r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5436
Expires: Fri, 27 Jan 2023 13:51:29 GMT
Date: Fri, 27 Jan 2023 12:20:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11869
Expires: Fri, 27 Jan 2023 15:38:42 GMT
Date: Fri, 27 Jan 2023 12:20:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11253
Expires: Fri, 27 Jan 2023 15:28:26 GMT
Date: Fri, 27 Jan 2023 12:20:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 11:35:21 GMT
content-type: application/json
age: 2732
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /OKVaaQYwzVSEfs/C2GLdYY1uv77ekgrno9XxOn9UEKKN9MS2kXeazQzQPsLaWpJS5mHmevmFpQ=
x-amz-request-id: 7DVEEV9FVVP3KBK0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 11:49:24 GMT
age: 1889
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 12:20:53 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.linkhaitao.com/index.php?mod=lhdeal&track=bb14Sg_aPphoxEpr_a_bh4k3CsrDLH_bthYEl_bM_bMUOoXzNdWdv1TeZDIXBBmeC2rfx7JA_c_c&new=https://vessi.com/&tag=853ea7b4e7e6fc884115271a04b2c450
47.111.255.35200 OK 482 B URL HTTP/1.1 www.linkhaitao.com/index.php?mod=lhdeal&track=bb14Sg_aPphoxEpr_a_bh4k3CsrDLH_bthYEl_bM_bMUOoXzNdWdv1TeZDIXBBmeC2rfx7JA_c_c&new=https://vessi.com/&tag=853ea7b4e7e6fc884115271a04b2c450
IP 47.111.255.35:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a640e1a6c3799555561a95a697d5c88
197fc9df70d9bfde68d291504e3407c951a54bbe
e8758dfab68b9079f819440944e5f4a1b7c5805400797304fbc66eda14cfe736
GET /index.php?mod=lhdeal&track=bb14Sg_aPphoxEpr_a_bh4k3CsrDLH_bthYEl_bM_bMUOoXzNdWdv1TeZDIXBBmeC2rfx7JA_c_c&new=https://vessi.com/&tag=853ea7b4e7e6fc884115271a04b2c450 HTTP/1.1
Host: www.linkhaitao.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:53 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=hKkwmfKX; expires=Sun, 26-Feb-2023 12:20:53 GMT; Max-Age=2592000; path=/; httponly
id: 1183144197
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 11:49:03 GMT
age: 1910
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6357
Expires: Fri, 27 Jan 2023 14:06:50 GMT
Date: Fri, 27 Jan 2023 12:20:53 GMT
Connection: keep-alive
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 00ca5334b9ccb45159ce40bee2554b6d
b7f2f08821a317b2820e188437ec3af72884b1d3
ca7fd6b0e492a8cc70c0b93d5244a95730538a9181ff440abab7ebe3190e3088
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 06:21:35 GMT
Expires: Thu, 02 Feb 2023 06:21:34 GMT
Etag: "b7f2f08821a317b2820e188437ec3af72884b1d3"
Cache-Control: max-age=496239,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790171ed68e20b65-OSL
click.linksynergy.com/deeplink?id=50rqOrVy53Q&mid=45636&murl=https%3A%2F%2Fvessi.com%2F&u1=lh_9aw5hs
35.212.67.244302 0 B URL HTTP/1.1 click.linksynergy.com/deeplink?id=50rqOrVy53Q&mid=45636&murl=https%3A%2F%2Fvessi.com%2F&u1=lh_9aw5hs
IP 35.212.67.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /deeplink?id=50rqOrVy53Q&mid=45636&murl=https%3A%2F%2Fvessi.com%2F&u1=lh_9aw5hs HTTP/1.1
Host: click.linksynergy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.linkhaitao.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302
set-cookie: lsn_statp=repfdRAAAAAsCKG3VhBHXQ%3D%3D; Domain=.linksynergy.com; Expires=Sat, 27-Jan-2024 12:20:54 GMT; Path=/; Secure; SameSite=None
rmuid=5523308f-bfc1-4f0a-bfed-5d2d5455c8b8; Domain=.linksynergy.com; Expires=Sat, 27-Jan-2024 12:20:54 GMT; Path=/; Secure; SameSite=None
lsclick_mid45636="2023-01-27 12:20:54.174|50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ"; Version=1; Domain=.linksynergy.com; Max-Age=63072000; Expires=Sun, 26-Jan-2025 12:20:54 GMT; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa OUR BUS STA"
expires: Thu, 01 Jan 1970 00:00:00 GMT
date: Fri, 27 Jan 2023 12:20:54 GMT
cache-control: no-cache
pragma: no-cache
referer: http://www.linkhaitao.com/
location: https://vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao
content-length: 0
connection: close
push.services.mozilla.com/
52.88.113.219101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.113.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4/K+oMxHpxMh70DQm0jbbQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Fhm6YhIhkjtEifJPEM/176TCO10=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b0494ed21a9869137c241de84326b191
1fb19b78396b7e1b02d52132794f5b2fe7358a13
7b22c1ae11ce96dfdb3311e29121651278511183ea9add87c2195cf8a9a23d1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B22C1AE11CE96DFDB3311E29121651278511183EA9ADD87C2195CF8A9A23D1B"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6179
Expires: Fri, 27 Jan 2023 14:03:53 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77ac3d6c98ff0da63d2fb51470a7bb7e
d86c48021654ae3a7ebbe70d2c3e7f27d8065f46
891f23f3effd9de8f6dbc74f16b2506d215b47f710952a5d8ab8a95aa825538b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121222
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:54 GMT
Etag: "63d2f82c-1d7"
Expires: Sat, 28 Jan 2023 22:01:16 GMT
Last-Modified: Thu, 26 Jan 2023 22:01:16 GMT
Server: nginx
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b0494ed21a9869137c241de84326b191
1fb19b78396b7e1b02d52132794f5b2fe7358a13
7b22c1ae11ce96dfdb3311e29121651278511183ea9add87c2195cf8a9a23d1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B22C1AE11CE96DFDB3311E29121651278511183EA9ADD87C2195CF8A9A23D1B"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6179
Expires: Fri, 27 Jan 2023 14:03:53 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/2496/2470/t/303/compiled_assets/scripts.js?111722
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/compiled_assets/scripts.js?111722
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/files/1/2496/2470/t/303/compiled_assets/scripts.js?111722 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
content-length: 0
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/compiled_assets/scripts.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5982b0db-5bb3-40c1-bdf7-855bffe8b012
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Thu, 26 Jan 2023 23:49:10 GMT
cf-cache-status: HIT
age: 44895
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8jftl2RPpRHaaVR4ldbiqbpsqP0fve94uZ7VBwnTpC2rGDJWzYrf8sceLJf78dXwlZCw5ov3wkxSrbfw6VeAai71rEs%2By5RMqoNTPtrDqIRDXmbvI%2BReBNVa8S48eIGW6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=21.089, imageryFetch;dur=20.105, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 790171f1bd270b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Regular.woff?v=59246780721874297361641949435
23.227.60.200200 OK 16 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Regular.woff?v=59246780721874297361641949435
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), CFF, length 15976, version 1.0\012- data
Hash b056335b0b39cfb2e489a3f65404a125
ecc48520b91b3be2261dbf6f97feb58123e7cb51
f42f9a6cc47ebdd49b861663dddc8aacf2be04ffeea5df83d3266321c85de252
GET /s/files/1/2496/2470/t/303/assets/font-Metropolis-Regular.woff?v=59246780721874297361641949435 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: font/woff2
content-length: 15976
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Regular.woff>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9c1fff07-867f-4a02-bf70-734ff52ada28
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 02 Jan 2023 06:10:46 GMT
cf-cache-status: HIT
age: 652119
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pSfuc1ygQH8ofLeXVvzaJzZ%2Br2IawrntMMAcPFpetMA0sgHruKo3qKHAwUfQsCR4PXm3yVoDhd4bpqWb0iMuDt1PqRuwplOdpcJNlEoZJIIlAGQv5ihTgd1FBuAW4dgUzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=303.219, imageryFetch;dur=48.898, imageryProcess;dur=125.738;desc="font", cfRequestDuration;dur=82.999945
server: cloudflare
cf-ray: 790171f1cd951c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-NoirPro-SemiBold.woff?v=149528258618838077011641949433
23.227.60.200200 OK 27 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-NoirPro-SemiBold.woff?v=149528258618838077011641949433
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), CFF, length 27292, version 1.0\012- data
Hash 4e1520607a59ae4761d6ef5b567ddcdb
817d6a2ce48b1d3ddf2b34b6430528f41083f766
3ff88c42a79fec1e666ab14664fe25e389ac333844ef25ad2244ee9afe66f487
GET /s/files/1/2496/2470/t/303/assets/font-NoirPro-SemiBold.woff?v=149528258618838077011641949433 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: font/woff2
content-length: 27292
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-NoirPro-SemiBold.woff>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 163a912e-ab4b-4d07-b2db-59bde415efc5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 02 Jan 2023 22:25:51 GMT
cf-cache-status: HIT
age: 652118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fo2mDBnQvE7QQ7RLm7EjWRxvtNBFyW5Hy2l%2FzbmRmea3%2Ffu0%2FMqealdkDLTImkTGceC7vBa9KPOCx7pIh4csd%2FlnjmbGm7CJZKo2%2B2iXWdY8VpHaluE7uOZ2VHS2AwUP5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=307.401, imageryFetch;dur=65.002, imageryProcess;dur=241.935;desc="font", cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 790171f1dda71c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Medium.woff?v=58025677019769156221641949433
23.227.60.200200 OK 16 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Medium.woff?v=58025677019769156221641949433
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), CFF, length 16124, version 1.0\012- data
Hash 789e429a7db430a0adc8f1aa39ddf360
8fb646ac6dbc7af780429765dad7b4ea55a6599d
ee020356663ad035b014e0d333efbea488276cef02a6832158ae160e045f8431
GET /s/files/1/2496/2470/t/303/assets/font-Metropolis-Medium.woff?v=58025677019769156221641949433 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: font/woff2
content-length: 16124
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-Medium.woff>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bc48bcc1-aa45-4e00-a779-93db31b1d550
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Thu, 19 Jan 2023 02:22:33 GMT
cf-cache-status: HIT
age: 652119
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8JxXijqgNXPOvaI266PgTDFKwU3PhZT6Mp2sAv5L%2BUP1BNLZQbo%2BFAOvbKKYwSBdV7WCqpiDI0qceBTAgQAxarUGtinDF1GyTrmkVMjHK4Yp%2B%2BrORVR7m1Tm%2FhG%2BAiy%2B5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=198.786, imageryFetch;dur=78.298, imageryProcess;dur=120.044;desc="font", cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 790171f1edae1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-RegularItalic.woff?v=107471115152141662601641949435
23.227.60.200200 OK 17 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-RegularItalic.woff?v=107471115152141662601641949435
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), CFF, length 16828, version 1.0\012- data
Hash f4d7dab3410c87920a063581f9b34e20
63facb1d9a0b12d049fcfa9d7306c716273eadc3
b9e7646ab2a75e5eaa02677b8c99553193ff3b1b92a973ac2a46581cc3765621
GET /s/files/1/2496/2470/t/303/assets/font-Metropolis-RegularItalic.woff?v=107471115152141662601641949435 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: font/woff2
content-length: 16828
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/font-Metropolis-RegularItalic.woff>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ba635732-130c-43e7-a92e-68a090076e34
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 03 Jan 2023 05:31:46 GMT
cf-cache-status: HIT
age: 652119
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ZbUYWN%2B37%2FbMQO0hixIeng2cAOU4nIydbnRcoC6DKUukAOKIueiJ4P3FhsLWGtcf%2B%2BP%2BrRhW%2B4BIrVpcpXARBrGICTZRUZgml6EyLdoXJs7N%2BAtMjvFUf9rX%2FglllIbYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=275.570, imageryFetch;dur=61.549, imageryProcess;dur=133.267;desc="font", cfRequestDuration;dur=9.999752
server: cloudflare
cf-ray: 790171f1edbb1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 961d353b342e48156866b72a668f0d33
55d2dae312b126600d245c67d94e570e75829c90
fb11faabb1c7bec85e02e659b77aef8f1d2ebe69b5fa99f7c02b13fe27733cae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB11FAABB1C7BEC85E02E659B77AEF8F1D2EBE69B5FA99F7C02B13FE27733CAE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6622
Expires: Fri, 27 Jan 2023 14:11:16 GMT
Date: Fri, 27 Jan 2023 12:20:54 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/P5gi2hJsdc8
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/P5gi2hJsdc8
IP 142.250.74.131:0
Hash 91dc3fa1694e82c558cc1d56604aabf6
7438b36687cf38e939912a3cbd7b66d4650cbfd0
434f26117927c744ff5d7956689be05ce8c0fd85995f056ef3a5885dc70b1289
POST /s/gts1d4/P5gi2hJsdc8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=GTM-5K3WPLQ
142.250.74.78200 OK 48 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-5K3WPLQ
IP 142.250.74.78:0
File type ASCII text, with very long lines (5733)
Hash adb189a7c4d7abb748ba883d1e3e63d2
9d5dfba4a367bd4bf4fc2d3957ce6ce125262496
4eac5ada5f52ea19206715be8e97a891edf2caca1eed590c5c2271c8ece9ca00
GET /optimize.js?id=GTM-5K3WPLQ HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 12:20:54 GMT
expires: Fri, 27 Jan 2023 12:20:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47611
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/2496/2470/files/Hero_Image_-_Desktop.jpg?v=1674259509&width=1500
23.227.60.200200 OK 70 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/files/Hero_Image_-_Desktop.jpg?v=1674259509&width=1500
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a68dcf1b62d488f5e66429408120cb9
b0b8ea04832a9cc0302d02e938d46580e0919542
1c3fced1c287aa49ab3bd958ac53f5300d275d8efc488fe70c9e5805f907d5c8
GET /s/files/1/2496/2470/files/Hero_Image_-_Desktop.jpg?v=1674259509&width=1500 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: image/webp
content-length: 69594
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/files/Hero_Image_-_Desktop.jpg>; rel="canonical"
source-length: 238665
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a46b5598-b119-4955-a0ad-a5715a4406bf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Sat, 21 Jan 2023 00:06:15 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BcHjY%2BP5L%2Brv%2Fzo%2FWi%2FwJbcA7BYRzRbKSMhk6VTzZGl1kxEznjapkbLAN9XnManuMFWPd%2FeloRpV7SKM9ny7uEOWnphAjb%2FxjUUigg0zsMXcHBugohNq31LqOjj6OiM%2Bcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=278.402, imageryFetch;dur=60.938, imageryProcess;dur=215.762;desc="image", cfRequestDuration;dur=165.999889
server: cloudflare
cf-ray: 790171f1bd2a0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55373fac8261be2043cd59e5016f1ded
604f5a02156866ed048820f0c994669efd568640
e48dce1c9ace641c3b685a21d3d88b970bbdbae8f07d37ce85847ebc854c94d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E48DCE1C9ACE641C3B685A21D3D88B970BBDBAE8F07D37CE85847EBC854C94D3"
Last-Modified: Fri, 27 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14196
Expires: Fri, 27 Jan 2023 16:17:31 GMT
Date: Fri, 27 Jan 2023 12:20:55 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-featured-products-style.css?v=36009207147114926851650647114
23.227.60.200200 OK 5.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-featured-products-style.css?v=36009207147114926851650647114
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (973)
Hash 3f44a73a8a1445b79f0b8ce5c9bb39b4
b99ba43ee410092cd5e84562058874e8026b420a
fa38a08cfa7e95871bf38c88d5d03b128d0e3cc34b23ec1b8f515e91f615c324
GET /s/files/1/2496/2470/t/303/assets/section-featured-products-style.css?v=36009207147114926851650647114 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-featured-products-style.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a1e4eb40-eb8f-465b-8aee-4404e6d56051
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 02 Jan 2023 06:10:45 GMT
cf-cache-status: HIT
age: 618525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eGzCu7io3S%2FHSVi00iD6ZTgHFj9gTPTnwilZXUGEN3pbyuokT%2BN1Ca7QIvrvtxtRflJYbE6130hSo%2Fjl1%2BzkX7Z%2FPkAIhOYQ50MaXQIODJ6JezwGEpZVAUjydCyoORIdhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=92.519, imageryFetch;dur=91.382, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 790171f1bd230b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/geolizr-lib.js?v=83904450587458992661647900165
23.227.60.200200 OK 51 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/geolizr-lib.js?v=83904450587458992661647900165
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (6814)
Hash e9a332e3f5174ba7dd305f55a4f27ea3
af057d2c3070acd3a235b8930742430413864560
5c6cefdc727502e344ba9b24ec217ea9598cfcd8b95d1d3c385877c0fe46c065
GET /s/files/1/2496/2470/t/303/assets/geolizr-lib.js?v=83904450587458992661647900165 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/geolizr-lib.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 179452db-68bd-413a-afe3-e3e856e1430c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 02 Jan 2023 06:10:45 GMT
cf-cache-status: HIT
age: 652117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rFUz5AGS1w9Wcce1rU4q5fFl5JkgUZSBvzhcaAM3QADkU2kbx2ujvk%2BDuqOx42%2BQrlpeUGdyuJwP5UFelPekOB9KIpZyM2sLOydfspxkd%2BqMXOs9RIz4oUbZyJFTWSmoOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=75.668, imageryFetch;dur=60.959, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 790171f20d730b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/custom.css?v=110542090766915306121672341237
23.227.60.200200 OK 6.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/custom.css?v=110542090766915306121672341237
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2365)
Hash 0f448603cbf51a51a087cf74e9286f0e
2f3c82ca642d8d17e860f63e4ceac2c487d74a1e
c22f699b3aec228bc2f2ab521afb646b37ae46db96552fd217dc5aa587d961b0
GET /s/files/1/2496/2470/t/303/assets/custom.css?v=110542090766915306121672341237 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4b0bb3ec-183e-494c-b06a-c1228dee9342
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 03 Jan 2023 07:56:24 GMT
cf-cache-status: HIT
age: 652117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=71yRtDKW8fGjnjxYKlmiE%2FI4Y6%2FOjGodVyREn9BDA8Yebo8kIQo1ZukGUAWppmqKhGGCobmBMOht89uMkqF5NeVLY5lSlFZfC%2BsO010NjyF4MPpekbyiXaetZCEZpIaNSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=44.669, imageryFetch;dur=43.229, cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 790171f1bd1e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55373fac8261be2043cd59e5016f1ded
604f5a02156866ed048820f0c994669efd568640
e48dce1c9ace641c3b685a21d3d88b970bbdbae8f07d37ce85847ebc854c94d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E48DCE1C9ACE641C3B685A21D3D88B970BBDBAE8F07D37CE85847EBC854C94D3"
Last-Modified: Fri, 27 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14196
Expires: Fri, 27 Jan 2023 16:17:31 GMT
Date: Fri, 27 Jan 2023 12:20:55 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-obus.js?v=177536682991119254001641949435
23.227.60.200200 OK 29 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-obus.js?v=177536682991119254001641949435
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (49570), with no line terminators
Hash fa13141d5c11b5ba1defa2dc07bddc18
6a4de6aecf99d85e4981549678d2319c0cd6e063
58adb06f5f6d402bb991d30bd500a3b20fd36c9e1b37ddb5258cc42d00c70a6a
GET /s/files/1/2496/2470/t/303/assets/__opt-obus.js?v=177536682991119254001641949435 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-obus.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c6911bcf-0bb0-48fb-bb56-a482a1fd7ce0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 02 Jan 2023 06:10:45 GMT
cf-cache-status: HIT
age: 652119
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0pY4PvDNUYERSyoXHPX3PRGQucLwIrqIuKl8HFnoFFEbmGgx9qRF57sPLZMr1SlssDI0Ye7tBm51hhLWSZly0lCqPTGf2GXqMmHe5uyheHMiLeR1VBLAzLQiwdAKxPzehg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=116.828, imageryFetch;dur=109.239, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 790171f22d8e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.edgeme.sh/node/check
104.16.8.83200 OK 0 B IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/check HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 790171f4aa61b521-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
IP 142.250.74.131:0
Hash ab60f1ce7ce695c0eb1a6f3fcec3bc20
4332de351b4841ae8538c193bc685866f27cd04b
eee14a75e3bb131f3c8bd41735f6cf5766eafef1ea46e6ba0ce0c4db25801ffc
POST /s/gts1d4/Udi7jfC2-KY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
IP 142.250.74.131:0
Hash ab60f1ce7ce695c0eb1a6f3fcec3bc20
4332de351b4841ae8538c193bc685866f27cd04b
eee14a75e3bb131f3c8bd41735f6cf5766eafef1ea46e6ba0ce0c4db25801ffc
POST /s/gts1d4/Udi7jfC2-KY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/vue.min.prod.js?v=32949307043056123371650303398
23.227.60.200200 OK 136 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/vue.min.prod.js?v=32949307043056123371650303398
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Size 136 kB (135463 bytes)
Hash 3a94b36e2b9b8d394f96500aa5c38de1
c2e352aa64b4bdc97eec06c69af3dc9451ef090a
ce62db578cb0cce4caac07c306987b4ff83a33d7ecba95058f3bf5facbe6c125
GET /s/files/1/2496/2470/t/303/assets/vue.min.prod.js?v=32949307043056123371650303398 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/vue.min.prod.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7ebd58f4-60fb-44ea-8fc1-217b4216c124
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 02 Jan 2023 03:51:19 GMT
cf-cache-status: HIT
age: 652119
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39J1L1I23TQgPWhVrQZm%2FGQp4Pko%2BmxVaudcsgLR7wAeYcmbfZqrYvq7BhYivntsKyKiLWwYcEGTZhC72eGDKT%2Fnkg2ZmF6DEwRhaXJyHSfYuDyzDAeA%2B7prtUBHdPQNMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=810.065, imageryFetch;dur=74.499, cfRequestDuration;dur=22.999763
server: cloudflare
cf-ray: 790171f1bd200b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/accessibe-script.js?v=109223960637792647791649096437
23.227.60.200200 OK 13 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/accessibe-script.js?v=109223960637792647791649096437
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 597b4a54e98502cb6a730e38d60a29d4
563ba8d423f322149ada623167a2c72c63867f9c
f7fc3088a9ae772ccb6f5bc878d1553f42130bffa165d0c90b5445fc0f30769e
GET /s/files/1/2496/2470/t/303/assets/accessibe-script.js?v=109223960637792647791649096437 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/accessibe-script.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 46770f5d-c7a3-42ef-b109-31bb5ab78fae
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 02 Jan 2023 08:33:31 GMT
cf-cache-status: HIT
age: 652116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E5I0AQkwJKQZ3Dqei0EjgBk5Pp8Jzgp2dCkmrOVMOU5z%2FOJbzpj7PpepeYbH%2FYzViELC2Uzc4YKlxXfyByG5JJK0TKssYZLJLKI4IJaMX%2F9VQA5FaEUchIV2xN9HvUlfBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=195.244, imageryFetch;dur=123.741, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 790171f1bd290b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.js?v=99997651532221743371672341241
23.227.60.200200 OK 39 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.js?v=99997651532221743371672341241
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (3276)
Hash 53cbc34f5d8a5fad41d2ec86172f009a
3fa0a5424469c7391bff1c18a11b8ca7440945d9
5263b1d1ce43591b15f222e40e7191321c2227d8b70d117597cc4dc2821c265b
GET /s/files/1/2496/2470/t/303/assets/theme.js?v=99997651532221743371672341241 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3c199268-9939-4c96-82f6-5a5b7d30b9c6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Thu, 19 Jan 2023 17:09:28 GMT
cf-cache-status: HIT
age: 652119
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0nnfCChMxL%2FDmp4A8jkhnCEH4dmG12nWoS4apcwYHePndo68ALEKUiINjHwXiWIsAtVhdM3CwwPUmk%2BPRTfc94JipPpU8OdSIJwEPRvj9DrsXXKLOxnfReC8ldnt46g0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=111.921, imageryFetch;dur=92.933, cfRequestDuration;dur=87.000132
server: cloudflare
cf-ray: 790171f1bd1d0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
142.250.74.131200 OK 1.5 kB URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Udi7jfC2-KY
IP 142.250.74.131:0
Hash 33518341b04d3d0ec4ff2958d2d7671b
f4a84259fb4b14c0b07472d895e462fbd5cbb1bb
8f82c6cd9ce10e0bad3be0aa619dd253c8c964b49c02dbb53188d4e552e7dd99
POST /s/gts1d4/Udi7jfC2-KY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/navbar.js?v=75516825601325443391672341239
23.227.60.200200 OK 80 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/navbar.js?v=75516825601325443391672341239
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 7d866c1b02d55a97eb22fd2915ebc4a2
faf8866b1406bff998211650091366d257b1c239
d8bafe147182e71b0c9788762d4f00bfb9c2341735d7042ae6128f8159838446
GET /s/files/1/2496/2470/t/303/assets/navbar.js?v=75516825601325443391672341239 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/navbar.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: af403ac3-2b56-43c0-a525-bc5183cedd3b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 12 Jan 2023 11:33:48 GMT
cf-cache-status: HIT
age: 652117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=enmDWoutXrSRSr7InEcT%2FybQY%2BDv7ygKRLqehzUKe3%2BRlVLOxLnLR3fPom%2BewLGUAQg79BqE8DQ6dnNPG0uDfE4teTic3r2a3MK2w3wyOG%2BUCOkCWzOvD20MopGG%2BFy%2FMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=140.128, imageryFetch;dur=69.811, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 790171f1bd280b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.edgeme.sh/node/check
104.16.8.83200 OK 51 B IP 104.16.8.83:0
Hash 30ddd38e2e119298d522d6111e66ddcb
3bfbd6362e946b7ea90dcf23d37c15be1aaff5a7
c221e15d9f7ced99c9d9f33b1eef80be5a665e964a417769fdcef37a094139d5
POST /node/check HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/octet-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
content-type: application/octet-stream
Origin: https://vessi.com
Content-Length: 30
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:55 GMT
content-type: application/octet-stream
content-length: 51
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 790171f4ca83b521-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 12:20:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 12:20:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 12:20:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:20:00 GMT
age: 25255
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 52267
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a181da5-9eaa-4508-9ba5-ce3527c87698.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a181da5-9eaa-4508-9ba5-ce3527c87698.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a01352e094fda751e3227191ca74469
7ad63fabc3d52f7fc3f2f648d11edf7241e24368
8c06a16bab3b9c3130a8d8d91e52a01073b685d4831d1ba7129ac571bd7d0bc3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a181da5-9eaa-4508-9ba5-ce3527c87698.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7525
x-amzn-requestid: a7a05ec2-92ae-4813-b087-c4f32df1f7f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fB5k7GgkoAMF6eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca3c85-3c08d20509992a0d031213ad;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 07:02:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PyRhsgixwVqdtaNructs84RGA6AYOgTbqE_lUViwIZCHFMosWEo_8w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 19:24:42 GMT
age: 60973
etag: "7ad63fabc3d52f7fc3f2f648d11edf7241e24368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a85badd84c0542610b94f22c4f265511
5b490095b5e02d9fef4b762888353998b645dfc9
23d6d9848caf36f0556438c371f112b40dcbf9b08b8b27bd37d4d73960c701c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9482
x-amzn-requestid: 825c5e6b-8fda-445e-9ed3-f5d634943c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIZd0HqkIAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ccd5f1-2b31fe3001a1b04a406ff7ff;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 06:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 13clEFrwHH0RFfYGMW5jPHcaa3ezdkHAes8FPn6yA5-pxqRaddDPqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:42:19 GMT
age: 23916
etag: "5b490095b5e02d9fef4b762888353998b645dfc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 71360
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0fe44d9606e6a149a253423f312dfc5
78e442e8a9142311c25dafd01823a240f4acb0d6
9aad8938c1fda9641f95a4369f57ea57303a28e05f56e3bb1961e17cfbb123f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13175
x-amzn-requestid: 14ccf28a-a84a-4903-9edc-7659096cb3ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRxOCFrkIAMFt8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0958c-6a67f1aa65038439793808fd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:35:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6Af7rqnIDAKAw6O0CYUv1epQ8VxFyXBjtAtpovQZJ72aKEymQu_O8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:48 GMT
age: 21367
etag: "78e442e8a9142311c25dafd01823a240f4acb0d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CAJRFJJC77U3QBDRAQ1G&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CAJRFJJC77U3QBDRAQ1G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2333)
Hash c840e9730ce61ac6e200f82a39433ce9
c43a8bdccc3cc39fe8805793f23f97351b69fd63
3dcf2a6705eb9b3e2b6b727045d7ba2dfa72d11ff51847a929a9c025ce1f7aa1
GET /i18n/pixel/events.js?sdkid=CAJRFJJC77U3QBDRAQ1G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301271220556F2DDDC2436909F6E891
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a6954e300ebb77380b9a615d6f13316d293ad2b1fea6ea87ec5b37e08d616c5fd36f223b07b7d5fa13a9f8db455403630a99386539882c488f8e05040dc4e9246
content-encoding: gzip
expires: Fri, 27 Jan 2023 12:20:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 1153
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=99
x-origin-response-time: 99,23.36.79.13
x-akamai-request-id: 57c1f267
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 74c3f327c4b3002fde5ef788129d6245
f99cd82f3208a2750f5be61301719411d3456ea0
c56110fcf0f726745765a3708a795b832279b24811675e6d757a8d84c3a4b144
GET /i18n/pixel/static/main.MWE2YWY2YTgzMg.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825CE9047AAB28A1A92E1C9
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f0d03b7468ad8b1cb3b9a087e8ba0c9271348d0471c1aab4c6b5f4ed91206a643c3d77d2de7d14e7830204a6ea5a19be4f4e8a330ae4e711c3e2cbdf6ca25d12c
content-encoding: gzip
content-length: 68835
date: Fri, 27 Jan 2023 12:20:55 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 57c1f376
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Fri, 27 Jan 2023 12:20:55 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 57c1f405
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1003
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301271220557C42AABC9A5B983C941E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0764466e0b5b112d232712dcc108a1663c61f02a617d438ef72115e76703f48ff260859f55bf5203fea0aab0a7c97e1d58980ab2adba1aaf35808329e6bbe4d3
expires: Fri, 27 Jan 2023 12:20:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:55 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=5, origin; dur=112
x-origin-response-time: 112,23.36.79.13
x-akamai-request-id: 57c1f428
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/KOQ4m74LSfs
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/KOQ4m74LSfs
IP 142.250.74.131:0
Hash 3564b6b56008ac063be7c7586db236d9
74a64680dbc65efb3563d79dccb001a073ddf0c1
47df1ae2bd3d38b3c774c8341fbc8c8403d526a1d0a864e9f8d74b2b2437d452
POST /s/gts1d4/KOQ4m74LSfs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sstagging.vessi.com/shopify-event.gif?source_url=https%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao
216.239.34.21200 OK 0 B URL HTTP/2 sstagging.vessi.com/shopify-event.gif?source_url=https%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao
IP 216.239.34.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /shopify-event.gif?source_url=https%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao HTTP/1.1
Host: sstagging.vessi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Content-Type: text/plain
Origin: https://vessi.com
Content-Length: 917
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
via: 1.1 google
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C0A6PSDOQ3DFKFN97EKG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C0A6PSDOQ3DFKFN97EKG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2306)
Hash a37cf242d5823b1b4dacd8d66ec9eda9
3241b47bd9300957b5aed8b1bd58fe752aa7a3c8
7f06eafb7a4b24fe146652ee290bcd01614933431234c8c6e3a46782e2d78aea
GET /i18n/pixel/events.js?sdkid=C0A6PSDOQ3DFKFN97EKG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230127122055D25FB060784061027E45
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0dffe70705407a63a64b7e574867e5aef5f4eff6a7539b0dcefe0daf99b3e96b2d0884619bf88205b21b8abf1de37a82625733f2ec92dd4058672d3f51cf3ef0
content-encoding: gzip
expires: Fri, 27 Jan 2023 12:20:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 1140
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=0, origin; dur=97
x-origin-response-time: 97,23.36.79.13
x-akamai-request-id: 57c1f4cb
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C420Q5C787TERR0VJ1I0&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C420Q5C787TERR0VJ1I0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2364)
Hash 2732b6c5eb5a1066aec7a92a1e5aedce
bb8885228eb0eb2ebf92df53748c79436029832f
f2b90a729bb99e98c85ee4ff7d2adf49ff88a99780e24b41141437389d740612
GET /i18n/pixel/events.js?sdkid=C420Q5C787TERR0VJ1I0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230127122055700B7DCA6F3D7D32E7E3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0764466e0b5b112d232712dcc108a166b26dc4b25e73c0b6d6d638109c84adf9abec3b95dcac9ebc1363d3c543db44f0eebb4c1c471786a0abc2f911f76bea85
content-encoding: gzip
expires: Fri, 27 Jan 2023 12:20:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 1161
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=99
x-origin-response-time: 99,23.36.79.13
x-akamai-request-id: 57c1f4df
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C8ECFBCN9V2G1TDUM14G&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C8ECFBCN9V2G1TDUM14G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2315)
Hash 07fe62535d392e8407bd9ff73a5be47a
10eae7927046f303363e5eb0637ab5ee72cd8089
ed3e8ef8ca6183775f916f5318738bf2cd40147f0c0db5fbaadac7fc13204e3c
GET /i18n/pixel/events.js?sdkid=C8ECFBCN9V2G1TDUM14G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301271220553D846149CDE572B3BD3D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a2a450342fbcd598435a306f05fd13b8a9c4ffd206c398061da0f6311d3f44f8a56ac54c8da846c4968f10282e6f6eb5454bd81065f8a16a22a9318ea295e0e1f
content-encoding: gzip
expires: Fri, 27 Jan 2023 12:20:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:55 GMT
content-length: 1143
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=5, cdn-cache; desc=MISS, edge; dur=1, origin; dur=99
x-origin-response-time: 99,23.36.79.13
x-akamai-request-id: 57c1f51d
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 09e9bdc02bd94387901641c0b3a1f8f0
7bf30498ae27e11f7fc60b438b090f15b67ca113
d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
content-length: 68605
date: Fri, 27 Jan 2023 12:20:55 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=4
x-akamai-request-id: 57c1f5fd
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 73d0dfad067eb63ca005ec643dbd7620
ff24c3d6748ab833ff2b88b78bc9bc6c8fb796f8
bde0e4a103b4c0cfbbad21f3fce9bcdf8936f84ea157429faf9e1baaefebba54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2007
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:55 GMT
Last-Modified: Fri, 27 Jan 2023 11:47:28 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a10e2eaf8bb1fe15ecaede758a645dfd
de645ccd2d6f4f1cebb6cfb14b8a273e3b1f934d
09e008202b104ab8a86ffcd3580575c0a516f21c0ddfeeae718f2c7cdf5f85f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6583
Cache-Control: max-age=139692
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Etag: "63d3269d-1d7"
Expires: Sun, 29 Jan 2023 03:09:08 GMT
Last-Modified: Fri, 27 Jan 2023 01:19:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.paypal.com/tagmanager/pptm.js?t=xo&id=vessi.com
192.229.221.25200 OK 4.7 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?t=xo&id=vessi.com
IP 192.229.221.25:0
File type ASCII text, with very long lines (13560)
Hash 6c772f15253a8c2d87e00677489d371c
9ae9d8807415134a4a0d8a77cbb5ccd6c91621e5
4ede8f29beac9964eed51f6e29eab7894a714ac165e9a166dd624ecbd4a1ae4f
GET /tagmanager/pptm.js?t=xo&id=vessi.com HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-expose-headers: Server-Timing
age: 36310
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-Pfn3yy/hha2INqk+INnXKBsY2nnhIii5Mdsh7gPEp1aTkp7B' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
date: Fri, 27 Jan 2023 12:20:56 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3523-zEp0+R+rOMAegM4KiEI7++1lksY"
last-modified: Fri, 27 Jan 2023 02:15:46 GMT
paypal-debug-id: 086b9a1008938
server: ECAcc (ska/F75E)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000086b9a1008938-2e1e883b40b0362d-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 4736
X-Firefox-Spdy: h2
j.northbeam.io/ota-sp/87d858fc-55b5-4784-a47b-191b9e16e7ab.js
35.190.125.58200 OK 99 kB URL HTTP/2 j.northbeam.io/ota-sp/87d858fc-55b5-4784-a47b-191b9e16e7ab.js
IP 35.190.125.58:0
File type Unicode text, UTF-8 text, with very long lines (65473)
Hash db870450e50369daabf44359c32d3ca9
8ac496d824831ba345794fccbc92627e0ed61328
7afff3b5a8992ac04ee962d071de360f1605f111233220f317d488caab65c8cb
GET /ota-sp/87d858fc-55b5-4784-a47b-191b9e16e7ab.js HTTP/1.1
Host: j.northbeam.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsvEGIkL3C2GyStuEednL33VAD1RdRis7jvYTm49M3yD3CCxbvl0jRlcD7OeNXeHVJSvR5yeXrDOjkQ5XzmxUTNylUxsBaR
x-goog-generation: 1656046883277610
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 98915
x-goog-hash: crc32c=h08tRg==, md5=24cEUOUDadqr9ENZwy08qQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 98915
server: UploadServer
date: Fri, 27 Jan 2023 12:20:55 GMT
expires: Fri, 27 Jan 2023 12:21:55 GMT
cache-control: no-cache, max-age=60
last-modified: Fri, 24 Jun 2022 05:01:23 GMT
etag: "db870450e50369daabf44359c32d3ca9"
content-type: application/javascript
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/KOQ4m74LSfs
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/KOQ4m74LSfs
IP 142.250.74.131:0
Hash 3564b6b56008ac063be7c7586db236d9
74a64680dbc65efb3563d79dccb001a073ddf0c1
47df1ae2bd3d38b3c774c8341fbc8c8403d526a1d0a864e9f8d74b2b2437d452
POST /s/gts1d4/KOQ4m74LSfs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 11:45:20 GMT
expires: Fri, 27 Jan 2023 13:45:20 GMT
cache-control: public, max-age=7200
age: 2136
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37dce3efd55b962e0d26fdc3a1033e22
6453d72e70e36bd37ca1744d85ec9ca549629cf2
0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Last-Modified: Fri, 27 Jan 2023 10:53:27 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:20:56 GMT
x-served-by: cache-iad-kiad7000089-IAD, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/803738929/?random=1674822055201&cv=11&fst=1674822055201&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&auid=294507206.1674822055&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/803738929/?random=1674822055201&cv=11&fst=1674822055201&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&auid=294507206.1674822055&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2529), with no line terminators
Hash 3109112cdb69345da7c9166f64f7cfe9
219768eb271a6027ce81aaabc0f43930a1b74b85
d92384cd5c14a9d9fd13da7a5630f058ff39c743f1b0ba4b57d7606d9b5d2728
GET /pagead/viewthroughconversion/803738929/?random=1674822055201&cv=11&fst=1674822055201&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&auid=294507206.1674822055&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1080
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 12:35:56 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.omniconvert.com/js/i62a17c.js
104.21.83.230200 OK 136 kB URL HTTP/2 cdn.omniconvert.com/js/i62a17c.js
IP 104.21.83.230:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 136 kB (136098 bytes)
Hash a766e19734cac780ce99b415c218c585
7d11b656095f24dc1954d83309eff0c998b3e4c4
a37bd010f2d2189b4e9d62f51280274e352af56da04ef8cb46af5749be458921
GET /js/i62a17c.js HTTP/1.1
Host: cdn.omniconvert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:56 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-machine: Tracking-PROD-3
x-cache-cr-hit: 0
x-cache-cr-miss: 0
x-cache-sr-hit: 10
x-cache-sr-miss: 0
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: origin,accept,accept-encoding,user-agent,x-requested-with,x-omni-tool-auth,sentry-trace,baggage
cache-control: private, max-age=300
last-modified: Fri, 27 Jan 2023 12:20:56 GMT
x-env: JProd
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GS2VuWxrYivgv%2F81AqNv55OycIweonHwFQO3vUUO8CunPDi%2B177dKT4hm5d0G%2Fq%2F9%2F4%2FdrjQ%2BXAf0I5YxpmCGjdXK%2BeI9sshIlZxe6jEuPqVhYa%2F392OxptXU6j22ki6p0j%2BSaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790171fa1ab5fabc-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37dce3efd55b962e0d26fdc3a1033e22
6453d72e70e36bd37ca1744d85ec9ca549629cf2
0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Last-Modified: Fri, 27 Jan 2023 10:53:27 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 967
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230127122056C9B449C7E7C8FCCCF712
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156ad18631f468821e327d55864a121c9fb72ac30f0ec203552672394461e1dbe7fba7f519692b8a38511a1691f1297af45b28ca4e85f44e37d5ea94a7614d7e7310
expires: Fri, 27 Jan 2023 12:20:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:56 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=4, origin; dur=109
x-origin-response-time: 109,23.36.79.13
x-akamai-request-id: 57c1f7ab
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1003
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230127122056B31ACB90EDEB63CE7F3E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156af0a004e0b85153fd500187f969a0d5f08a7025478772bef95671fdc55389c0849fc59fa97d5fe2feb6abc1d295d55eec6724c53c7fab8316f1ea761395ae0c23
expires: Fri, 27 Jan 2023 12:20:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:56 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=4, origin; dur=111
x-origin-response-time: 111,23.36.79.13
x-akamai-request-id: 57c1f7ac
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 965
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301271220567B7A7C11E3163FD9C8BE
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a6d50c0f36c7b41c7919c077b6389a46b4f2d74aa90a0a89778e2757cc33e59f265ccdbff957cc10c17eb50480a11506799ed9458462b21d1022f1edf2f848bb5
expires: Fri, 27 Jan 2023 12:20:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:56 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=19, cdn-cache; desc=MISS, edge; dur=4, origin; dur=115
x-origin-response-time: 115,23.36.79.13
x-akamai-request-id: 57c1f7aa
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 967
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230127122056E1A6F7B18DA47CAC3549
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a96ed335ae5c60cc36549c757e8b86085e4edaaeb4febde13e5f7e1fd0c8aa8e0356a5853cb3c1e9f3fcc153aed3b3a2131e71de20612ee3618ee356803dc66ce
expires: Fri, 27 Jan 2023 12:20:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:56 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=18, cdn-cache; desc=MISS, edge; dur=4, origin; dur=116
x-origin-response-time: 116,23.36.79.13
x-akamai-request-id: 57c1f7a6
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/muse.js
151.101.130.133200 OK 16 kB URL HTTP/2 www.paypalobjects.com/muse/muse.js
IP 151.101.130.133:0
File type ASCII text, with very long lines (55891)
Hash 6aebbe482c72000aea20895991f70478
eff1d3370786f9ee4ea539776bc43ab9bece89ba
2acb950bc7678b9e6c265194821fac386bf555db582ee8c0e2d9e68ff3eaa862
GET /muse/muse.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: application/javascript
etag: W/"6271663d-da91"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 84840867de170
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:20:56 GMT
x-served-by: cache-sjc10029-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 56031
x-timer: S1674822056.328803,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16464
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/analytics/index.html
151.101.130.133200 OK 17 kB URL HTTP/2 www.paypalobjects.com/muse/analytics/index.html
IP 151.101.130.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55410)
Hash 56fc10c2e8100a7e4418dc987c23d7a5
5c11880437f36368f82da60522bfcb0d57b395cf
326df6156907ef357f13bf48a5a3798dd4e692345d04fb4edad8370058d1198a
GET /muse/analytics/index.html HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: text/html
etag: W/"6271663d-d994"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 50b39f10d2761
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:20:56 GMT
x-served-by: cache-sjc10077-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 63405
x-timer: S1674822056.404606,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16791
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110079177-4&cid=391808074.1674822056&jid=1334496093&gjid=886749277&_gid=1490266789.1674822056&_u=YCDAgEABBAAAAEgCIAB~&z=195008587
173.194.221.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110079177-4&cid=391808074.1674822056&jid=1334496093&gjid=886749277&_gid=1490266789.1674822056&_u=YCDAgEABBAAAAEgCIAB~&z=195008587
IP 173.194.221.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110079177-4&cid=391808074.1674822056&jid=1334496093&gjid=886749277&_gid=1490266789.1674822056&_u=YCDAgEABBAAAAEgCIAB~&z=195008587 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://vessi.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 27 Jan 2023 12:20:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 73171157e787c87ed6ab9045dcad687f
080406d886887c9082e5252aa7c65e7d204426a4
d653b0be5f1df789484f6c3e5b151184460aaf0f45e0722cc002e8cc099f5bcf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 17:51:26 GMT
Expires: Wed, 01 Feb 2023 17:51:25 GMT
Etag: "080406d886887c9082e5252aa7c65e7d204426a4"
Cache-Control: max-age=451228,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790171fc8ebdb4f4-OSL
t.paypal.com/ts?pgrp=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&fltp=analytics&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&flag_consume=yes&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822055958&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ru=http%3A%2F%2Fwww.linkhaitao.com%2F
192.229.221.25200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&fltp=analytics&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&flag_consume=yes&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822055958&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ru=http%3A%2F%2Fwww.linkhaitao.com%2F
IP 192.229.221.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Athird-party%3Aanalytics-xo%3A%3A48HJ89XZ6AC8Q-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&fltp=analytics&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&flag_consume=yes&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822055958&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ru=http%3A%2F%2Fwww.linkhaitao.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Fri, 27 Jan 2023 12:20:56 GMT
expires: Fri, 27 Jan 2023 12:20:56 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 2abffbe291a27
pragma: no-cache
server: ECAcc (frc/4CFB)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769516456%26vteXpYrS%3D1674823856%26vr%3Df32c79be1850a8a32e52b903ffffffff%26vt%3Df32c79be1850a8a32e52b903fffffffe; Expires=Tue, 27 Jan 2026 12:20:56 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df32c79be1850a8a32e52b903ffffffff%26vt%3Df32c79be1850a8a32e52b903fffffffe; Expires=Tue, 27 Jan 2026 12:20:56 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000002abffbe291a27-d77480cea5265ac4-01
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 9c9ce7e7a1c77f4ab55a2a2b8d7105fe
cc10a4ac6f7ff10e75d9279ee7d50d87ebec17f7
ac02f4989e276d7d7592a8e9634069770b76655293e9876b74fa2ac2e9f0d515
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5631
Cache-Control: max-age=90454
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Etag: "63d269ff-139"
Expires: Sat, 28 Jan 2023 13:28:30 GMT
Last-Modified: Thu, 26 Jan 2023 11:54:39 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/s/gts1d4/oytRsHjzUrQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oytRsHjzUrQ
IP 142.250.74.131:0
Hash 3e35a95a5124dfb1c1c8e869c665c74d
e29087e1c60aca611fd41bcfc780f208952757f5
b898d8e609d7e5f10a93b10d782a582a0f922b455df77cdcc92ba9b1170042d3
POST /s/gts1d4/oytRsHjzUrQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.omniconvert.com/mktzsave?event=view&uid=19532447292118442104&session=sess.2.1635363293.1674822056037&id_website=23036&page_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&svo=0&time=2023-01-27T12%3A20%3A56%2B00%3A00&version=tt1.65.1&versionTimestamp=1674822056&browser=Firefox+105&resolution=1280x1024&device_type=desktop&referer_type=refferal&visitor_type=new&os=Linux
178.128.139.113204 No Content 0 B URL HTTP/1.1 app.omniconvert.com/mktzsave?event=view&uid=19532447292118442104&session=sess.2.1635363293.1674822056037&id_website=23036&page_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&svo=0&time=2023-01-27T12%3A20%3A56%2B00%3A00&version=tt1.65.1&versionTimestamp=1674822056&browser=Firefox+105&resolution=1280x1024&device_type=desktop&referer_type=refferal&visitor_type=new&os=Linux
IP 178.128.139.113:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mktzsave?event=view&uid=19532447292118442104&session=sess.2.1635363293.1674822056037&id_website=23036&page_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&svo=0&time=2023-01-27T12%3A20%3A56%2B00%3A00&version=tt1.65.1&versionTimestamp=1674822056&browser=Firefox+105&resolution=1280x1024&device_type=desktop&referer_type=refferal&visitor_type=new&os=Linux HTTP/1.1
Host: app.omniconvert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Server: nginx/1.14.0
Date: Fri, 27 Jan 2023 12:20:56 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
X-Machine: Tracking-PROD-1
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://vessi.com
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: origin,accept,accept-encoding,user-agent,x-requested-with
ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
IP 142.250.74.131:0
Hash c63377b1e287f91916c5941ac5203936
97533b814626e7440bffc55283bb36eb1a344eef
89b3925366bcbb59789c15d0ff6f593cc363248588da119c99f1a0845745e9e2
POST /s/gts1d4/_U3j_ej53q4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
IP 142.250.74.131:0
Hash c63377b1e287f91916c5941ac5203936
97533b814626e7440bffc55283bb36eb1a344eef
89b3925366bcbb59789c15d0ff6f593cc363248588da119c99f1a0845745e9e2
POST /s/gts1d4/_U3j_ej53q4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d34r8q7sht0t9k.cloudfront.net/tag.js
54.230.245.49200 OK 1.1 kB URL HTTP/2 d34r8q7sht0t9k.cloudfront.net/tag.js
IP 54.230.245.49:0
File type ASCII text, with very long lines (1100), with no line terminators
Hash 698f375cc1072a241c70c070aa6b2411
f3ac0edbac86faaf1982318e6e3b775746a96189
4ef49d99e6489728917550c3473f5455508a422edec1393d7045e951b1e7a73c
GET /tag.js HTTP/1.1
Host: d34r8q7sht0t9k.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 1100
date: Fri, 27 Jan 2023 12:20:57 GMT
last-modified: Tue, 22 Nov 2022 00:19:49 GMT
etag: "698f375cc1072a241c70c070aa6b2411"
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DYlCY3U7QnVDsb0m4eEUWuELty-fheGAOgULlthiSicLT0oo25XDbw==
X-Firefox-Spdy: h2
i.clean.gg/1a
34.95.69.49200 OK 0 B IP 34.95.69.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /1a HTTP/1.1
Host: i.clean.gg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 898
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 27 Jan 2023 12:20:56 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Origin,Accept,X-API-Key
access-control-expose-headers: Content-Length,Content-Range
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:55 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=59921d14-9242-42d7-91d4-93de15e37ed9; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:56 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: af53e85de6ea4b0e
strict-transport-security: max-age=0
x-response-time: 107
x-connection-hash: d9e5d581b4c3791646be2dfdd4114e48ba6abc76de3863b3549c0167811d7a48
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oytRsHjzUrQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oytRsHjzUrQ
IP 142.250.74.131:0
Hash 3e35a95a5124dfb1c1c8e869c665c74d
e29087e1c60aca611fd41bcfc780f208952757f5
b898d8e609d7e5f10a93b10d782a582a0f922b455df77cdcc92ba9b1170042d3
POST /s/gts1d4/oytRsHjzUrQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i3.vessi.com/com.snowplowanalytics.snowplow/tp2
34.149.126.114200 OK 0 B URL HTTP/2 i3.vessi.com/com.snowplowanalytics.snowplow/tp2
IP 34.149.126.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: i3.vessi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://vessi.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-max-age: 5
server: akka-http/10.1.10
date: Fri, 27 Jan 2023 12:20:56 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfoFlowStarted&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822056259&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
192.229.221.25200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfoFlowStarted&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822056259&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
IP 192.229.221.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfoFlowStarted&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674822056259&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Fri, 27 Jan 2023 12:20:56 GMT
expires: Fri, 27 Jan 2023 12:20:56 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: b8a1f11fa201e
pragma: no-cache
server: ECAcc (frc/4CED)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769516456%26vteXpYrS%3D1674823856%26vr%3Df32c7a9a1850a46137a2204fffffffff%26vt%3Df32c7a9a1850a46137a2204ffffffffe; Expires=Tue, 27 Jan 2026 12:20:56 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df32c7a9a1850a46137a2204fffffffff%26vt%3Df32c7a9a1850a46137a2204ffffffffe; Expires=Tue, 27 Jan 2026 12:20:56 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000b8a1f11fa201e-14fc9d3167191b9d-01
content-length: 42
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-BV089ZY39N>m=2oe1p0&_p=714932453&cid=391808074.1674822056&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674822055&sct=1&seg=0&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&dr=http%3A%2F%2Fwww.linkhaitao.com%2F&dt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-BV089ZY39N>m=2oe1p0&_p=714932453&cid=391808074.1674822056&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674822055&sct=1&seg=0&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&dr=http%3A%2F%2Fwww.linkhaitao.com%2F&dt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BV089ZY39N>m=2oe1p0&_p=714932453&cid=391808074.1674822056&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674822055&sct=1&seg=0&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&dr=http%3A%2F%2Fwww.linkhaitao.com%2F&dt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&en=page_view&_fv=1&_nsi=1&_ss=1&up.visitor_type=guest HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://vessi.com
date: Fri, 27 Jan 2023 12:20:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i3.vessi.com/com.snowplowanalytics.snowplow/tp2
34.149.126.114200 OK 2 B URL HTTP/2 i3.vessi.com/com.snowplowanalytics.snowplow/tp2
IP 34.149.126.114:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: i3.vessi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2080
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; _orig_referrer=http%3A%2F%2Fwww.linkhaitao.com%2F; _landing_page=%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao; _y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; _s=7a297ea1-be56-47ea-80ef-c56540cbd92d; _shopify_y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; _shopify_s=7a297ea1-be56-47ea-80ef-c56540cbd92d; _opt_utmc=acquisition; _gcl_au=1.1.294507206.1674822055; _shopify_sa_t=2023-01-27T12%3A20%3A55.224Z; _shopify_sa_p=utm_source%3DLinkhaitao%26utm_medium%3Daffiliates%26utm_campaign%3Dacquisition%26utm_content%3D783235; geolizr_geodata={%22as%22:%22n/a%22%2C%22asname%22:%22n/a%22%2C%22mobile%22:false%2C%22proxy%22:false%2C%22city%22:%22Oslo%22%2C%22currency%22:{%22code%22:%22NOK%22}%2C%22country%22:{%22code%22:%22NO%22%2C%22country%22:%22Norway%22}%2C%22countryCode%22:%22NO%22%2C%22continent%22:%22Europe%22%2C%22continentCode%22:%22EU%22%2C%22isp%22:%22n/a%22%2C%22lat%22:59.8636%2C%22lon%22:10.7961%2C%22org%22:%22n/a%22%2C%22query%22:%2291.90.42.154%22%2C%22region%22:%2203%22%2C%22regionName%22:%22Oslo%20County%22%2C%22status%22:%22success%22%2C%22timezone%22:%22Europe/Oslo%22%2C%22zip%22:%220109%22%2C%22cloudflare%22:%22%22%2C%22ttl%22:0%2C%22env%22:%22PROD%22%2C%22build%22:%22maxmind%2026%20Jan%2023%2021:58%20UTC%22%2C%22currencyCode%22:%22NOK%22%2C%22countryName%22:%22Norway%22%2C%22service%22:%22ip.lovely-app.com%22}; _tt_enable_cookie=1; _ttp=vIVjGzWQsQuE3azHDoMu2yABpZt; influencer=783235; elevar_user_id=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; _ga_BV089ZY39N=GS1.1.1674822055.1.0.1674822055.0.0.0; _ga=GA1.2.391808074.1674822056; _gid=GA1.2.1490266789.1674822056; _gat=1; _gat_UA-110079177-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
set-cookie: _nb_sp_cookie=c0173576-619c-4347-8f8d-7930f7267e48; Expires=Sat, 27 Jan 2024 12:20:56 GMT; Path=/; Secure; HttpOnly; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://vessi.com
access-control-allow-credentials: true
server: akka-http/10.1.10
date: Fri, 27 Jan 2023 12:20:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paypal.com/targeting/graphql
192.229.221.25204 No Content 0 B URL HTTP/2 www.paypal.com/targeting/graphql
IP 192.229.221.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.paypalobjects.com/
Origin: https://www.paypalobjects.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Fri, 27 Jan 2023 12:20:56 GMT
dc: ccg11-origin-www-1.paypal.com
paypal-debug-id: 0280b75065574
server: ECAcc (frc/4CAE)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 27 Jan 2023 21:06:52 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 27 Jan 2024 12:20:56 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NDgyMjA1NjcxNSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
nsid=s%3AaxnRmavVwtKBijRp0cUT9HSCwlAVjRdA.fCw5WqZJ8M%2Fdl4YZ0RJdJozUnJRUz3OPc6taiy5nMfk; Path=/; HttpOnly; Secure
l7_az=dcg15.slc; Path=/; Domain=paypal.com; Expires=Fri, 27 Jan 2023 12:50:56 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769516456%26vteXpYrS%3D1674823856%26vr%3Df32c7af61850a2d1f2efd574fe3a0a00%26vt%3Df32c7af61850a2d1f2efd574fe3a09ff%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 26 Jan 2026 12:20:56 GMT; HttpOnly; Secure
ts_c=vr%3Df32c7af61850a2d1f2efd574fe3a0a00%26vt%3Df32c7af61850a2d1f2efd574fe3a09ff; Path=/; Domain=paypal.com; Expires=Mon, 26 Jan 2026 12:20:56 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000280b75065574-416ecaef8337ec72-01
vary: Origin, Access-Control-Request-Headers
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/_U3j_ej53q4
IP 142.250.74.131:0
Hash c63377b1e287f91916c5941ac5203936
97533b814626e7440bffc55283bb36eb1a344eef
89b3925366bcbb59789c15d0ff6f593cc363248588da119c99f1a0845745e9e2
POST /s/gts1d4/_U3j_ej53q4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9a156f9e1eec43fbfc3ea11e27aa3091
280292e0c5a0896c45598aa00e3fb607edf0b3a7
419b77a2c7ed19e8d086c82e3c9096d6ed2ab3032bba31afce0499ee83bc233a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash d4e038ff5e522a73ff9f822e495a31da
ad7f61a05bc37b2fdf5faf3ee7b769827e834032
b36a13ba0177570acd909fd4771a9273faafb4560750faee095e1886f3b2e2d8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121475
Date: Fri, 27 Jan 2023 12:20:56 GMT
Etag: "63d2f0f6-1d7"
Expires: Sat, 28 Jan 2023 22:05:31 GMT
Last-Modified: Thu, 26 Jan 2023 21:30:30 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RVRRS7Qz5YiyxQuX-Iotv1RfkRRpiWhNnRt395xMs4V8XHiNY1d1kg==
Age: 2101
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9a156f9e1eec43fbfc3ea11e27aa3091
280292e0c5a0896c45598aa00e3fb607edf0b3a7
419b77a2c7ed19e8d086c82e3c9096d6ed2ab3032bba31afce0499ee83bc233a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ea8499f1d94628cc54bacd1f00ceacd0
82942fe12878ae91152ff8fcd769551f0eb540d4
7e77110c196daaa5c34531a53b57a1df0b8c233b1ee9b4d3224c931c8c1dad76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1866
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:57 GMT
Last-Modified: Fri, 27 Jan 2023 11:49:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
www.google.com/pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/803738929/?random=1674822055201&cv=11&fst=1674820800000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&ref=http%3A%2F%2Fwww.linkhaitao.com%2F&tiba=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&fmt=3&is_vtc=1&random=1789052367&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110079177-1&cid=391808074.1674822056&jid=502805302&_u=YCDAAEABBAAAAGgCIAB~&z=974189209 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 61f119c4b6311c87501f54da9ad62e7e
479c65a3be3e77ff0af6f26118389cac97852c74
e00fa0353240654d541e2aee878c14feb77837a1b5a4a12fa326ec2cc5a92e59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
verifi.podscribe.com/tag?action=view&user_id=16e47ed5-8116-4628-8606-d737b381524d&advertiser=vessi&referrer=http%3A%2F%2Fwww.linkhaitao.com%2F&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&h=1674822056360%2Chttps%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
52.204.231.75204 No Content 0 B URL HTTP/2 verifi.podscribe.com/tag?action=view&user_id=16e47ed5-8116-4628-8606-d737b381524d&advertiser=vessi&referrer=http%3A%2F%2Fwww.linkhaitao.com%2F&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&h=1674822056360%2Chttps%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
IP 52.204.231.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tag?action=view&user_id=16e47ed5-8116-4628-8606-d737b381524d&advertiser=vessi&referrer=http%3A%2F%2Fwww.linkhaitao.com%2F&url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&h=1674822056360%2Chttps%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao HTTP/1.1
Host: verifi.podscribe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: awselb/2.0
date: Fri, 27 Jan 2023 12:20:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=0d805fd6-f10e-4f93-99b5-ddb82aaf24d0&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=0dcb0148-daf3-465d-b9e3-040c517d84fa&tw_document_href=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&tw_iframe_status=0&txn_id=o4mzq&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:56 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167482205707638207; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:57 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167482205707638207; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:57 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_2qa2OFKpjl0xjIEB+cR02w=="; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:57 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167482205707638207; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:57 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 30cd53d56f187b3c
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 7052bcd8678138b43cda1bee407985dd77b745fc2fbbc5a4d65052589ac177d9
X-Firefox-Spdy: h2
www.paypal.com/targeting/graphql
192.229.221.25200 OK 309 B URL HTTP/2 www.paypal.com/targeting/graphql
IP 192.229.221.25:0
File type JSON data\012- , ASCII text, with very long lines (445)
Hash 4d757db6db2ffdc1770ec9cf45a1db96
8ad61a3e9d88fcd4656b93b7cdebc0407160c45f
456abb152542a096f5a6f4bdb652a410a30aeaf1411087cf6d4030f320039743
POST /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypalobjects.com/
Content-Type: application/json
Origin: https://www.paypalobjects.com
Content-Length: 319
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; img-src 'self' https:; script-src 'nonce-MM/O/0j+nQQPAH3tx3difGL+7Hhz6IYVK+SX4aMOYVqXq58V' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com;
content-type: application/json; charset=utf-8
date: Fri, 27 Jan 2023 12:20:57 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"1be-6BAUl7Y5ZfOIjpWXlSYMoi245iw"
paypal-debug-id: 010a05477a3b6
server: ECAcc (frc/4CF8)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Fri, 27 Jan 2023 21:06:53 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sat, 27 Jan 2024 12:20:57 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NDgyMjA1NzA4NSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=targetingnodeweb; Domain=.paypal.com; Path=/; Expires=Mon, 30 Jan 2023 12:20:57 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3Agq0zUhmKj1hIMRz8QCNdN-EuriNt_LIf.L1nHBkmtib0HASQPXwfId2Uf5Q0vs0HVxh%2Byb1Sea%2Bs; Path=/; HttpOnly; Secure
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Fri, 27 Jan 2023 12:50:57 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769516456%26vteXpYrS%3D1674823856%26vr%3Df32c7bce1850ad04a793aeb9fe53e125%26vt%3Df32c7bce1850ad04a793aeb9fe53e124%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Mon, 26 Jan 2026 12:20:57 GMT; HttpOnly; Secure
ts_c=vr%3Df32c7bce1850ad04a793aeb9fe53e125%26vt%3Df32c7bce1850ad04a793aeb9fe53e124; Path=/; Domain=paypal.com; Expires=Mon, 26 Jan 2026 12:20:57 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000010a05477a3b6-848ba007c9092931-01
vary: Origin,Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 309
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=371015920001593&ev=PageView&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&rl=http%3A%2F%2Fwww.linkhaitao.com%2F&if=false&ts=1674822056872&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674822056871.290517255&it=1674822056129&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=371015920001593&ev=PageView&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&rl=http%3A%2F%2Fwww.linkhaitao.com%2F&if=false&ts=1674822056872&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674822056871.290517255&it=1674822056129&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=371015920001593&ev=PageView&dl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&rl=http%3A%2F%2Fwww.linkhaitao.com%2F&if=false&ts=1674822056872&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674822056871.290517255&it=1674822056129&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 27 Jan 2023 12:20:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de1ce1472f360bfdf03f16285d87afb1
8d66a92d67c015560d994ebb92243833afe21a6a
20056cf21ebb6b84a9e6bc2675baa121e9c4cc9456a8c2dbd0c8dcad7595af0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 965
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _ttp=2KuQb07Gn9tIK4URgmK3lxyf4fB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023012712205784C2E0F2A509F4C06944
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0369cb24960fbb841c43ba74fe9e2bf4ab0e82a87ff5a008e83ffe6ff1fb43782ca62de68568b691c0308dea5f1f8a84bd03798cc507b115593ea7e75f497187
expires: Fri, 27 Jan 2023 12:20:57 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 12:20:57 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=21, cdn-cache; desc=MISS, edge; dur=4, origin; dur=119
x-origin-response-time: 120,23.36.79.13
x-akamai-request-id: 57c2017b
X-Firefox-Spdy: h2
11281791.fls.doubleclick.net/activityi;src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao?
142.250.74.70200 OK 355 B URL HTTP/2 11281791.fls.doubleclick.net/activityi;src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (636), with no line terminators
Hash 3a44e1d1d8d49ec36e5d00b747c71139
ad5a47760f3cdcb709b6f199e1a31b7101faf972
e6175f0bb10b8c8cbd5a98104c4a391a09ab5809c50531e8761ca06003e2689d
GET /activityi;src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao? HTTP/1.1
Host: 11281791.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 355
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 12:35:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfo&cust=9PJJD25LCV2Y4&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1674822057135&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
192.229.221.25200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfo&cust=9PJJD25LCV2Y4&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1674822057135&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
IP 192.229.221.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1&page=muse%3Aoffer%3A%3A%3A48HJ89XZ6AC8Q-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=85b95f00-af0a-4da7-8282-3c1857ced99f&es=visitorInfo&cust=9PJJD25LCV2Y4&mrid=48HJ89XZ6AC8Q&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1674822057135&g=0&completeurl=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: tsrce=targetingnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Fri, 27 Jan 2023 12:20:57 GMT
expires: Fri, 27 Jan 2023 12:20:57 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: f132bf9042159
pragma: no-cache
server: ECAcc (frc/4CBB)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769516457%26vteXpYrS%3D1674823857%26vr%3Df32c7e131850a623a6b3d7e1ffffffff%26vt%3Df32c7e131850a623a6b3d7e1fffffffe; Expires=Tue, 27 Jan 2026 12:20:57 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df32c7e131850a623a6b3d7e1ffffffff%26vt%3Df32c7e131850a623a6b3d7e1fffffffe; Expires=Tue, 27 Jan 2026 12:20:57 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000f132bf9042159-1719de37a6fe75a2-01
content-length: 42
X-Firefox-Spdy: h2
assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
54.230.111.10200 OK 178 kB URL HTTP/2 assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
IP 54.230.111.10:0
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 178 kB (178069 bytes)
Hash 359008fe01078c59c66e034866170bd2
4a65a16a6f02824f60bc575ebcdeb53a490fa264
b318b179b35ca92c87626801798f3bce3864172926ae10288f0460a53f30177c
GET /universalscript/releases/v0.179.2/bundle.js HTTP/1.1
Host: assets.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 178069
date: Sun, 11 Dec 2022 10:48:36 GMT
last-modified: Tue, 05 Apr 2022 16:31:05 GMT
etag: "359008fe01078c59c66e034866170bd2"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ae5Wqhz6XKzL76np22lY6VOWKM7EPxgI1gQEVw_iWTOV2T0fFnrjmw==
age: 4066341
X-Firefox-Spdy: h2
63616d9fb271494b8a6ad3896a1395ac.js.ubembed.com/
151.101.129.131200 OK 954 B URL HTTP/2 63616d9fb271494b8a6ad3896a1395ac.js.ubembed.com/
IP 151.101.129.131:0
File type ASCII text, with very long lines (477), with no line terminators
Hash 8620555017ef466c23e264e4e6515d9f
0d1aa4c4550c95f2f14d8fa39333deee71ed93bf
00a192d0ec0be7f06ecfbb975890df1902ee76010a93c4db3d5c16ce78bc5607
GET / HTTP/1.1
Host: 63616d9fb271494b8a6ad3896a1395ac.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: fZhV7Fs7joEF6YQ=
x-amz-cf-pop: ARN56-P2
x-backend-region: eu_west_1
date: Fri, 27 Jan 2023 12:20:57 GMT
age: 4688
x-cache: Miss from cloudfront, HIT
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/fca4f9bf0ab96854e087cf8466507078-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
216.58.207.226200 OK 357 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (635), with no line terminators
Hash 0a26ac2028a72f5039844bbf9d325612
f5f9ab6acb3eeccdfe99429b1fccd30035770ee9
89a64ff68dab6ebf8b557ee56b1011d1c312f6099a35d1d4e542af2ff3ba5ab8
GET /ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 357
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
216.58.207.226302 Found 0 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/i/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 12:20:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11281791.fls.doubleclick.net/ddm/fls/r/src=11281791;type=visit0;cat=homep0;ord=1;num=1738549664577;gtm=2yg1p0;auiddc=294507206.1674822055;~oref=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.pbbl.co/r/2721.js
54.230.111.30403 Forbidden 986 B IP 54.230.111.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6601ccb45328330102e2c42a3f7d0691
70c69480948477a1349b013806e89bc1bd1d85ed
a1458a5e5615a287355d654ab451a316f81a7306906b763e4ddb1a0a9b9efec3
GET /r/2721.js HTTP/1.1
Host: cdn.pbbl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Fri, 27 Jan 2023 12:20:57 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZxylZpCV1BQVsl_w7q12FZVEvY2U_5oDiGYzXyFFmnRMmqVYQzwzbg==
vary: Origin
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4AF4F19D6CB94B7BB45385FD3AE95165 Ref B: OSL30EDGE0507 Ref C: 2023-01-27T12:20:57Z
date: Fri, 27 Jan 2023 12:20:56 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash ef08cde477721ba9f25b3273fb6de8cb
622b7bc2ca5c73fe94c0b46229db588e6d40c58f
ed279b96bd23ec0273b2e8385fa554cdf0ba44ee8270efe4160b37cc6335dcea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 12:20:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 04:24:15 GMT
Expires: Sat, 28 Jan 2023 04:24:15 GMT
ETag: "622b7bc2ca5c73fe94c0b46229db588e6d40c58f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
origin.acuityplatform.com/event/v2/pixel.js
104.88.22.250200 OK 2.4 kB URL HTTP/1.1 origin.acuityplatform.com/event/v2/pixel.js
IP 104.88.22.250:0
File type HTML document, ASCII text, with very long lines (2423)
Hash c1e398d8cc65cd9241cc3f1840add2cb
316b1005d23d838c83e8bc65d3c2679b8c098df6
89cf66cb9de8da20fc15e9953845dd4d1de2c0fb465c827a09d818449222c533
GET /event/v2/pixel.js HTTP/1.1
Host: origin.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Content-Type: application/javascript
Content-Length: 2424
Last-Modified: Wed, 04 Jan 2023 18:57:40 GMT
ETag: "63b5cc24-978"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 12:20:57 GMT
Connection: keep-alive
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.85200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dJiE2qAA1lkpWRgwz1ouD2Z-BRQ7NZNDw2YLQMpLkDAFezgW3MuiRg==
age: 11812
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 48f1fcf216d10667d1250125cf2a43d1
229dd561cec5873f166302d46794abe67cd800fd
e5ea7f3badc7f53fdb8a5f2523db5a2c40866149722d3b10b36b0ab7d785ae20
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146961
Date: Fri, 27 Jan 2023 12:20:58 GMT
Etag: "63d34f2c-1d7"
Expires: Sun, 29 Jan 2023 05:10:19 GMT
Last-Modified: Fri, 27 Jan 2023 04:12:28 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c9DjYV2FbdOF7jz2hBWx9P9ZKk-2PjehjRC7i0z3kQKPF4AWDTmmFw==
Age: 3471
dx.mountain.com/spx?dxver=4.0.0&shaid=33306&tdr=http://www.linkhaitao.com/&plh=https://vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736
44.238.33.223200 OK 5.3 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33306&tdr=http://www.linkhaitao.com/&plh=https://vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736
IP 44.238.33.223:0
File type Unicode text, UTF-8 text, with very long lines (20004), with no line terminators
Hash 6dde0dd89142e6ead2dfb137d9510053
9587a428b7d91b7b8e8cae720401f64573309a31
871fc5075c1460e3c571e1df48d34e61cfd43f87f5544f5dd4d6e04760ba1d2e
GET /spx?dxver=4.0.0&shaid=33306&tdr=http://www.linkhaitao.com/&plh=https://vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736 HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Fri, 27 Jan 2023 12:20:57 GMT
x-envoy-upstream-service-time: 3
server: istio-envoy
connection: close
transfer-encoding: chunked
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash d37e5c451b4dde4ffc3c30e7f13d3326
fdac556fee2a8c2df99d89680ec66f7d042a0fb9
b46749dbba7ff39cd85f2ba407f35b42e10e43e51274c81a3cd54a5a109d302c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 12:20:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:58:19 GMT
Expires: Fri, 27 Jan 2023 21:58:19 GMT
ETag: "fdac556fee2a8c2df99d89680ec66f7d042a0fb9"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
e.acuityplatform.com/pj?pk=64793854746644806&pu=https%3A%2F%2F11281791.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11281791%3Btype%3Dvisit0%3Bcat%3Dhomep0%3Bord%3D1%3Bnum%3D1738549664577%3Bgtm%3D2yg1p0%3Bauiddc%3D294507206.1674822055%3B~oref%3Dhttps%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao
154.59.122.94200 OK 1.2 kB URL HTTP/1.1 e.acuityplatform.com/pj?pk=64793854746644806&pu=https%3A%2F%2F11281791.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11281791%3Btype%3Dvisit0%3Bcat%3Dhomep0%3Bord%3D1%3Bnum%3D1738549664577%3Bgtm%3D2yg1p0%3Bauiddc%3D294507206.1674822055%3B~oref%3Dhttps%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao
IP 154.59.122.94:0
File type ASCII text, with very long lines (1201), with no line terminators
Hash 364ea0a0bdb8261d060104778f838688
21fe0099f1ce1ec1a0e4c520997f500b396ade18
b9de60e869e87620801e446392a2be74094f65b85eb9d7a9bc0c27894c2a01bb
GET /pj?pk=64793854746644806&pu=https%3A%2F%2F11281791.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11281791%3Btype%3Dvisit0%3Bcat%3Dhomep0%3Bord%3D1%3Bnum%3D1738549664577%3Bgtm%3D2yg1p0%3Bauiddc%3D294507206.1674822055%3B~oref%3Dhttps%253A%252F%252Fvessi.com%252F%253FranMID%253D45636%2526ranEAID%253D3269724%2526ranSiteID%253D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%2526utm_content%253D783235%2526utm_campaign%253Dacquisition%2526utm_medium%253Daffiliates%2526utm_source%253DLinkhaitao HTTP/1.1
Host: e.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1201
Set-Cookie: aum=OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQnxlSAaimGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMhj3RoaXJkUGFydHlVc2VySWQh+4E0OfpCJAGiQyUBQnxlSAaiRCFFIfuBMTf6QiSiQyUBQnxlSAaiRCFFIfuCMTE0+kIkA6RDJQFCfGVIBqJEIUUh+4IxMzX6QiQEjkMlAUJ8ZUgGokQhRSH7gDj6QtBDJQFCfGVIBqJEIUUh+4ExMPpC1EMlAUJ8ZUgGokQhRSH7gjEwNvpCJAOUQyUBQnxlSAaiRCFFIfuBMjf6QiS2QyUBQnxlSAaiRCFFIfuCMTI1+kIkA7pDJQFCfGVIBqJEIUUh+/uGdmVyc2lvbsL7; Domain=.acuityplatform.com; Expires=Sat, 27-Jan-2024 12:20:58 GMT; Path=/; SameSite=None; Secure
auid=736348855144; Domain=acuityplatform.com; Expires=Sat, 27-Jan-2024 12:20:58 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *
tags.srv.stackadapt.com/events.js
44.209.218.223301 Moved Permanently 65 B URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 44.209.218.223:0
File type HTML document, ASCII text
Hash f80e89783ec551e69632712d99fd2224
a760361995b52b09f655a2bb469d7dd464619692
c052ddf9a69031b36e27713dfc2ca1d3494de9e0436c5bb35d17d92dac2c61bd
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Fri, 27 Jan 2023 12:20:58 GMT
Location: https://qvdt3feo.com/events.js
Content-Length: 65
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83f4b4d98afa2f32a9db3a46fcbe4491
332e81758d53571d67933bbbff0a21e4929db20b
9ba863fb94a8737d25e59a969cbcddf2ef7a2ccb49975e2049a12c434547a9db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4192
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:58 GMT
Last-Modified: Fri, 27 Jan 2023 11:11:06 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=736348855144&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D736348855144%26uid%3D%24%7BTA_DEVICE_ID%7D
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=736348855144&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D736348855144%26uid%3D%24%7BTA_DEVICE_ID%7D
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3150&partner_device_id=736348855144&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D736348855144%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 12:20:58 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1674822058341;Expires=Tue, 28 Mar 2023 12:20:58 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=398142ba-fef2-4df8-abf9-0361bca49f06;Expires=Tue, 28 Mar 2023 12:20:58 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=736348855144&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D736348855144%26uid%3D%24%7BTA_DEVICE_ID%7D
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
script.hotjar.com/modules.dcdf252a9a6cf097c357.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.dcdf252a9a6cf097c357.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 4ab050de5a6437b8d1f5955ab1dbfb07
498e55a41dc3df84cf825bd946a1300a04b38677
87cbfe168c8537c46132cab67a16afe706796b7f301ac8dc5bd8f9ea847e4a72
GET /modules.dcdf252a9a6cf097c357.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68336
date: Fri, 27 Jan 2023 09:04:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4ab050de5a6437b8d1f5955ab1dbfb07"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R7E7E26C1cquJJEl876R4ZYzGwf8WS0GwyAOpZuwUyFngBnuRyqilA==
age: 11813
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=56027165&tm=gtm002&Ver=2&mid=898842c4-bb2f-45b4-b107-aead16eb67e8&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=514952
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=56027165&tm=gtm002&Ver=2&mid=898842c4-bb2f-45b4-b107-aead16eb67e8&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=514952
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=56027165&tm=gtm002&Ver=2&mid=898842c4-bb2f-45b4-b107-aead16eb67e8&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=514952 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=243CED60FB366A7C074BFFC6FAC36B71; domain=.bing.com; expires=Wed, 21-Feb-2024 12:20:58 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 82680985C9024266AAF972A291E4ECC7 Ref B: OSL30EDGE0507 Ref C: 2023-01-27T12:20:58Z
date: Fri, 27 Jan 2023 12:20:57 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=52006094&tm=gtm002&Ver=2&mid=05a7afcf-7686-4f57-af1a-1bc11f52d87f&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=179262
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=52006094&tm=gtm002&Ver=2&mid=05a7afcf-7686-4f57-af1a-1bc11f52d87f&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=179262
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=52006094&tm=gtm002&Ver=2&mid=05a7afcf-7686-4f57-af1a-1bc11f52d87f&sid=0d9bad209e3d11edbaaf2989423b18e4&vid=0d9bc2409e3d11edbaadd7c2dde0c2bd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&p=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&r=http%3A%2F%2Fwww.linkhaitao.com%2F<=3546&evt=pageLoad&sv=1&rn=179262 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=13A6AD22B6F9666D2899BF84B70C675E; domain=.bing.com; expires=Wed, 21-Feb-2024 12:20:58 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F45EE7A8BD664BF88D5DB801AC07E75D Ref B: OSL30EDGE0507 Ref C: 2023-01-27T12:20:58Z
date: Fri, 27 Jan 2023 12:20:57 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83f4b4d98afa2f32a9db3a46fcbe4491
332e81758d53571d67933bbbff0a21e4929db20b
9ba863fb94a8737d25e59a969cbcddf2ef7a2ccb49975e2049a12c434547a9db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4192
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:58 GMT
Last-Modified: Fri, 27 Jan 2023 11:11:06 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D736348855144%2526uid%253D%2524UID
37.252.171.84302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D736348855144%2526uid%253D%2524UID
IP 37.252.171.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D736348855144%2526uid%253D%2524UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 12:20:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ums.acuityplatform.com/sum?umid=10&auid=736348855144&uid=0
AN-X-Request-Uuid: dfaf2542-adc7-42c1-aa09-a89ec3705ed1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
bat.bing.com/p/action/56027165.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/56027165.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/56027165.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DF6723029AE7478B9BB5C3EADCBC8740 Ref B: OSL30EDGE0507 Ref C: 2023-01-27T12:20:58Z
date: Fri, 27 Jan 2023 12:20:57 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/52006094.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/52006094.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/52006094.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F4E0DBC6671E4A30ABD572066C1D28C5 Ref B: OSL30EDGE0507 Ref C: 2023-01-27T12:20:58Z
date: Fri, 27 Jan 2023 12:20:57 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d43ddde09051712cd131049d11a233b
3888a6ef0d682aa5569b3b33e20d3dfc7b6a8ef4
00ea34741348f1b01e7d2bf74b17ad34e7d35310e2dd2b00d12ebfc9d3d81208
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:58 GMT
Last-Modified: Fri, 27 Jan 2023 11:23:13 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D736348855144%26uid%3D%24_BK_UUID
184.24.45.23302 Found 0 B URL HTTP/2 tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D736348855144%26uid%3D%24_BK_UUID
IP 184.24.45.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D736348855144%26uid%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://ums.acuityplatform.com/sum?umid=49&auid=736348855144&uid=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Fri, 27 Jan 2023 12:20:58 GMT
set-cookie: bku=tJ/99vgO6tBl5z9Q; Path=/; Domain=.bluekai.com; Expires=Thu, 27 Jul 2023 12:20:58 GMT; Secure; SameSite=None
bkpa=KJyA0nWvQ6919BYFiSwVJc43/vPaeAo7jhsNBsOxf7JedffxqG2UJqs+GLjNKJVNg8cRIV/UaKLFH5hVi4lqfWh9BX99snvZzkb0tm4zjlL5DzFkD1YxLQvagn/Ye5yOIM7dlJ97qkF7SZj9d6297rfwSHy4ylz9oh/7+y==; Path=/; Domain=.bluekai.com; Expires=Thu, 27 Jul 2023 12:20:58 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
23.38.200.197200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP 23.38.200.197:0
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
pixel.advertising.com/ups/55950/sync?uid=736348855144&_origin=1
18.156.0.31301 Moved Permanently 355 B URL HTTP/2 pixel.advertising.com/ups/55950/sync?uid=736348855144&_origin=1
IP 18.156.0.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4ccf3446b4aa11b2e8d0f6c0b403a6db
87088340deedf397f77c5ae423c67b869d3c77f3
784550f921bff1bbfdb8071e52d7575cc488b94e30d3122e719cd309ad183be4
GET /ups/55950/sync?uid=736348855144&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 27 Jan 2023 12:20:58 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBKrB02MCEKMN4rVvLbO7P5NNXrsWUD8FEgEBAQET1WPdYwAAAAAA_eMAAA&S=AQAAAp7Dmc_EFS1kRxCxfZhFcy4; Expires=Sat, 27 Jan 2024 18:20:58 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 355
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon_biz_days.min.js?v=74360379806195139521661790891
23.227.60.200200 OK 4.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon_biz_days.min.js?v=74360379806195139521661790891
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6172), with no line terminators
Hash cdfcd4820877b7f09e3e1486ae2b7722
67d0a00714ed0bf6343cf446dc6e27e313be0a44
9a289e2b50e794ec3295685bc1ad39ed476a3e3ea8f54f9ec42cfb6122d45d80
GET /s/files/1/2496/2470/t/303/assets/luxon_biz_days.min.js?v=74360379806195139521661790891 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon_biz_days.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 845f3edf-554e-43bc-ad34-ab402ad55caf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 02 Jan 2023 08:33:31 GMT
cf-cache-status: HIT
age: 652120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KXGSLSmBml50CK4dbfg%2BGbqpmiFwFQksehGEoW%2FsexMO%2BYgYzAZR1U8U1e%2FaDkADF2e0kzE0QdH2MzVrwVoTNx04NNm8%2BjsTwjQ7ZZEF7VVPwTfske40s3AkY6ROX29TcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=75.131, imageryFetch;dur=74.920, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 790171f20d720b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 44369a627241523e4c1072642d968ce1
bbc608ce23c6fca27865967858b9a28438ab8b69
69e91b1c46a29147ba3c3dde85e011b5f9834599a98488e47c9b86db8abc8877
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 13:56:49 GMT
Expires: Tue, 31 Jan 2023 13:56:48 GMT
Etag: "bbc608ce23c6fca27865967858b9a28438ab8b69"
Cache-Control: max-age=350749,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79017208af4eb4f4-OSL
dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=736348855144
185.80.36.245302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=736348855144
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=10&external_user_id=736348855144 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 12:20:58 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=10&external_user_id=736348855144&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y9PBqhJU0ujSgsyl14oe4gAA; Path=/; Domain=casalemedia.com; Expires=Sat, 27 Jan 2024 12:20:58 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1826; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 12:20:58 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1826; Path=/; Domain=casalemedia.com; Expires=Thu, 27 Apr 2023 12:20:58 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
x.bidswitch.net/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1
52.59.35.16302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1
IP 52.59.35.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 12:20:58 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=ff79bf54-f25b-4fac-be82-386ebb24782d; path=/; expires=Sat, 27-Jan-2024 12:20:58 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674822058; path=/; expires=Sat, 27-Jan-2024 12:20:58 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1674822058; path=/; expires=Sat, 27-Jan-2024 12:20:58 GMT; domain=.bidswitch.net; samesite=none; secure
c=1674822058; path=/; expires=Sat, 27-Jan-2024 12:20:58 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 2f1bb8fe48da4189ae3d7e4f0e15ee31
19cfd0a93a8d12d63f379793c8a2805c9c26b46b
c3420e845f04503294a665ae702d7170497efba853b714bd44f693afff2a754c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 12:20:58 GMT
Last-Modified: Fri, 27 Jan 2023 10:40:07 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2forx1Sutvke4SLnba7bPUXADHoDJK4VP7PjpRhByawXOAljE0OqTQ==
Age: 6052
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash c1317b387762b04f7a0455958a049c55
333726d154aab51193d3ae0a6c94518dc89454c9
610bf065a5c384eb6b2e53e31d79cc1beceb2dfe6b4cf3bc809433bc5adae0d9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 12:20:58 GMT
Last-Modified: Fri, 27 Jan 2023 11:54:58 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iK40gqrzgo13quBFOhyE3CNvLCpehA1YSRkL7y9PlvLgBFDJOQzAOQ==
Age: 1560
x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1
52.59.35.16302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1
IP 52.59.35.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=236&user_id=736348855144&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 27 Jan 2023 12:20:58 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //crb.kargo.com/api/v1/bswsync?bsw_uuid=&dsp_uuid=736348855144&dsp_id=236&krg_ids=&gdpr=&gdpr_consent=&us_privacy=
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=736348855144&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=736348855144&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=10&external_user_id=736348855144&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:58 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
ct.pinterest.com/user/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674822058564&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 380 B URL HTTP/2 ct.pinterest.com/user/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674822058564&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (538), with no line terminators
Hash 509f9f17664ea845ece0a38f0f7a70bf
849d5513fa36d2441b3325575ff2d074594e1591
4869150f10b5577c79966bc43ba24d1d9e7b2bb8cb89964263015cb7dae9a9e8
GET /user/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1674822058564&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU16ZzBOVEpqWmpJdFkyVmlPQzAwWXpSbExUbGpZbVV0TURrNVkySTVZVFUyWkRjMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://vessi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 380
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1361382595604532
date: Fri, 27 Jan 2023 12:20:58 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1674822058.7c68b9e8
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=736348855144&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 27 Jan 2023 12:20:58 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKrB02MCEJm20SV3_u1PdwpLwlohdnIFEgEBAQET1WPdYwAAAAAA_eMAAA&S=AQAAAvGelqFdRYWQPtCCHzTo8a0; Expires=Sat, 27 Jan 2024 18:20:58 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_263507365a
54.230.111.53200 OK 31 kB URL HTTP/2 cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_263507365a
IP 54.230.111.53:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7fb297ebb802eac7c92447a9681c841e
8340069644751d415830249de1cad8db2ccd0b96
a5e3acd08e8b8ee45efe7adf609e6dfa43da50d2a778c2bcd381364bfc240314
GET /tag/4-latest/unified-tag.js?v=4-latest_263507365a HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Tue, 17 Jan 2023 20:53:48 GMT
x-amz-version-id: xqr6VwIZ4g4Tr.55DcE7Z4Jb.18Zi98q
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 12:18:40 GMT
cache-control: public, max-age=300
etag: W/"a1da8ef8e7607e2c498a21099e8ce0e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DYkb-bnMwBo05umEIL60Mvkt8K4Ef1-AOAMK9TVg3bGWytilV_XX8w==
age: 139
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=49&auid=736348855144&uid=$_BK_UUID
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=49&auid=736348855144&uid=$_BK_UUID
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=49&auid=736348855144&uid=$_BK_UUID HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
in.hotjar.com/api/v2/client/sites/990196/visit-data?sv=7
34.248.24.189200 OK 95 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/990196/visit-data?sv=7
IP 34.248.24.189:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 039d32f7359c34eee13f02bae640eff7
7550a24e404da6c533fa8597113eec17a6d55f4c
1874a3ed03bfe4289ca3a8cc3c495a498033ddb248a6fbdcdce02e70065eca54
POST /api/v2/client/sites/990196/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:58 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
qvdt3feo.com/events.js
44.194.94.225200 OK 5.6 kB IP 44.194.94.225:0
File type ASCII text, with very long lines (16650)
Hash 59ad274573d91e382d187cd6021479ce
11467bfe4fa543bd65a00f6e15874da67e4e2dd4
cf92d8d6a139860f1b09a4e5e5e8e0fc65245d49607721101189c1b5201cc351
GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:58 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
44.209.218.223200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP 44.209.218.223:0
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Fri, 27 Jan 2023 12:20:58 GMT
Content-Length: 27
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 65c25c9e3c2cbccf7404353d88a6b5a7
37ee698dd67af0222fd525b40f68447339da1e11
b27420221d4470176a09f3b12762a39e3b2340e0743fc6c706ddbd74b851cfda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2757
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:59 GMT
Last-Modified: Fri, 27 Jan 2023 11:35:02 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 25ed6ba1604c1c17edbc957f070fa1ef
05c92ddfa53280d5cac53fbade8b8d4acfbda0b8
b763d319feefcd9727b0b10ae2029e04fc4c540f68965aba1fcc0958aeebec92
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 12:20:59 GMT
Last-Modified: Fri, 27 Jan 2023 11:05:45 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r3pfz1qG0yo__kPh-NiKx5BFp-WtPIlljBjHI81iZDk-GSUFJF-yow==
Age: 4514
events.attentivemobile.com/e?v=4.16.27_3b1f8ef468&pd=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&u=72df2a00c7fb4a77a4866b3820f78f26&c=vessi&ceid=LLy<=1674822058608&tag=modern&cs=3677721058&t=v&r=http%3A%2F%2Fwww.linkhaitao.com%2F&m=%7B%22source%22%3A%22a%22%7D&cb=1674822058629
104.18.43.48200 OK 0 B URL HTTP/2 events.attentivemobile.com/e?v=4.16.27_3b1f8ef468&pd=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&u=72df2a00c7fb4a77a4866b3820f78f26&c=vessi&ceid=LLy<=1674822058608&tag=modern&cs=3677721058&t=v&r=http%3A%2F%2Fwww.linkhaitao.com%2F&m=%7B%22source%22%3A%22a%22%7D&cb=1674822058629
IP 104.18.43.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /e?v=4.16.27_3b1f8ef468&pd=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&u=72df2a00c7fb4a77a4866b3820f78f26&c=vessi&ceid=LLy<=1674822058608&tag=modern&cs=3677721058&t=v&r=http%3A%2F%2Fwww.linkhaitao.com%2F&m=%7B%22source%22%3A%22a%22%7D&cb=1674822058629 HTTP/1.1
Host: events.attentivemobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:59 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
x-envoy-upstream-service-time: 1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901720cbe87b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
events.attentivemobile.com/tpc
104.18.43.48200 OK 0 B URL HTTP/2 events.attentivemobile.com/tpc
IP 104.18.43.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tpc HTTP/1.1
Host: events.attentivemobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 14
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:59 GMT
content-type: image/png
content-length: 0
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
set-cookie: tpc_c_LLy=4ea9876b-b079-49ed-8327-96bb9fde5077.1674822059.LLy.1674822059; Path=/; Domain=attentivemobile.com; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:59 GMT; Secure; SameSite=None
tpc_b_LLy=1e8d79f9-1152-4ef7-83ac-778f9ba583a8.1674822059.LLy.1674822059; Path=/; Domain=attentivemobile.com; Max-Age=63072000; Expires=Sun, 26 Jan 2025 12:20:59 GMT; Secure; SameSite=None
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-expose-headers: Set-Cookie, X-Count, X-Token
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
x-envoy-upstream-service-time: 9
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901720cbe7fb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5a9a57e86b3976943426f5c01580c5fb
81101bbf799571f8c5ea1f2951edae3f0b44ceab
dc84424a0f58107d90da299033824acc463cf64c389017e3528d68fdf30b91c8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92502
Date: Fri, 27 Jan 2023 12:20:59 GMT
Etag: "63d2863c-1d7"
Expires: Sat, 28 Jan 2023 14:02:41 GMT
Last-Modified: Thu, 26 Jan 2023 13:55:08 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: E2qyVyAHvN6JP_ZNFZY8x2c9TR6kQsEdEEHbLnwQVgXe503TQOibCg==
Age: 453
crb.kargo.com/api/v1/bswsync?bsw_uuid=&dsp_uuid=736348855144&dsp_id=236&krg_ids=&gdpr=&gdpr_consent=&us_privacy=
3.64.129.233200 OK 43 B URL HTTP/1.1 crb.kargo.com/api/v1/bswsync?bsw_uuid=&dsp_uuid=736348855144&dsp_id=236&krg_ids=&gdpr=&gdpr_consent=&us_privacy=
IP 3.64.129.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /api/v1/bswsync?bsw_uuid=&dsp_uuid=736348855144&dsp_id=236&krg_ids=&gdpr=&gdpr_consent=&us_privacy= HTTP/1.1
Host: crb.kargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate, private, max-age=0
Content-Type: image/gif
Date: Fri, 27 Jan 2023 12:20:59 GMT
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Krk-Reject-Reason: consent
Pragma: no-cache
Vary: Origin
X-Accel-Expires: 0
Content-Length: 43
Connection: keep-alive
ws6.hotjar.com/api/v2/client/ws
18.200.102.92101 Switching Protocols 0 B URL HTTP/1.1 ws6.hotjar.com/api/v2/client/ws
IP 18.200.102.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws6.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://vessi.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dX79dt3Kz+K9+Q/OoHZt8A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 27 Jan 2023 12:20:59 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BGc+6TqNUJY7ELnzBqsCOcgtUdU=
Sec-WebSocket-Extensions: permessage-deflate
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 65c25c9e3c2cbccf7404353d88a6b5a7
37ee698dd67af0222fd525b40f68447339da1e11
b27420221d4470176a09f3b12762a39e3b2340e0743fc6c706ddbd74b851cfda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2757
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:20:59 GMT
Last-Modified: Fri, 27 Jan 2023 11:35:02 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
content.hotjar.io/
54.154.154.210200 OK 56 B IP 54.154.154.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 746e235dda25b0c486cdf70bc8004b65
817ae7830400dd47c39e6c5b8bf131ae95c6c8d3
dcdc6f581613e55633c68aee4cd2f9f4a21b907430769729854f2f409c3666e6
POST / HTTP/1.1
Host: content.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 530106
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:59 GMT
content-type: application/json
content-length: 56
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=736348855144&_origin=1&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=736348855144&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11281791.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 12:20:59 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKvB02MCEBPCGmnUz1DZusQvEcu_75QFEgEBAQET1WPdYwAAAAAA_eMAAA&S=AQAAAmw30LoYoc8MsDUnmxqDyVM; Expires=Sat, 27 Jan 2024 18:20:59 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 12ee3e2c04c117856cec3497bd967432
fbe94ff7a7cd79b2447a0ba6575d1cac0832b0e1
c35dfd2a3acc8b2b328601aa18ffbadc38ac317c7b4df100bbc2b6774a150ac6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:20:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 01:02:16 GMT
Expires: Fri, 03 Feb 2023 01:02:15 GMT
Etag: "fbe94ff7a7cd79b2447a0ba6575d1cac0832b0e1"
Cache-Control: max-age=563475,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79017209dec0fabc-OSL
cdn.attn.tv/growth-tag-assets/client-configs/vessi.attn.tv.js
54.230.111.53200 OK 0 B URL HTTP/2 cdn.attn.tv/growth-tag-assets/client-configs/vessi.attn.tv.js
IP 54.230.111.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /growth-tag-assets/client-configs/vessi.attn.tv.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 0
last-modified: Mon, 17 Dec 2018 20:59:49 GMT
content-encoding:
x-amz-version-id: kGJjc2HxNgGNuk_7UqP1h9o.liqWLb8I
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 16:20:01 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EMG2MjoVsE6It5Fvm_pQMcDUBCK6dh0LmHBlf0_B60suN3utPYUirw==
age: 72059
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao%22%2C%22ref%22%3A%22http%3A%2F%2Fwww.linkhaitao.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674822058566
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao%22%2C%22ref%22%3A%22http%3A%2F%2Fwww.linkhaitao.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674822058566
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2619012157870&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao%22%2C%22ref%22%3A%22http%3A%2F%2Fwww.linkhaitao.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1674822058566 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1383467090277912
date: Fri, 27 Jan 2023 12:20:59 GMT
akamai-grn: 0.274f2417.1674822059.7c68c7e2
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
vessi.attn.tv/unrenderedCreative?v=4.16.27&r=http%3A%2F%2Fwww.linkhaitao.com%2F&id=72df2a00c7fb4a77a4866b3820f78f26&pv=1&l=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&w=1280&h=939&ss_ref=http%3A%2F%2Fwww.linkhaitao.com%2F&m=marketing&m=live-sms
172.64.150.25204 No Content 0 B URL HTTP/2 vessi.attn.tv/unrenderedCreative?v=4.16.27&r=http%3A%2F%2Fwww.linkhaitao.com%2F&id=72df2a00c7fb4a77a4866b3820f78f26&pv=1&l=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&w=1280&h=939&ss_ref=http%3A%2F%2Fwww.linkhaitao.com%2F&m=marketing&m=live-sms
IP 172.64.150.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unrenderedCreative?v=4.16.27&r=http%3A%2F%2Fwww.linkhaitao.com%2F&id=72df2a00c7fb4a77a4866b3820f78f26&pv=1&l=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&w=1280&h=939&ss_ref=http%3A%2F%2Fwww.linkhaitao.com%2F&m=marketing&m=live-sms HTTP/1.1
Host: vessi.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://vessi.com
Content-Length: 156
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 12:20:59 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
x-envoy-upstream-service-time: 11
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901720f0b4cb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=66&3pid=736348855144
72.251.249.14204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=66&3pid=736348855144
IP 72.251.249.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=66&3pid=736348855144 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11281791.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 27 Jan 2023 12:20:59 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap1ams1
tags.srv.stackadapt.com/saq_pxl?uid=uYJP7Y09NjozsjJTpPi8PQ&is_js=true&landing_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&t=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&tip=WNl3XEL5WtZIvktBOW_1EsIFonw7WPA2TDEsHs0ZV1E&host=https://vessi.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
44.209.218.223200 OK 141 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=uYJP7Y09NjozsjJTpPi8PQ&is_js=true&landing_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&t=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&tip=WNl3XEL5WtZIvktBOW_1EsIFonw7WPA2TDEsHs0ZV1E&host=https://vessi.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
IP 44.209.218.223:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d7270b3f8ded0e35db21668381e7abe0
c6d14f0a46246cd788f06c781fb3f4f1b615af57
d19ffb7493183ab1d3b680de6ee7e89550c399e058e4b38677e0e61d4fb05d6c
GET /saq_pxl?uid=uYJP7Y09NjozsjJTpPi8PQ&is_js=true&landing_url=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao&t=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%20%7C%20Vessi%20Footwear&tip=WNl3XEL5WtZIvktBOW_1EsIFonw7WPA2TDEsHs0ZV1E&host=https://vessi.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://vessi.com
Content-Type: text/plain; charset=utf-8
Date: Fri, 27 Jan 2023 12:20:59 GMT
Set-Cookie: sa-user-id=s%3A0-0c378db8-0989-404b-7879-177aa153c1c1.lwV2RsAQOogrdK%2BlyiLMcoJGC793uuuURVGS4uMhKlw; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ADDeNuAmJQEt4eRd6oVPBwVtaKpo.uyhsIbp%2B5UZ081nCPDQlYVwQEeYgIbgit7K8bm8EEXY; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 141
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 995ae6828f1f7b686ded5f49fdbdae0b
46a5f03bc44087488a302d040393b0bdf859e08b
2fc7231a2d86855b7a8d7870b2ba6262409caa3f6a8dea9832cad6c3deb71b62
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 12:20:59 GMT
Last-Modified: Fri, 27 Jan 2023 11:09:31 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b2uRlz4eDm-RHeWoR3yKEKKkz7AjA7eoCxmwez2qZ5raCqz3Vvpxqw==
Age: 4288
cdn.attn.tv/vessi/dtag.js
54.230.111.53200 OK 3.3 kB URL HTTP/2 cdn.attn.tv/vessi/dtag.js
IP 54.230.111.53:0
Hash a7a050a7a96c24c2ae947cb56c8ef237
b5fda1f38662f012c6b0c39fbf8e8254427160cb
5379583e5b3b802851149b919f9c48547d39c166c0b113a1677e216b83384d85
GET /vessi/dtag.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Mon, 17 Oct 2022 15:30:33 GMT
x-amz-version-id: 2suvZwNNWipbN6GChp2yCFBJnTenLANR
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 12:20:59 GMT
cache-control: public, max-age=120
etag: W/"7ac21e25dc4df344a2c0240d64115982"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WbckK2Jm3wZEte7NHqvvptGRhukU9gEEsdWsm6z4r_B4fBS5xhvKxg==
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0
34.210.219.79200 OK 1.4 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0
IP 34.210.219.79:0
File type ASCII text, with very long lines (2801)
Hash d4c690c657509f8ba670417acf882459
bff840bb106a791ccca1405c971684d9a4645dae
42fa25e9314fb26c29c81df8097d00aceadc17ff691a9dcfafd55f42f4adedf4
GET /st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&cb=16926659444736&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 27 Jan 2023 12:21:00 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=0f115061-9e3d-11ed-8fa8-fd9177372f1e;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
transfer-encoding: chunked
public.fbot.me/events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr
54.146.181.64200 OK 2 B URL HTTP/2 public.fbot.me/events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr
IP 54.146.181.64:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:00 GMT
content-length: 2
server: nginx/1.23.3
access-control-allow-origin: https://vessi.com
access-control-allow-credentials: true
access-control-allow-methods: POST, GET
access-control-allow-headers: Authorization, Content-Type
info: {"connection":"upgrade","host":"public.fbot.me","x-forwarded-for":"91.90.42.154","x-forwarded-proto":"https","x-forwarded-port":"443","x-amzn-trace-id":"Root=1-63d3c1ac-2ff4d69e4955334867a8fec3","user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0","accept":"*/*","accept-language":"en-US,en;q=0.5","accept-encoding":"gzip, deflate, br","access-control-request-method":"POST","access-control-request-headers":"authorization,content-type","referer":"https://vessi.com/","origin":"https://vessi.com","sec-fetch-dest":"empty","sec-fetch-mode":"cors","sec-fetch-site":"cross-site"}
X-Firefox-Spdy: h2
public.fbot.me/events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr
54.146.181.64200 OK 511 B URL HTTP/2 public.fbot.me/events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr
IP 54.146.181.64:0
File type JSON data\012- , ASCII text, with very long lines (511), with no line terminators
Hash fb6059c34c09a802e038c5ff7a3f5c21
eb93cbd390ab54ae2283a0320c790b05fcbf708b
2d9e0b53dfe9a91e468870cbe45a81eafacf589741b7328d2d2e0d3801fdd9f8
POST /events/f51f0d17-e4e7-4401-9ccd-4d94723952bc/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Authorization:
Content-Type: application/json
Origin: https://vessi.com
Content-Length: 215
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:00 GMT
content-type: application/json
content-length: 511
server: nginx/1.23.3
access-control-allow-origin: https://vessi.com
set-cookie: globalId=c97ceac4-d741-4900-a892-ff68d0a59558; Max-Age=315360000; Domain=.fbot.me; Path=/; HttpOnly; Secure; SameSite=None
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 87e5d4f2f909a542e051c7359d5ae16f
64a221abc80f1104369dd9d192dba52b6d0e3306
7f043b2686ae55cf436675dac0572c6de9de38afa0fc3e76181a6594203ad651
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 12:21:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:29:32 GMT
Expires: Fri, 27 Jan 2023 21:29:32 GMT
ETag: "64a221abc80f1104369dd9d192dba52b6d0e3306"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
gs.mountain.com/gs
52.12.117.226200 OK 144 B IP 52.12.117.226:0
File type ASCII text, with no line terminators
Hash bb948e369eacdfff3548af6dead0b08d
9c8a0fd48e4eeb899409a6c3041321302fac8e18
ab3f8ddacde1e44406adbe92965e7d7ef0ebfe99ae1d5391337ffdd36c7be8fb
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: guid=0f115061-9e3d-11ed-8fa8-fd9177372f1e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 27 Jan 2023 12:21:00 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
static.klaviyo.com/onsite/js/klaviyo.js?company_id=KYaFA3
151.101.2.133200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=KYaFA3
IP 151.101.2.133:0
File type ASCII text, with very long lines (2904)
Hash 6c657aa06f1ce184320f30a69f228533
a13195f7ba8685764df1065232fb1cd7b1f47b73
e675a7153bfeea23b33110a722688583cda9bc77d878fbb01d90f6877fb48284
GET /onsite/js/klaviyo.js?company_id=KYaFA3 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"47c63e7c7a5ac30341874caf83975f9f"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45897
x-served-by: cache-lga21947-LGA, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1674822061.491277,VS0,VE1
vary: Accept-Encoding
content-length: 1036
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1
151.101.2.133200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1
IP 151.101.2.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash 674356d5e38bd70278300a937855cb81
cd439fbfd5d1ecbf5362d3e130f9312885fd5583
404c57fa7e3d4e7f64126a89848ede3878116e624f76fd283085bcf081186d83
GET /onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZHoe1JKI1Rph3iOf4IQhZp16xxgfZaMMfW8KEIP2txI5AOHYJ6NfXRv/lkoA3cPNyKoaq1CVWPw=
x-amz-request-id: V04X7QK3GHYB10N1
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "b48a12053d908bc286759bb17690a56b"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: mm.IBp1r3HZuPGxv_asbIgsC7t4Otydh
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga21938-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 15186
vary: Accept-Encoding
content-length: 8050
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
151.101.2.133200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP 151.101.2.133:0
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga21935-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 9440
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
151.101.2.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP 151.101.2.133:0
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga21946-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 15141
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
151.101.2.133200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP 151.101.2.133:0
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga13621-LGA, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 10072
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1
151.101.130.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (27750), with no line terminators
Hash 4130f27ac8ffe6d8372b514b42281df3
84e6672d7ac2f7aa25f3dcb4e1cd63c85fd833a4
cb7d951f9bacc656f2cdf7bb08868d653fa2450df11c1a2f65ca8f4982ee24f9
GET /onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ok1pIBKKenTajb2ZnvpqLw9m6LGN/bbVrbskFadwZmoLN85EBCiXhJYlfXu4FiFZddQCuKdTm4k=
x-amz-request-id: V04XGMKFZMFWPPN7
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "741d6862910c2aa5664c150b294f6e12"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: KrrTOk0oYJRzUIk3dg9jfBxuiktosyCx
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga21943-LGA, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 14701
vary: Accept-Encoding
content-length: 10696
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.aa7cf055e48f28bbd282.js?cb=1
151.101.130.133200 OK 5.3 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.aa7cf055e48f28bbd282.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (12659), with no line terminators
Hash 1e5719bef9a29c3e7287ac08b5e2b2ef
d129764a0061300a471cb30380f111c7fc0b7af1
6ee1100c614754007ec9d1b3a313367d1851a0ba18bcfff63e62a49ec5bad9cd
GET /onsite/js/static.aa7cf055e48f28bbd282.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KnNSjGvhnyY9GXLzqrCH6+xKs4IkYpc6LQLGufO+AIXqk2X+Z5fZTQdUadmoApY4+8OVXpCI8NNQDBICBZizqg==
x-amz-request-id: V04VTKJYF01KKH9E
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "bdc532ee042e650b2a4d06cfc862f93c"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 4zv8jtgnhp0NWMPbxgpvocWDELtx98tW
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 45900
x-served-by: cache-lga21962-LGA, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 14736
vary: Accept-Encoding
content-length: 5320
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0&cb=1674822060134680&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674822060898
34.210.219.79200 OK 1.5 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0&cb=1674822060134680&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674822060898
IP 34.210.219.79:0
File type ASCII text, with very long lines (6357), with no line terminators
Hash eef6b49ddf509ce98f348084d82feb68
d5cbbbce2ad5ed628d40d3dee4f3bb3dc971292d
1f710d7e13a002690e3500a4d1044e18927832bb1602f53f2ed673346232bf74
GET /st?ga_tracking_id=UA-110079177-1&ga_client_id=391808074.1674822056&shpt=Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%0A%09%09%09%0A%09%09%09%0A%09%09%09%0A%7C%20Vessi%20Footwear&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-110079177-1%22%2C%22ga_client_id%22%3A%22391808074.1674822056%22%2C%22shpt%22%3A%22Vessi%20%7C%20The%20World%27s%20First%20Waterproof%20Shoes!%20%F0%9F%91%9F%20%F0%9F%8C%A7%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%5Ct%5Ct%5Ct%5Cn%7C%20Vessi%20Footwear%22%2C%22dcm_cid%22%3A%221674822055.1%22%2C%22dcm_gid%22%3A%221490266789.1674822056%22%2C%22ga_utm_campaign%22%3A%22acquisition%22%2C%22ga_utm_source%22%3A%22Linkhaitao%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1674822055.1&dcm_gid=1490266789.1674822056&dxver=4.0.0&shaid=33306&tdr=http%3A%2F%2Fwww.linkhaitao.com%2F&plh=https%3A%2F%2Fvessi.com%2F%3FranMID%3D45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue%2Csh_conversion%3DSHBLOCK%2C%5Bobject%20Object%5D&shpi=http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F2496%2F2470%2Ffiles%2Fvessi-thumbnail-evmove.jpg%3Fv%3D1636591674&shpic=0&shcq=0&cb=1674822060134680&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1674822060898 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: guid=0f115061-9e3d-11ed-8fa8-fd9177372f1e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 27 Jan 2023 12:21:01 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWMjY2NjCLN7IwtlCyMjQzN7EwMjIwMzS1sNBR8guKh8qaWxorWRnoKJUpWRkhi4N1GdQCACYX7NxGAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzMzMDY6MTY3NDgyMjA2MQ==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=0f115061-9e3d-11ed-8fa8-fd9177372f1e;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 14
server: istio-envoy
connection: close
transfer-encoding: chunked
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=KYaFA3
151.101.2.133200 OK 379 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=KYaFA3
IP 151.101.2.133:0
File type JSON data\012- , ASCII text, with very long lines (1948), with no line terminators
Hash d04336711ac17b09293324c87315803b
da23cad2f3499e8e0c05dfeadfb2bdacba8cff91
3155ab38aa0435ae3ec397f141a6a1b3b945c6d9431aca4ba9dbd2ff9f83db33
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=KYaFA3 HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
age: 4951536
x-served-by: cache-bos4626-BOS, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 33832, 1
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 379
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/KYaFA3/full-forms
151.101.66.133200 OK 25 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/KYaFA3/full-forms
IP 151.101.66.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 860c2ef1edfa5316a8bcf8a323878d3e
6bb80fa937df7df54605ccb9157d855b32fb97be
c9b11829daedf8cd52230ba35bd16765ecd4d94a426d9995c6235f17c46245bd
GET /forms/api/v6/KYaFA3/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vessi.com
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tjgT/yB+NjQrKcpBfF5LC1hq1uc6+ssgVF2CT85I1Q7kPO/32IKEzBlCck+pVo84kQbaqNdPSDU=
x-amz-request-id: 86J6BZS24C1PP071
last-modified: Wed, 18 Jan 2023 22:20:00 GMT
etag: "9d140622dc8f32ee3aaa0b60fefb08c9"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/KYaFA3 custom-fonts/KYaFA3
x-amz-version-id: T9J66T2kPmyiJ4MZz7A62W63NsHmS4gj
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 12:21:01 GMT
via: 1.1 varnish
age: 737134
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674822062.807871,VS0,VE3
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 25284
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:21:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 852717060390f458399b7bad4c9cc8e3
c21ac4f1b98bb8af5f8039356c7cf6b9fda39137
e429df61ec8c1d1337390328cc4495b4df748aeebaa5f01899c67fa6562e8dba
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:21:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 31 Jan 2023 09:10:11 GMT
ETag: "c21ac4f1b98bb8af5f8039356c7cf6b9fda39137"
Last-Modified: Fri, 27 Jan 2023 09:10:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 349
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7901721f4ea8b50f-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 852717060390f458399b7bad4c9cc8e3
c21ac4f1b98bb8af5f8039356c7cf6b9fda39137
e429df61ec8c1d1337390328cc4495b4df748aeebaa5f01899c67fa6562e8dba
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 12:21:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 31 Jan 2023 09:10:11 GMT
ETag: "c21ac4f1b98bb8af5f8039356c7cf6b9fda39137"
Last-Modified: Fri, 27 Jan 2023 09:10:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 349
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7901721f4b0cfabc-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 12:21:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=0f115061-9e3d-11ed-8fa8-fd9177372f1e&gdpr=&gdpr_consent=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=0f115061-9e3d-11ed-8fa8-fd9177372f1e&gdpr=&gdpr_consent=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=0f115061-9e3d-11ed-8fa8-fd9177372f1e&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:02 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc869235086902c4acc379733b6bfdb8
0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae
e614e29b14e69209fd4b82a688290f7a3f541909833a6558cf480aca899bab6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9056
x-amzn-requestid: 81cf473d-8dc6-49e7-b012-d0b7dfaec7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fB4COHTlIAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca3a0e-0848461c054db5c66fde9107;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 06:51:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MApUIVJ9KiOB34nLWUtMNmA8deQVoQ9xyNqSUYXlzdLlGoP9n78C5A==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:42 GMT
age: 21380
etag: "0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.edgeme.sh/node/navigation
104.16.8.83200 OK 0 B URL HTTP/2 api.edgeme.sh/node/navigation
IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/navigation HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:03 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 790172289a27b521-OSL
X-Firefox-Spdy: h2
api.edgeme.sh/node/resources
104.16.8.83200 OK 0 B URL HTTP/2 api.edgeme.sh/node/resources
IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/resources HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:03 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 790172289a2fb521-OSL
X-Firefox-Spdy: h2
api.edgeme.sh/node/resources
104.16.8.83200 OK 0 B URL HTTP/2 api.edgeme.sh/node/resources
IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/resources HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:03 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 79017228aa34b521-OSL
X-Firefox-Spdy: h2
api.edgeme.sh/node/resources
104.16.8.83200 OK 0 B URL HTTP/2 api.edgeme.sh/node/resources
IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/resources HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:03 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 79017228aa35b521-OSL
X-Firefox-Spdy: h2
api.edgeme.sh/node/resources
104.16.8.83200 OK 0 B URL HTTP/2 api.edgeme.sh/node/resources
IP 104.16.8.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /node/resources HTTP/1.1
Host: api.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:03 GMT
content-length: 0
access-control-allow-origin: https://vessi.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept, Authorization
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
timing-allow-origin: *
server: cloudflare
cf-ray: 790172289a33b521-OSL
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-990196.js?sv=7
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-990196.js?sv=7
IP 54.230.111.113:0
GET /c/hotjar-990196.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 12:20:57 GMT
cache-control: max-age=60
etag: W/4ebaa8631e1b0f82bc5aa932d6af9236
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EorHxPyBcJCwsI4wUjtI2VSg-ZW_tqHQF0LFZ2R88tH0TQMblD-kDA==
X-Firefox-Spdy: h2
unpkg.com/@loophq/onstore-sdk@latest/dist/loop-onstore-sdk.js
104.16.125.175302 Found 0 B URL HTTP/2 unpkg.com/@loophq/onstore-sdk@latest/dist/loop-onstore-sdk.js
IP 104.16.125.175:0
GET /@loophq/onstore-sdk@latest/dist/loop-onstore-sdk.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@loophq/onstore-sdk@1.0.16/dist/loop-onstore-sdk.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQSJRG99PM9AATT8ERDSN7QJ-fra
cf-cache-status: HIT
age: 13
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790171f1f8ffb51d-OSL
X-Firefox-Spdy: h2
static.fbot.me/friendbuy.js
54.230.111.32200 OK 0 B URL HTTP/2 static.fbot.me/friendbuy.js
IP 54.230.111.32:0
GET /friendbuy.js HTTP/1.1
Host: static.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 20:11:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LkAVc5sjXSOVQiSIjFH.bFTl_0FY.c9u
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 12:17:36 GMT
cache-control: max-age=300
etag: W/"cae0340d1b464a34cc95fd7b0425f018"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WRI8XFuBn-mPuhHXuvlA2OwdEYCn4fvC1NnPZe3N0O5pZYTFnvyIVQ==
age: 208
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-jquery.js?v=103772708259841887661661794471
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-jquery.js?v=103772708259841887661661794471
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/2496/2470/t/303/assets/__opt-jquery.js?v=103772708259841887661661794471 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/__opt-jquery.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5c17b6f3-fb44-497f-af34-ff6d4338f5a8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 03 Jan 2023 05:31:46 GMT
cf-cache-status: HIT
age: 652121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4YTaf3tQkc8oJvjYybH5qMfUXdi6Lnwh3ydscpEGWo0GTtJ3ibG1Woo48MqPK4NFD%2FrMjHqDPGYo2XNfDskNR9uIKq3vxddtghJZPqwZ%2BpWbqgA80GlpWysNfUhieqUxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=131.746, imageryFetch;dur=84.011, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 790171f22d8c0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.edgeme.sh/client.js
104.16.8.83200 OK 0 B URL HTTP/2 static.edgeme.sh/client.js
IP 104.16.8.83:0
GET /client.js HTTP/1.1
Host: static.edgeme.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=3600
service-worker-allowed: /
timing-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 790171f1bb82b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao
23.227.38.65200 OK 0 B URL HTTP/2 vessi.com/?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao
IP 23.227.38.65:0
GET /?ranMID=45636&ranEAID=3269724&ranSiteID=50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ&utm_content=783235&utm_campaign=acquisition&utm_medium=affiliates&utm_source=Linkhaitao HTTP/1.1
Host: vessi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.linkhaitao.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 84
x-sorting-hat-shopid: 24962470
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=cdd5dd27-7041-44ee-8fa7-43cef1de73a6; path=/; expires=Fri, 27 Jan 2023 12:50:54 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Sat, 27 Jan 2024 12:20:54 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Sat, 27 Jan 2024 12:20:54 GMT
cart_currency=USD; path=/; expires=Fri, 10 Feb 2023 12:20:54 GMT
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=vessi.com; path=/; expires=Sat, 28 Jan 2023 12:20:54 GMT; SameSite=Lax
_orig_referrer=http%3A%2F%2Fwww.linkhaitao.com%2F; Expires=Fri, 10-Feb-23 12:20:54 GMT; Domain=vessi.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao; Expires=Fri, 10-Feb-23 12:20:54 GMT; Domain=vessi.com; Path=/; HttpOnly; SameSite=Lax
_y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; Expires=Sat, 27-Jan-24 12:20:54 GMT; Domain=vessi.com; Path=/; SameSite=Lax
_s=7a297ea1-be56-47ea-80ef-c56540cbd92d; Expires=Fri, 27-Jan-23 12:50:54 GMT; Domain=vessi.com; Path=/; SameSite=Lax
_shopify_y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; Expires=Sat, 27-Jan-24 12:20:54 GMT; Domain=vessi.com; Path=/; SameSite=Lax
_shopify_s=7a297ea1-be56-47ea-80ef-c56540cbd92d; Expires=Fri, 27-Jan-23 12:50:54 GMT; Domain=vessi.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:92f27a6c8315b1e62e2124a72f4fb613
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 24962470
x-shardid: 84
vary: Accept
content-language: en
x-shopify-stage: canary
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 56970ede-759c-451b-adda-1b10b29d4c81
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5WlKYuxOWP1Af37AUKnozTa1sSQIegBz79SDUNJglq12Ad2ysKrBsu7W4nQdJU9Vgxf1QSfZkD96yROdDiOjqJXUfg7Cv%2FVA3Mq38iWkyrn3MyJFGKR7%2FWAwZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790171efc873fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=43, db;dur=13, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=154.999971, earlyhints
X-Firefox-Spdy: h2
sstagging.vessi.com/gtm.js?id=GTM-PB7LL8P
216.239.34.21200 OK 0 B URL HTTP/2 sstagging.vessi.com/gtm.js?id=GTM-PB7LL8P
IP 216.239.34.21:0
GET /gtm.js?id=GTM-PB7LL8P HTTP/1.1
Host: sstagging.vessi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; _orig_referrer=http%3A%2F%2Fwww.linkhaitao.com%2F; _landing_page=%2F%3FranMID%3D45636%26ranEAID%3D3269724%26ranSiteID%3D50rqOrVy53Q-saGNuqndb9tJjCTtSPoueQ%26utm_content%3D783235%26utm_campaign%3Dacquisition%26utm_medium%3Daffiliates%26utm_source%3DLinkhaitao; _y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; _s=7a297ea1-be56-47ea-80ef-c56540cbd92d; _shopify_y=4c663a7c-de9e-4ebe-a1dc-4497bdd15221; _shopify_s=7a297ea1-be56-47ea-80ef-c56540cbd92d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:55 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: private, max-age=900
expires: Fri, 27 Jan 2023 12:34:58 GMT
last-modified: Fri, 27 Jan 2023 12:00:00 GMT
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/header.css?v=131993111544175309491674607104
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/header.css?v=131993111544175309491674607104
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/2496/2470/t/303/assets/header.css?v=131993111544175309491674607104 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/header.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ebe4ee5f-3694-4d83-a26a-68f08e0ec59f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 00:38:28 GMT
cf-cache-status: HIT
age: 209403
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJWsjd89bO5EDg0saVVazEPq414x4U0rWOdWzDRUSH7h%2Fr0OPUQjTBbjNRE%2FMjEhIDFaMsGMObvrAL2CQHY8Mmk%2F2XRF%2FfcfpjuZvJFhUfXTri2tBI13nRGjPfOmx43SyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=67.258, imageryFetch;dur=66.082, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 790171f1bd220b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.fbot.me/shopify/friendbuy-shopify.js?merchantId=f51f0d17-e4e7-4401-9ccd-4d94723952bc&shop=vessi-footwear.myshopify.com
54.230.111.32200 OK 0 B URL HTTP/2 static.fbot.me/shopify/friendbuy-shopify.js?merchantId=f51f0d17-e4e7-4401-9ccd-4d94723952bc&shop=vessi-footwear.myshopify.com
IP 54.230.111.32:0
GET /shopify/friendbuy-shopify.js?merchantId=f51f0d17-e4e7-4401-9ccd-4d94723952bc&shop=vessi-footwear.myshopify.com HTTP/1.1
Host: static.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 00:20:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 92SM_prq1moQ43HT3.Oyr.eEgJck31qR
server: AmazonS3
content-encoding: gzip
date: Thu, 26 Jan 2023 20:12:18 GMT
etag: W/"6c99e958da89b86f77cc092d9f85614b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bNEYxhJZncqw67Y3NCkUv_H8heEsabScGYxpG5bhyNhtlmuPfXdZLQ==
age: 58154
X-Firefox-Spdy: h2
unpkg.com/@loophq/onstore-sdk@1.0.16/dist/loop-onstore-sdk.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/@loophq/onstore-sdk@1.0.16/dist/loop-onstore-sdk.js
IP 104.16.125.175:0
GET /@loophq/onstore-sdk@1.0.16/dist/loop-onstore-sdk.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"c3ae-4jvQW9oAp2ZAoZCzB1DXgXUOgUs"
via: 1.1 fly.io
fly-request-id: 01GNADJNXBZ1JVXVJSVX83H7ZQ-ams
cf-cache-status: HIT
age: 2656246
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790171f2292db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon.min.js?v=76177991165206064741661790890
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon.min.js?v=76177991165206064741661790890
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/2496/2470/t/303/assets/luxon.min.js?v=76177991165206064741661790890 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/luxon.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 64bd5c18-3a38-45ee-a4a6-5540a2fa121d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sun, 01 Jan 2023 02:24:04 GMT
cf-cache-status: HIT
age: 652121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6yRBOyaAdLw0DIIiPrGHYTgEZpiv7xMwKjO%2BItmPC8w7wFrQEMJiOq4cwuJi2CU3IuvoZEzmQFsrOvVgmMwQkxSETCgigAvDA4eIV9dghumdRtKgfYAGMML2%2ByHMnXz7yA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=51.723, imageryFetch;dur=51.526, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 790171f23d940b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d2fj3s7h83rb61.cloudfront.net/cSRTTJnhEO/bin
54.230.245.218200 OK 0 B URL HTTP/2 d2fj3s7h83rb61.cloudfront.net/cSRTTJnhEO/bin
IP 54.230.245.218:0
GET /cSRTTJnhEO/bin HTTP/1.1
Host: d2fj3s7h83rb61.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 18:43:27 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 12:20:57 GMT
etag: W/"e560047a8e652a424281ea00a8044b7b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: otpuTjB7Xfi6EKf3CcqsICk3nM_DTHGSf9SEbNt7F3Vl5FAzvhooxQ==
X-Firefox-Spdy: h2
campaign.fbot.me/f51f0d17-e4e7-4401-9ccd-4d94723952bc/campaigns.js
54.230.111.10200 OK 0 B URL HTTP/2 campaign.fbot.me/f51f0d17-e4e7-4401-9ccd-4d94723952bc/campaigns.js
IP 54.230.111.10:0
GET /f51f0d17-e4e7-4401-9ccd-4d94723952bc/campaigns.js HTTP/1.1
Host: campaign.fbot.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:51:45 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: vAt5677dvt_UsO2D48G.1CPUQRKth37G
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 12:21:01 GMT
cache-control: max-age=30
etag: W/"0009493e323daec4d15596e122249eed"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RSLsuyiuScro-vhwOk59W7pzfylG7AwQPOWIP-GC7nvWcMR3jSWIPQ==
X-Firefox-Spdy: h2
pkg-store.dl.mail.ru/packages/shop/0_2017238distrib2/Between/Binaries/Win64/Between-Win64-Shipping.exe
188.93.63.73200 OK 0 B URL HTTP/1.1 pkg-store.dl.mail.ru/packages/shop/0_2017238distrib2/Between/Binaries/Win64/Between-Win64-Shipping.exe
IP 188.93.63.73:0
NIDS Severity Alert suricata high ET POLICY PE EXE or DLL Windows file download HTTP
GET /packages/shop/0_2017238distrib2/Between/Binaries/Win64/Between-Win64-Shipping.exe HTTP/1.1
Host: pkg-store.dl.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 27 Jan 2023 12:20:54 GMT
Content-Type: application/octet-stream
Content-Length: 85941248
Last-Modified: Sun, 15 Jan 2023 09:49:20 GMT
Connection: keep-alive
ETag: "63c3cc20-51f5c00"
Accept-Ranges: bytes
specs4.ihserc.com/attachments/PGQDSGAAAAAAAAAA/L2RSE02009%20Technical%20Briefing%20Video.zip
170.207.16.3200 OK 0 B URL HTTP/1.1 specs4.ihserc.com/attachments/PGQDSGAAAAAAAAAA/L2RSE02009%20Technical%20Briefing%20Video.zip
IP 170.207.16.3:0
GET /attachments/PGQDSGAAAAAAAAAA/L2RSE02009%20Technical%20Briefing%20Video.zip HTTP/1.1
Host: specs4.ihserc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 12:20:54 GMT
Content-Type: application/x-zip-compressed
Content-Length: 324557258
Connection: keep-alive
Cache-Control: max-age=864000
Last-Modified: Thu, 29 Apr 2021 09:47:55 GMT
Accept-Ranges: bytes
ETag: "d216a5badc3cd71:0"
X-Powered-By: ASP.NET
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-icons-and-image-style.css?v=8522530657329467101645207516
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-icons-and-image-style.css?v=8522530657329467101645207516
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/2496/2470/t/303/assets/section-icons-and-image-style.css?v=8522530657329467101645207516 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/section-icons-and-image-style.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f676f798-9b22-4bdc-9e15-ea7983166419
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 16 Jan 2023 00:21:29 GMT
cf-cache-status: HIT
age: 646476
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJ%2Fe%2BTwYiFdQmTt9EpQmJu05N1kzUb%2FORv8X4o%2B8ONz66yKSW5z1ZSXsclrDwIepTCBu8toijdJD3LNbaOB%2BwWRptUKNWHBtfgt0a2imPvCz%2BA7T3kK0C7JN%2F7TBAAOkhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=55.180, imageryFetch;dur=53.521, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 790171f1bd250b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vessi.attn.tv/d/?attn_vid=72df2a00c7fb4a77a4866b3820f78f26
172.64.150.25200 OK 0 B URL HTTP/2 vessi.attn.tv/d/?attn_vid=72df2a00c7fb4a77a4866b3820f78f26
IP 172.64.150.25:0
GET /d/?attn_vid=72df2a00c7fb4a77a4866b3820f78f26 HTTP/1.1
Host: vessi.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vessi.com/
Origin: https://vessi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:59 GMT
content-type: application/json
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901720d2880b4f9-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Kanit:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Kanit:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
IP 142.250.74.106:0
GET /css2?family=Kanit:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,700;0,800;0,900&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 12:21:01 GMT
date: Fri, 27 Jan 2023 12:21:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.css?v=156339608983142631231674674542
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.css?v=156339608983142631231674674542
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/2496/2470/t/303/assets/theme.css?v=156339608983142631231674674542 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:20:54 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/2496/2470/t/303/assets/theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4003d7c5-b90f-4cfd-be33-e51be27425f5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 19:22:25 GMT
cf-cache-status: HIT
age: 145731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UUJ95FGuL%2F4zdzAiVLY5B8mN9EakoodRMG113ScQWMRuDcD1SfNXgteplHq42pwonMyddVbfRGPsjpMfXYUfF6ulyHi3fk%2BdntbM8aHb%2F7H%2FWA0HSiH4DoayVoLWkpOOSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=122.519, imageryFetch;dur=71.836, cfRequestDuration;dur=13.999701
server: cloudflare
cf-ray: 790171f1bd1f0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=7yefl72&ct=0:40e7oyg&fmt=3
35.71.131.137200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=7yefl72&ct=0:40e7oyg&fmt=3
IP 35.71.131.137:0
GET /track/evnt/?adv=7yefl72&ct=0:40e7oyg&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vessi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 12:21:02 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2