7423742e5a4cc868
581320fbdfd398ac7ba35c717dde8d33613d89a5d80a61d5aae0d3daadb9c563
GET /pagead/viewthroughconversion/339790474/?random=1675108043675&cv=11&fst=1675108043675&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 974
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 20:02:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/303673729/?random=1675108043314&cv=11&fst=1675108043314&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 976 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/303673729/?random=1675108043314&cv=11&fst=1675108043314&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2115), with no line terminators
Hash a7be66c68381c7a74c52bb48d19183ed
2f4e67845931bbdcb4aebc19ca34cb3482469970
252d3e27dcab66f68b2df96639645df42d3669515b3f8236b682d781ad09b240
GET /pagead/viewthroughconversion/303673729/?random=1675108043314&cv=11&fst=1675108043314&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 976
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 20:02:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
161.35.97.142200 OK 2 B URL HTTP/1.1 affiliatery-app-api.staqlab.com/affiliatery/api/cart-mapping
IP 161.35.97.142:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /affiliatery/api/cart-mapping HTTP/1.1
Host: affiliatery-app-api.staqlab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.xtool.com
Content-Length: 260
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 19:47:10 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://www.xtool.com
Access-Control-Allow-Credentials: true
X-SERVER-INST: S2
googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043718&cv=11&fst=1675108043718&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=oFv_CNPD3dkCEIqVg6IB&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&oid=4847486206191&value=2246.44¤cy_code=USD>m_ee=1&auid=846676068.1675108039&ec_mode=m&data=event%3Dconversion&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM~fn0.cgA2yBAfdRuCzbpudPvSF0GaLUeN1J9te6ZpftOBDs4~ln0.sdMrN9jCUWG3stlBxl7uw2IOOuAMYEJVK4uun1xgcXg~sa0.sWEbl6A9Uh_Yc308mBxZqejPlvcGIrEDxxJ7pPVL2zk~ct0.moyock~pc0.27958~rg0.nc~co0.US&gcp=1&ct_cookie_present=1
142.250.74.162200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043718&cv=11&fst=1675108043718&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=oFv_CNPD3dkCEIqVg6IB&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&oid=4847486206191&value=2246.44¤cy_code=USD>m_ee=1&auid=846676068.1675108039&ec_mode=m&data=event%3Dconversion&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM~fn0.cgA2yBAfdRuCzbpudPvSF0GaLUeN1J9te6ZpftOBDs4~ln0.sdMrN9jCUWG3stlBxl7uw2IOOuAMYEJVK4uun1xgcXg~sa0.sWEbl6A9Uh_Yc308mBxZqejPlvcGIrEDxxJ7pPVL2zk~ct0.moyock~pc0.27958~rg0.nc~co0.US&gcp=1&ct_cookie_present=1
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/339790474/?random=1675108043718&cv=11&fst=1675108043718&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=oFv_CNPD3dkCEIqVg6IB&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&oid=4847486206191&value=2246.44¤cy_code=USD>m_ee=1&auid=846676068.1675108039&ec_mode=m&data=event%3Dconversion&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM~fn0.cgA2yBAfdRuCzbpudPvSF0GaLUeN1J9te6ZpftOBDs4~ln0.sdMrN9jCUWG3stlBxl7uw2IOOuAMYEJVK4uun1xgcXg~sa0.sWEbl6A9Uh_Yc308mBxZqejPlvcGIrEDxxJ7pPVL2zk~ct0.moyock~pc0.27958~rg0.nc~co0.US&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 20:02:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043690&cv=11&fst=1675108043690&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dpage_view%3Becomm_pagetype%3Dpurchase%3Becomm_prodid%3Dshopify_US_7733975384303_43024250470639%2Cshopify_US_7505330176239_42851555049711%2Cshopify_US_7697754685679_42927888695535%2Cshopify_US_7475702595823_42159705260271%2Cshopify_US_7673815531759_43048918548719%3Becomm_totalvalue%3D2246.44&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/339790474/?random=1675108043690&cv=11&fst=1675108043690&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dpage_view%3Becomm_pagetype%3Dpurchase%3Becomm_prodid%3Dshopify_US_7733975384303_43024250470639%2Cshopify_US_7505330176239_42851555049711%2Cshopify_US_7697754685679_42927888695535%2Cshopify_US_7475702595823_42159705260271%2Cshopify_US_7673815531759_43048918548719%3Becomm_totalvalue%3D2246.44&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2677), with no line terminators
Hash 740554dba5f61e6fe936283d303f4ddf
4ef5985491da81b5b0468c610b6a8cd9afd9982c
23b44df3668350eb6b6af4c80d3f0ca809b52dc52431db13028ed97033bb88a2
GET /pagead/viewthroughconversion/339790474/?random=1675108043690&cv=11&fst=1675108043690&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xtool.com%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10&tiba=Thank%20you%20Damian!%20-%20Smart%20Desktop%20Laser%20Cutter%20%26%20Engraver%20%7C%20xTool%20-%20Checkout&auid=846676068.1675108039&data=event%3Dpage_view%3Becomm_pagetype%3Dpurchase%3Becomm_prodid%3Dshopify_US_7733975384303_43024250470639%2Cshopify_US_7505330176239_42851555049711%2Cshopify_US_7697754685679_42927888695535%2Cshopify_US_7475702595823_42159705260271%2Cshopify_US_7673815531759_43048918548719%3Becomm_totalvalue%3D2246.44&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 19:47:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 20:02:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash df012623ed665761188fb44736305e03
3032ac576e41f3d73d315dadb0a599e6f7c7e256
52f09f591b0bd294d7bb16fa1841cbf3f12922ee7669efb62979c04b58015835
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 19:47:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 03 Feb 2023 17:35:22 GMT
ETag: "3032ac576e41f3d73d315dadb0a599e6f7c7e256"
Last-Modified: Mon, 30 Jan 2023 17:35:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 785
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791cb7c80982b50b-OSL
www.emjcd.com/u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=2116.98&taxAmount=129.46&customerCountry=US&discount=0&shopifyOrderId=4847486206191&customerStatus=Return&custom.stats=1&tagUuid=a0103e80-5865-41c9-a9b5-4490225851c6&cjUser=00000000-0000-0000-0000-000000000000&item1=p1030254-p5010138-p5010131-2&item2=ka020167000&item3=p5010161&item4=ka020128000&item5=wf010012000&amt1=1459.99&amt2=139&amt3=179.99&amt4=139&amt5=199&qty1=1&qty2=1&qty3=1&qty4=1&qty5=1&type=434926&cid=1564855&oid=39581
89.207.16.75302 Found 1.8 kB URL HTTP/1.1 www.emjcd.com/u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=2116.98&taxAmount=129.46&customerCountry=US&discount=0&shopifyOrderId=4847486206191&customerStatus=Return&custom.stats=1&tagUuid=a0103e80-5865-41c9-a9b5-4490225851c6&cjUser=00000000-0000-0000-0000-000000000000&item1=p1030254-p5010138-p5010131-2&item2=ka020167000&item3=p5010161&item4=ka020128000&item5=wf010012000&amt1=1459.99&amt2=139&amt3=179.99&amt4=139&amt5=199&qty1=1&qty2=1&qty3=1&qty4=1&qty5=1&type=434926&cid=1564855&oid=39581
IP 89.207.16.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (897)
Hash a9906384a3a55f9a35d2d09b735b35b8
7669f3a9c3f1e84eb6beb617f31dabbed6aa134c
67681b2ba6d3a0bf7486bfa716f955caad6f69ff8a05c3d193edbf377e22ec55
GET /u?method=img&pageType=conversionConfirmation&cjPlugin=Shopify&userId=6355918225647¤cy=USD&amount=2116.98&taxAmount=129.46&customerCountry=US&discount=0&shopifyOrderId=4847486206191&customerStatus=Return&custom.stats=1&tagUuid=a0103e80-5865-41c9-a9b5-4490225851c6&cjUser=00000000-0000-0000-0000-000000000000&item1=p1030254-p5010138-p5010131-2&item2=ka020167000&item3=p5010161&item4=ka020128000&item5=wf010012000&amt1=1459.99&amt2=139&amt3=179.99&amt4=139&amt5=199&qty1=1&qty2=1&qty3=1&qty4=1&qty5=1&type=434926&cid=1564855&oid=39581 HTTP/1.1
Host: www.emjcd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Mon, 30 Jan 2023 19:47:10 GMT
Location: https://cj.dotomi.com/qj97l5tp6D/nuz/txr/CGHFJGG/FEFKDH/B/AD?c=v1vq%3DGMILE%2636BI%3DE%265u12vsBb4qr4Vq%3DHLHKHLJFDJEME%26qv5p1706%3DD%2636BH%3DE%2636BG%3DE%26nz6I%3DEMM%2636BF%3DE%26nz6H%3DEGM%2636BE%3DE%26nz6G%3DEKM.MM%26zr6u1q%3Dvzt%26nz6F%3DEGM%2675r4Vq%3DJGIIMELFFIJHK%26nz6E%3DEHIM.MM%266B2r%3DHGHMFJ%26pwcy7tv0%3Dfu12vsB%26p744r0pB%3DhfQ%266nANz1706%3DEFM.HJ%26nz1706%3DFEEJ.ML%26pvq%3DEIJHLII%26p7561zr4P17064B%3Dhf%26p7561z.56n65%3DE%262ntrgB2r%3Dp108r45v10P10sv4zn6v10%26pwh5r4%3DDDDDDDDD-DDDD-DDDD-DDDD-DDDDDDDDDDDD%266nth7vq%3DnDEDGrLD-ILJI-HEpM-nMoI-HHMDFFILIEpJ%26v6rzI%3D9sDEDDEFDDD%26p7561zr4f6n675%3Der6740%26v6rzH%3DxnDFDEFLDDD%26v6rzG%3D2IDEDEJE%26v6rzF%3DxnDFDEJKDDD%26v6rzE%3D2EDGDFIH-2IDEDEGL-2IDEDEGE-F%3c%3cu6625%3A%2F%2F999.rzwpq.p1z%2F7%3c%3cT%3cu6625%3A%2F%2F999.A611y.p1z%2F%3c%3cE%3cE%3cD%3cD%3cD%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 1799
Date: Mon, 30 Jan 2023 19:47:10 GMT
X-VC-HTTPS: On
www.dwin1.com/23114.js
54.230.111.103200 OK 8.3 kB IP 54.230.111.103:0
Hash 742efb7003dd45d89f18dd111c350d50
a86c3b0e380002bb6a91fce2f90c511c324fdbdf
f932b08792695a1623db4fd9b2d6aed2a79585780120d5edb844eb30826c1e14
GET /23114.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 09:30:52 GMT
x-amz-version-id: GsXHS.j9KtVgZPCUJR0UMlv7_VZ29Vm8
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 19:47:10 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"099f09ef60bd0aceb2f7411ed1f1f39e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Oqn-Iuzj5C1JqtrRKDQMkOioInlTlWUczL_AoqlwvZ0vOEKS_K7Sg==
age: 19
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 19:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google.com/pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM
142.250.74.14200 OK 0 B URL HTTP/2 google.com/pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pagead/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 19:47:11 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cj.dotomi.com/qj97l5tp6D/nuz/txr/CGHFJGG/FEFKDH/B/AD?c=v1vq%3DGMILE%2636BI%3DE%265u12vsBb4qr4Vq%3DHLHKHLJFDJEME%26qv5p1706%3DD%2636BH%3DE%2636BG%3DE%26nz6I%3DEMM%2636BF%3DE%26nz6H%3DEGM%2636BE%3DE%26nz6G%3DEKM.MM%26zr6u1q%3Dvzt%26nz6F%3DEGM%2675r4Vq%3DJGIIMELFFIJHK%26nz6E%3DEHIM.MM%266B2r%3DHGHMFJ%26pwcy7tv0%3Dfu12vsB%26p744r0pB%3DhfQ%266nANz1706%3DEFM.HJ%26nz1706%3DFEEJ.ML%26pvq%3DEIJHLII%26p7561zr4P17064B%3Dhf%26p7561z.56n65%3DE%262ntrgB2r%3Dp108r45v10P10sv4zn6v10%26pwh5r4%3DDDDDDDDD-DDDD-DDDD-DDDD-DDDDDDDDDDDD%266nth7vq%3DnDEDGrLD-ILJI-HEpM-nMoI-HHMDFFILIEpJ%26v6rzI%3D9sDEDDEFDDD%26p7561zr4f6n675%3Der6740%26v6rzH%3DxnDFDEFLDDD%26v6rzG%3D2IDEDEJE%26v6rzF%3DxnDFDEJKDDD%26v6rzE%3D2EDGDFIH-2IDEDEGL-2IDEDEGE-F%3c%3cu6625%3A%2F%2F999.rzwpq.p1z%2F7%3c%3cT%3cu6625%3A%2F%2F999.A611y.p1z%2F%3c%3cE%3cE%3cD%3cD%3cD%3c
89.207.16.75200 OK 50 B URL HTTP/1.1 cj.dotomi.com/qj97l5tp6D/nuz/txr/CGHFJGG/FEFKDH/B/AD?c=v1vq%3DGMILE%2636BI%3DE%265u12vsBb4qr4Vq%3DHLHKHLJFDJEME%26qv5p1706%3DD%2636BH%3DE%2636BG%3DE%26nz6I%3DEMM%2636BF%3DE%26nz6H%3DEGM%2636BE%3DE%26nz6G%3DEKM.MM%26zr6u1q%3Dvzt%26nz6F%3DEGM%2675r4Vq%3DJGIIMELFFIJHK%26nz6E%3DEHIM.MM%266B2r%3DHGHMFJ%26pwcy7tv0%3Dfu12vsB%26p744r0pB%3DhfQ%266nANz1706%3DEFM.HJ%26nz1706%3DFEEJ.ML%26pvq%3DEIJHLII%26p7561zr4P17064B%3Dhf%26p7561z.56n65%3DE%262ntrgB2r%3Dp108r45v10P10sv4zn6v10%26pwh5r4%3DDDDDDDDD-DDDD-DDDD-DDDD-DDDDDDDDDDDD%266nth7vq%3DnDEDGrLD-ILJI-HEpM-nMoI-HHMDFFILIEpJ%26v6rzI%3D9sDEDDEFDDD%26p7561zr4f6n675%3Der6740%26v6rzH%3DxnDFDEFLDDD%26v6rzG%3D2IDEDEJE%26v6rzF%3DxnDFDEJKDDD%26v6rzE%3D2EDGDFIH-2IDEDEGL-2IDEDEGE-F%3c%3cu6625%3A%2F%2F999.rzwpq.p1z%2F7%3c%3cT%3cu6625%3A%2F%2F999.A611y.p1z%2F%3c%3cE%3cE%3cD%3cD%3cD%3c
IP 89.207.16.75:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 7db7a843f18dadb40f7947564560596c
4b966c390f5784fad88c2c8359a4715d14b8e815
ec34cd386427fe6deacf99f4fdbeea4b1d1ed25f505411650d7ceaa843a7fc63
GET /qj97l5tp6D/nuz/txr/CGHFJGG/FEFKDH/B/AD?c=v1vq%3DGMILE%2636BI%3DE%265u12vsBb4qr4Vq%3DHLHKHLJFDJEME%26qv5p1706%3DD%2636BH%3DE%2636BG%3DE%26nz6I%3DEMM%2636BF%3DE%26nz6H%3DEGM%2636BE%3DE%26nz6G%3DEKM.MM%26zr6u1q%3Dvzt%26nz6F%3DEGM%2675r4Vq%3DJGIIMELFFIJHK%26nz6E%3DEHIM.MM%266B2r%3DHGHMFJ%26pwcy7tv0%3Dfu12vsB%26p744r0pB%3DhfQ%266nANz1706%3DEFM.HJ%26nz1706%3DFEEJ.ML%26pvq%3DEIJHLII%26p7561zr4P17064B%3Dhf%26p7561z.56n65%3DE%262ntrgB2r%3Dp108r45v10P10sv4zn6v10%26pwh5r4%3DDDDDDDDD-DDDD-DDDD-DDDD-DDDDDDDDDDDD%266nth7vq%3DnDEDGrLD-ILJI-HEpM-nMoI-HHMDFFILIEpJ%26v6rzI%3D9sDEDDEFDDD%26p7561zr4f6n675%3Der6740%26v6rzH%3DxnDFDEFLDDD%26v6rzG%3D2IDEDEJE%26v6rzF%3DxnDFDEJKDDD%26v6rzE%3D2EDGDFIH-2IDEDEGL-2IDEDEGE-F%3c%3cu6625%3A%2F%2F999.rzwpq.p1z%2F7%3c%3cT%3cu6625%3A%2F%2F999.A611y.p1z%2F%3c%3cE%3cE%3cD%3cD%3cD%3c HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtool.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Resin/4.0.66
Set-Cookie: CJSession=66a64ca0-3738-43b3-b795-82dcc0a72b2a; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
cjae=s5YeuUKiD8OV; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400205040566137510$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p-d.xml", CP="NOI DSP NID OUR STP"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Mon, 30 Jan 2023 19:47:11 GMT
Content-Type: image/gif
Content-Length: 50
Date: Mon, 30 Jan 2023 19:47:11 GMT
X-VC-HTTPS: On
google.com/ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=7317417.1675108044
142.250.74.14204 No Content 0 B URL HTTP/2 google.com/ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=7317417.1675108044
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/form-data/339790474?gtm=2oa1p0&hn=www.googleadservices.com&auid=846676068.1675108039&em=tv.1~em.lI2H722CRxmMtQTVxaZ6aYywCXIBgpx6_l7aZzFjbsM&ecsid=7317417.1675108044 HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xtool.com
date: Mon, 30 Jan 2023 19:47:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dataaccess.mblock.cc/sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%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&ext=crc%3D1499336272
20.81.67.124200 OK 43 B URL HTTP/2 dataaccess.mblock.cc/sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQifSwiZGlzdGluY3RfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQiLCJsaWIiOnsiJGxpYiI6ImpzIiwiJGxpYl9tZXRob2QiOiJjb2RlIiwiJGxpYl92ZXJzaW9uIjoiMS4yMy40In0sInByb3BlcnRpZXMiOnsiJHRpbWV6b25lX29mZnNldCI6MCwiJHNjcmVlbl9oZWlnaHQiOjEwMjQsIiRzY3JlZW5fd2lkdGgiOjEyODAsIiR2aWV3cG9ydF9oZWlnaHQiOjkzOSwiJHZpZXdwb3J0X3dpZHRoIjoxMjgwLCIkbGliIjoianMiLCIkbGliX3ZlcnNpb24iOiIxLjIzLjQiLCIkbGF0ZXN0X3RyYWZmaWNfc291cmNlX3R5cGUiOiLnm7TmjqXmtYHph48iLCIkbGF0ZXN0X3NlYXJjaF9rZXl3b3JkIjoi5pyq5Y%2BW5Yiw5YC8X%2BebtOaOpeaJk%2BW8gCIsIiRsYXRlc3RfcmVmZXJyZXIiOiIiLCJwbGF0Zm9ybV90eXBlIjoiUEMiLCJtb25ldGFyeV91bml0Ijoi576O5YWDIiwibG9naW5fc3RhdHVzIjpmYWxzZSwidXJsX3BhdGgiOiIvNDY3Nzk4NTkwOTUvb3JkZXJzLzJmYjgxYTc2MjNiMDQzYTZiMWVmNmZjZGQ1YTMyYTEwIiwiJHRpdGxlIjoiVGhhbmsgeW91IERhbWlhbiEgLSBTbWFydCBEZXNrdG9wIExhc2VyIEN1dHRlciAmIEVuZ3JhdmVyIHwgeFRvb2wgLSBDaGVja291dCIsIiR1cmwiOiJodHRwczovL3d3dy54dG9vbC5jb20vNDY3Nzk4NTkwOTUvb3JkZXJzLzJmYjgxYTc2MjNiMDQzYTZiMWVmNmZjZGQ1YTMyYTEwIiwiJHVybF9wYXRoIjoiLzQ2Nzc5ODU5MDk1L29yZGVycy8yZmI4MWE3NjIzYjA0M2E2YjFlZjZmY2RkNWEzMmExMCIsIiRyZWZlcnJlcl9ob3N0IjoiIiwiJHJlZmVycmVyIjoiIiwiJHZpZXdwb3J0X3Bvc2l0aW9uIjowLCJldmVudF9kdXJhdGlvbiI6My4zODEsIiRpc19maXJzdF9kYXkiOnRydWV9LCJhbm9ueW1vdXNfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQiLCJ0eXBlIjoidHJhY2siLCJldmVudCI6IiRXZWJQYWdlTGVhdmUiLCJ0aW1lIjoxNjc1MTA4MDQ1MDAxLCJfdHJhY2tfaWQiOjYzMDQyNTAwMywiX2ZsdXNoX3RpbWUiOjE2NzUxMDgwNDUwMDN9&ext=crc%3D1499336272
IP 20.81.67.124:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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%2BW5Yiw5YC8X%2BebtOaOpeaJk%2BW8gCIsIiRsYXRlc3RfcmVmZXJyZXIiOiIiLCJwbGF0Zm9ybV90eXBlIjoiUEMiLCJtb25ldGFyeV91bml0Ijoi576O5YWDIiwibG9naW5fc3RhdHVzIjpmYWxzZSwidXJsX3BhdGgiOiIvNDY3Nzk4NTkwOTUvb3JkZXJzLzJmYjgxYTc2MjNiMDQzYTZiMWVmNmZjZGQ1YTMyYTEwIiwiJHRpdGxlIjoiVGhhbmsgeW91IERhbWlhbiEgLSBTbWFydCBEZXNrdG9wIExhc2VyIEN1dHRlciAmIEVuZ3JhdmVyIHwgeFRvb2wgLSBDaGVja291dCIsIiR1cmwiOiJodHRwczovL3d3dy54dG9vbC5jb20vNDY3Nzk4NTkwOTUvb3JkZXJzLzJmYjgxYTc2MjNiMDQzYTZiMWVmNmZjZGQ1YTMyYTEwIiwiJHVybF9wYXRoIjoiLzQ2Nzc5ODU5MDk1L29yZGVycy8yZmI4MWE3NjIzYjA0M2E2YjFlZjZmY2RkNWEzMmExMCIsIiRyZWZlcnJlcl9ob3N0IjoiIiwiJHJlZmVycmVyIjoiIiwiJHZpZXdwb3J0X3Bvc2l0aW9uIjowLCJldmVudF9kdXJhdGlvbiI6My4zODEsIiRpc19maXJzdF9kYXkiOnRydWV9LCJhbm9ueW1vdXNfaWQiOiIxODYwNDM4MzkyMDE0NS0wYzNlNGJmZTA4OTE4Ni1jNTA1NDI1LTEzMTA3MjAtMTg2MDQzODM5MjI1NmQiLCJ0eXBlIjoidHJhY2siLCJldmVudCI6IiRXZWJQYWdlTGVhdmUiLCJ0aW1lIjoxNjc1MTA4MDQ1MDAxLCJfdHJhY2tfaWQiOjYzMDQyNTAwMywiX2ZsdXNoX3RpbWUiOjE2NzUxMDgwNDUwMDN9&ext=crc%3D1499336272 HTTP/1.1
Host: dataaccess.mblock.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:11 GMT
content-type: image/gif
content-length: 43
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
IP 142.250.74.106:0
GET /css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 19:47:07 GMT
date: Mon, 30 Jan 2023 19:47:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0467/7985/9095/files/sensorsdata.min.js?v=1663145889 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0467/7985/9095/files/sensorsdata.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 242152a8-70a3-476b-b6f1-88dc73c3e332
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 14 Sep 2022 09:06:42 GMT
cf-cache-status: HIT
age: 11187584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qBd307Zj2JCqshbbLvvdSg1hyovVj8a0fKRMZhE6wq%2FOdSsZMXzmNQ1IwzVWuJpQ4ltadCE8%2FNWlUTTOvN2oV0Hg5WYzu%2BgWbhdf%2BZjT783ImKbo%2BhtXHUArzOOtFT2XkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=75.953, imageryFetch;dur=75.744, cfRequestDuration;dur=40.999889
server: cloudflare
cf-ray: 791cb7a6d9ee0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
23.227.38.33200 OK 0 B URL HTTP/2 checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
IP 23.227.38.33:0
GET /46779859095/sandbox/google_maps?locale=en-US HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:07 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Tue, 31 Jan 2023 19:47:07 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.xtool.com%2F; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Fsandbox%2Fgoogle_maps%3Flocale%3Den-US; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=623e5459-90b2-488b-8213-50203b890057; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=e829e35a-5be2-41bb-8722-58cdec3afa43; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=623e5459-90b2-488b-8213-50203b890057; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=e829e35a-5be2-41bb-8722-58cdec3afa43; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=6f69063a-bae3-40b1-89a4-f9f1632c808b
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=6f69063a-bae3-40b1-89a4-f9f1632c808b
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 6f69063a-bae3-40b1-89a4-f9f1632c808b
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RIMvZfLUw7YfdA1Ca2gXaqvY3vmj%2FrogF1Pz9jID13f8Dim7lsIPDv9hOE7prxFHJYy7UGpGxdM%2FfiY7%2B6RpXgdhmjzFhtTPnxAGXiHx3RQQ40DzPM2tLzcWnyxheoPyULrGpcvK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=264.999866
server: cloudflare
cf-ray: 791cb7b17f16b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
admin.revenuehunt.com/embed.js?shop=makeblock-xtool.myshopify.com
54.230.111.13200 OK 0 B URL HTTP/2 admin.revenuehunt.com/embed.js?shop=makeblock-xtool.myshopify.com
IP 54.230.111.13:0
GET /embed.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: admin.revenuehunt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 12:01:44 GMT
cache-control: public, max-age=14400
content-encoding: br
date: Mon, 30 Jan 2023 17:16:30 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zQtWabsuPw_BM5g38dNFMmV6Ak-6EchRcuyXtYDCk7rxp5klqY9j8Q==
age: 9038
X-Firefox-Spdy: h2
static.shareasale.com/json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com
104.16.227.72200 OK 0 B URL HTTP/2 static.shareasale.com/json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com
IP 104.16.227.72:0
GET /json/shopify/shareasale-tracking.js?sasmid=106131&ssmtid=19038&scid=null&xtm=static&xtv=US&cd=false&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: static.shareasale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:09 GMT
content-type: application/javascript
x-amz-id-2: FmKGTiZffAYG4VD2zD17xoAVP8n1RI3TqU1PRD6pGkyd3sFYyDmGW0Ud0/U/b0P9XwKfK5O25u0=
x-amz-request-id: Y6K29CKS5XACHN9D
last-modified: Fri, 20 Jan 2023 23:10:17 GMT
etag: W/"242c7afa3375da811199fef600d86eb6"
cf-cache-status: DYNAMIC
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791cb7be88cbfab8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com
104.26.14.249200 OK 0 B URL HTTP/2 apps.omegatheme.com/facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com
IP 104.26.14.249:0
GET /facebook-pixel/client/facebook-pixel.php?action=checkExpire&shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: apps.omegatheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:07 GMT
content-type: application/json
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-headers: *
content-security-policy: frame-ancestors https://*.myshopify.com https://admin.shopify.com;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GdATE1nfClZGMwvNvBa1T80Jb%2BuBj%2B0R1mErOS0QWLwQE12rqU%2BIH%2FtX8GR0J3dHevIofyPfu0v6xE2%2F%2BgXTdN0efNC1K4%2Bh2R7M6sbmcQoUjHmwFwckjpIIq1vlL5GpKXOK6EM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7b1cb70b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kickbooster.me/shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com
104.26.0.169200 OK 0 B URL HTTP/2 kickbooster.me/shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com
IP 104.26.0.169:0
GET /shopify/post-purchase.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: kickbooster.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:08 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 791cb7b97de0fac0-OSL
age: 43
cache-control: max-age=300, public
etag: W/"8517e8311db831a1f3c9723a4c8f44a4"
strict-transport-security: max-age=2592000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy:
referrer-policy: strict-origin-when-cross-origin
source: app
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-powered-by: cloud66
x-request-id: 633d16b8-903d-400d-b9f3-09cf2a379c8f
x-runtime: 0.099491
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
my.parcelpanel.com/api/checkout?orderid=Order%2039581&shop=makeblock-xtool.myshopify.com&nums=1Z892A550317235438&url=https%3A%2F%2Fwww.ups.com%2FWebTracking%3Floc%3Den_US%26requester%3DST%26trackNums%3D1Z892A550317235438&type=get-checkout-setting
104.26.6.247200 OK 0 B URL HTTP/2 my.parcelpanel.com/api/checkout?orderid=Order%2039581&shop=makeblock-xtool.myshopify.com&nums=1Z892A550317235438&url=https%3A%2F%2Fwww.ups.com%2FWebTracking%3Floc%3Den_US%26requester%3DST%26trackNums%3D1Z892A550317235438&type=get-checkout-setting
IP 104.26.6.247:0
GET /api/checkout?orderid=Order%2039581&shop=makeblock-xtool.myshopify.com&nums=1Z892A550317235438&url=https%3A%2F%2Fwww.ups.com%2FWebTracking%3Floc%3Den_US%26requester%3DST%26trackNums%3D1Z892A550317235438&type=get-checkout-setting HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:10 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: x-requested-with,content-type
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkpTd1ptS2RJZ3pIdXZXd1NjVmNhZEE9PSIsInZhbHVlIjoiY25uSlM3ODYyUmY4WGVmTUhGekZHc2Vic1oxUlVPcjJsUDZmUjFIXC9hdjJDbFZmeWVYV2I2TlF1OVdNNTErSXYiLCJtYWMiOiI2ZTA4NDhmN2Y3ZDVmYzEzN2YwZWE0OGNhOWE4MTViMDBlMzJhZmQ1YzE1ODQyYzM5NmQ0ZDFmMWFkOTQ3MTBmIn0%3D; expires=Tue, 31-Jan-2023 07:47:10 GMT; Max-Age=43200; path=/; secure; samesite=none
laravel_session=eyJpdiI6IjlRSnh2dWt3bk92anZLZVFkaG9KY2c9PSIsInZhbHVlIjoiVG9lNWpZZ0ZDZU9VMVhrUWE2UUNLamZacXpBZUVja3ZidmNZMlkyMGl2MjdMTkZSb1RoT0dPcVBNS1MrSzR0MSIsIm1hYyI6IjMzNWE0NTJhZDBmZmMxNjQ0NzI3ZWQyZjIzNGU0ZGI0YmFjNDJhMTkyNDFkYjNlYTAxY2FlNDZkMmQyMDNmNzUifQ%3D%3D; expires=Tue, 31-Jan-2023 07:47:10 GMT; Max-Age=43200; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yzakRIwIvZpnpgG%2FlNGRZ4lYQ1LmFWisnw5KuOzuHihK2ZGDANNfWtI01jq1dlHTfH24It4Z5dww19HD5Am7oXLQ%2BPdhaYxzd31VKr%2FPSIeFeHul0FLQAvtAlQdbIxYgf0AE3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7c3a9ceb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.goaffpro.com/cross-domain-sharing-innner-frame.html
54.230.111.94200 OK 0 B URL HTTP/2 static.goaffpro.com/cross-domain-sharing-innner-frame.html
IP 54.230.111.94:0
GET /cross-domain-sharing-innner-frame.html HTTP/1.1
Host: static.goaffpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 15 Sep 2022 14:46:18 GMT
x-amz-meta-s3cmd-attrs: atime:1663253132/ctime:1663253132/gid:20/gname:staff/md5:677fda061086ab0938ab0d82329aaed0/mode:33188/mtime:1663253132/uid:501/uname:anujtenani
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 08:37:00 GMT
etag: W/"677fda061086ab0938ab0d82329aaed0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: f9JmV4T_TankAk9uiAXwTA3dLKXf3JDlpK7oUFpRRl_bw_YUsP7pBg==
age: 76656
X-Firefox-Spdy: h2
www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10
23.227.38.74200 OK 0 B URL HTTP/2 www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10
IP 23.227.38.74:0
GET /46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10 HTTP/1.1
Host: www.xtool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVU0TW1SaE5qYzJZMk16WWpBNE1ETXlOMkkzTlRCaU1USTNaV1ZoTVdWbFlRWTZCa1ZVIiwiZXhwIjoiMjAyMy0wMi0yMFQxOTo0NzowMy43ODFaIiwicHVyIjoiY29va2llLm9yZGVyIn19--0e2d05092648bf8ea0b007ca58c5343fe80de54b; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=23d51ab9-4309-46b2-8a80-c26b28f476bd; _s=c3fc923d-e577-4753-8315-81de2636a83a; _shopify_y=23d51ab9-4309-46b2-8a80-c26b28f476bd; _shopify_s=c3fc923d-e577-4753-8315-81de2636a83a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:05 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-frame-options: DENY
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: _secure_session_id=e66f2c0d1465a864f4e2cd24b72cac29; path=/; expires=Tue, 31 Jan 2023 19:47:05 GMT; secure; HttpOnly
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=xtool.com; path=/; expires=Tue, 31 Jan 2023 19:47:05 GMT; SameSite=Lax
_orig_referrer=; Expires=Mon, 13-Feb-23 19:47:05 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Forders%2F2fb81a7623b043a6b1ef6fcdd5a32a10; Expires=Mon, 13-Feb-23 19:47:05 GMT; Domain=xtool.com; Path=/; HttpOnly; SameSite=Lax
_y=23d51ab9-4309-46b2-8a80-c26b28f476bd; Expires=Tue, 30-Jan-24 19:47:05 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_s=c3fc923d-e577-4753-8315-81de2636a83a; Expires=Mon, 30-Jan-23 20:17:05 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_y=23d51ab9-4309-46b2-8a80-c26b28f476bd; Expires=Tue, 30-Jan-24 19:47:05 GMT; Domain=xtool.com; Path=/; SameSite=Lax
_shopify_s=c3fc923d-e577-4753-8315-81de2636a83a; Expires=Mon, 30-Jan-23 20:17:05 GMT; Domain=xtool.com; Path=/; SameSite=Lax
x-shopify-stage: canary
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=0653e384-f4d1-4fa4-aca2-21fa4ca9a934
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=0653e384-f4d1-4fa4-aca2-21fa4ca9a934
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: 0653e384-f4d1-4fa4-aca2-21fa4ca9a934
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DbzdsnCSeLtzoTJ4KKwLi%2BkP%2F1gIDkfZO3MFHz78qBwkmZWgOxRGd%2BLzd9MVgpazHoq4zJPNKrOPPVzuneI415Wjnym5OglAezFoFRqp2gORatutuzf0H9sgViD5wCk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=1439.999819
server: cloudflare
cf-ray: 791cb79d4845b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
IP 142.250.74.106:0
GET /css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 19:47:07 GMT
date: Mon, 30 Jan 2023 19:47:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
23.227.38.33200 OK 0 B URL HTTP/2 checkout.shopify.com/46779859095/sandbox/google_maps?locale=en-US
IP 23.227.38.33:0
GET /46779859095/sandbox/google_maps?locale=en-US HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:07 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 238
x-sorting-hat-shopid: 46779859095
vary: Accept-Encoding
x-shopid: 46779859095
x-shardid: 238
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22USUSCA%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=shopify.com; path=/; expires=Tue, 31 Jan 2023 19:47:07 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fwww.xtool.com%2F; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F46779859095%2Fsandbox%2Fgoogle_maps%3Flocale%3Den-US; Expires=Mon, 13-Feb-23 19:47:07 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=740ce1ec-a42b-41e5-8e67-30f98203eee0; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=336927f5-7347-4866-9ca3-7dc70899fdd6; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=740ce1ec-a42b-41e5-8e67-30f98203eee0; Expires=Tue, 30-Jan-24 19:47:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=336927f5-7347-4866-9ca3-7dc70899fdd6; Expires=Mon, 30-Jan-23 20:17:07 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=b0f0d638-13dc-48b8-a375-739c8dda7cfb
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=46779859095&source%5Buuid%5D=b0f0d638-13dc-48b8-a375-739c8dda7cfb
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
x-request-id: b0f0d638-13dc-48b8-a375-739c8dda7cfb
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yzbPzRKmPK9jQrmvv5aTFSUBJRIWKz0D7mbjsSEEv3Xd4SrUgdHfg2fLWqrTxUddauiM16mMmFZsWGYdnZwmY%2FsXMl3%2BzyVhsUE5yOAVVrslXevtuu3%2BNz9eAbmtxaPbX8Gb7Y4F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=258.000135
server: cloudflare
cf-ray: 791cb7b17f17b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.assortion.com/app.js?shop=makeblock-xtool.myshopify.com
54.230.111.4200 OK 0 B URL HTTP/2 cdn.assortion.com/app.js?shop=makeblock-xtool.myshopify.com
IP 54.230.111.4:0
GET /app.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.assortion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 18:01:32 GMT
last-modified: Mon, 30 Jan 2023 18:01:14 GMT
etag: W/"72b38c05d69f4c47dd27fc82dea5ef63"
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ddXuLE1WYCZHcXErdfSGuVH1HWZXrVndJJE0Su_zIuzMa93vQlTJAA==
age: 6337
cache-control: max-age=3600
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.giftcardpro.app/build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com
54.230.111.85200 OK 0 B URL HTTP/2 cdn.giftcardpro.app/build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com
IP 54.230.111.85:0
GET /build/storefront/storefront.js?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: cdn.giftcardpro.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 10:37:52 GMT
server: nginx/1.20.0
last-modified: Thu, 26 Jan 2023 01:38:02 GMT
etag: W/"63d1d97a-9c416"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pfP8ZMhJ3IbS8OTcmYfBvfxxxq57DWJzBQ9pphlreqJEitNjkK7QcQ==
age: 32956
X-Firefox-Spdy: h2
my.parcelpanel.com/assets/admin/custom/checkout/20200304.js?v=1.022
104.26.6.247200 OK 0 B URL HTTP/2 my.parcelpanel.com/assets/admin/custom/checkout/20200304.js?v=1.022
IP 104.26.6.247:0
GET /assets/admin/custom/checkout/20200304.js?v=1.022 HTTP/1.1
Host: my.parcelpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:09 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 08:23:11 GMT
vary: Accept-Encoding
etag: W/"62ce80ef-25ef"
expires: Wed, 08 Mar 2023 09:51:36 GMT
cache-control: max-age=5184000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-flag: 2
cf-cache-status: HIT
age: 2022933
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ekjVzGsm%2Fqz9n9wfHz4cb3KwAXzsf4l8xX6lckkxV%2F3tEYfYvAunn7KuNTfCAyUrdb%2B1lXXP1xgAImLot1IVJsCCFGQQ%2FT978Ygau%2FmkWF2mo9zhXgWuj42z1SmkjCYku6jYDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7be3d57b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
172.67.210.161200 OK 0 B URL HTTP/2 app.roboturk.co/address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com
IP 172.67.210.161:0
GET /address_validator/api/brand_preferences?shop=makeblock-xtool.myshopify.com HTTP/1.1
Host: app.roboturk.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
source-url: https://www.xtool.com/46779859095/orders/2fb81a7623b043a6b1ef6fcdd5a32a10
Origin: https://www.xtool.com
Connection: keep-alive
Referer: https://www.xtool.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 19:47:10 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
etag: W/"1b16-CqdljfUx2r4aORFyEQ1UihX4xlU"
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kl2sPAy5AxuxFxWQO2QcCfP3mC8tylpWm3Bq91HX2QIN7IEOlxy%2FC%2BZgTpeTc0ys0fmAGcarF6TXGol%2FRpy9jo8xQCn%2F6e4Gsf997%2BYydpkq1mvV79uBPoTLnDIUIHQcp8Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791cb7c56de8b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2