Overview

URLwizedeal.com/charity?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
IP 104.21.53.93 ()
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 14:08:43 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (33)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.awin1.com (1) 14049 2012-07-02 19:46:12 UTC 2020-04-11 09:34:15 UTC 2.21.192.211
widget.trustpilot.com (7) 6018 2017-09-05 07:45:53 UTC 2022-11-23 22:50:56 UTC 143.204.55.78
code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2020-04-21 12:46:20 UTC 69.16.175.10
static.rechargecdn.com (3) 25698 2020-11-13 19:28:35 UTC 2021-11-10 11:30:34 UTC 23.36.79.32
kit.fontawesome.com (1) 1868 2019-12-16 19:51:31 UTC 2020-10-22 17:14:21 UTC 104.18.22.52
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
r3.o.lencr.org (13) 344 No data No data 23.36.76.226
logx.optimizely.com (2) 1233 2016-10-05 13:33:23 UTC 2020-05-01 21:16:44 UTC 107.22.2.22
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.228.207.167
cdnjs.cloudflare.com (5) 235 2015-04-17 20:46:33 UTC 2022-11-24 06:13:12 UTC 104.17.25.14
cdn.shopify.com (14) 2327 2012-11-01 07:30:33 UTC 2022-11-24 06:10:40 UTC 162.159.134.68
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168
www.omaze.co.uk (1) 0 No data No data 23.227.38.74 Domain (omaze.co.uk) ranked at: 145876
a14464890104.cdn.optimizely.com (1) 244088 No data No data 104.110.8.48
lkbx.me (1) 117868 2020-12-14 10:05:57 UTC 2022-11-23 06:20:09 UTC 47.89.248.255
stackpath.bootstrapcdn.com (2) 2467 2018-06-15 20:36:43 UTC 2022-11-24 08:07:09 UTC 104.18.11.207
cdn.optimizely.com (1) 694 2018-03-19 19:09:21 UTC 2020-05-02 23:07:11 UTC 23.38.200.155
connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 157.240.200.14
ka-f.fontawesome.com (3) 3598 2019-12-17 06:36:13 UTC 2020-09-25 12:57:14 UTC 172.64.202.28
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
errors.client.optimizely.com (2) 7604 2018-06-21 07:01:03 UTC 2020-02-10 05:37:44 UTC 54.85.212.37
thunder.spicegems.org (1) 115131 2021-11-25 15:07:38 UTC 2022-11-24 11:53:34 UTC 173.255.195.55
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-11-24 08:22:23 UTC 104.18.11.207
kite.spicegems.org (1) 60955 2019-07-30 03:55:52 UTC 2022-11-24 09:57:32 UTC 50.116.20.68
wizedeal.com (3) 308210 2017-09-25 04:36:55 UTC 2022-11-23 09:15:10 UTC 172.67.211.54
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
ocsp.digicert.com (12) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
unpkg.com (5) 11693 2016-01-07 23:26:01 UTC 2022-11-24 08:16:14 UTC 104.16.125.175
cdn.cookielaw.org (5) 502 2014-05-20 23:23:17 UTC 2022-11-24 06:27:00 UTC 104.16.148.64
wizedeal.com (3) 308210 2017-09-25 04:36:55 UTC 2022-11-23 09:15:10 UTC 104.21.53.93

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.53.93
Date UQ / IDS / BL URL IP
2023-01-28 17:48:00 +0000 0 - 0 - 1 wizedeal.com/gn?tg=lkbx.me/FY6G?uid=w25t4pjtf (...) 104.21.53.93
2023-01-26 09:35:51 +0000 0 - 0 - 1 wizedeal.com/click/lb/?country=US&ts=[OMNIA]% (...) 104.21.53.93
2023-01-06 20:33:02 +0000 0 - 0 - 1 wizedeal.com/charity?tg=lkbx.me/sUuW?uid=wi13 (...) 104.21.53.93
2023-01-04 15:09:07 +0000 0 - 0 - 1 wizedeal.com/gn/?step=noref&tg2=na&tg=lkbx.me (...) 104.21.53.93
2022-12-05 14:59:16 +0000 0 - 0 - 1 wizedeal.com/sports/?td=enhotssureemed.com&cm (...) 104.21.53.93


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-07 18:57:15 +0000 0 - 2 - 0 www.dailycal.org/2023/01/25/sundance 172.67.73.242
2023-02-07 18:56:35 +0000 0 - 2 - 2 delic.homness.top/ 172.67.160.231
2023-02-07 18:55:17 +0000 0 - 0 - 12 www.folifort.email/l/lt2B11336Q80K/5317J9209R (...) 188.114.96.1
2023-02-07 18:55:13 +0000 0 - 1 - 0 grabify.link/37YJWN 172.67.68.246
2023-02-07 18:53:51 +0000 0 - 0 - 4 portalsaude.meiahora.info/raza/prop/prosseguir/ 104.21.7.31


Last 5 reports on domain: wizedeal.com
Date UQ / IDS / BL URL IP
2023-02-04 15:24:22 +0000 0 - 0 - 1 wizedeal.com/gn/?tg=lkbx.me/FYcS?uid=wl6v6brr (...) 172.67.211.54
2023-01-28 17:48:00 +0000 0 - 0 - 1 wizedeal.com/gn?tg=lkbx.me/FY6G?uid=w25t4pjtf (...) 104.21.53.93
2023-01-26 09:35:51 +0000 0 - 0 - 1 wizedeal.com/click/lb/?country=US&ts=[OMNIA]% (...) 104.21.53.93
2023-01-18 23:57:08 +0000 0 - 0 - 1 wizedeal.com/sports/?tg=lkbx.me/wQqb?uid=wpne (...) 172.67.211.54
2023-01-06 20:33:02 +0000 0 - 0 - 1 wizedeal.com/charity?tg=lkbx.me/sUuW?uid=wi13 (...) 104.21.53.93


Last 2 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-25 13:07:40 +0000 0 - 0 - 1 wizedeal.com/charity/?tg=lkbx.me/sUuW?uid=wfa (...) 104.21.53.93
2022-11-24 14:08:44 +0000 0 - 0 - 1 wizedeal.com/charity/?td=enhotssureemed.com&c (...) 172.67.211.54

JavaScript

Executed Scripts (68)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (105)


Request Response
                                        
                                            GET /charity?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: wizedeal.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.211.54
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 14:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 15:08:31 GMT
Location: https://wizedeal.com/charity?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZdVPAGQixVz5GAIIZQbTx4GDKNRMj6gFXkHyIlSub5GnhNyhzX9e3%2BBQJb3OBwv6iF%2BjVEhu1qW2SxRAjWL0E37FBghyZXtCTsUFknrKgDIxSeRnId%2FJ1u01Fa6rrxE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f2b7931bffb4fa-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2323
Expires: Thu, 24 Nov 2022 14:47:14 GMT
Date: Thu, 24 Nov 2022 14:08:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4262
Cache-Control: max-age=164022
Date: Thu, 24 Nov 2022 14:08:31 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:42:13 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13784
Expires: Thu, 24 Nov 2022 17:58:15 GMT
Date: Thu, 24 Nov 2022 14:08:31 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 13:17:17 GMT
cache-control: public,max-age=3600
age: 3074
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: gf91++sfGqZgd92JaRraFdcgRkh4G8WQWQcGGQ2bOOHDV960DxSRq9YPa/F4+Jp5LfrOf4OiDwM=
x-amz-request-id: F0F7GM8MV8GH0XPE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 13:40:25 GMT
age: 1686
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 14:08:31 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: wizedeal.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.211.54
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 14:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 15:08:31 GMT
Location: https://wizedeal.com/charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r9qH6d%2BBBysdi%2FxzzRarKp3gMI%2F41TgTqR6DJpEp9a6RmXGL%2BReKMOunkawv%2B6e0kNQ0WylIGro0elKd2xzFj0hxqVO9OYKK1vJ87RS5kB1R%2B6r5OLeavOGJorCIIms%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f2b795bfecb4fa-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 13:11:11 GMT
cache-control: public,max-age=3600
age: 3441
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3173
Cache-Control: max-age=157870
Date: Thu, 24 Nov 2022 14:08:32 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 09:59:42 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4136
Cache-Control: max-age=119253
Date: Thu, 24 Nov 2022 14:08:32 GMT
Etag: "637e998d-1d7"
Expires: Fri, 25 Nov 2022 23:16:05 GMT
Last-Modified: Wed, 23 Nov 2022 22:07:09 GMT
Server: ECS (amb/6B75)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ues8cahUPlT3Dg/SF6oskg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.228.207.167
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gYV5ByKDf8JSirE3h7MRqKbDU5A=

                                        
                                            GET /cread.php?pref=www.wizedeal.com%2F&awinmid=21550&awinaffid=685769&clickref=lb_nyli2h&p=https%3A%2F%2Fwww.omaze.co.uk%2F HTTP/1.1 
Host: www.awin1.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lkbx.me/
Cookie: bId=HLEX_628f00ae0f3690.47151114
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         2.21.192.211
HTTP/1.1 302 Moved Temporarily
                                        
Content-Length: 0
Location: https://www.omaze.co.uk/?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_ef159bd5e740b6e8b4e1b1531f356bc2
Allow: GET
Node: Helix
P3P: policyref="http://www.awin1.com/w3c/p3p.xml", CP="NOI NID CURa ADMa PSAa HISa OUR IND UNI PUR COM NAV"
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive
Set-Cookie: aw21550=685769|0|0|1669298913|lb_nyli2h|aw|0;domain=.awin1.com;path=/;expires=Thursday, 01-Dec-2022 14:08:33 UTC;Secure;SameSite=None bId=HLEX_628f00ae0f3690.47151114;domain=.awin1.com;path=/;expires=Friday, 24-Nov-2023 14:08:33 UTC;Secure;SameSite=None
Strict-Transport-Security: max-age=86400
Awin-Akamai-Rule-Set: default

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "230844ACF4186A6A3D9FCD8191379E103A82080ABAC6F6981EE1FCF376C41BE4"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 20:08:33 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "230844ACF4186A6A3D9FCD8191379E103A82080ABAC6F6981EE1FCF376C41BE4"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 20:08:33 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CB14D52AD86DD33F9367FCC9204E11131D56EED190F2946075F36B06A14A9E73"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12093
Expires: Thu, 24 Nov 2022 17:30:06 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17094
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17094
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17094
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17094
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 58155
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 32645
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 58841
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 58766
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 57617
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 25089
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CB14D52AD86DD33F9367FCC9204E11131D56EED190F2946075F36B06A14A9E73"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12093
Expires: Thu, 24 Nov 2022 17:30:06 GMT
Date: Thu, 24 Nov 2022 14:08:33 GMT
Connection: keep-alive

                                        
                                            GET /ajax/libs/js-cookie/2.2.1/js.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
content-length: 701
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec5-653"
last-modified: Mon, 04 May 2020 16:11:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 754859
expires: Tue, 14 Nov 2023 14:08:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F6z%2FSazrjV4VEf%2BIBSDLdYwb8%2FMsU443ezT0JASKBOigs1B8S72yj8crP7Y11DbG%2FFw4w2Nea4V%2BYvb8F4ciwHhgTjOU3DGqwpzC%2B9IsrC2F%2FQVRvvNP5KosXJDYxCjgEI8YFf5M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a45df6b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1619), with no line terminators
Size:   701
Md5:    d3487ec81c122b621ae7809825aaf16a
Sha1:   39ca47d6d1dfb7eb00772651f65b256b14a71821
Sha256: 7914e7c5fb89e71205d6ad0cd464f2075f32971d7a513dcf877863cefb66a8f6
                                        
                                            GET /ajax/libs/lazysizes/5.2.2/plugins/bgset/ls.bgset.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
content-length: 1086
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ece33f7-bd2"
last-modified: Wed, 27 May 2020 09:33:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6642853
expires: Tue, 14 Nov 2023 14:08:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LI6pxmCa1YqPSNkgWev7MR6BMM%2BJIFF1ZPDUkxci4J4AboTzWNmsv4r2ESx1qA4pjJiPFI%2F5vR3HJ8rpMDzMd8n7WrtlOY5v2n47s5eFa0A9mnI3O4kmEMcjEVEfHhBulr4gDNiC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a45df8b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2999)
Size:   1086
Md5:    0626606417aaae98442e033026d48788
Sha1:   3397021c61a0df24f280bda41366d12b588d59b8
Sha256: dc3f679ef2a4e80617be2bf5cca574f8796c2ffbaab0ab906c6454fb2cd31d7d
                                        
                                            GET /ajax/libs/lazysizes/5.2.2/lazysizes.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
content-length: 3119
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ece33f7-1e5b"
last-modified: Wed, 27 May 2020 09:33:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2459395
expires: Tue, 14 Nov 2023 14:08:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XMmdgulJ3lbeqUw6wlPab88uQBJ2NsjW%2BHm%2BLBNCfBTfWuE6m6GDukyulOPqENTtbiQDmljxLM5Sx%2BeRTcSTuE52lH5kB9faEw2zeTMRa8o4%2B%2Bujxf3TX5Al1wezTRL2n%2FR8XuK2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a45df9b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7744)
Size:   3119
Md5:    ad5f1699a15bc82d3eaa61f3b8cf04ee
Sha1:   73ccc712d59f2f73019032ea9a4543812ce36626
Sha256: a7badd211ddf7581942742d79c6dfec400d37cc4a302858d2ec8b85786389939
                                        
                                            GET /ajax/libs/lazysizes/5.2.2/plugins/rias/ls.rias.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
content-length: 1940
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ece33f7-1264"
last-modified: Wed, 27 May 2020 09:33:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6888413
expires: Tue, 14 Nov 2023 14:08:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zxND9uaYXtRwHf%2FYmeDSYDzMhfyptdFrgNHKQhM5W%2BQ%2Bh4Q2tAsyx7RyOOI1CVaEIbWyIrls1EGUrpvw9kduT1wglPe7xrTIBZaoOo232vWjQEuqjggV0kelutUt50H9o4zY%2FYja"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a45df7b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4681)
Size:   1940
Md5:    cfa574b0b341da6ac230669d81f7ef9b
Sha1:   084ef48b40606629cb737c73c0ee0cfb8176b321
Sha256: a53c69de09e4cdef9c6fab2acaa3b4e056021ea99349b3a5771c28767f9231e2
                                        
                                            GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1111456
expires: Tue, 14 Nov 2023 14:08:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U5XOJgpKOGNcki%2FFoNOG8EHToi3UJQkpuE%2Bd%2B2AsB%2B%2Ba0ERadiBVZG8qz%2B48FOgubjhuBSS%2BgEnOEmWFCbBwEPWA96rDAoC7OZ2vkCycjo2o%2FHXQZ1YJ4bXDF5D9t6MufsgxM45f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f2b7a46e19b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19015)
Size:   6157
Md5:    7b4114faa411d059a9a5ac4b5b4d9dee
Sha1:   277da4486916fa3a4ab3375f47bc98f58dbf90f6
Sha256: 60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13095
Expires: Thu, 24 Nov 2022 17:46:49 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6498
Cache-Control: max-age=95685
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637e3445-118"
Expires: Fri, 25 Nov 2022 16:43:19 GMT
Last-Modified: Wed, 23 Nov 2022 14:55:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /s/files/1/0275/8390/5878/files/House_Icon_Shield_RGB_Jun21_Medium_1.png HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 29316
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/House_Icon_Shield_RGB_Jun21_Medium_1.png>; rel="canonical"
source-length: 53533
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: bdd5451f-aec8-454d-9435-e890f12bdbc5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 05 Oct 2022 20:11:40 GMT
cf-cache-status: HIT
age: 708086
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1R8B3U%2BYvAj2OZyMhG1dhAd%2BcgJM47nz1alpWsWJ%2Fq8RUsWIQtrvUVbBF49Iv8BSnlo9J6KGNWI6YIKUHSQpYEkT9aUj0safZlMWgijBvXiEW8Jcp%2FI%2BaibZkt2gM6D4tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=171.633, imageryFetch;dur=90.767, imageryProcess;dur=79.684;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 76f2b7a4ece8b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   29316
Md5:    28d1e0bfb350b1a4c7eecc3818bc9c69
Sha1:   344468a86df4b1e8cf8b80d6b2cfd7ab9cd08f10
Sha256: ea93cd02556f47bf591bdaf3b471ea56114ddf83421fcde6d6fe15901525393c
                                        
                                            GET /s/files/1/0275/8390/5878/files/H12-EB2-250k-hero-1x1-opt.jpg HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 88646
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/H12-EB2-250k-hero-1x1-opt.jpg>; rel="canonical"
source-length: 96880
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 299d399d-a5db-4cf9-94bc-2f4fdf1a95c5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 23 Nov 2022 09:42:35 GMT
cf-cache-status: HIT
age: 92946
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z3RarpPL2Z9TIxRM9siVQiiUx5hU9TD0tHwvP4sYgFqpiSIDxmJMR99GLh6vDXjIb2wF%2Fm2t0gJ9Dm6rlI2UgAd0rjusUhNL%2B4hRBX28h%2FL5URE5SgDKTHQcuFsNJXxMkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=173.051, imageryFetch;dur=58.495, imageryProcess;dur=113.898;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 76f2b7a4ece7b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   88646
Md5:    05e382f5cf23f0552ea3d2b7e8fd0ef3
Sha1:   ef254b380481a6a129ac268a1144f3bc9d076483
Sha256: 11423d8c457d06f0314059a90f189785d198d1797c9fa073e8ecacab0a7b8e3d
                                        
                                            GET /s/files/1/0275/8390/5878/files/Omaze_Logo_New_Inline_White_1_450x_png_2_7cbe20f4-02ae-419b-879a-20da9051be02.png HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: image/avif
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-length: 6076
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/files/Omaze_Logo_New_Inline_White_1_450x_png_2_7cbe20f4-02ae-419b-879a-20da9051be02.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 3bb7ae51-9038-4588-89ab-ad8c4556c53f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 02 Sep 2022 06:56:57 GMT
cf-cache-status: HIT
age: 2528079
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kOHonyesWr9cbQ4Cj48E1FgrOC%2Fq2aKyUcvlNtwN3mp8mQa%2B96SbtvKrvQyng9B1mn1mGnAoyyuhohC7oz48Ka%2Fei3FTVq6TwalB9QzmxFMQd%2BwuMoBXnnPlHCStT6H%2FeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=668.327, imageryFetch;dur=66.365, imageryProcess;dur=601.010;desc="image", cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 76f2b7a4ece6b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   6076
Md5:    22bc94cf3bf520448672410fbda91d8f
Sha1:   517a14a89812a5d816d61521f1fd606ec0eaea35
Sha256: 87cf6f808ce69ced1ca45d4419c8e9a52e7ced9c634ad504c3cad2aa3494c9ee
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6498
Cache-Control: max-age=95685
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637e3445-118"
Expires: Fri, 25 Nov 2022 16:43:19 GMT
Last-Modified: Wed, 23 Nov 2022 14:55:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.78
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 01:28:24 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6uiADv1hPgqQPFfyqrpYKRnEjjodi86cjm8HJnCdnncURwo2rZaogA==
age: 45611
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size:   6124
Md5:    5add60196e5f96a414fb4b9586764e5d
Sha1:   633f471b3c2fcedeef9cad90cb5bf56f5fe55588
Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3277
Cache-Control: max-age=150450
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 07:56:04 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6331
Cache-Control: max-age=171826
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f5e5a-1d7"
Expires: Sat, 26 Nov 2022 13:52:20 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:50 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /jquery-3.2.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
content-encoding: gzip
content-length: 30125
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669298914.dop003.sk1.t,1669298914.cds247.sk1.hn,1669298914.cds222.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30125
Md5:    148f8d3ffd9cc02048c5f4d1cc83c407
Sha1:   9f2b89cfd151be6a29b4d43ad64d164fb8471046
Sha256: 4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3277
Cache-Control: max-age=150450
Date: Thu, 24 Nov 2022 14:08:34 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 07:56:04 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5488805FF77740985597F39689F60F1FA17120D2B19337E54E4DF90F1E37CC00"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13095
Expires: Thu, 24 Nov 2022 17:46:49 GMT
Date: Thu, 24 Nov 2022 14:08:34 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 14:08:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/04/2021 00:04:37
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 328ea46ce3a3d87deee2fc89d073c228
cdn-cache: HIT
cf-cache-status: HIT
age: 3644877
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7a5babe1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (48664)
Size:   13807
Md5:    e81cd551cfee73d14ffbe0e25c92be32
Sha1:   4b01e93a0654cfc8ed85643ae6d9c31318fd820b
Sha256: 1cbd67ca6430dd2d47a2a4f356dd05b9886668d750caaca37038c4ed5fb79078
                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 14745668
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7a59e55b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   22014
Md5:    0ae82814ca14617d3ee9e583b91643e3
Sha1:   8e0afcbd51b3bbc361f291bfaddccc4f91b5125e
Sha256: c957349d0a091e176da2995f9c067f8fd5a6ead967d1768890134379f01601d8
                                        
                                            GET /gtm.js?id=GTM-MJL876Q HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:34 GMT
expires: Thu, 24 Nov 2022 14:08:34 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114364
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54092)
Size:   114364
Md5:    de97f976269d7c2b5cd31563b19cf901
Sha1:   df63db4c75f182ba0eb5b11a0b36ed209b6fa8e4
Sha256: f6ea179b0ffbf66303eca9ca3ca010641ac79c3841efcab18032d022eb677925
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 14:08:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/20290691069.js HTTP/1.1 
Host: cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.155
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-amz-id-2: vk3FGrdeuEoZMkw9V1ismFvS9myeFmMKMiWWIvCmdJTi/kmRFGW8ZA4TR12/sJWgJHdKi597sJc=
x-amz-request-id: R0EMQQ7PZ4WE0CP7
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 22:37:10 GMT
etag: "7cfa63cf463e90eba2ab816c840d89ff"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 2111
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: rtJ_HdvViZZ8qIHlM1qVmRncr5cjhsaY
accept-ranges: bytes
server: AmazonS3
content-length: 108062
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 24 Nov 2022 14:08:34 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="19";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65468)
Size:   108062
Md5:    7cfa63cf463e90eba2ab816c840d89ff
Sha1:   7f9b2e8aae484092e89f215a6518d51b83772c9a
Sha256: 8dbb1d861b710e06e2dbd47f62b8239ba1c2799d2885830f45014e9ba7b216db
                                        
                                            GET /0/js/scripttags/omaze-uk-prod/static/country-redirect.js HTTP/1.1 
Host: kite.spicegems.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         50.116.20.68
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=300, stale-if-error=300
content-encoding: gzip
etag: W/"bd90ed1e"
strict-transport-security: max-age=63072000; includeSubdomains; preload
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:34 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17376
Md5:    eff35f7b061baf925339ed946f34e990
Sha1:   e2327534155b4b3cb4dad8121386dd5cfe57588e
Sha256: e0f6ad05eb674b192a5b2b7329afd16b33fe5a6e54e2c9ab774da81cbb1de635
                                        
                                            GET /flickity-fade@1/flickity-fade.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.125.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity-fade@1.0.0/flickity-fade.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZCKNPW85SS58B6Z4SYCPA-ams
cf-cache-status: HIT
age: 112
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a57adfb4ee-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   442586
Md5:    a210571d75676fd0defa9718f54a55d7
Sha1:   04b96c027d4dba310411082496b3c2c480497414
Sha256: ede9c0afde95667c73222d915bdffba29b5a78d501ce50ea35a104ebbd582e5f
                                        
                                            GET /flickity@2/dist/flickity.pkgd.min.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.125.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.pkgd.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZBCWWDM3N6GQJAVSE2F9T-ams
cf-cache-status: HIT
age: 152
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a57ae2b4ee-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13419
Md5:    84d70a4c2e7820d52aeee1080e0b6875
Sha1:   d2958bfb80e4c6f708864801b82ce5d56cc29634
Sha256: 0fb04d88499b546230ce06a79a21d9adc61b5700a70d72395ca2d5f5162f8511
                                        
                                            GET /flickity@2.3.0/dist/flickity.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.125.175
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"705-iG4rBnn9uZ8eW5XLtZHjveGiMLs"
via: 1.1 fly.io
fly-request-id: 01G754EEDGMX2J9V944NV9F6VR-fra
cf-cache-status: HIT
age: 12343026
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a5cb74b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1697)
Size:   39923
Md5:    94a11af20112f7ce18e2d2feb6aa0f71
Sha1:   41d8f3c61f56a0b689faaa496c04cd0f4d638836
Sha256: 353ddc9c8d2baa86ac8344b6974a3eb9149aed0ec2d6db2c88cf37089504ee43
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/vendor.min.js?v=35712911519838011251669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/vendor.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e2cab474-e024-4565-92e2-812153ffa3e7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HycQOG7%2B3ofvgs8%2B01KwIvPawcocKmiboW4Qa1f%2FLWwJm8Q39bNXgYxgvW3xaZeaZiNPwCbT1tKxLDitzwxbFIK6NID1CW2rXclgIR9zWtIpjrxaKWr76dluxDO5H7MvNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=101.783, imageryFetch;dur=101.616, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 76f2b7a59db5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   67229
Md5:    2b90a1d5a1bcfd47c5ca6a916f1e427e
Sha1:   7fd9e11a1e5ea5e725019748edbf3a025208f76c
Sha256: f3d336a43e0853c26f17209138c372c1c51ce5bb7b9b3d9389704ce7f1b3af3a
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.78
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1930
last-modified: Tue, 04 Oct 2022 10:33:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 08:10:35 GMT
cache-control: max-age=86400
etag: "1b1a56d9c9fcf8acab07f238231461df"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8osrLjazvUiotpiXC6pWr7MijU6_WRS3oiThWhDyKiUJKPm3KXQuvg==
age: 21480
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4945)
Size:   1930
Md5:    1b1a56d9c9fcf8acab07f238231461df
Sha1:   72d6d8ecdb249b20852dc54d67530d0280515bc1
Sha256: 73b167681ae290cac469afde469076a7f222d5c5d2746122b2eaf5d7b4699e91
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.78
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1930
last-modified: Tue, 04 Oct 2022 10:33:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 08:10:35 GMT
cache-control: max-age=86400
etag: "1b1a56d9c9fcf8acab07f238231461df"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aRpX1NLC4YP5edeD2gCvABzp9c7pNHStP5INd-397gerdBPBtxwInQ==
age: 21480
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4945)
Size:   1930
Md5:    1b1a56d9c9fcf8acab07f238231461df
Sha1:   72d6d8ecdb249b20852dc54d67530d0280515bc1
Sha256: 73b167681ae290cac469afde469076a7f222d5c5d2746122b2eaf5d7b4699e91
                                        
                                            GET /?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_ef159bd5e740b6e8b4e1b1531f356bc2 HTTP/1.1 
Host: www.omaze.co.uk
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lkbx.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         23.227.38.74
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:33 GMT
location: https://omaze.co.uk/?utm_source=AWIN&utm_medium=affiliate&utm_campaign=Sub+Networks&utm_publisher_id=685769&awc=21550_1669298913_ef159bd5e740b6e8b4e1b1531f356bc2
x-sorting-hat-podid: 85
x-sorting-hat-shopid: 27583905878
x-storefront-renderer-rendered: 1
x-redirect-reason: canonical_host_redirection
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 27583905878
x-shardid: 85
vary: Accept
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: acfbec77-3586-4e38-9fa2-eb3d07c1e022
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRbHlhkDJJMtJ24pWgemt6ezF8JlagKuFKYbH9y5O26uervTxGY320C0uBTiGXuQ%2FTfiV9CgRqqelQBoc2JGCp9mUXcQHpEoo8U8kWOkFxpMIU0PkB8VSoaT29hXP2XkMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=14, db;dur=5, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=253.999949
server: cloudflare
cf-ray: 76f2b7a1ebc9b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   24982
Md5:    c1a8dafe61ce0d7d93266fcc71549547
Sha1:   3e3acb5f6b6efb517b93a4b2ff00789290134a00
Sha256: 1bcd0c142286921051c5d99c5a064e1a5b9d678ac838a58e23fb6231ae635af2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8A14B077CB103EFF26392B571A33EA3FD7BB15D4FDC3014F5ADF87D6424AB765"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Thu, 24 Nov 2022 16:03:10 GMT
Date: Thu, 24 Nov 2022 14:08:35 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1929
Md5:    19521641df85204065b621bc0035bda8
Sha1:   356cd973439b6ed8f2d906cb2ba54505aab695db
Sha256: aec34fddb202d6275f2fef5cf678c1902936aa84281b1784a7c805c75f9ef191
                                        
                                            GET /trustboxes/53aa8807dec7e10d38f59f32/main.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.78
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-length: 15505
last-modified: Tue, 04 Oct 2022 10:33:42 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 24 Nov 2022 05:09:54 GMT
cache-control: max-age=86400
etag: "7634c5de39bff7b73e2df27262caface"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UBuOFHEy17QFfVpq1ldADP9WLi5KctBfB8jajq-_Oum7zEWIEWdPWw==
age: 32322
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (50697)
Size:   15505
Md5:    7634c5de39bff7b73e2df27262caface
Sha1:   73bb5656a5b7eee0c6db68d3f708046f390ccb53
Sha256: bc5f8d22d9a155ee87fe85ef326a9cc5c059a69aa5a6f7389882a88c057acc09
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4333
Cache-Control: max-age=91690
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:36:45 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7592b9ab08cc8c5f91e8717e22310105
etag: "e781b3fe7c0aad5668877a0d377743d4"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 24 Nov 2022 14:19:06 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: jrI9u6C6XqOzWiv05aDSFQ==
x-fb-debug: S8DJHlc9WzHipQ/PNBlAUntTC5IfxibkpaCh/x1neFWOKI0lGkVWdBSDtqR5/DewQoJZdx+RyLl2Sk4bFcE9Wg==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 14:08:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1687
Md5:    8eb23dbba0ba5ea3b35a2bf4e5a0d215
Sha1:   3a68380468a18b362ea4620d39e245a294972c83
Sha256: 17210322435ded590d80fae1a60d4e601e7dbd694ff826398c046c9878d097ba
                                        
                                            GET /releases/v5.15.4/css/free.min.css?token=b8113baeb6 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.64.202.28
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 923ac43221a6100d93549f6522acb664.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C3
x-amz-cf-id: 7wL8y9OJDUltBsh2cM5XjIjZuOr-watcxnfsegeUDwOnBt6MPzq1Ew==
age: 29850070
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNnDHRqQc3n2ghh4LR%2FoTdfPgxFnYeb0mcwbze4oqfuc%2Bk3pAh21y%2Fb8%2Bb3sWquVOpKnyiaByGz4rjwx5rOkeHrtOOt%2BU%2BcajmKOljc4j0G9SbWwDVtQjH7g8uUYCJx9zYNG9SicrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f2b7a95cde7732-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60130)
Size:   12893
Md5:    ee711b55a85b04779ecb4fddc2319eff
Sha1:   60ddeeabc9c1e3dae81ef57f87985a5dec60c819
Sha256: 9fbd67fba489cc62ee19a25682e606de62bf172451d36db3ad413f2285d4c283
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5433
Cache-Control: max-age=92790
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:55:05 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3914
Cache-Control: max-age=148562
Date: Thu, 24 Nov 2022 14:08:35 GMT
Etag: "637f0ceb-117"
Expires: Sat, 26 Nov 2022 07:24:37 GMT
Last-Modified: Thu, 24 Nov 2022 06:19:23 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Tue, 22 Nov 2022 16:39:23 GMT
etag: 0x8DACCA81CF94662
x-ms-request-id: 612b53d7-501e-0067-08d0-fe6b41000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44350
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7ac7d77b4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    7b4564ae957eef3a8302343f44c5cfb3
Sha1:   296c38b2ae23a31d80201b32a38c02e75de27c91
Sha256: 15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
                                        
                                            GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 718
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-08-02 20:43:32
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 0664d39d6640171531de1a9144d9e46c
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 108295
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f2b7acd9d61c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /en_US/sdk.js?hash=47e287106a96623b161472a38a24efc4 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 11c5dd6ace0136e88d150e3edb3d2407
etag: "fa0e58d9753b9eb376e5a912b3d589ca"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 24 Nov 2023 12:29:41 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: sVsmNchvVrLGPzRY67Qqng==
x-fb-debug: uRnV+PDop5YerQ3jN9j3Ka9e2oHMvkx5/yeHgYSLz+/nSqPIlUjoe8DXeRVpF9IaN9TzugNbgV+lraF/sWuPLA==
priority: u=3,i
content-length: 88359
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 14:08:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   91129
Md5:    e2ea1ed147189ccc6c6536d4931ea205
Sha1:   8c65852efe7e0c64662f1c9c4a57b0817fbee243
Sha256: 7619939280625faefcdd45a1b9ddad534312155f1240d4a10e0897b50d614ef5
                                        
                                            GET /shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9ef5eef7-df87-4932-9fd4-5fa40238eab6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 03:20:36 GMT
cf-cache-status: HIT
age: 7814864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pxOlJeM9XPH91JePerakEHKvigpCJXOyEbAb6LT1bdCZVQ59WsGc1sJGdstnD9Flfw358a45Fkuf5Jqjau%2BOaZo5qMtXL%2BF4TNY6ZOwDR0%2B%2BwXYw5UKkvZKcMRWrQAyNoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=17.149, imageryFetch;dur=16.982, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 76f2b7a57d87b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6063), with no line terminators
Size:   3119
Md5:    215f01d147c0db5598029aabbcf207f1
Sha1:   bf7c5812b34324eda5e397b6bc722cbb1d7267b3
Sha256: ae28727a722bda5098d04554eddc508262699419c71d344f13365c2863cd9184
                                        
                                            GET /trustbox-data/53aa8807dec7e10d38f59f32?businessUnitId=5eba01cd03d841000178dfdc&locale=en-US HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.78
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 396
cache-control: public,max-age=1800
content-encoding: gzip
date: Thu, 24 Nov 2022 14:01:17 GMT
etag: "161fba113d5f14eedfd03280b50a02a2"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5APVhXaK5iN8sph-TnD3t2t5E2AzFRReT_ZkBhegf4qeR428qw8tHQ==
age: 438
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (887), with no line terminators
Size:   396
Md5:    c74d3abbc5c75d6cca56aaca63a184f3
Sha1:   d703696a6eacc2b245a55809d635439fcfcd8e25
Sha256: 620824c8e9e5d2adbd8244027e21b0d478740935145ed3c59eb617d07251d268
                                        
                                            GET /shopifycloud/shopify/assets/themes_support/shopify_common-8ea6ac3faf357236a97f5de749df4da6e8436ca107bc3a4ee805cbf08bc47392.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/shopify_common-8ea6ac3faf357236a97f5de749df4da6e8436ca107bc3a4ee805cbf08bc47392.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f7f39c74-e03d-423b-8dac-0bb58c0de6d1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 02:05:11 GMT
cf-cache-status: HIT
age: 7819383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OgqbBlyJMgWjHKduDInxODGWAPqktvGlvHWsxuYmI4XAZz7Xpnn27RS5gLYI%2FG18fOWVJBKrGPqJpCdSU9Ct6o2M0UOX8bmYZyu%2FP7SV3zTTrUST67s2SQG5gHgkvT5g5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.280, imageryFetch;dur=22.082, cfRequestDuration;dur=8.000135
server: cloudflare
cf-ray: 76f2b7a57d91b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2095), with no line terminators
Size:   3474
Md5:    3b94090cf73587a1d99413798721728d
Sha1:   82e4520812808766349c5f9fd393a27b91c02c17
Sha256: f84b744cbc5d39f684ed76684a7050e372d83256bd9a5703e1f2c5be6db60e62
                                        
                                            GET /stats/TrustboxImpression?locale=en-US&styleHeight=120px&styleWidth=100%25&theme=dark&url=https%3A%2F%2Fomaze.co.uk%2F%3Futm_source%3DAWIN%26utm_medium%3Daffiliate%26utm_campaign%3DSub%2BNetworks%26utm_publisher_id%3D685769%26awc%3D21550_1669298913_ef159bd5e740b6e8b4e1b1531f356bc2&referrer=https%3A%2F%2Flkbx.me%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5eba01cd03d841000178dfdc&widgetId=53aa8807dec7e10d38f59f32 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.78
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Thu, 24 Nov 2022 14:08:34 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TjKDu__2Z60Q0Zs51o4hjHTRiMghBYGazqF4OQ6OKxi--asP6xzf0g==
X-Firefox-Spdy: h2

                                        
                                            GET /stats/TrustboxImpression?locale=en-US&styleHeight=120px&styleWidth=100%25&theme=dark&url=https%3A%2F%2Fomaze.co.uk%2F%3Futm_source%3DAWIN%26utm_medium%3Daffiliate%26utm_campaign%3DSub%2BNetworks%26utm_publisher_id%3D685769%26awc%3D21550_1669298913_ef159bd5e740b6e8b4e1b1531f356bc2&referrer=https%3A%2F%2Flkbx.me%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5eba01cd03d841000178dfdc&widgetId=53aa8807dec7e10d38f59f32 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=5eba01cd03d841000178dfdc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.78
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Thu, 24 Nov 2022 14:08:35 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oKyWQsnih55czSNyQiuVldRfUgraK2nXpZlROjY8puAd-VVLHYxRHw==
X-Firefox-Spdy: h2

                                        
                                            GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bed70abc-c236-43d6-8349-7ffd51733329
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 25 Oct 2022 19:44:29 GMT
cf-cache-status: HIT
age: 2528079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUahASYdcE43jXsD3%2F4YCAhNaTASK5jbVL05S4K8TmsXl%2FjaTrR%2Baek2Jk6YgSnaHiDFO6XqvyebQCe%2FwPTGaUUXnbNkIZIJk%2B%2BRq7iWx5azB6YrCgOt9a8v6SNVvKIl9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=29.544, imageryFetch;dur=29.314, cfRequestDuration;dur=6.999969
server: cloudflare
cf-ray: 76f2b7a4f937b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32761)
Size:   18502
Md5:    847c1e5ccc0fca8d662fcfba52d2dc38
Sha1:   325f3fde452d2ac5158cabbac99f91cb62db1a2d
Sha256: 642dca49ee40b6f8fc93ca1f7387c8d9bd68a93c963017089ef11186266079b5
                                        
                                            GET /releases/v5.15.4/webfonts/free-fa-brands-400.woff2 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.202.28
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 76736
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "4f5ec865a8274ab291b6a42b5f70639e"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 0c60ac277ceb72dda4ddee2264e89d22.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: pSY6OV8vN7CXHztX5L3JAJVJo_NKp8lx5AZD6m-K8d_CdbZq_FCQRw==
age: 2480217
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxsp7CtwuZHYakp00EZg5T069qteCpALC1BrW8fiz2EsmqfA88iws5OmG5jVcpmoR8dpwT0Nj74mVaX4hxWUjg2lebBNR5%2BrlUTLVv92p5I%2Fx8YYRJhzJ3lI9eAhyYapc%2FjkRXbwNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f2b7b0ebc07732-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size:   76736
Md5:    4f5ec865a8274ab291b6a42b5f70639e
Sha1:   6f00f8c75208b96e585646824c4011093446acd2
Sha256: b5be0732ab1cc16692e165a7950810f0c772e400f6a2f63e1026a0b938016813
                                        
                                            GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.64.202.28
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Thu, 24 Nov 2022 14:08:35 GMT
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 a4b14ec1411057263166d6facf9b30b8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: winbSA8Gb8uKYsJ87Y4P2w14h6O61s-_eU7QPWjBXKF0Iqhrk0Y73A==
age: 2480179
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t6EvnCgs1tDziTXdNPR565FXsciwkMRz9enQ6ql%2FiPCG8WsP3Gxnh6x0Se3W4xDU3%2B6zMVIEdI%2F6G1EBTPbprzUquXV%2Fx0U0t7hlfb0NwcUkLS%2BI5xOTdytDehsbcSfJldm5lgQsWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f2b7b0ebcc7732-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Size:   78168
Md5:    a9fd1225fb2cd32320e2b931dca01089
Sha1:   44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
Sha256: c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150811
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637f197d-1d7"
Expires: Sat, 26 Nov 2022 08:02:07 GMT
Last-Modified: Thu, 24 Nov 2022 07:13:01 GMT
Server: ECS (dcb/7EA4)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D-_TuZTiX8jWTh5A-XeAAb2DK1l_Nbsa_DvxypPF90jpDoJt4BATNQ==
Age: 2946

                                        
                                            GET /client_storage/a14464890104.html HTTP/1.1 
Host: a14464890104.cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.110.8.48
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
x-amz-id-2: KcYVh/DptstaCeud8VkviKNtRkn7aUB7C1yY+FVcb8ulia7HAwsSon4p34Qf65vpjsmk0F9oPhg=
x-amz-request-id: K1NCT6GV62YMEEE6
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 22:37:05 GMT
etag: "c3f0bff0f72351e540a99bb74cd9fb34"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: 52p2f5xRjgu83FkMOjCStyZnaigGAScs
accept-ranges: bytes
server: AmazonS3
content-length: 886
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 24 Nov 2022 14:08:36 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="4";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1371)
Size:   886
Md5:    c3f0bff0f72351e540a99bb74cd9fb34
Sha1:   b70df4c1d090636475a5e98150cc3d244d7e3d50
Sha256: 869ea3d9e588a4efab5b40dec55e805e4c63ee7eb77f790b49fc043226a350fd
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1022
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         107.22.2.22
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Thu, 24 Nov 2022 14:08:36 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 019c1101-6629-485b-9f41-451bd129b878
Connection: keep-alive

                                        
                                            GET /assets/js/widget.min.js?shop=omaze-uk-prod.myshopify.com HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycduXnVpoSDbaAe5jfbhVg3U9A9MmRDTwN0daAmXcREz0OY_LJCoU1EGS1dIawQAVhW4xxeS4tedruV8KbK9mA373Pw
x-goog-generation: 1666975008675198
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 375864
x-goog-hash: crc32c=rJYO8Q==, md5=aEn5ISOLpWHfM3lUnlae1g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
last-modified: Fri, 28 Oct 2022 16:36:48 GMT
etag: "6849f921238ba561df3379549e569ed6"
content-encoding: gzip
content-length: 117756
cache-control: public, max-age=3596
date: Thu, 24 Nov 2022 14:08:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65412)
Size:   117756
Md5:    cc8614f4992f191239615c0aa4650bf0
Sha1:   4623b4fffb5ac6a7225b2436f0f10853f1024604
Sha256: 9c5325bcffd58ca001b734ae69b8dc7ef488a2800853bcd06e6c97d3b24db0cc
                                        
                                            GET /scripttemplates/6.20.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 86053
content-encoding: gzip
content-md5: jOOTzA5W9ewbfwCUPpt/mw==
last-modified: Wed, 07 Jul 2021 06:41:48 GMT
etag: 0x8D941124BEC2620
x-ms-request-id: f68fa2d1-901e-0035-2d6c-c476b3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44246
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b22f6eb4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65455)
Size:   86053
Md5:    8ce393cc0e56f5ec1b7f00943e9b7f9b
Sha1:   f04cb65b4dd624b54cdeedd0ae5614c4403fe073
Sha256: 9ed123900580a33e1551f98ee4fad57f6084f6006823fb922a75c8ab0a326b4c
                                        
                                            GET /consent/8835818f-616c-4e34-851b-6a764cd7352e/f1aeea99-e304-4177-abff-167053606bd7/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 15926
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ii/gOVLG+nvXT0Xh9zJ6rg==
last-modified: Thu, 29 Jul 2021 16:20:27 GMT
etag: 0x8D952ACC6EE55A2
x-ms-request-id: 13b87171-401e-003c-6168-c96c3d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 62366
expires: Fri, 25 Nov 2022 14:08:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b2ecc9fab8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (63561), with no line terminators
Size:   15926
Md5:    8a2fe03952c6fa7bd74f45e1f7327aae
Sha1:   bc0745097b8441d08384da4dfd9b53337b578065
Sha256: 79a91932c27192de54dcb4ca05bcf525e3c44dd76e9087c7b70c53770a74d78f
                                        
                                            GET /scripttemplates/6.20.0/assets/otFloatingRounded.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 2586
content-encoding: gzip
content-md5: cvCYonhCjaPDc5Gcg5N+LQ==
last-modified: Wed, 07 Jul 2021 06:41:43 GMT
etag: 0x8D9411248E6977C
x-ms-request-id: 6da277ed-c01e-00ea-5142-ca27e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 20700
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b31cf8fab8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (7980)
Size:   2586
Md5:    72f098a278428da3c373919c83937e2d
Sha1:   56e2829ff3bf141c644ce0f689124c02e9eb610c
Sha256: 14b884a32edd9ca4be097632ef16562f43b83db93e29fd6e25c19ecbc96c81eb
                                        
                                            GET /scripttemplates/6.20.0/assets/v2/otPcTab.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 24 Nov 2022 14:08:36 GMT
content-length: 11893
content-encoding: gzip
content-md5: 94p9hKoPf3nMy9EdKS8ocg==
last-modified: Wed, 07 Jul 2021 06:41:45 GMT
etag: 0x8D9411249A88412
x-ms-request-id: e4085ef0-b01e-00aa-2d6c-c40e09000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 62366
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7b31cfafab8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (35399)
Size:   11893
Md5:    f78a7d84aa0f7f79cccbd11d292f2872
Sha1:   c098ba3362c085a3f97be156117e97c03dcfdd1d
Sha256: 2ee6a8d4daa66b00dd383a52422a6643e6ec254f9eedf3c88cba382790f4c467
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142867
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637ef0bb-1d7"
Expires: Sat, 26 Nov 2022 05:49:43 GMT
Last-Modified: Thu, 24 Nov 2022 04:19:07 GMT
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jwfHzL3lMuI2TKrUGBWvZ4igiaf9vqZUBj-lMl8ym353OOP3tRTcRQ==
Age: 5436

                                        
                                            OPTIONS /store/omaze-uk-prod.myshopify.com/product/2020-12/products.json HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-recharge-app
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-guploader-uploadid: ADPycduQZ34NIlf3m979kfxAjyTcqFAi8zuwTC6xpFbJqzTkeqOb9HNn96KScJymK-2I_XWgvZaviO9nKTuOxxq5aUM0Bw
access-control-allow-origin: *
access-control-max-age: 1800
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: Cache-Control,Content-Length,Content-Type,Date,Expires,Pragma,Server,Transfer-Encoding,Vary,X-GUploader-UploadID,X-Google-Trace,x-recharge-app
content-length: 0
cache-control: private, max-age=0
date: Thu, 24 Nov 2022 14:08:36 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142905
Date: Thu, 24 Nov 2022 14:08:36 GMT
Etag: "637ef0bb-1d7"
Expires: Sat, 26 Nov 2022 05:50:21 GMT
Last-Modified: Thu, 24 Nov 2022 04:19:07 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wHdS_qeN2tIoa4FjZrpN6m8ejcQba_XwAJ_1tJHN0kjQfuFlp4L9ig==
Age: 5474

                                        
                                            OPTIONS /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://omaze.co.uk/
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.85.212.37
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Date: Thu, 24 Nov 2022 14:08:36 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 330
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.85.212.37
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers:
Date: Thu, 24 Nov 2022 14:08:36 GMT
Connection: keep-alive

                                        
                                            GET /store/omaze-uk-prod.myshopify.com/product/2020-12/products.json HTTP/1.1 
Host: static.rechargecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Content-Type: application/json
X-Recharge-App: storefront-client
Origin: https://omaze.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/json
                                        
last-modified: Mon, 14 Nov 2022 15:43:37 GMT
etag: "f41abd8bb014b5f557cd60e3e41e4ceb"
x-guploader-uploadid: ADPycdse-kFZc1U_NpSRKhPBuApnFh2Kafu18qmB2SsARNaHTQFdxm3xXqRsZRqRZZcooQP6k6PAFYVyabTJMtLTK0ojd75GU3H_
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Expires, Pragma, Server, Transfer-Encoding, Vary, X-GUploader-UploadID, X-Google-Trace, x-recharge-app
x-goog-generation: 1668440617745660
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1364
content-encoding: gzip
x-goog-hash: crc32c=FCWpMQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1364
cache-control: max-age=60
date: Thu, 24 Nov 2022 14:08:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=41, origin; dur=128
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4546), with no line terminators
Size:   1364
Md5:    f41abd8bb014b5f557cd60e3e41e4ceb
Sha1:   f7401e397a4bb3d2f543318b7d06d26fb9caabe0
Sha256: 1ee794d52686c93801d5bcdcf398f9bdb7144e066e8cdeb9fc18b65350416ceb
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 998
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         107.22.2.22
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://omaze.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Thu, 24 Nov 2022 14:08:36 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 1eb83d10-3801-420c-9c1b-d2435b5e3761
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4634
Cache-Control: max-age=123701
Date: Thu, 24 Nov 2022 14:08:40 GMT
Etag: "637ea903-116"
Expires: Sat, 26 Nov 2022 00:30:21 GMT
Last-Modified: Wed, 23 Nov 2022 23:13:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /b8113baeb6.js HTTP/1.1 
Host: kit.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FtKfOd88281fuOchTUgC
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 76f2b7a598cab51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /charity?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: wizedeal.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.21.53.93
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Thu, 24 Nov 2022 14:08:31 GMT
location: http://wizedeal.com/charity/?td=enhotssureemed.com&cmpid=25961e64-423c-4185-aa8c-2ab617e938f5&ts=PropellerAds%20Pop&country=United%20States&connection=WIRED&zoneid=&carrier=&os=MacOS&trafficmode=&tg=https://lkbx.me/sUuW?uid=wb8cnqh12ii7oumkivhqgffu
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ao8L09dBl%2FWm3RGjZIBUGKoCocn919Jm%2BZTJncBqdtpjRstTl0d2ZuaKwNwgoZP3sAJr7yzOio57D1ygrcy6TWNjwcY84CKwI83Tt5WXvIol4okUzpsqHaD94kL5aUQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f2b7952c5bfac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/application.js?v=84190962880680205521669200631 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/application.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c01418c1-c232-472b-aa1f-9bf8e39c3000
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:52:25 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iKeJTO33K%2FMJ5lISx23aQobwUhyWcXe3jm3mr4o2zZkHolqsuR6Whrz7UcK2v%2FGPL4pzCgo9ttRKpcHYGMSFdi%2BX4pPJe7uAM8dN8wq12CZQWJU3mnHjkSOY4hfhUHH2hA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=56.986, imageryFetch;dur=55.682, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 76f2b7a4ece3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 831fa177-359b-43fa-b1af-96c4d1edbeb9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 03:53:17 GMT
cf-cache-status: HIT
age: 7805797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aNkGX5FRV73C%2BccglUw38mH1jGVJ%2Bxr7nTQcUFNw%2BxKZOTNokxI1hfgYdUlmb7ttmeUdDaYtFvWaGVHtQ8W0MwJDUiqD6kYeieTBz%2F2RDO7zukXd4qGue4NPFLoal%2BiiGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=20.953, imageryFetch;dur=20.783, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 76f2b7a51959b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity@2/dist/flickity.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.125.175
HTTP/2 302 Found
content-type: text/plain; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJMZ5NT2V8TEVZR3H06YWX3J-fra
cf-cache-status: HIT
age: 339
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a53a8db4ee-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /shopifycloud/shopify/assets/storefront/load_feature-a5f1052ed1a8af5abd2f31dfef1a6c95288a6be319e39bfd7072f5f196d63612.js HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://omaze.co.uk
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-a5f1052ed1a8af5abd2f31dfef1a6c95288a6be319e39bfd7072f5f196d63612.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f44094e2-1cd3-459d-855a-6bb429f3de74
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 15 Nov 2022 23:26:12 GMT
cf-cache-status: HIT
age: 666378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nA5RLsjmioxnGkfjlr1UIY%2Bf8gVR0yUzUqimeA0dlSBfh15OJQ5dk3Zo04%2Bsu2C%2FVVh25q5GOwrFNADC5gvDZqxdjUuPaR4YUiLva9ackguFCRRMomA1%2BGTI%2B9fI7QCfpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=33.609, imageryFetch;dur=33.441, cfRequestDuration;dur=101.000071
server: cloudflare
cf-ray: 76f2b7a4f936b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /0/js/scripttags/omaze-uk-prod/country_redirect_1fa25ef97f3a4865d63f43b7b829b72f.min.js?v=31&shop=omaze-uk-prod.myshopify.com HTTP/1.1 
Host: thunder.spicegems.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         173.255.195.55
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=365000000, immutable, stale-if-error=36500000
content-encoding: gzip
etag: W/"bd90ed1e"
strict-transport-security: max-age=63072000; includeSubdomains; preload
vary: Accept-Encoding
date: Thu, 24 Nov 2022 14:08:36 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /flickity-fade@1.0.0/flickity-fade.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://omaze.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.125.175
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1a24-9mp2jFxVUomz8uJtJfxQWXMAtZU"
via: 1.1 fly.io
fly-request-id: 01F3YGTW0QJQ8TTTF986JA742P
cf-cache-status: HIT
age: 18609421
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f2b7a5cb9eb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/custom.css?v=101141169770123226801669200631 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e834d45f-356a-4cb4-89f0-fe85741dc345
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:52:24 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sb2F7qm1RqJyufhoo2I%2FLjM1rQBOzDA4A1cbua2KbTiGQ42L9C0AB36MrjQM2rtmSZ7lfRtVS9dbeSBROX6bhQFqVR3Xu7x6ow0BTs3P59B8qw6Uwa1j9Yw190bAc3XWQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.999, imageryFetch;dur=56.928, cfRequestDuration;dur=92.999935
server: cloudflare
cf-ray: 76f2b7a4ece0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/fundraising-regulator-vector-logo.svg?v=16953812898927032351669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/fundraising-regulator-vector-logo.svg>; rel="canonical"
source-length: 7869
source-type: image/svg+xml
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ba87c88-c29a-4640-bc43-87f1e2123d15
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QSuVV7RcxDHFVAwVhPuRSSMMP%2B8lkeEleu9DPcQgiSqU30I3NNfGYNLegxVGClRRJcXMXckTZma2gzsurHWHcyWPAjXYPS9vwjP23VoRZtvz9By5cu821MkmAs%2Be55btzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=20.303, imageryFetch;dur=18.428, imageryProcess;dur=0.078;desc="image", cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 76f2b7a4ece4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/theme.min.js?v=70721350503666120211669200349 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/theme.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5ae35c83-fef2-4512-b690-8f15e1b1334c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 23 Nov 2022 10:46:00 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wjRnhmvtHoMyZ2fLlfM7tCDc9pw856xzJ6wyxJNSZBcCjqKSLgcGM53Lk2ZbT%2BD2cFZlT9gAvOpmsxAru9TBWLj6nhOkIFY1GzoN0LKTzXIDYzTUEH2Eg2jBqiP3%2FsvOBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=31.764, imageryFetch;dur=31.632, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a59db6b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sUuW?uid=wb8cnqh12ii7oumkivhqgffu HTTP/1.1 
Host: lkbx.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wizedeal.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         47.89.248.255
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 14:08:32 GMT
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=bxOkWyea; expires=Sat, 24-Dec-2022 14:08:32 GMT; Max-Age=2592000; path=/; secure; httponly discuz_2132_lang=en; path=/; secure discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/files/1/0275/8390/5878/t/645/assets/theme.css?v=166936681793298938631669200631 HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omaze.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.159.134.68
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 24 Nov 2022 14:08:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0275/8390/5878/t/645/assets/theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3f524aec-a526-400c-af70-9c7675c170e4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 23 Nov 2022 10:52:24 GMT
cf-cache-status: HIT
age: 93797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EGiOP9kYLGQlebRSm2%2Fwnf2AHjd5J2d438ulOUkjoxDeQ96JQvsl91ePMoQ5aMtQe4yGq029rp%2FChlWpK2yebR2EkDGZ1yL1OaC%2F8zIICBHoQvE0E5S5MQYaAOK7IwBdNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=125.185, imageryFetch;dur=84.642, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 76f2b7a53d3bb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---