r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03c3cfc567661cca575e54ad505acd08
e73f7955b0c794a9cf8ff77b3ecaf436354521fe
50017e6eb57c5bcaa8dc74af6e3967362ec6b8f177a5bf722dd2d215698c4fa9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50017E6EB57C5BCAA8DC74AF6E3967362EC6B8F177A5BF722DD2D215698C4FA9"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8131
Expires: Sun, 09 Oct 2022 21:53:28 GMT
Date: Sun, 09 Oct 2022 19:37:57 GMT
Connection: keep-alive
hairwegoext.com/
199.34.228.164302 Found 338 B IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9ebe2b5118209614da2960f07aa62ba0
c6ed672848859032b011bb5d284093f810135e02
80f5f8ed0cfd8b13c023ef4bf30619c155b3d31784d6f08bd4294ebe84bdb372
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sun, 09 Oct 2022 19:37:57 GMT
Location: https://hairwegoext.com
Set-Cookie: publishedsite-xsrf=eyJpdiI6IjBuUGt6dE1KWXd0cmRDcnRYRTRJeEE9PSIsInZhbHVlIjoiUmxNa1lPcW8yNk5kelc4cUtsXC9sa3dKMk5LNXpuNzlxWU50Q0JWZ2NGdFwvZWNnVHJnbjhHc3M5WURobTF5Z0d4ZDg2V2pmbDJGSEpJQWtoMWpUYkZ4eUJkTmZPK2RFd1h2c0t2aEVHeElLTWZDcTVXSHNZSmVMS0VjdUd3clh6MiIsIm1hYyI6IjVhY2IyMzA5MmZhZDNlMmJjYmEzYWJjOTA5NWI1MDg4OWViNTQxMDU4NzA2NDU2NDVmNWM0YjBkZjFlMGQ0NDIifQ%3D%3D; expires=Sun, 23-Oct-2022 19:37:57 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkVcL29ZRnorbU1PZTZieHkwQUFXNmp3PT0iLCJ2YWx1ZSI6IlFJT1ZVTVRpV1ZWcFZrYkE4VmZHWHJWK2xUSTFWQ2Z1Y2VXbTdSOUtcL1VqeHdEakE2OWNNalZTb0EzNUZaclJTTW10QTd6V04wK2w4blNUd21ja3hmNDRvY2R3UDR0amZpT1B1bzAzcFZMREIyckgyaEdIeXUzeGZxUkQ0VU9mayIsIm1hYyI6ImY2NWJmMGJlMTZkMzRlYWFiMTdmZjNjODdiMDRiZDA2MDEwNDFkNmM0M2U0NWNhN2IxZTMxM2UyODM2N2E5MmYifQ%3D%3D; expires=Sun, 23-Oct-2022 19:37:57 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6IkZWZitpSHpRWk1FUnZYbFhoTmRcL2RBPT0iLCJ2YWx1ZSI6IitNbUNQS0VhU3VuQUozZXRRZlFvQWdUSEdcL1REY2xuRGt5UzMyQ1c1NnFaOThuZmhBZ09FVFJvM0hObVVoTVpNcDRNREcwOUZFTXhqXC8wNmQzSmp5eUxINGxmME9DUGtPditEMW10MTNyVWt1eEJPNlBmbW5SempOQWM2NElhSDYiLCJtYWMiOiIxYmYwZWZhZTY5NTllOTE3MTlmMzEyYjk4NDc0ZmNlYWE2YTAxYzljMWJkOTFlY2U2ZTU1MWEwYmQxYjJmZDQ5In0%3D; expires=Sun, 23-Oct-2022 19:37:57 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn78.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: bd12a71f05101fc688c117e66d0a9cc2
firefox.settings.services.mozilla.com/v1/
18.165.201.17200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.17:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 09 Oct 2022 19:07:20 GMT
Expires: Sun, 09 Oct 2022 19:25:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 04bb33465149b34afca4988622dca584.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: phFwLV80fNQRNKR2dd0olPJD3HfxWONu7_ETXrSxhBIvpWBn10ZJ3A==
Age: 1837
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12740
Expires: Sun, 09 Oct 2022 23:10:17 GMT
Date: Sun, 09 Oct 2022 19:37:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6CuGvkvaXgXEnFV5Y2jEBEtSyTBCKdsOdF6Vjt+6gAHOw0FsRz5u0DrdUDzTF8+NvA/PoD4uL5c=
x-amz-request-id: RPQ1H8D4JMTMVW9S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 09 Oct 2022 19:00:08 GMT
age: 2269
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 09 Oct 2022 19:37:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.17200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.17:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 18:41:38 GMT
Cache-Control: max-age=3600
Expires: Sun, 09 Oct 2022 19:27:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: EjRvaWWqzrSp63IYpWIEoNG9Bmo5flG92nnnHR6gJlkMM8FLwK39hw==
Age: 3381
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6edc1ce68e64d9e8f197c30a6133d784
abec3d36d2010b3aa44ab487a604da817e0a4955
b91a22a9956e61cb9af842d7df1533cc3d6141fd2b7c24f72fa66c507dcbd691
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91A22A9956E61CB9AF842D7DF1533CC3D6141FD2B7C24F72FA66C507DCBD691"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 10 Oct 2022 01:37:58 GMT
Date: Sun, 09 Oct 2022 19:37:58 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0e2d9e91637474eeaf391312eed441bd
5d29603c731b75308f7d1f584b3ac4c263c96a9e
7da864345088083e1a6fec2d95e07186ef8dbcef8505570e547844c556dfe3be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4064
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 19:37:58 GMT
Last-Modified: Sun, 09 Oct 2022 18:30:14 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
hairwegoext.com/
199.34.228.164301 Moved Permanently 354 B IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2afd5bc9718f3fcb981dcd56537e7370
866da7694f15382d1448016c7c9e01ecf8e840c4
3cca183d5379d753ce86c1b762783316361083702a1a3836633e9c5b6de20471
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 09 Oct 2022 19:37:58 GMT
Location: https://www.hairwegoext.com
Set-Cookie: publishedsite-xsrf=eyJpdiI6ImFjTDNLcG9UR3J0RW1zUkhvdDBqRkE9PSIsInZhbHVlIjoiNjBDYldXWENqZ0JlanFaRlhPTjdNZ01ucEhYZHROMm1yczJkRERWWXR4NCtCVEJMRzRUR0tYR0FwQjJUOVhCOWFTNUJ0TUJFZFpxc2o0eHJlQkpROW5hMUMzdFEyT0RTcWJpQUFHdU1SVjFmMnpOOWNoSXQ0aXhUb28zR3p2cFkiLCJtYWMiOiJhMjlmOTk5NjRmYWEzM2M4ZDZlY2IxM2ZlMmFkODBhZjMyNzZlNmM2NTUzYzkxOTM4OTZkNTM4YjkxMzI5NzgxIn0%3D; expires=Sun, 23-Oct-2022 19:37:58 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IktWZ04xMnZaYUpQb0pjS2diRGpiR3c9PSIsInZhbHVlIjoic2RcL2JKclBFRkJlcWZqbDJwVjAzb2ZtbnBMTitnQTB6QlVzc1VNUmhoY3NTRGhaZUszamNOc2RLa0lrR1FWeXN6MEhGZVRHeVlxeklhOUdFa2xQNWxwMUJmRDFhQUlPcGk3ZlV5QmlVdis1czB0U2tjcXNoWlZkbzdLbEVLQm9IIiwibWFjIjoiNTJhMTk3YTViZjkwZjEyNTY5YmQ1NTkxOTQxNTNiZTcxNmMwMmQzMTg2M2IwYWM2NGE0YTU0M2ViN2ExODQzNSJ9; expires=Sun, 23-Oct-2022 19:37:58 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImtseWdQZ045NHN3ZWZreUVQdERXd1E9PSIsInZhbHVlIjoiQmYxVmJVYTNGcm1iaFFNaWhjT0JNYkhqNUQ0QmNSdDR0TzVYMTVtTlVvU0xvYTNlQktsNjFiZEpteEgrcFwvZEdIU2x1eURObWp6QnJDeW5YWDJabWZGM2pcL0dtVTJxY2ZObTJYU2VVSGhSYUxWQ2lXM2ppbm8rWExTNzluNEtzQSIsIm1hYyI6IjljNWYwNjk3N2E3MWQ4MTk0MTEzODc1M2FjNTg5NjJhOGRiMzI0NGFiYjgwNTAwZTA4OTNkM2M0NTVlNjM3ZTIifQ%3D%3D; expires=Sun, 23-Oct-2022 19:37:58 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn149.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 2301346dc5eb34dbde159938e9ad9bac
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lo/4hfxDfz17IGsXzrN/Qw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: n68z9H7df53T+X7aT1zXvxY5KYg=
www.hairwegoext.com/
199.34.228.164200 OK 11 kB IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26476)
Hash 2c366e178e58ae716f715bad26dd75b1
d7e93af35fc015722e2c02440a57316724ad097e
b231a948be144aca8aa716c117ef6f353190d705e70a26cd57be270fa2404ee7
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Sun, 09 Oct 2022 19:37:51 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; expires=Sun, 23-Oct-2022 19:37:59 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; expires=Sun, 23-Oct-2022 19:37:59 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; expires=Sun, 23-Oct-2022 19:37:59 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu73.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 73f972982e1eb86c91a811eb34e70053
Content-Encoding: gzip
cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Hash 1aedd91ec5ab26c8d56ec06533912c00
cebbdae9a5c667f76bbf3ca0afcfd67f96a244d6
d00feb0fc8e722e279adbd32bb715a7357a801127afe152f326e113a0e230fcd
GET /app/website/css/site.348ed5d4d0fd8c90d668.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"9d2dd98d61deb4cacb57697fb2a1b804"
x-amz-request-id: tx00000000000000f958eeb-00633b21b0-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ca837640b076da822e769273456dfe43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 524647
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.398741,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23170
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 1707471
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.404008,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.9fabe641568d0f3530db.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.9fabe641568d0f3530db.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (64282), with no line terminators
Hash f8eb1799e1ddae4e07924a1d9ea16cf4
111a968aa1bffbb61dc2b85faa5ce317e7a4976c
67b8709a151a1a574a4f5b78c96e852478c73963a77cfb3d02ab702dea0260a3
GET /app/checkout/assets/checkout/css/wcko.9fabe641568d0f3530db.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 07 Oct 2022 17:14:15 GMT
x-rgw-object-type: Normal
etag: W/"a1d60264779d37f0cd1f69c09aca4fbb"
x-amz-request-id: tx0000000000000130f7ed0-0063405f13-c67eadd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 181192
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.404029,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22811
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.6e88600aef63fe5305f3.js
151.101.85.46200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.6e88600aef63fe5305f3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (50070)
Hash d0f37fee3a001877f26aa4453972356b
bce30439bdeed324098c1d64b8de93ad968faefa
070859a360a28939658a928a508d48807f6601fd55dc18902534e3f066ad78d9
GET /app/website/js/runtime.6e88600aef63fe5305f3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 18:50:19 GMT
x-rgw-object-type: Normal
etag: W/"6b7195f2637c89e6b965cf58f9494d24"
x-amz-request-id: tx000000000000013ec922f-0063407542-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.6e88600aef63fe5305f3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
x-request-id: 97b5411440c2d3be61910dbf43f9fb01
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 175424
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.403982,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24761
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
151.101.85.46200 OK 67 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25511)
Hash 14ad40c1a43ace9b011a851702c93ecb
e9305b6f3a939584274b15a3f1c4fb5bf10645b0
9d4a8b77438e72d188022397e4bdf11b88fe72bc2c102dc0f9b6568b9fcf1c6f
GET /app/website/js/vue-modules.7951f3068d0f5401b2c2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:13 GMT
x-rgw-object-type: Normal
etag: W/"49ff92c44982a89cf5290643882beb23"
x-amz-request-id: tx00000000000000454d76f-0063292783-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.7951f3068d0f5401b2c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 4e4de176832166ae2fab2801dbf0f52d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 1695647
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.405322,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 66757
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
age: 903558
x-served-by: cache-sjc10077-SJC, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 9726
x-timer: S1665344279.445479,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.5433408d45bb9daa52a96e6d2174b82f.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.5433408d45bb9daa52a96e6d2174b82f.js
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Hash 37da93deb21bee47b232cc881f0164e4
5c4b229d2e3db5d4428168fa7407e74638603b2d
9dabfd6ee72d6f282dade4beb905747fcd171f8c55ced4f34837726b57e81e15
GET /app/checkout/assets/checkout/imports.en.5433408d45bb9daa52a96e6d2174b82f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hairwegoext.com/
Origin: https://www.hairwegoext.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 17:14:15 GMT
x-rgw-object-type: Normal
etag: W/"5433408d45bb9daa52a96e6d2174b82f"
x-amz-request-id: tx0000000000000130f908b-0063405f2b-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.5433408d45bb9daa52a96e6d2174b82f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 181192
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665344280.537386,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3522
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
151.101.85.46200 OK 317 B URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Hash 27ee0fccb172f6ed41222a495a62205c
dba3bf87197abf047d477bf26fd8530fa086f194
327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a
GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hairwegoext.com/
Origin: https://www.hairwegoext.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 863327
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1665344280.537518,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6057
Expires: Sun, 09 Oct 2022 21:18:56 GMT
Date: Sun, 09 Oct 2022 19:37:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6057
Expires: Sun, 09 Oct 2022 21:18:56 GMT
Date: Sun, 09 Oct 2022 19:37:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6057
Expires: Sun, 09 Oct 2022 21:18:56 GMT
Date: Sun, 09 Oct 2022 19:37:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BjBiRKpvs2LQznegxhvMFrczSZGWXGSMvk3bxR8UPpcthRUUA2eTBg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:56:13 GMT
age: 78106
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49e54a4a59a61533078f561c32f254e3
6396e8bf68251d60f0c9949cb99b6f3f46b61d34
3dc5081efa3b7456e91eb8b437789246f7cbd4176b2042e6801dcbd5a145e83c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5282
x-amzn-requestid: 16029133-8119-4249-9447-f1d02ef00f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj7n_GNtIAMFUlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e3fcc-6b5982c06383d5182132d5c6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 02:39:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dc3qlfhgiv1MpP5aox0rAd24KDkiTRkyTjxtrPL01MpbnaVfZ7cmAA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:49:29 GMT
age: 78510
etag: "6396e8bf68251d60f0c9949cb99b6f3f46b61d34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 954195baaeb3faefcb26cb04f1767465
bdba70f84d0c8f61b0cc4e99345a964ed9f46b9c
efaafca7f8c638b1d92723745cbd02298afd4357e9bb7905e854921aaa51d271
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8625
x-amzn-requestid: 0e74e6ca-2bfc-4b0e-8af4-630c2db9a6cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqhkHgIoAMFWDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8ad6-157ce0a07e1d98552bfd2bc1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:10:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5KfbGKLcjLes0CI2YMiiNLqfDOOpgq819kFrRECTsHHHR7DgY7wCgg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 13:37:57 GMT
age: 21602
etag: "bdba70f84d0c8f61b0cc4e99345a964ed9f46b9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee802dc4a72f3824dcab31ef95c48936
f987fdbbb21538b6f55f7dae713b59e234882456
0b6ce28ab1428c11ea6d215b3d21b44b85ca101b4885bf27f633153014ed1cf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8295
x-amzn-requestid: 0240dc68-f509-4a1f-a1c1-cd75e43d04d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHcHFuVoAMF-Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec4d-74e538af2f56b9271f6370c1;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dR53uFDN1I7R9H7r2fmkEGIXuCY5FHGQd7LKz-H02trcasl3NoG2PA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:18 GMT
age: 78821
etag: "f987fdbbb21538b6f55f7dae713b59e234882456"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.a6b1f0605c4665dccf23.js
151.101.85.46200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.a6b1f0605c4665dccf23.js
IP 151.101.85.46:0
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /app/website/js/languages/en.a6b1f0605c4665dccf23.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Oct 2022 16:12:17 GMT
x-rgw-object-type: Normal
etag: W/"e798e0ecdf8a983764ee60e2085b817e"
x-amz-request-id: tx000000000000010799b0f-00633c5bb7-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.a6b1f0605c4665dccf23.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 7374bc1d1690902caa277f1ad7c015dd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 444041
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.406160,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 150606
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 7bfb4e15-ea64-48b6-9e38-5d3e2d553863
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQObZFveoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365de2-620d4fc015ad475203e906e9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 03:09:22 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btYc3mHTigZv3Bzl32D1z777hMKwf-pstyTS7Bp2eGmzbmGI4pIQXA==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:42:19 GMT
age: 78940
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
151.101.85.46200 OK 4.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (5681)
Hash 595a9769e28e42b687d05be6e44ed1b1
ab07b4524f8b5c9efcc3c8eb408c015933f87b94
06d08e2bc2373f5fe3e0138ac069b6f9e644a9456ae7832a5d253e5ef7a75252
GET /app/website/js/41630.acde68362a4f85b8242f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"e3fdf96b41b353e0c37f1f9918024cf3"
x-amz-request-id: tx0000000000000109bb28a-00633b21b6-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.acde68362a4f85b8242f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 248948a0eebf38c535a9deb473b5f1b9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 496000
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344280.942302,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4152
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4209)
Hash d0c3059bddab007ccee07c57336bba88
e0fc4e1f8089d3bae817d8ec888c151f95fd1402
f3db4c4c1c1698425a2e8a9f9aa971ef14ce88681219b227626a9c3dc1790c7e
GET /app/website/js/88857.6e34b40bfa10dd648375.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"9463f4be6c8d7a23f1a7f6a702ffedac"
x-amz-request-id: tx0000000000000026990a6-006324b373-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88857.6e34b40bfa10dd648375.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: b9fa93b1b68f4f1d898db568f1582457
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 1092925
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344280.947785,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3472
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
151.101.85.46200 OK 4.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9463)
Hash 414d8373f1c7696806c33ab7299bf4dd
cd160cf499b27ba121c837c3202b8047ad83fb56
2e291b8826d1f4b2c17be73b5508acc3c8e23de8f83728fe90f3158d5445cc83
GET /app/website/js/49709.cb80a757b769d7ca4750.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"85314933e3dbc3506fb76dbbc18b9cb1"
x-amz-request-id: tx000000000000002699229-006324b375-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/49709.cb80a757b769d7ca4750.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: a1e9b5b80d2e42cf7319f9e882b9a88c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 1624774
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344280.947794,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4057
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
151.101.85.46200 OK 395 B URL HTTP/2 cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (857), with no line terminators
Hash 8d7fcccab55897af77b9e87a64f57b20
8fabb83941907077788025f05cb325c0c7340794
ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346
GET /app/website/css/home-page.330abfc8608ec69de0f5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a8b1be9-0062d074c4-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 995f38829174b97993a0ed18090ad16d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 2314983
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344280.953904,VS0,VE6
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (19908)
Hash f201fa985a8ebdce48c806e4f758582a
e03ed9757e25fd1f7649d2402623a8ba1f5b400b
9453697232ae9df8797a4aec6e547c62c95866ca5597a2feeefc2493eb8c48ab
GET /app/website/js/home-page.44e252f4ea49e6c88e3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Sep 2022 16:40:02 GMT
x-rgw-object-type: Normal
etag: W/"a9917ab68ed49d660f45db725ec853af"
x-amz-request-id: tx000000000000006aa3142-00632b3ebb-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.44e252f4ea49e6c88e3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 5f8e79841a71b39728ed4464187af8f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 1565724
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344280.955780,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6026
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
108.138.212.95200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 108.138.212.95:0
Hash 6886ffc4de7381b5aa0e7172e53f3873
3e2624aae1b0d49439ee9f22d690886acc26e523
1606e35a338388ed237c778ec7b7467c2d75666af489521819794045450a3d8b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 09 Oct 2022 19:38:00 GMT
Last-Modified: Sun, 09 Oct 2022 19:20:32 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 ce3edb24525b5cd14ad82bbb2327e8a4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P3
X-Amz-Cf-Id: _atykMHV482cOrdwUT6X7qxpNBYa57kNp6wiqNlu3iBsRQIAbcj7dw==
Age: 1048
ocsp.sca1b.amazontrust.com/
108.138.212.95200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 108.138.212.95:0
Hash 6886ffc4de7381b5aa0e7172e53f3873
3e2624aae1b0d49439ee9f22d690886acc26e523
1606e35a338388ed237c778ec7b7467c2d75666af489521819794045450a3d8b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 09 Oct 2022 19:38:00 GMT
Last-Modified: Sun, 09 Oct 2022 19:08:15 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 f4faeb517127841e7e64a20ebbade858.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P3
X-Amz-Cf-Id: 2tDLaMaLlY4qt8JMMKWqZngJs5QQjg0nx0iw8HmvD3Xgi9-IUT0vZA==
Age: 1785
www.hairwegoext.com/static/icons/payment-methods/applepay.svg
199.34.228.164200 OK 3.0 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/applepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Hash c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001ac6b03-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu73.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 63635a1d849f6b60a2d38bf8e5cdd7fc
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hairwegoext.com/
Origin: https://www.hairwegoext.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 19:38:00 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.hairwegoext.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hairwegoext.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.hairwegoext.com
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://www.hairwegoext.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 1
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1938
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 19:38:00 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b; Expires=Mon, 09 Oct 2023 19:38:00 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.hairwegoext.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.hairwegoext.com/app/accounts/v1/ping
199.34.228.164204 No Content 0 B URL HTTP/1.1 www.hairwegoext.com/app/accounts/v1/ping
IP 199.34.228.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /app/accounts/v1/ping HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Square-Merchant-Token: ML97X9VN6VRTR
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Server: nginx
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sun, 09 Oct 2022 19:38:00 GMT
X-RateLimit-Limit: 60
X-RateLimit-Remaining: 59
Set-Cookie: customer_xsrf=eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0%3D; expires=Sun, 06-Nov-2022 19:38:00 GMT; Max-Age=2419200; path=/; samesite=lax
customer_session=eyJpdiI6IkF4L1JaYWljVmMyeW54TWh6MEllRmc9PSIsInZhbHVlIjoiUFJqeVE2M3ROSUZvUkdRMzc2bWV5UVdOUnY1NFlhQmpiWFBzSHluM2E3MDR2S3RUWk5sMFA2OXJEQnlWUlNIT2hEOUdPOTRSNDQ5T0liQ1hneWNEZkh4bGdRV2laZTJXYzNEQjdkenlHTmhCSjZLRTVyd29DZzNwQUNwbVhlZk4iLCJtYWMiOiJhZmUwNDk5OGJhZTBkMWRiODU0NTE2ZWI3MGYwNzZmNzA1YjNlZTZjNWY0ZjU5Y2Y5OWRiZjY1OWEyNDNkMjVkIiwidGFnIjoiIn0%3D; expires=Sun, 06-Nov-2022 19:38:00 GMT; Max-Age=2419200; path=/; httponly; samesite=lax
3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=eyJpdiI6IlpjS3lTM0wrQ3AybnVWWmNsb3QySFE9PSIsInZhbHVlIjoiTzZianNIQ0JCcDJmaGFWSzZKT3QyVTcwMGl4R25DZWFpZ3ZpQWwxM3QvTVFHZXJwTlFrZUQ5d0x4U1huR05SLzlrZWdaL0pnZmxhVnRxdGljR0JyM3Z5WTVBbC9pL0tSMlJQNjU2OGE2V29udng0ODV6MUErQ000SThPaGVtZlZ4TzZzYlRPOWpFOXprUjY1V1lVVkdUNVFHUktSWStnZVFoS1B2YlJld0FDbVpKREQwVkE2bzZRQllVQlFUWUVFRkRaWkxQVDQxRm55WUc0TVNsR3JhMTJ3d0RySUNLbFMrVFJZZE9xdkpZeUNhRjZDREw3Si95ck01MHB1bkVmbHZUNE50VUltYmhrT0RjeVlVSmMwTzdHdWxDNERHcHR6dGVoUjMrVDZFN2tnRE5sZWo2MXZCNVFJU1g5UjRkbVZJVitTL1lZNlVQekEyMnowRXpnNW91UFhydTBCeUdUc0pKTXJaOTVncDFFdFBuR1FKU09yQ0NLSFBFd1o1MXhwWnhpSVc3c3BnbFY4cThwaWN5TVNiYXVnUjhDWFUxeDNhdVhoMWFWQjBDMXhxZXhnM2RJWThzZlFwSVl5aHpPMSIsIm1hYyI6Ijk2NDM3MTNiM2MyMGE5ZmRhNmNkMTFhNDg3Mzk1MGNmZWQwOTQxOTQ3NGNmY2MxNmY5Y2JjODJkMDk0ZWIxNzciLCJ0YWciOiIifQ%3D%3D; expires=Sun, 06-Nov-2022 19:38:00 GMT; Max-Age=2419200; path=/; httponly; samesite=lax
X-Host: grn13.sf2p.intern.weebly.net
X-Revision: 1703d47eb19c3deee5eb51e511e639b491b3a80e
X-Request-ID: 16cbf82375c3bd3cc7ee9ac5de59498b
www.hairwegoext.com/static/icons/payment-methods/googlepay.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/googlepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Hash 2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001ac6a2f-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu64.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 3b002254493e2aecb05372c306331af9
www.hairwegoext.com/app/website/cms/api/v1/users/143148487/customers/coordinates
199.34.228.164200 OK 70 B URL HTTP/1.1 www.hairwegoext.com/app/website/cms/api/v1/users/143148487/customers/coordinates
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9752b06c768724a72741cf9388713596
3c05993fc47e53d1edaa9c03779565a7753f3a61
1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c
Analyzer Verdict Alert quad9 Sinkholed
GET /app/website/cms/api/v1/users/143148487/customers/coordinates HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0=
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Sun, 09 Oct 2022 19:38:00 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9; expires=Sun, 23-Oct-2022 19:38:00 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; expires=Sun, 23-Oct-2022 19:38:00 GMT; Max-Age=1209600; path=/
X-Host: blu46.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 4b4af9df47ad6c7ca18e50ceb9333e8c
Content-Encoding: gzip
www.hairwegoext.com/static/icons/payment-methods/visa.svg
199.34.228.164200 OK 2.2 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/visa.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Hash 98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx000000000000034345dca-00631274b0-c03521c-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu150.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 226102a6e958152b237fb757ac8f6f7b
www.hairwegoext.com/static/icons/payment-methods/mastercard.svg
199.34.228.164200 OK 1.7 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/mastercard.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Hash 1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ae6773-00628473fe-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn47.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 2e6841e9b3f1e690482e331b2100a1c3
www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
199.34.228.164200 OK 201 B URL HTTP/1.1 www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0=
Content-Length: 83
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 19:38:00 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn24.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
199.34.228.164200 OK 1.1 kB URL HTTP/1.1 www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with very long lines (1083), with no line terminators
Hash 091e86ac215ef3db295712c18bcfb55d
3bf505df3a7dc779fbbc2a22ff1b996913f7d3a1
1c95228a4e8be5e05f7c14d0a8923a2df81a3fd92c6129dce131b3c4ff6f3f28
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0=
Content-Length: 78
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 19:38:00 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn122.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 1083
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.hairwegoext.com/static/icons/payment-methods/americanexpress.svg
199.34.228.164200 OK 1.2 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/americanexpress.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Hash 2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ac6a0d-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu64.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 38ca1af8160ff0de19426427b4650884
www.hairwegoext.com/static/icons/payment-methods/discover.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/discover.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Hash 9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001a887f9-00628473fd-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu46.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: c4d9bb2d5df8c82172741b29a1c1e156
www.hairwegoext.com/static/icons/payment-methods/jcb.svg
199.34.228.164200 OK 3.9 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/jcb.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Hash 32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001a5c1f8-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu150.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 9b2add66c0dde1abbb6c55aa07e4af53
www.hairwegoext.com/static/icons/payment-methods/cashapp.svg
199.34.228.164200 OK 1.4 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/cashapp.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Hash 4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000dba36fe-00629614ed-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn47.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 58d2c96c5bd478ef5974d9cd31b2f357
www.hairwegoext.com/static/icons/payment-methods/paypal.svg
199.34.228.164200 OK 3.5 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/paypal.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1002)
Hash aace69a7690bbd1edb34ab14a3f33d6b
9dff4a71d6dcefb12f2514b5475741282225055d
1323efc68eff189db0f24fe19470a82e634f82b92462c65ba2070dd377c1a466
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/paypal.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6ImdJYkpEODNIWXoxK2NqQ1JocWk1K3c9PSIsInZhbHVlIjoiMGdVU3NtMDRYb25lanNjK0Z3RGJcL3RYc2M2YU1yaEZjRlNCVis2ZlFrQlB3bWRmbk9GZDdLXC9zNVNocFNKMnNhK1Y0NmFIUDQ2YzhpNEFiSkhGWWgreFhKM0JyaG9TdUFZbHV3NnlnTCtuMXN6SVwvSUVNZGM0am5XdEpQQ0hTRU8iLCJtYWMiOiJiZDljNDllN2Q1ZjZmNDAyZjkwMDQ3MDhjMjYxYjY5MmUxY2Y1YjY2NzgxMWEwNWU2ODNmYTg2OWY4NGRmYTM1In0%3D; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 3459
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "aace69a7690bbd1edb34ab14a3f33d6b"
x-amz-request-id: tx000000000000001a5c305-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn45.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: f50d3ecfdceb766d781c0033fe67253e
www.hairwegoext.com/static/icons/payment-methods/afterpay.svg
199.34.228.164200 OK 2.1 kB URL HTTP/1.1 www.hairwegoext.com/static/icons/payment-methods/afterpay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (665)
Hash 260a26946c3308e835f83022e177e1aa
3ef5afcc903a2375bc686511214c5e9e535b2342
cb0d2b4c057e2dd0c0be626a3fc89c2fbfe23a8de627f2031d1c44de406ffc35
Analyzer Verdict Alert quad9 Sinkholed
GET /static/icons/payment-methods/afterpay.svg HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6IkF4L1JaYWljVmMyeW54TWh6MEllRmc9PSIsInZhbHVlIjoiUFJqeVE2M3ROSUZvUkdRMzc2bWV5UVdOUnY1NFlhQmpiWFBzSHluM2E3MDR2S3RUWk5sMFA2OXJEQnlWUlNIT2hEOUdPOTRSNDQ5T0liQ1hneWNEZkh4bGdRV2laZTJXYzNEQjdkenlHTmhCSjZLRTVyd29DZzNwQUNwbVhlZk4iLCJtYWMiOiJhZmUwNDk5OGJhZTBkMWRiODU0NTE2ZWI3MGYwNzZmNzA1YjNlZTZjNWY0ZjU5Y2Y5OWRiZjY1OWEyNDNkMjVkIiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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%3D%3D; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:00 GMT
Content-Type: image/svg+xml
Content-Length: 2148
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "260a26946c3308e835f83022e177e1aa"
x-amz-request-id: tx000000000000001af9d1b-00628473f7-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn75.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: a592b4bb00828e1a68256f15531f0b09
www.hairwegoext.com/square.ico
199.34.228.164200 OK 6.5 kB URL HTTP/1.1 www.hairwegoext.com/square.ico
IP 199.34.228.164:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert quad9 Sinkholed
GET /square.ico HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6IkF4L1JaYWljVmMyeW54TWh6MEllRmc9PSIsInZhbHVlIjoiUFJqeVE2M3ROSUZvUkdRMzc2bWV5UVdOUnY1NFlhQmpiWFBzSHluM2E3MDR2S3RUWk5sMFA2OXJEQnlWUlNIT2hEOUdPOTRSNDQ5T0liQ1hneWNEZkh4bGdRV2laZTJXYzNEQjdkenlHTmhCSjZLRTVyd29DZzNwQUNwbVhlZk4iLCJtYWMiOiJhZmUwNDk5OGJhZTBkMWRiODU0NTE2ZWI3MGYwNzZmNzA1YjNlZTZjNWY0ZjU5Y2Y5OWRiZjY1OWEyNDNkMjVkIiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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%3D%3D; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:01 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu150.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: 5bcfa482252e13e67889d24e3842a0ba
cdn5.editmysite.com/app/store/api/v23/editor/users/143148487/sites/560753218827209806/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
151.101.85.46200 OK 2.2 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/143148487/sites/560753218827209806/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (8504), with no line terminators
Hash 3a67634f6179ab1316223c9d166055a3
26fe60fd24525710cb3b30c0025b753c69e9f573
81ee51cc5e0d97ff7ee01e9b2b315b4a67953170f7b999df80186e5322626f98
GET /app/store/api/v23/editor/users/143148487/sites/560753218827209806/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: s-maxage=604800
etag: W/"50d248577fce0102c30d010d1df7e1fc"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: 6dae70a2d5c731e0410db2b735908f104f02f950
x-request-id: 8b7c5f3dbec78d8c3689e1f3240a9bd9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665344281.783591,VS0,VE503
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2182
X-Firefox-Spdy: h2
www.hairwegoext.com/uploads/b/22096a30-339f-11ed-95f6-416813442f10/icon_180x180_ios_MjIxOD.png?width=180
199.34.228.164200 OK 1.7 kB URL HTTP/1.1 www.hairwegoext.com/uploads/b/22096a30-339f-11ed-95f6-416813442f10/icon_180x180_ios_MjIxOD.png?width=180
IP 199.34.228.164:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b4433b1f7129d5909306ba536d31bc81
d3c12202ef45906d72ede36eef842c955d347446
563e0beeb7bcc3f7884ea44f5c872451e00b9bc306ca62debed0e5371d06b265
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/b/22096a30-339f-11ed-95f6-416813442f10/icon_180x180_ios_MjIxOD.png?width=180 HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6IkF4L1JaYWljVmMyeW54TWh6MEllRmc9PSIsInZhbHVlIjoiUFJqeVE2M3ROSUZvUkdRMzc2bWV5UVdOUnY1NFlhQmpiWFBzSHluM2E3MDR2S3RUWk5sMFA2OXJEQnlWUlNIT2hEOUdPOTRSNDQ5T0liQ1hneWNEZkh4bGdRV2laZTJXYzNEQjdkenlHTmhCSjZLRTVyd29DZzNwQUNwbVhlZk4iLCJtYWMiOiJhZmUwNDk5OGJhZTBkMWRiODU0NTE2ZWI3MGYwNzZmNzA1YjNlZTZjNWY0ZjU5Y2Y5OWRiZjY1OWEyNDNkMjVkIiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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%3D%3D; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:01 GMT
Content-Type: image/webp
Content-Length: 1688
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "ZXD6eyyMuTUc77wHXvH8gk8PZoa1f5XELLrReEYavHk"
Fastly-Io-Info: ifsz=2680 idim=180x180 ifmt=png ofsz=1688 odim=180x180 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx000000000000014630d01-0063432319-c6aed46-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: za9e8
X-Storage-Object: a9e8033a6808618b1f3b21f3a6b58259cc8e111e0ed27abaefaea4e0cd764e01
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10029-SJC, cache-pao17460-PAO
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1665344281.195443,VS0,VE51
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn142.sf2p.intern.weebly.net
www.hairwegoext.com/app/accounts/v1/customers/me
199.34.228.164401 Unauthorized 30 B URL HTTP/1.1 www.hairwegoext.com/app/accounts/v1/customers/me
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 11977a90f6bcc30dbb2c1096dfb33a52
8cd52c68a113f8e4b3d8f141784dab663d3fd5cb
8031180d4d982a471ca97ef5a04e8d013d003c5c19e80d0a5f45401c4463ec27
Analyzer Verdict Alert quad9 Sinkholed
GET /app/accounts/v1/customers/me HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Square-Merchant-Token: ML97X9VN6VRTR
X-XSRF-TOKEN: eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0=
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344280.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6InJOZTdnNDNXRHVjVTUwcEFnSGxicWc9PSIsInZhbHVlIjoiVmtwL29FamY1NndlMFFLdWt3RmtWQ1FkbzE5NVNjTGNSVXZMOERiU21tSTcyajRhWjByL0E5Z204Tmh0bjkwU3ZON1RMRURuUmgwcTNrVHZITFBDZFcvRHZ5NFBuYjBzWVhVbnJjM0EzUXRDWmUrSzZRWXhVUHBXN3JlamxQc2ciLCJtYWMiOiJiZjZmMmRkZTc0NWZlMjE2MjVhNzEyMzQyNzg5NGMxNjJiYTE1ZGQ4NDFiNDgyY2MyYzhkMjgzZjJiZjg1OGRiIiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6IkF4L1JaYWljVmMyeW54TWh6MEllRmc9PSIsInZhbHVlIjoiUFJqeVE2M3ROSUZvUkdRMzc2bWV5UVdOUnY1NFlhQmpiWFBzSHluM2E3MDR2S3RUWk5sMFA2OXJEQnlWUlNIT2hEOUdPOTRSNDQ5T0liQ1hneWNEZkh4bGdRV2laZTJXYzNEQjdkenlHTmhCSjZLRTVyd29DZzNwQUNwbVhlZk4iLCJtYWMiOiJhZmUwNDk5OGJhZTBkMWRiODU0NTE2ZWI3MGYwNzZmNzA1YjNlZTZjNWY0ZjU5Y2Y5OWRiZjY1OWEyNDNkMjVkIiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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%3D%3D; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 401 Unauthorized
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sun, 09 Oct 2022 19:38:01 GMT
Set-Cookie: customer_xsrf=eyJpdiI6IjlsRzNWRnU3TU10NWU1cHVLb1hTelE9PSIsInZhbHVlIjoiT2ZXc1c0NStabGgrWWc2ZGFkeDVKNklIblF6dlRDZXo3VGNnaXlsNXVvbTZNTmNHMFpMeXZsZGxKdGVneGZBT1dCbUtNZDBGSUtlWm12L2dlbHYxT2xudE81eTk5bGRvUFJRMEhmMExpeUVLOFJuSkRmbDlyQk9MamVRa0lKeHUiLCJtYWMiOiIzZDQ5ZjczYThmMzAwMWY5NjE4MzdmMzNhZjkzZjk3Y2NmOGM3MmJiMjQ1NjQxNjIyNDhkMTZjYzI2NDA0ZTU0IiwidGFnIjoiIn0%3D; expires=Sun, 06-Nov-2022 19:38:01 GMT; Max-Age=2419200; path=/; samesite=lax
customer_session=eyJpdiI6Ii9jZkdyMmRZQlNGeHRSdkxRazR3ZFE9PSIsInZhbHVlIjoiM3o2cDYzVklwclROZ0RaWkd3Q1FGejFZc0ZBMGJnUjlPYjIvZW9Kb0ZvN2NQZ0FnbnpGb0hHN1NKeHZFMldJeEM4dUtNZmJHREgrS0NaNDVJZFRsdWRSL0hUemhIZTFaZ0ppNEsxcjNJclBBNThKanlyYW9PMHppK0lQN2RjMHEiLCJtYWMiOiI2MjQ4MGM0OTRjOGQ2MDg2Y2NkNzYwNDBjYjgzYmIwZjcwZGNjYjM4NWQ4MDM0ODI3NTM1NDgwMzZjM2VhNjg4IiwidGFnIjoiIn0%3D; expires=Sun, 06-Nov-2022 19:38:01 GMT; Max-Age=2419200; path=/; httponly; samesite=lax
3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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; expires=Sun, 06-Nov-2022 19:38:01 GMT; Max-Age=2419200; path=/; httponly; samesite=lax
X-Host: blu17.sf2p.intern.weebly.net
X-Revision: 1703d47eb19c3deee5eb51e511e639b491b3a80e
X-Request-ID: 5e49737d91ddc749fa71831c469540c8
cdn3.editmysite.com/app/website/static/fonts/PT%20Serif/PT%20Serif.css
151.101.85.46200 OK 152 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/PT%20Serif/PT%20Serif.css
IP 151.101.85.46:0
Hash e58250356277a9cb8f9cddab2c7fde84
aff9b9a681f64afd17ef17e4a62f793e0055e45f
a18ecaebe80a649aaf63951e6f61ffecce54c4fda56ea7e6ab3357f701033aac
GET /app/website/static/fonts/PT%20Serif/PT%20Serif.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"75596ebaccc35446a00a9404eff98e26"
x-amz-request-id: tx000000000000036e783c0-006316b98b-c03521c-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: ed4e5cd1b039f7d9575fc5989bda95bb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 2910606
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.618236,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 152
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Forum/Forum.css
151.101.85.46200 OK 145 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Forum/Forum.css
IP 151.101.85.46:0
Hash 22c0b30eb9ce832958c5f79cfb2f98ec
3921db403d68c0f29337d814574508652e2cb11c
aefdcecdb1451e587d019225e0c13e1588b479043a1309f1045be020339c57b8
GET /app/website/static/fonts/Forum/Forum.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"2fc48154cbfe9c5c84f72a8ba2753dd4"
x-amz-request-id: tx000000000000010c72775-00633b5fac-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: 596e22a541b5f9c22991412e69a3c4c3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 303974
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.618700,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 145
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (15920)
Hash aeae4740ce9ca44afb45d241a6d7cf02
63c70a7ccc0218c61cf82048d8d1c9c6803ce1c0
73486eccc5e108672e81c0bd003e335f5df16d3e054ae3926cb11243094ebb69
GET /app/website/js/66828.7a1f2b6b3048c8a9abed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"cfc68333314856ff257312138eb8e7d0"
x-amz-request-id: tx00000000000000b054a13-0063331d4e-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66828.7a1f2b6b3048c8a9abed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 95063e34933b6ac4cc619f8788a46f10
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 500070
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.638448,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
151.101.85.46200 OK 10 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (17020)
Hash 6d29cec60d1053f23cf97c994eb73a45
a29a50007be195639b28438e3e8fac66deaf7fb4
88645a58ed4ff84af06d664587985423e46e68a335ac68dd42db65fe011417d7
GET /app/website/js/9458.dfb54a3d2009837dfc1c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"74b08c80795cf6c4c2cd8979b88a585c"
x-amz-request-id: tx000000000000010617a82-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9458.dfb54a3d2009837dfc1c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 68cbcf8561fe2c55fbd959bb2eae33d9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.641961,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10254
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
151.101.85.46200 OK 3.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (10021), with no line terminators
Hash 0592b530cbf990977268f19f0ce0c027
e8a33134a639a676dda386f796b21bebd8a90511
4e0b9f188663c9d24bc3c665366dba35e2f46337c97ffb160de58ee765664292
GET /app/website/css/navigation-mobile.b78212d8d37b56895f14.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"8857de04e5bf7fff2d6541c8abb6106d"
x-amz-request-id: tx00000000000000bd3e41c-0063331d56-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 5a7c64583387578e4dd9db8ead97b0e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1049990
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.644295,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2999
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
151.101.85.46200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (30694)
Hash 324d82707a7157490d4e1a23ab3d0915
a2b2be87328fa1894aefeb42593106a7aad321db
f09187714bc26344c2f06bd8896fb0a4c3779d4fbf0486035381c837debf2fb3
GET /app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"c42f7160d4813844aa9c3d1d52fe51f1"
x-amz-request-id: tx000000000000010818d83-00633b018a-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.4492aebe016a3cf84ad3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 9efb546b4f39128ef88580e56749107b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 486190
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.645492,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18200
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
151.101.85.46200 OK 4.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (14043)
Hash 178758f917347be3cc16039638a3a080
1ebcaccefe2a24d321638fde0988ebba235e18df
e0fb3cf963ea543c17b0ea8d0ead49e0c389774758d0a1036098dfe0a22b4e44
GET /app/website/js/89814.7c33af088cddc4109e43.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"06d79aaa6a4d188323f29ce9534ab179"
x-amz-request-id: tx00000000000000bf2b936-0063331d4c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.7c33af088cddc4109e43.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 46f4336f14f055330c9ccccabefdc994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1049989
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.654519,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4338
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16366)
Hash 2cac664b5fcd18937498e65fced2cfb0
86a9c74dc43e77fe2e907dec4bcadd06e12e1238
61af8efb689db443c0cf4beec37d6ed8005fe8a15d5689922bf3f8a2c5282161
GET /app/website/js/63078.d8b67652f8a80e7ebc30.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"9381a58af2c4d899bf85a5d6dabfff07"
x-amz-request-id: tx00000000000000f90a704-00633b019a-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63078.d8b67652f8a80e7ebc30.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 583d0826dc59f81dced7357aba1f7027
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 2507
x-timer: S1665344282.657411,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
151.101.85.46200 OK 8.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22834)
Hash 59216768b8576418d667cecaa1b57c9e
7e299a69e55515b1e89f7f0e08d14917c360dd8f
1f1ad83672f2819c2b76fb5d8a02c0b483a77a1e781760064c92c40f9993fa0d
GET /app/website/js/3464.0e011b7da28b4dcc50f9.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"d1fff5f103d924ecf44e37f414dd7644"
x-amz-request-id: tx000000000000010617a85-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/3464.0e011b7da28b4dcc50f9.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: adf510b1c3dca3e607c242fdb0258334
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.657706,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8310
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
151.101.85.46200 OK 9.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (20536)
Hash e5f819fd2471f0d39f40a424b6e738c3
025955df8e6f7816bdec557210b0b6e2569a56a9
80886528d1a068690cab927c342713be1cf493123535c3560909ffd0c85dd879
GET /app/website/js/69151.43baa48b8e2696afbaee.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"cc04044592d2e34cc614fa22b6ac2f54"
x-amz-request-id: tx00000000000000f7bb41c-00633b018f-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69151.43baa48b8e2696afbaee.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8872d53f1a9426ac16d95767d7b23df3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.660654,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9796
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (7232)
Hash 15a3b2ce336346214b5f64857c5d1519
6ba823f3ea963e92e32b0bbfadc2131a6e410bbe
6013ad42e817b64fee242eb28f954a90f16933f1c67a0ca1db586202ca1c54f9
GET /app/website/js/19384.efee8b71a6a648cb9204.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Sep 2022 18:33:20 GMT
x-rgw-object-type: Normal
etag: W/"aa1ab652fd9758b5b518b2a9fa053202"
x-amz-request-id: tx00000000000000c0e601f-0063336316-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/19384.efee8b71a6a648cb9204.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: fc502d8e34c167131b5c714a8eed0a1e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1032195
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.661189,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5005
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16809)
Hash 84c5d286b0f8559fa7dfece05a6d470f
70c6ad1f4fdbe1a000a2456e8c7f1447714b6f79
d14e896d3d64286851790eb7627c34757fdd5238c5fe28d4d6bd35176d9551bf
GET /app/website/js/28134.77d6819aef6675b6d037.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"7b6032abc58def0599a6d34df6d728be"
x-amz-request-id: tx00000000000000cb85c8d-006335dc37-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28134.77d6819aef6675b6d037.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 410c1612457aa0c225a78004c5722c86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 869913
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.662004,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5953
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
151.101.85.46200 OK 5.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (20997), with no line terminators
Hash cb23449d0e7a6f85177e66f9e4cb8b97
e6698cb203cbcc6490b181c9324ebc0d9947133b
2dd236f452096dd4066d3c457d91fa9d9304065bd99ef42eb1bd39071655f3cd
GET /app/website/css/69151.1d587d349a2e30b7c539.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"38535bbed5cc9591643d0bfd54dff7cd"
x-amz-request-id: tx00000000000000af3c7a5-0063331d4d-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: 4428a1f2426c3c02ce008a2e7251252a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 316835
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.659470,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5080
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/cart-1.f096b45ecc410ba8866c.js
151.101.85.46200 OK 32 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/cart-1.f096b45ecc410ba8866c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9219)
Hash a3a0659e1bb62277bbe806e3293e0acd
a60c500cb4299c2f973030c8523277fbd3174e79
4133774d632f89da36b7eb72392e3dca67832501e0b7f49b3bc230321a4d9631
GET /app/website/js/cart-1.f096b45ecc410ba8866c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 14:30:42 GMT
x-rgw-object-type: Normal
etag: W/"ff8abbf1af73a3d282f9bffbc0b3d33f"
x-amz-request-id: tx000000000000013101c94-00633ee706-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.f096b45ecc410ba8866c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 06b9f5679b51ca82d735bc7f7dfb675979c2bdcc
x-request-id: e047b54acc280dafa96d591494d29715
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 277401
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.663702,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32312
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
151.101.85.46200 OK 5.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (19438), with no line terminators
Hash b8add3c1c648f7e4f230d49593139bd3
d5ebfba29d9a40abafbc16d9b43c76413c72f35c
be3ad27c46cd758ac15573522384394ff0018e6b3f490e3547077c74ef75f46b
GET /app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"8b4ceee22aa43054751ec463b5144296"
x-amz-request-id: tx00000000000001077d03f-00633b21b3-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d6ae832b1c28c118f59abbbc4abc5b2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524646
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.663567,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5220
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
151.101.85.46200 OK 5.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (12428)
Hash c2c1ee3bb6fdfd4cd2e8dd94691ed5fa
8cba707131ee4535b7587d21dab4a372ff3d315f
e46b600635d77073913fe13797f1ebbd3e769cf1021833c503d1acaea6686cfc
GET /app/website/js/31083.4f8bf72e65310781cdc3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"779d3ba5eba2e36c5e1e5214df356c5a"
x-amz-request-id: tx0000000000000108194d0-00633b0193-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31083.4f8bf72e65310781cdc3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 3c476c4d944b58a3a179c7150d72d74a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.688187,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5225
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
151.101.85.46200 OK 4.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (18914), with no line terminators
Hash 9c48deacca63997a018adc4d9057af6c
9a7a3c896c94810be3967b546e1c28deb945ebc3
32d2e1cbe1c50b9a78bf0d1c45d52b2354f43f2c60f7b4f0f6896e60467b0ad0
GET /app/website/css/62651.637819b958113e0a7acc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"224ec22bc5a895e36f855a2be31ecc0d"
x-amz-request-id: tx0000000000000105dcc27-00633b0184-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 357e837056e54c5d3d86777076e422d1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 492036
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.688266,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4794
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
151.101.85.46200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (10185)
Hash ba2aca810f7b8482853e7d5d40b62776
a4b81ae91f35d9cff43145e40be912078f5d2eaf
cc34afd70a0bb32291a2be71f92beb22d281961649772b806d997511ab51a0da
GET /app/website/js/33182.694277c0f3aea942d6b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"fc698b0eddcf2e0d002759d3f7c1250a"
x-amz-request-id: tx00000000000003dbad805-0063210df8-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/33182.694277c0f3aea942d6b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: dd6054965014ba80d9fd7e89677c34d0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1705497
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.688901,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3906
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/10678.f71c422817c3885ac5e6.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/10678.f71c422817c3885ac5e6.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22743)
Hash 0884ee2d224e19efd27174ac6595fd50
403f552599d4d1aae63df5f1a1501edcc12433f2
b93097e4c55432acb5cfd02d569ee97dc94068bfcfd30d773943e20a5746762c
GET /app/website/js/10678.f71c422817c3885ac5e6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 16:12:14 GMT
x-rgw-object-type: Normal
etag: W/"0e531f4ccd9f918ddd3f3a1bb31d4cdc"
x-amz-request-id: tx0000000000000130ebd3c-00633efec9-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/10678.f71c422817c3885ac5e6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d19cce644565f06e2054d01cbad9b190d9ef72c7
x-request-id: 39afd371b304b4ef156c117b048c2a71
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 271204
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665344282.689441,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12727
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
151.101.85.46200 OK 9.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (24677)
Hash 251da6b85be6e25a29fac83d142e17a1
91db8c481d50f2515091ec4273f11bac20c91846
325457af8d2eafe9bc1e9e4ed949860ea388c180e687a5871a8ee79cd6ff0a64
GET /app/website/js/62651.3b34ab6bb4023a44208c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"ae704f34826303439556045a14365f92"
x-amz-request-id: tx00000000000001074d31d-00633b0185-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/62651.3b34ab6bb4023a44208c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: 4b2c61c6a5a8c47d6a45d6aaf53beacb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 316835
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.688784,VS0,VE15
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9367
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2378
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 19:38:01 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b; Expires=Mon, 09 Oct 2023 19:38:01 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.hairwegoext.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (13912)
Hash 493704f053d7437bdc89df0882cf81ed
084f2f1d43b5210e42f32e079008988d4fe8d2a4
a6cad1c76c4e7223ad170384bcd12a4bf47fc58544aed550287c67d7169c2255
GET /app/website/js/28962.d18168a4fef01bd4d15d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"370799bbaeff3ba460557bb19cbe82fd"
x-amz-request-id: tx00000000000000bd3d7a9-0063331d48-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28962.d18168a4fef01bd4d15d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 82213c86f96f032b754b4908844d5e55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1049989
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.671324,VS0,VE38
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4977
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
151.101.85.46200 OK 5.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (22082), with no line terminators
Hash f44a367ff6f9cef7503e149284dda04e
64eb1ace475f0233b433fbdeaa899e342a1598f7
c12b02a74aaa8eb5569f06c3ab19a94901ce124edf917595d0926e327193e1af
GET /app/website/css/header-4.1541832b8fd135e7fdac.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 20:52:07 GMT
x-rgw-object-type: Normal
etag: W/"b3697b8d5ccf39c18678e88f0e95670f"
x-amz-request-id: tx00000000000000b2e563e-00633362e7-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 9e93f5b4898e059b6938a50a5d13f035
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1031863
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.730343,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5644
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/header-4.9ccc1647aa2b6a12153a.js
151.101.85.46200 OK 29 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/header-4.9ccc1647aa2b6a12153a.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (32736)
Hash 26c9a4681b765d09f1a4f9330ad084a3
78b39080991782bd19af562f3762a13b5f9a1238
f7efa689b0be5b326394adcbcd56358d78e8104d0f1d0ac4a81e348779fc4b0c
GET /app/website/js/header-4.9ccc1647aa2b6a12153a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 14:30:42 GMT
x-rgw-object-type: Normal
etag: W/"0957b8fb83c426b42132ae9c96b13000"
x-amz-request-id: tx000000000000013200a44-00633ee709-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.9ccc1647aa2b6a12153a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 06b9f5679b51ca82d735bc7f7dfb675979c2bdcc
x-request-id: 0680cfd0735b57ba0e512fbf4b75b4b7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 277339
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.731219,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 28742
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/97950.ef912986120f75515593.js
151.101.85.46200 OK 11 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/97950.ef912986120f75515593.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (19523)
Hash c4d7e3c0867e30e42a314aabb7ecb039
a95cae740869aa624d09fe732a023591ebd61669
82c12fe7784b438b5b5090a830effce1c4c827f04b77fe8a74e0892d414cf135
GET /app/website/js/97950.ef912986120f75515593.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"26e96c6759db32e0b184ee299bfb978d"
x-amz-request-id: tx00000000000000faaaa9b-00633b21c3-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/97950.ef912986120f75515593.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: caa3d287e079dcfe8a7ffbcf59dea0eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524537
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.865941,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 11037
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/banner-3.f60fa910a0c5dd21c007.css
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/banner-3.f60fa910a0c5dd21c007.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (5757), with no line terminators
Hash 6d4b0be6656cb2227b75546ffdde3666
8906b03c0b931e8f778a943c2c7fb2c5be092819
e78b55032307f6c1eb085f07a1ad1a3b3205829d50884afa246a9041f64b4c11
GET /app/website/css/banner-3.f60fa910a0c5dd21c007.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:20 GMT
x-rgw-object-type: Normal
etag: W/"87e7786d9865e4ddbec969b75215e4c7"
x-amz-request-id: tx0000000000000109bb8bb-00633b21bc-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 1b3de4fba9670a5e16cf79f3ca05df8f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524537
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.866469,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1557
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/banner-3.cb6dbca82a63c6137a6b.js
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/banner-3.cb6dbca82a63c6137a6b.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (3188)
Hash 31c4afb40f312e371d54f75e7e3ef000
05eb58113f8424b7ce671b311a96aed246881aa1
db703041919bd20efe277d373e7d6749588bf8fb32fea3d497cdb8522471ee69
GET /app/website/js/banner-3.cb6dbca82a63c6137a6b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"51127a67294608b12f2e5050078cc377"
x-amz-request-id: tx00000000000000faaa22b-00633b21ba-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/banner-3.cb6dbca82a63c6137a6b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 0af4df229e0a9c79f82258d2f970d2d5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524537
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.868219,VS0,VE6
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1570
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (18330)
Hash f2397a8edc8314d2ab89af5bef811d57
b88f044f6f2bbc9cdbdbcd6ac2a6829f0fc99f29
bf36d69af07442ee1664ede9c7069461ea97a92e299fc1ba6284c4b332e58ca0
GET /app/website/js/91272.1c5d597f56a343a39169.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca7b2a99099a151b51b4c15d1d2bc11"
x-amz-request-id: tx00000000000000bd5f4c2-0063331d4c-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/91272.1c5d597f56a343a39169.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: dc38a1708fb97f3ab8290ddcf3befc5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1049989
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 286
x-timer: S1665344282.883140,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12604
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
151.101.85.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (8710)
Hash 427c7fe2b3d549712100f6820b08efbd
c229680202f32a5d973fd8f91f4be59b9c050e28
d9ad555d0cc050b5522d23427dbb81b4be0bb3182e979e53359916e144f5d901
GET /app/website/js/26267.78a7b8e043fd38ce5bed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"da9c41584ada728a23d91b0505f40439"
x-amz-request-id: tx00000000000003e0b9c83-0063210df5-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26267.78a7b8e043fd38ce5bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: f26bc6b476269279cb2711ab775bd8cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1696205
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.882935,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3577
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/72383.b748e1648202cf8e0251.css
151.101.85.46200 OK 4.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/72383.b748e1648202cf8e0251.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (19868), with no line terminators
Hash 27a9b3967948c7323f0fba454220609f
69ffc9b15fccd190a68cbfdbe494f9979560204d
40094ccebd4f9fca91a17ed432f460b0410f76f09caf6ed215897cdb6cff73a7
GET /app/website/css/72383.b748e1648202cf8e0251.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 20:52:06 GMT
x-rgw-object-type: Normal
etag: W/"08abfc7509e97a8651896191f9c9a7d7"
x-amz-request-id: tx00000000000000faa9f98-00633b21b7-c67eadd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 62e79bc97e5cac5e6a3fc37099a8b756
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524038
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.886637,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4788
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
151.101.85.46200 OK 16 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22595)
Hash 5a6cc2d02a3220f2d0c07ce8afe00735
a1f15e6a23aa71b8f0a554a7408373942c314238
de865be6736e5389d52ca365e09dbd414fdceb6a753c8b5dec34a650b8ff2a5a
GET /app/website/js/584.caaf0ad96373138bf188.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"1f1a99ca1c046e3862230cac549e8225"
x-amz-request-id: tx00000000000000d87dd9c-006335dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/584.caaf0ad96373138bf188.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 8e046d250cae6802ae7fc9a80c3a3dea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 869912
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.886519,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16069
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/72383.953b0ff69500f31a4396.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/72383.953b0ff69500f31a4396.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (11060)
Hash e6788cfbc12da6aaba0daca7d5f58c8f
954a5943c05d92a2e65c9dbabe231616fda0de18
6e4f14de08c3108966aa568c04eccca4100b762a1357db9f66917ac96b98cd64
GET /app/website/js/72383.953b0ff69500f31a4396.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"00fd1403ce9462dac8510e962be15d1b"
x-amz-request-id: tx0000000000000109bb4ec-00633b21b8-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/72383.953b0ff69500f31a4396.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: c3b808aa215df8ddf10f41984b08dbf7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524038
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.888936,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5952
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/newsletter-1.14dfafe37db15278f690.js
151.101.85.46200 OK 1.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/newsletter-1.14dfafe37db15278f690.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4042)
Hash 4885e11ebc1975ba647af8f9a1947d3d
94f5be23ae61509869c53046d31e5f404ce6451c
540a146e98277027c9a771b82877e69151dd6cacf5c4afebc59bea470adf3ba2
GET /app/website/js/newsletter-1.14dfafe37db15278f690.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"e64055dd3a58919cb9b203367ffed194"
x-amz-request-id: tx00000000000001077d389-00633b21b6-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/newsletter-1.14dfafe37db15278f690.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: 8b7f39c47bbb41ed363cdf5fa951adcd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 524038
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.889309,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1848
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/95426.896d9f9b441b49750d3a.js
151.101.85.46200 OK 3.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/95426.896d9f9b441b49750d3a.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9235)
Hash 39940dc8b9717510405cd0c37ec03c8f
5c3913b4867779ab9f2ec071c66ed902d2327433
3c482000b938d3330999a2791eb823f727dd966cf7bccdb8a8980c745e7a6898
GET /app/website/js/95426.896d9f9b441b49750d3a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 20:32:32 GMT
x-rgw-object-type: Normal
etag: W/"7e7195afc25d6cd1f4b22aebdf3e9e91"
x-amz-request-id: tx0000000000000126aecda-00633f3bd0-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/95426.896d9f9b441b49750d3a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8154916e9631d15d7aa6a3d72a60897434766f71
x-request-id: 2965f747fcbfa00188d7ced05e588de8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 255468
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.891223,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3389
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/37832.33ca5b56a1b14e2cc314.js
151.101.85.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/37832.33ca5b56a1b14e2cc314.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4507)
Hash 0a6e41a1b7d0529b234651856fa8b62a
0959e19fbd987ea04da8b3ba33c7352d8d72405e
5fc5c6ab7eb46393f207f47468c70b0ebce58018c4eae23858ad51165e1daa6b
GET /app/website/js/37832.33ca5b56a1b14e2cc314.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 14:30:42 GMT
x-rgw-object-type: Normal
etag: W/"190a7770bc7919e5c4fb0463d9fc45b4"
x-amz-request-id: tx0000000000000122b5e62-00633ee705-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/37832.33ca5b56a1b14e2cc314.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 06b9f5679b51ca82d735bc7f7dfb675979c2bdcc
x-request-id: a8b58d365553afd14a7cb81618af7b0a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 277401
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.891837,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3629
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/70052.250e22ac01c1076a8565.js
151.101.85.46200 OK 3.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/70052.250e22ac01c1076a8565.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4698)
Hash e7d4697f29f253f828bada685f200eb9
8266106c28edf2852284ec91606011b5099681a5
4c879ff96b212ebc99a241cce88af5aec9f28085434ffa2b2d31c7edf17870b2
GET /app/website/js/70052.250e22ac01c1076a8565.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 20:32:32 GMT
x-rgw-object-type: Normal
etag: W/"250debf2937d8598859eb2b1271ac5c8"
x-amz-request-id: tx0000000000000135ff84f-00633f3bd0-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/70052.250e22ac01c1076a8565.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8154916e9631d15d7aa6a3d72a60897434766f71
x-request-id: 30f87cdadccd25d72e1cc8a0c7cb5de9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 255468
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.898455,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3842
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/64604.e1c694de65413d3b402b.js
151.101.85.46200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/64604.e1c694de65413d3b402b.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (5787)
Hash 8e94b4934524f4fa313abd5aeb924af7
b380304ac22693c17bce7f455b5de13618442d17
503ac599545eb1c8ab7268846758879d93b207b2d8abfbe2830bb18680cb8ef3
GET /app/website/js/64604.e1c694de65413d3b402b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"85b809be3ef3839ee95418a1c1916c51"
x-amz-request-id: tx00000000000001074e1da-00633b0196-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/64604.e1c694de65413d3b402b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: 7fa666eb02176dcc9b940d0efb46f2c7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 420017
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.903638,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3917
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/84876.389c6ec964a8246aa433.js
151.101.85.46200 OK 9.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/84876.389c6ec964a8246aa433.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (17426)
Hash 4ca096ec270d80774655220418baa483
5e668ea87a7301bac811be717b862a631367d6c2
7295cb0ebf031c3679d127f88667a2bcef9893b0239500aaf8dcf8749dc5bc2c
GET /app/website/js/84876.389c6ec964a8246aa433.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 16:12:14 GMT
x-rgw-object-type: Normal
etag: W/"153172a8855cdf99515882ad2181d699"
x-amz-request-id: tx00000000000001226ccf8-00633efed1-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/84876.389c6ec964a8246aa433.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d19cce644565f06e2054d01cbad9b190d9ef72c7
x-request-id: be9f146299acc6539b91adbc98411b22
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 271170
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.911495,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9402
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/84383.fdfbc6833bbb4ace6c55.css
151.101.85.46200 OK 6.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/84383.fdfbc6833bbb4ace6c55.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (31078), with no line terminators
Hash 8ef74bc997dc27fbffc4b58c62e6d45e
8f60fdc7e47d62093825a9cbb42df695c25b9510
46b3738599abc49f609b67fac9f27ab0b7542d429e50a091607294f10f5f6864
GET /app/website/css/84383.fdfbc6833bbb4ace6c55.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 19 Sep 2022 20:38:59 GMT
x-rgw-object-type: Normal
etag: W/"8b9c1ef4557e30f5d2dd80f8164534ab"
x-amz-request-id: tx000000000000004f82f5a-006328d3c4-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 63eb8235368060ba2b279894e386cc3c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1709652
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.911478,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6345
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/93329.a085340e2b79c3a874dc.js
151.101.85.46200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/93329.a085340e2b79c3a874dc.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (43806)
Hash c8cb2165551ee74ccb85222bea3ded03
cb458fb48659093ac19276a8b759e040b0ab6201
aa6a123db044770f4e068bdbf83df5c8f18b8f7be9ee392b1b30fae5d6d8cb37
GET /app/website/js/93329.a085340e2b79c3a874dc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"530fcf43f7a8b2e43fea47f5f5e2bff9"
x-amz-request-id: tx000000000000010617e6f-00633b0188-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/93329.a085340e2b79c3a874dc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: fdc6094a691245a6c75b32f2ae26941e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 532354
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 61
x-timer: S1665344282.911670,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12474
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/55722.f5f2d1e1833367313d50.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/55722.f5f2d1e1833367313d50.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (20629)
Hash cbaf506db83b536295debbbe33f8cac1
95e3f47b165f103f7a50a5458fdae0d6758aa342
df050e548d3ce08e53d9a3e89d652555dcc72b206856a02a664b3282fe2dfcd4
GET /app/website/js/55722.f5f2d1e1833367313d50.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 14:37:44 GMT
x-rgw-object-type: Normal
etag: W/"d6f9c96dcdfed2789f26e778fa57b8dd"
x-amz-request-id: tx00000000000000bc686bb-0063330b29-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/55722.f5f2d1e1833367313d50.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a7bd28660bdb8473e1d407a3d4cd790daad4131c
x-request-id: ae9d04d5fcd9926d205932e6daa44428
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 414827
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.912683,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 7028
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/featured-products-carousel.030989fc973f4a8f2db9.css
151.101.85.46200 OK 4.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/featured-products-carousel.030989fc973f4a8f2db9.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (16484), with no line terminators
Hash 6652c1c8eab1bce8ffbb448dc36c2b27
682acfd547b32f231468d72bb2b920dfc695138a
755ebc943a100d729013c6f14585520a4ee9fac22454a4beafa220821b69ec16
GET /app/website/css/featured-products-carousel.030989fc973f4a8f2db9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"ccfe7a96b706b0996f6d2bd2185194f3"
x-amz-request-id: tx00000000000000bee2917-0063331d79-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 59ffbbf082021327a30168787736923b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:01 GMT
via: 1.1 varnish
age: 1049794
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.912810,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4232
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
151.101.85.46200 OK 6.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25632), with no line terminators
Hash b99bc0745e6201b918c78b0bf8e9de7b
e9fb8a3d15b933ae2f822db2e66fcc1712f7e2cc
729fcdb927673a30d1f50c66cae501b20f88be96cdecdd12784bfb0fb208bd05
GET /app/website/css/66670.b694d05e69f75f469d70.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"b3b4a5077e6334122ff50105eec7420c"
x-amz-request-id: tx00000000000001074d47d-00633b0186-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5acd127c5dbb1ef05fbc2d42464637fd4de75258
x-request-id: 51663d19c73651adb96c155feac9e994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 315757
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1665344282.080427,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6366
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
151.101.85.46200 OK 14 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16522)
Hash 83ee6769d19ebb77088fae2e871c6183
5f690d95fd04d9cc3b9216fa0b21637a4837479f
12113db4803a5fb421bb0dc3941a52159ad74ceb069f6fd050aa2e0c327e1921
GET /app/website/js/66670.a7a5bec786b65c6f06c6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"35476ff365f33e157ca81acd30b616b4"
x-amz-request-id: tx00000000000000f9098a6-00633b0189-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66670.a7a5bec786b65c6f06c6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 67863989620f35dba9e32f83e58603ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 532520
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.083271,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13819
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
151.101.85.46200 OK 239 B URL HTTP/2 cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (622), with no line terminators
Hash e45df5af4bcc35ad94109a372d4b6c36
31d09e6ea5b2793f6fd4a88d66b1b2f7d2951504
9329dcf273dc4fc62e374f6bd51d3b760e1762edbead6fc7aa0055e8a6b5813d
GET /app/website/css/footer-7.7d9df2bbcb508697998e.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"e0475a260378e42162f0605e782bc9ff"
x-amz-request-id: tx00000000000003dbe4565-006321176a-c033918-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f9b6ab250f065b71cd8de31aa0baf4798f1aa0d6
x-request-id: 2bbd2817eca95f6831903e6bf0ab21ab
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 2231215
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.086698,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 239
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/footer-7.8f01c3076f1206f78a44.js
151.101.85.46200 OK 1.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/footer-7.8f01c3076f1206f78a44.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4886)
Hash fcac28413b1045a008fef29f526c408d
f0dbbc05df06b853fce03a13d9fc44c1eaeebbfc
438292bf9bceb3c84ce7878a8201f07a3ae0324cdd5f2fa198dc5e246d98d66c
GET /app/website/js/footer-7.8f01c3076f1206f78a44.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:09 GMT
x-rgw-object-type: Normal
etag: W/"41fa5edc205ff43f833371607aeb32a0"
x-amz-request-id: tx00000000000003d9c238d-0063210e0a-bfe27ea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-7.8f01c3076f1206f78a44.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f9b6ab250f065b71cd8de31aa0baf4798f1aa0d6
x-request-id: 7e520e133ad17c2bdce24f6b7dc701f2
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 2233242
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 852
x-timer: S1665344282.087766,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1307
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/PT%20Serif/pt-serif-v17-latin-regular.woff2
151.101.85.46200 OK 33 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/PT%20Serif/pt-serif-v17-latin-regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 32900, version 1.0\012- data
Hash fda3323314d895ae39de612559f6fad9
644dbb14f599920fdc8f8260b6e67bd1f8770e89
d355afb9705c3f8651f6a1f813b4670b758d59a17783830f534e7a8839c5b666
GET /app/website/static/fonts/PT%20Serif/pt-serif-v17-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "fda3323314d895ae39de612559f6fad9"
x-amz-request-id: tx0000000000000370a7aff-006316eb87-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: baa41f1714158d733d9b82c25734d19e88004926
x-request-id: 65eb8886d0f1029e002306b34026375e
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 2834234
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 8
x-timer: S1665344282.139736,VS0,VE0
access-control-allow-origin: *
content-length: 32900
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Forum/forum-v16-latin-regular.woff2
151.101.85.46200 OK 24 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Forum/forum-v16-latin-regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 23592, version 1.0\012- data
Hash 6c195cf5081c0bbada53d543986fd5d0
c0e24ed88e3d942bc23751af6fddc37f1e6b6d85
787d8e70b8b85398e17c032f6840dd83b9ec435f86a2a1ff11f97a9778e88cf8
GET /app/website/static/fonts/Forum/forum-v16-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: "6c195cf5081c0bbada53d543986fd5d0"
x-amz-request-id: tx00000000000003cea406b-00631febe2-c0351c8-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 1a906f36729496beb7c695d53e52a0ed
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 2307895
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344282.156544,VS0,VE29
access-control-allow-origin: *
content-length: 23592
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1837
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 19:38:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b; Expires=Mon, 09 Oct 2023 19:38:02 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.hairwegoext.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
199.34.228.164200 OK 182 B URL HTTP/1.1 www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9
Content-Length: 89
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344282.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6IjlsRzNWRnU3TU10NWU1cHVLb1hTelE9PSIsInZhbHVlIjoiT2ZXc1c0NStabGgrWWc2ZGFkeDVKNklIblF6dlRDZXo3VGNnaXlsNXVvbTZNTmNHMFpMeXZsZGxKdGVneGZBT1dCbUtNZDBGSUtlWm12L2dlbHYxT2xudE81eTk5bGRvUFJRMEhmMExpeUVLOFJuSkRmbDlyQk9MamVRa0lKeHUiLCJtYWMiOiIzZDQ5ZjczYThmMzAwMWY5NjE4MzdmMzNhZjkzZjk3Y2NmOGM3MmJiMjQ1NjQxNjIyNDhkMTZjYzI2NDA0ZTU0IiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6Ii9jZkdyMmRZQlNGeHRSdkxRazR3ZFE9PSIsInZhbHVlIjoiM3o2cDYzVklwclROZ0RaWkd3Q1FGejFZc0ZBMGJnUjlPYjIvZW9Kb0ZvN2NQZ0FnbnpGb0hHN1NKeHZFMldJeEM4dUtNZmJHREgrS0NaNDVJZFRsdWRSL0hUemhIZTFaZ0ppNEsxcjNJclBBNThKanlyYW9PMHppK0lQN2RjMHEiLCJtYWMiOiI2MjQ4MGM0OTRjOGQ2MDg2Y2NkNzYwNDBjYjgzYmIwZjcwZGNjYjM4NWQ4MDM0ODI3NTM1NDgwMzZjM2VhNjg4IiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 19:38:02 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn30.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
199.34.228.164200 OK 79 B URL HTTP/1.1 www.hairwegoext.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9
Content-Length: 77
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344282.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6IjlsRzNWRnU3TU10NWU1cHVLb1hTelE9PSIsInZhbHVlIjoiT2ZXc1c0NStabGgrWWc2ZGFkeDVKNklIblF6dlRDZXo3VGNnaXlsNXVvbTZNTmNHMFpMeXZsZGxKdGVneGZBT1dCbUtNZDBGSUtlWm12L2dlbHYxT2xudE81eTk5bGRvUFJRMEhmMExpeUVLOFJuSkRmbDlyQk9MamVRa0lKeHUiLCJtYWMiOiIzZDQ5ZjczYThmMzAwMWY5NjE4MzdmMzNhZjkzZjk3Y2NmOGM3MmJiMjQ1NjQxNjIyNDhkMTZjYzI2NDA0ZTU0IiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6Ii9jZkdyMmRZQlNGeHRSdkxRazR3ZFE9PSIsInZhbHVlIjoiM3o2cDYzVklwclROZ0RaWkd3Q1FGejFZc0ZBMGJnUjlPYjIvZW9Kb0ZvN2NQZ0FnbnpGb0hHN1NKeHZFMldJeEM4dUtNZmJHREgrS0NaNDVJZFRsdWRSL0hUemhIZTFaZ0ppNEsxcjNJclBBNThKanlyYW9PMHppK0lQN2RjMHEiLCJtYWMiOiI2MjQ4MGM0OTRjOGQ2MDg2Y2NkNzYwNDBjYjgzYmIwZjcwZGNjYjM4NWQ4MDM0ODI3NTM1NDgwMzZjM2VhNjg4IiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=eyJpdiI6IjFoM2UvNXZjTVVaY0VVVWs0M3RaNkE9PSIsInZhbHVlIjoiSUUzUDZaNi9zNUdoV3RieHJsK2RLT2gvU0Jvc0ZSUWZUVmttOTFweXdQMzNlVUp2ZU1SQ1ljOCtLSUQxOUthMi9ONkVJZ09WRzJhMFEwNHhrdGdEUE1paUZOT0loSjNBd053OG9IVWt6R2o4eTllT05SRjc2STMyaWdvWnJVTE5XTDBGcEJFZG4xRDFoZW9xTWVvdXVTWFhmZ3RhcHB1VHFXV2xCYURpMi84ZE1CQ3VmRFBzWDJoWlpmelVHTmxzRitvUERlM3FoUG5kSjVFMmh0WGc0SUZpSE1PaHYvWWN5YUNiQkxYNFM4anllMHo2R2pWOFp5QnNXN2dXVzJxZ2dGd3dTSzRWWjdMaDlBbkRpOXNSZ2x1b3YxYmhOaWk2VVgybHZtTGx5MG54aTdrZ3k2TlBMVUhrNmpiZTQ3ZmZDQ04wQStVVStsRnRnSzV3S3VpQTJueTJlVGYrOFJCdTlqWS9pUDZKRVJ6ekIwUGtVblllRTUrYy9lRWlvTGdQTXd0bXBuem5LY0dCb2J4ZmlEWncydVZoWXMxRGNPYW9tcmhMazN5cjRRNENoMGUzL3daMGZCQjZwWmpiV0VsUHlUSmxWeHpBeVJvNEowM2UycDJmb0pJWlA2TVFyQlhYZ2thR3I1MmRSTllCM0F3V3EwRlF5QTU4Si9iTjd4amtUQkovZUJ2anFicjVNRjBuVHNBNFZPa0FLL2xmN2RBTFduNmZiMC9WekVBQmhlZjJGeHhSc1lnbENsQkc1U0ZBNUllYlNjWlBHbEFKd0tEbnovSmZJRWhHNkhnenJGajZHOWZ2bVFDeVo0am43ektmaGV0TlU1TGxWeGdtRFVhcTlsYXFCU1d0Q1k4Wjk2UGhtZkxsS09YN3BIYzBOREIweUZRSXVxR0wyQUkzVzczKzl2VHlFRXY2aXduT1JXdGJ3VkpkN000WGpFdGkweThCSWMxTWhnUXRKWG56TVhNdGpFNG1zQU05Y2ZxV0tlNTZBc3NseWR5cTlCdjBoU2gvMGlSeWFFam9oVDNQdzVPMTZUMkd0dGxmdXJTMFJFOXBWTUpxL0hUNVN3bzJCRGZHVTJSYUFYT2w5ck44bUJCTklxMWtBMm11MG9tNFh3Ti9sUnlPc3pLSXdITHhlZVA1bGJIcEFmNVZ6WG1PcldRT1lXQm5wdC9LRkZQUllRNmZVSENvRnFFY1dma214V0pQcFQ1dzVWRzg4Mng4a013bmpDTzk4R0xuV1V1L0gwUXgxOGNPRkZmbUdTaXhET3djIiwibWFjIjoiY2VkYmQxODkyOWZjZDE1Y2IyMDc0NTE0ZDkzOTI3MDU4MGFiMzRhNWI5NThhMDFjYzg1ODQ4MGZiNzNiMGY3MCIsInRhZyI6IiJ9; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 19:38:02 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu38.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
cdn5.editmysite.com/app/store/api/v23/editor/users/143148487/sites/560753218827209806/products?page=1&per_page=50&ids[]=16&ids[]=15&ids[]=14&ids[]=13&ids[]=12&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files&excluded_fulfillment=dine_in
151.101.85.46200 OK 3.7 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/143148487/sites/560753218827209806/products?page=1&per_page=50&ids[]=16&ids[]=15&ids[]=14&ids[]=13&ids[]=12&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files&excluded_fulfillment=dine_in
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (34868), with no line terminators
Hash ffe3e9012a442de2a73ffe160bc65870
d0d071008fe04c3652131a49621fd6a002cb7f86
beddf0355962a2cf8d72ae0f73b2585a906e5b9905112ea14b8d090f273d5d2f
GET /app/store/api/v23/editor/users/143148487/sites/560753218827209806/products?page=1&per_page=50&ids[]=16&ids[]=15&ids[]=14&ids[]=13&ids[]=12&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files&excluded_fulfillment=dine_in HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: s-maxage=604800
served-via: es
etag: W/"7d5fae725f156a2485ec71e235eb8eed"
access-control-allow-methods: GET, HEAD
fullcache: h
x-revision: 6dae70a2d5c731e0410db2b735908f104f02f950
x-request-id: 3b7259bfd671ebf0612f021a0308eb2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:38:02 GMT
via: 1.1 varnish
age: 36026
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344283.693871,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3707
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 4110
Origin: https://www.hairwegoext.com
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 19:38:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=a6a787c3-2329-49b7-baef-3f8f592a007b; Expires=Mon, 09 Oct 2023 19:38:02 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.hairwegoext.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.hairwegoext.com/app/website/square.ico
199.34.228.164200 OK 6.5 kB URL HTTP/1.1 www.hairwegoext.com/app/website/square.ico
IP 199.34.228.164:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert quad9 Sinkholed
GET /app/website/square.ico HTTP/1.1
Host: www.hairwegoext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Cookie: publishedsite-xsrf=eyJpdiI6IkRTRGx6YTlXZkdZNkJESEN5RzJhTmc9PSIsInZhbHVlIjoiVFpqc2tcL0ZFY0lreVRxVVZ5ajdBWEJVRWVXTkQrK3U1ekJHc20zMEZJRXVGa3FISnpyUlM5UTJyOU5GWkxlRmk3a2hLZWhEdWtJQzhTYkpYUEVlNDhzMklwZzBQRjBPUDV5aDBvUEdEdmdqdVVMc0Q2eTlBRVZZd1A3KzNNUGJMIiwibWFjIjoiNjRhMjUxNjMyZDdlM2JhNDk2ZWRkODNjMjUwNzY2MWQ1YjllMTZmYjY1MzE1MjMxMmNmMzNiMmZjYjNmNzA2NSJ9; XSRF-TOKEN=eyJpdiI6InUyK2kreHVoZTRCWE1QVHE5d3dvVUE9PSIsInZhbHVlIjoiVnpDU21FbHhtREVJODQ5enBHVlo3NlU5NDdPVzVNeCtGaTdEbkVEU0Q0cFZxbXBpYlQ2MTFNdXhGVUlIS3VNYjRkM2VTYjZqZ2lZaVRHR1laQ0NvakZoXC9VeFg3VXhFYjF0dHU0Z0dYdmlhS3ZFV3JEOVJiRzZ5Y25aUVozVnhFIiwibWFjIjoiYTBhMjk0MGU0MTE3YTM4MjQ0Nzc1MzRmZjljZWYxN2YyN2E1MTAwYjY2YTQ5YTdjNDE0N2Q4YWIyNzMyOGVlOCJ9; PublishedSiteSession=eyJpdiI6Ild0MlBsRTRETCtCTndGbUpqY2ZcL0xRPT0iLCJ2YWx1ZSI6Ikh6VHZwaGRWb2x5Z1wvOFVpRzg3ZnA0UHJmTmx1elJtcTMxXC9vRjgweFZQcDBDSGFJdmswczM0VUt5VjI3dFRYUHppTit6UkxjdmFIWHVvMTR4ZjdIWkJnaXVRUnloXC9Sd1V5MHYxc1VcL2UwYnlcL0hCVithanlPWWl3TGwweHpwd3QiLCJtYWMiOiIxYjk1NzkzMDdjNmJkYjlmNTUxOWE1ZjE5YjBiOTI3Yzk2YzQwNjQyNGJiYTExMGI1YTA1MzcyZWUxODUwZTIwIn0%3D; _snow_ses.a77a=*; _snow_id.a77a=03ef2ba9-d2ff-4d78-a82c-0e71c0a0f9d6.1665344280.1.1665344283.1665344280.c6fb2d30-5242-4af4-8f18-856c43616d33; customer_xsrf=eyJpdiI6IjlsRzNWRnU3TU10NWU1cHVLb1hTelE9PSIsInZhbHVlIjoiT2ZXc1c0NStabGgrWWc2ZGFkeDVKNklIblF6dlRDZXo3VGNnaXlsNXVvbTZNTmNHMFpMeXZsZGxKdGVneGZBT1dCbUtNZDBGSUtlWm12L2dlbHYxT2xudE81eTk5bGRvUFJRMEhmMExpeUVLOFJuSkRmbDlyQk9MamVRa0lKeHUiLCJtYWMiOiIzZDQ5ZjczYThmMzAwMWY5NjE4MzdmMzNhZjkzZjk3Y2NmOGM3MmJiMjQ1NjQxNjIyNDhkMTZjYzI2NDA0ZTU0IiwidGFnIjoiIn0%3D; customer_session=eyJpdiI6Ii9jZkdyMmRZQlNGeHRSdkxRazR3ZFE9PSIsInZhbHVlIjoiM3o2cDYzVklwclROZ0RaWkd3Q1FGejFZc0ZBMGJnUjlPYjIvZW9Kb0ZvN2NQZ0FnbnpGb0hHN1NKeHZFMldJeEM4dUtNZmJHREgrS0NaNDVJZFRsdWRSL0hUemhIZTFaZ0ppNEsxcjNJclBBNThKanlyYW9PMHppK0lQN2RjMHEiLCJtYWMiOiI2MjQ4MGM0OTRjOGQ2MDg2Y2NkNzYwNDBjYjgzYmIwZjcwZGNjYjM4NWQ4MDM0ODI3NTM1NDgwMzZjM2VhNjg4IiwidGFnIjoiIn0%3D; 3eMukICZ52lGOmlPoGXxFyNERB8kjXdHFWEq03d1=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; websitespring-xsrf=eyJpdiI6IjBUOWVWVXdOaENKQ2Z1a2JGY01Mb1E9PSIsInZhbHVlIjoiUHlzN0cra2dqKzVSZEFwR01zRGdTSUhRMlZkZEJWZ2MrK0dhMDA5U28rT2NLdmNNelEwXC84Qno3UjlsZExKTjN1YmM3SStvY1M3Smg2ZTd6SlU0RDI1bXUxakZlTW5Lc0ZZY21LSWhMUWFKNTVLV1NXbmhQRkI1dzNZeGdaeU56IiwibWFjIjoiZDY3NmIwMWMyNWY1NzZiYmY0MTc4OGE0ODQyYmI0ZjA4OTQxZTg5OWE1ZjEzMTFjZjNkZjU3OGY5N2MzMjlhMCJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 09 Oct 2022 19:38:03 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a5c165-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn62.sf2p.intern.weebly.net
X-Revision: 6e967dd4a40ea8cc45099ee92d30c4481e1317a6
X-Request-ID: ba0fc785f95b3ba244b9a2bcccde43d9
cdn3.editmysite.com/app/website/js/site.04ef03dbf8013339b07e.js
151.101.85.46200 OK 0 B URL HTTP/2 cdn3.editmysite.com/app/website/js/site.04ef03dbf8013339b07e.js
IP 151.101.85.46:0
GET /app/website/js/site.04ef03dbf8013339b07e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hairwegoext.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 20:32:32 GMT
x-rgw-object-type: Normal
etag: W/"5028143a5d33b22d88c6492f1e1e83d0"
x-amz-request-id: tx0000000000000125431d0-00633f3bcd-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.04ef03dbf8013339b07e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8154916e9631d15d7aa6a3d72a60897434766f71
x-request-id: 3bc9c88037d76785d21b3833917c39c6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Sun, 09 Oct 2022 19:37:59 GMT
via: 1.1 varnish
age: 255777
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665344279.405780,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 573108
X-Firefox-Spdy: h2