www.quillingcard.com/
301 Moved Permanently 91 B IP
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash b3a4c13dc918e1614cb4b5a5d91d7b58
bcc314ed573de6d3218131c87fce57f1058fbbcf
38173c64214135de52e575f9b5a7eb7ff8747caae2b92891b9a30c1281f65b9d
GET / HTTP/1.1
Host: www.quillingcard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 15:35:46 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 78
X-Sorting-Hat-ShopId: 10626604
X-Storefront-Renderer-Rendered: 1
Location: https://quillingcard.com/
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 10626604
X-ShardId: 78
Vary: Accept
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
X-Request-ID: 85315ced-3bff-4f5c-bfc5-7de011b72727
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mbB5Xdtjoa%2BBFVTrYOfY%2FfQidvY4SRJjaTpdSXtCHyejpfGPNstzz4yZe42Kgidcy6AWCGx8hDK0b6d0UZFHPTGuN15mkXUomNPj7o5mcsqcfElCa%2BDfeT2L%2BSNBBXVSI4tE%2FY9I"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: processing;dur=12, db;dur=4, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=75.999975
Server: cloudflare
CF-RAY: 792384e26a6a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18229
Expires: Tue, 31 Jan 2023 20:39:35 GMT
Date: Tue, 31 Jan 2023 15:35:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 31 Jan 2023 21:07:51 GMT
Date: Tue, 31 Jan 2023 15:35:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 14:43:17 GMT
content-type: application/json
age: 3149
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12895
Expires: Tue, 31 Jan 2023 19:10:41 GMT
Date: Tue, 31 Jan 2023 15:35:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UUibIB0NgaWaiGp9BjIe/n2z0SVGVWhoxh2SRjwIj8Gnff7QjklG+jxyjozNlZt24/2EB2Hspys=
x-amz-request-id: 892YMQNTR82JRV7D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 14:51:12 GMT
age: 2674
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7845d8a22a442001f8a6572356c7e709
95e6f2320db44e43167317b356772f1169cf3783
21fb8d669767b1a98fb100972030acbf32ea9e8b2e9c05d45cfd500640c052e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21FB8D669767B1A98FB100972030ACBF32EA9E8B2E9C05D45CFD500640C052E3"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21593
Expires: Tue, 31 Jan 2023 21:35:39 GMT
Date: Tue, 31 Jan 2023 15:35:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 14:41:42 GMT
age: 3244
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18465
Expires: Tue, 31 Jan 2023 20:43:32 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7845d8a22a442001f8a6572356c7e709
95e6f2320db44e43167317b356772f1169cf3783
21fb8d669767b1a98fb100972030acbf32ea9e8b2e9c05d45cfd500640c052e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21FB8D669767B1A98FB100972030ACBF32EA9E8B2E9C05D45CFD500640C052E3"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Tue, 31 Jan 2023 21:35:39 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MM2KhM1CVoxA1q633qpYiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t0p8fih14EkYq49UvegGEfbnU/g=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c6bc61be9ac3f6ab07f4a956094f777
3cbe21c2d3af0a2c2ecebdab59d1184b9decdf88
c986f9055b2ba37cb723622d47d0eab67765882ddc8d98498b05acfb68c37021
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C986F9055B2BA37CB723622D47D0EAB67765882DDC8D98498B05ACFB68C37021"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15999
Expires: Tue, 31 Jan 2023 20:02:26 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c6bc61be9ac3f6ab07f4a956094f777
3cbe21c2d3af0a2c2ecebdab59d1184b9decdf88
c986f9055b2ba37cb723622d47d0eab67765882ddc8d98498b05acfb68c37021
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C986F9055B2BA37CB723622D47D0EAB67765882DDC8D98498B05ACFB68C37021"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15999
Expires: Tue, 31 Jan 2023 20:02:26 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c6bc61be9ac3f6ab07f4a956094f777
3cbe21c2d3af0a2c2ecebdab59d1184b9decdf88
c986f9055b2ba37cb723622d47d0eab67765882ddc8d98498b05acfb68c37021
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C986F9055B2BA37CB723622D47D0EAB67765882DDC8D98498B05ACFB68C37021"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15999
Expires: Tue, 31 Jan 2023 20:02:26 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c6bc61be9ac3f6ab07f4a956094f777
3cbe21c2d3af0a2c2ecebdab59d1184b9decdf88
c986f9055b2ba37cb723622d47d0eab67765882ddc8d98498b05acfb68c37021
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C986F9055B2BA37CB723622D47D0EAB67765882DDC8D98498B05ACFB68C37021"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15999
Expires: Tue, 31 Jan 2023 20:02:26 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash d35f396d9527b37a17f37494bfd430da
aca6151dab60057d9d0cc536f1934b2469073dc2
3174f21f094562685047a983e6632473cc6941fb9ec719f2e6bd30fac9a2d959
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4268
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Last-Modified: Tue, 31 Jan 2023 14:24:39 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=RwHZp2
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=RwHZp2
IP
File type ASCII text, with very long lines (2904)
Hash 4c7011b7d36ebb3e32361a90f7745b5e
8b8b0b3eb3265a0958a9388262fd6cf1efb66d91
effa9b03e8253cecaf7cf1ca7e73a52f3e898cc48496bb370000ab7f83da3804
GET /onsite/js/klaviyo.js?company_id=RwHZp2 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"fca70480c892e5d4fdb16e618f2fe9f8"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:47 GMT
age: 6589
x-served-by: cache-lga21920-LGA, cache-bma1620-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 1
x-timer: S1675179348.608369,VS0,VE1
vary: Accept-Encoding
content-length: 1038
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.1/jquery.min.js
200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.1/jquery.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (65479)
Hash a1dbc2376faed4d6de4f5918c679a3d5
a9deb320a96ac3ddd24bb431b2854ff64f789e5e
6c96b4087484f1793973c8bb673eae22e7798be772392a0eed8f5f9252a472d8
GET /ajax/libs/jquery/1.8.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:21:35 GMT
expires: Wed, 31 Jan 2024 09:21:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 22452
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-76823198-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-76823198-1
IP
File type ASCII text, with very long lines (1759)
Hash 034a953756ef642efa5a1aff733d4e8c
aae569cf50a0a47d18b7be5ed2e901c1b54a17df
15d6b5b205c7724b81809b631be0a48e7756d20606203bd4bf2e9d8409a5375a
GET /gtag/js?id=UA-76823198-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 15:35:47 GMT
expires: Tue, 31 Jan 2023 15:35:47 GMT
cache-control: private, max-age=900
last-modified: Tue, 31 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44014
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-817143724
200 OK 68 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-817143724
IP
File type ASCII text, with very long lines (6682)
Hash 27dcb7d20911b7a35d32f8f96e76b523
ad4850e0000aa0e63899f5898d1b3ca7144ce379
734659cdbcba09082fc1155a492270c655f7725713b345f09f38ff169906a3ec
GET /gtag/js?id=AW-817143724 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 15:35:47 GMT
expires: Tue, 31 Jan 2023 15:35:47 GMT
cache-control: private, max-age=900
last-modified: Tue, 31 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/headline.jpg?v=49063281130167264401671621644
200 OK 8.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/headline.jpg?v=49063281130167264401671621644
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, hostcomputer=imagery4], comment: "Compressed by jpeg-recompress", progressive, precision 8, 1366x34, components 3\012- data
Hash 167c72017cfc5ecea5015070642b855e
c0dc4571a1c16eed487b6cf4b991a2e7d0bbbc45
e1a978e70fd3d55d08b187ce1049a0d2d4a9f54f4fe7a5a932f5716b47793819
GET /s/files/1/1062/6604/t/42/assets/headline.jpg?v=49063281130167264401671621644 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/jpeg
content-length: 8862
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
cf-bgj: h2pri
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/headline.jpg>; rel="canonical"
source-length: 8815
source-type: image/jpeg
strict-transport-security: max-age=15552000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-dc: gcp-us-central1,us-central1
x-request-id: 5abbce03-bf29-4ea2-b3c7-b427248cb4e4
x-xss-protection: 1; mode=block
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqSVbY5bV4CCAu16vQQrNHqBg2FRxJJZyJ%2BncJfFL4x0HNyeztwMerZz5J26adGMITtEVCvlghpp5KunCGGmEcSMGBrufWX7lLiqUFbOpYqrzdXKh6it4lV4HbVjxGOAqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=418.361, imageryFetch;dur=95.536, imageryProcess;dur=322.157;desc="image", cfRequestDuration;dur=131.999969
server: cloudflare
cf-ray: 792384ea1efab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3m_700x.jpg?v=101432587411748526021673038140
200 OK 44 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3m_700x.jpg?v=101432587411748526021673038140
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash a525b69e8b0f44668de1ab427697d4aa
6cc8829ff1af60eac0a41dd080aa8197aedfac02
d04891f715f774a1b60389856b4cada0d17c36d38392223ea379ec4a9001f258
GET /s/files/1/1062/6604/t/42/assets/slideshow_3m_700x.jpg?v=101432587411748526021673038140 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 43452
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3m_700x.jpg>; rel="canonical"
source-length: 556216
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: d8d99700-1320-4b49-8ea7-1f5a58629717
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 06 Jan 2023 20:51:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBeN64D4fAmiNulVr%2Fct93XzOoRaEuhwRWY05qQcVSIjIfEx%2FW8rcKM%2Fp7RtQ80LSbu8hVdZy72HdpWpzrykhQauhW30zEwG9SPdko8TyYHJG%2B41B3MXdxEBihEsXO79iA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=828.481, imageryFetch;dur=77.236, imageryProcess;dur=715.760;desc="image", cfRequestDuration;dur=134.000063
server: cloudflare
cf-ray: 792384ea2f02b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_fix_300x.png?v=49331557157082124811671621688
200 OK 2.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_fix_300x.png?v=49331557157082124811671621688
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 69 x 45, 8-bit colormap, non-interlaced\012- data
Hash 6442dda0761c9e33658e1b807adf6145
c35b9725f4c038965828280e089624ed0fc16c5f
cff9fbce20f1b68de2993eb081630c703debc87e6402f064b7efbc5f7c980b14
GET /s/files/1/1062/6604/t/42/assets/logo_fix_300x.png?v=49331557157082124811671621688 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/png
content-length: 2230
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_fix_300x.png>; rel="canonical"
source-length: 2122
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: fd33d82e-0ea1-48f4-bc24-eac5e60cee73
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lrf9U7PTK8Y5%2BVi0wgc%2FXrJhNnjcOF%2FJZ7lAJ51AT8QljaGSO5uE2NZ462aWGFzw9UiyM29g8PUGJfUimlDPsXvE0Q3NzwVj9hbMIoGzNDMGmpotNM41mCbSviCg3oYzqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=187.430, imageryFetch;dur=68.998, imageryProcess;dur=116.892;desc="image", cfRequestDuration;dur=141.999960
server: cloudflare
cf-ray: 792384ea1ef7b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_300x.png?v=44877023725579383911671621687
200 OK 9.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_300x.png?v=44877023725579383911671621687
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash f60e46fa51307d80916f5d52d1fb25e3
8942b6f52f25b0e534b64d2843195a536677e66c
754a12d7bccaaf6c540ab7b892b0a23ff8202586c06a5d5e30c0abecc46b9c2d
GET /s/files/1/1062/6604/t/42/assets/logo_300x.png?v=44877023725579383911671621687 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/avif
content-length: 8968
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo_300x.png>; rel="canonical"
source-length: 13141
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: e0267439-b56e-4ac8-86ac-7da8c08b3454
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:28 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fq4DUPkybJD37dJpg5xuV%2BJHFdnFLa9LwQ%2Fh0%2FmGSWQanm9CmvJ6gX81%2FO3pCa9EFGZMeLHPk%2Bi7PgMAhLQU41QMADaGwEOsm3jKRGiTr3fTlIUZz5tpuNmR2hFuxdIJUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1367.643, imageryFetch;dur=55.265, imageryProcess;dur=1311.116;desc="image", cfRequestDuration;dur=144.999981
server: cloudflare
cf-ray: 792384ea1ef6b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo.png?v=44877023725579383911671621687
200 OK 9.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo.png?v=44877023725579383911671621687
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash f60e46fa51307d80916f5d52d1fb25e3
8942b6f52f25b0e534b64d2843195a536677e66c
754a12d7bccaaf6c540ab7b892b0a23ff8202586c06a5d5e30c0abecc46b9c2d
GET /s/files/1/1062/6604/t/42/assets/logo.png?v=44877023725579383911671621687 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/avif
content-length: 8968
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/logo.png>; rel="canonical"
source-length: 13141
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5ffcacd9-ae81-4e35-a97c-636eb148eac0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:28 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NkpL7Q6Hldfge2g%2Fo6v7sUWiEV2keu%2Fs7TdgH2rU1UGdsgamnMOlCjoEXF%2FWXLgSgJ3zNfK2zDOTZDpCCWA6zHgGBjjsj9h1RxXD%2BcKWRKj7TvSUB695XfpIwDxwk6myQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1677.713, imageryFetch;dur=74.792, imageryProcess;dur=1476.458;desc="image", cfRequestDuration;dur=144.000053
server: cloudflare
cf-ray: 792384ea1ef9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/products/cards-quilled-skier-greeting-card-15628018876495_500x.jpg?v=1599850182
200 OK 19 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/products/cards-quilled-skier-greeting-card-15628018876495_500x.jpg?v=1599850182
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash ab7afed432efe095a8ed46609d1b89a4
42b33b77fbf8b60717b5afbd0e5d1562845ebc07
2ac16baa4d695473ee521d197e4e436c54033e455deedc8a1193f224de401639
GET /s/files/1/1062/6604/products/cards-quilled-skier-greeting-card-15628018876495_500x.jpg?v=1599850182 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 18728
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/products/cards-quilled-skier-greeting-card-15628018876495_500x.jpg>; rel="canonical"
source-length: 287405
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: d15f9eee-6ecd-4c83-8390-36e6fdcc60e7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 16 Dec 2022 19:50:01 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ozbZ3OydNMbNdf%2FkBwBFkdYg%2Bdd5PHwk2AGyixXMBgRIA0oYxM8g%2BCnf7mJucIaxQrUYE9vVERelCLitN34cb7%2Fsd9EDZaQdvbj1pgVkeua48VDuEHZOzVmW70GGT4knGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=413.209, imageryFetch;dur=81.777, imageryProcess;dur=330.388;desc="image", cfRequestDuration;dur=131.999969
server: cloudflare
cf-ray: 792384ea3f24b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3_1300x.jpg?v=33944470032423817921673038141
200 OK 65 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3_1300x.jpg?v=33944470032423817921673038141
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 394e76181941b422d04c80ada9acd826
316ae69dd6ff6433e5b3719d38e50863c8f7f21b
3829234ca9999266fdfbdc399ea5c3e285253a4b63edf7821e00ce8e9b9aa082
GET /s/files/1/1062/6604/t/42/assets/slideshow_3_1300x.jpg?v=33944470032423817921673038141 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 65338
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_3_1300x.jpg>; rel="canonical"
source-length: 154004
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 3d2f38e3-f8b5-445e-9bef-2f1871e39688
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Fri, 27 Jan 2023 01:29:00 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eeBxlAbOlGM%2FxBnnTYFzS%2B%2FNvhtxofBF3Y1P5R4FOdkk%2FyFz5PbYn2E9ouRO479N0F%2BuU%2FqNnMphlnI8%2B7xIDsDgqAEoMUQ27rCzamIb%2BeGNq5XW178iJbZ25iyqOSyh4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=352.774, imageryFetch;dur=67.775, imageryProcess;dur=283.456;desc="image", cfRequestDuration;dur=141.999960
server: cloudflare
cf-ray: 792384ea2f01b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/love-letter_100x.png?v=64027387565019577701671621692
200 OK 8.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/love-letter_100x.png?v=64027387565019577701671621692
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash dbc6a9513c957a775699a7ed9deb2c8c
e9c7aaa3838a68ad375d4a4f6ffb88d65d745770
9c1318d4f220cc5c0835051bd9eda02e4d27e6440b40246c956c773eb05b04a9
GET /s/files/1/1062/6604/t/42/assets/love-letter_100x.png?v=64027387565019577701671621692 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/avif
content-length: 8529
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/love-letter_100x.png>; rel="canonical"
source-length: 1708376
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: de26dfbb-1680-4bdf-b31f-4b348e4211cf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mm3cfZ4U7dRJ7tec74Tu9X45%2FNjSMZUQbKrIyZVLLJNHzY8jdTUOlJU7BxjMlA7XAVLSaMKs7TivCSvVrbmXJ%2FCAc%2Fj8MrAW2K48psC%2FjyGv4%2FaAWpSJROMfklOloVsrVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=613.374, imageryFetch;dur=68.538, imageryProcess;dur=543.841;desc="image", cfRequestDuration;dur=131.999969
server: cloudflare
cf-ray: 792384ea3f28b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.typekit.net/zpy0twl.css
200 OK 761 B URL HTTP/2 use.typekit.net/zpy0twl.css
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash a94b66d5b50ebf82d8c05c53c80a90b7
b32a6a1cbc843462c7bfb6532345128cd92b4446
df5e5ea6fb87e66d032e00d67946206707b41b5cbf9fc0ebc9fc1a31c3c4131b
GET /zpy0twl.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 761
date: Tue, 31 Jan 2023 15:35:47 GMT
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/marker_150x.png?v=8187591169305273471671621692
200 OK 4.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/marker_150x.png?v=8187591169305273471671621692
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 30a1ed2079602dce938ef883be83660c
4e92945a5cc0513595d4490b06d0630aef3ade7c
731d4e42205c2559ab2c87882b51cab5ef2bb5a943d67299cc979340486c55c5
GET /s/files/1/1062/6604/t/42/assets/marker_150x.png?v=8187591169305273471671621692 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/avif
content-length: 4076
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/marker_150x.png>; rel="canonical"
source-length: 5593
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7a1774ee-6a44-4428-ad39-6284ac4bec1d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7OgYfRxI2nsWHWLGnuq95lINjoW2Rq5Cdut5vKFLyI%2BEY6SoZKbe6GIbwcss%2Bmh%2FZjZiwS8M8FReVV2RD9plIsAxUH70aWU%2BqPaMB%2Fe9ZaSvd%2BmEEsbc3BA5KTukpJBSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=217.820, imageryFetch;dur=47.161, imageryProcess;dur=169.653;desc="image", cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 792384ea3f29b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/fair_trade_150x.png?v=73995381554737273601671620913
200 OK 9.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/fair_trade_150x.png?v=73995381554737273601671620913
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 5f357bd32bd667a266f4ab0eb771ed18
e75066716b67da3def19cbd771c30432c7d430fe
3375ffc7043e5d18a40c117170e97c2b7e3188c40b1e7c8c83e8fc70d5864849
GET /s/files/1/1062/6604/t/42/assets/fair_trade_150x.png?v=73995381554737273601671620913 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/avif
content-length: 9402
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/fair_trade_150x.png>; rel="canonical"
source-length: 95646
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: db4112bf-bc56-415c-90ad-7b3c14501682
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42Gzi6Wcx8ltQ%2FI2VCQr%2F3Ke0g0fetUWD2tNGNIfYlg8JxAD7lrTPqBz8sz1nwOR28nA8ywG2ZIjaAIb%2F2xKfnAFWvKGnYfLoV5deR2X9GA3xP20dQQQl4kVNH4gu33WEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=937.981, imageryFetch;dur=79.044, imageryProcess;dur=858.058;desc="image", cfRequestDuration;dur=140.000105
server: cloudflare
cf-ray: 792384ea3f2ab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-2.png?v=87909927501537535241672078157
200 OK 34 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-2.png?v=87909927501537535241672078157
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash a01d6210300b7b85c8374a8b4f680996
03f9665cc5a28abc55acf875ea5e9133964834fd
0410192aba0da3babcd9279f63dff1a19d4e7055b7a14a9de7d9737ca9b2fe5a
GET /s/files/1/1062/6604/t/42/assets/banner-home-bottom-2.png?v=87909927501537535241672078157 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 34230
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-2.png>; rel="canonical"
source-length: 35382
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 20f3c571-dbce-4078-9aca-7710872dad26
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 18:09:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6vZBNwo3ZA0di72A1CNwbizWDA%2FR33L0tPR3w4p0K4G%2F898M4PLhUIkDRC%2FNsGW7adhMy8wPH5jwHQUd%2BKawJBf2L0YQM9wdE%2BJIaoVIuDbSf1SRT%2FliLSd%2BZisvnwQ19Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=178.433, imageryFetch;dur=83.367, imageryProcess;dur=93.253;desc="image", cfRequestDuration;dur=141.999960
server: cloudflare
cf-ray: 792384ea3f1eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4m_700x.jpg?v=112546984542286416861673038128
200 OK 98 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4m_700x.jpg?v=112546984542286416861673038128
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash e3378b751f6867704dc2b458678230ea
a9289d5ae55d6fd07c33bdf5bba41195789f67ef
28e596bac8cdf6e843cd6d2df0f8243394a5f7aeb4f22c420d44e2078a0c2817
GET /s/files/1/1062/6604/t/42/assets/slideshow_4m_700x.jpg?v=112546984542286416861673038128 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 98300
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4m_700x.jpg>; rel="canonical"
source-length: 690462
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5e562b86-812c-42c1-b6e0-557486aae4eb
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 06 Jan 2023 20:51:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8fPI4NVEGXuksL4altT%2FmUfgs7ftDsZeWzvZMo1x0YFIren7pfKmjFJrwUBrpdnwimHlCrSFxnpkn4l67THb4EkMud9DvYEGnwjTm2zE0FdMWfJSWvWVR4RAH8VwHdsMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=711.709, imageryFetch;dur=68.312, imageryProcess;dur=640.486;desc="image", cfRequestDuration;dur=138.999701
server: cloudflare
cf-ray: 792384ea2f14b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-1.png?v=147731412806760252091672078171
200 OK 47 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-1.png?v=147731412806760252091672078171
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9b1861f4649fe3edb34cd3b3a28ab7cc
020f381423d190c981bb37e6098e7e97624c729f
e00d3f6fcbb3c33a26369dc2f1a1d773a835fb540eb0a103cb8ca11d7919b964
GET /s/files/1/1062/6604/t/42/assets/banner-home-bottom-1.png?v=147731412806760252091672078171 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 47224
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-1.png>; rel="canonical"
source-length: 48968
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: ad4ab48a-136d-4e4f-92bf-7f872280fd37
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 18:09:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fZPou4y0IsFODAD3Ks5719PWiG4lcD%2BO5jowBanOEJy3D8SHB5NE38yxA4IVThf9%2FyIOzkOJAAmCHpfJDE0qw0xjN3VqYkPD1DFWSSfdgvxfgX4D7IWQxj%2Fo8F6P7ZqZqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=173.320, imageryFetch;dur=67.715, imageryProcess;dur=104.026;desc="image", cfRequestDuration;dur=154.000044
server: cloudflare
cf-ray: 792384ea3f1bb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner2_1300x.jpg?v=120127107252401045301672078122
200 OK 38 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner2_1300x.jpg?v=120127107252401045301672078122
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash f299cb36557250fd7e975176d5a489cc
3dfb853408a28b26c571fddbee33a29037de4b0a
7937fd92354e09f24573b5f2b239912c24bec71efcf93b95a717a10a4aa78136
GET /s/files/1/1062/6604/t/42/assets/banner2_1300x.jpg?v=120127107252401045301672078122 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 37678
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner2_1300x.jpg>; rel="canonical"
source-length: 96608
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 2a7d225b-ef03-41e7-9685-d14c4a959a0e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 18:09:43 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SyWfvj7GFlBKcjpIpKku%2By6LvxEE5WSUkW4g6BWCB734mVk2re07x%2BbE1QFNlDc3h5ATPv6pSwlQtoxMuelsHTJchLU8MSsjfMP%2BbKcZVUYjtLXofT5VBwn8rd51kLT40Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=356.801, imageryFetch;dur=94.598, imageryProcess;dur=260.628;desc="image", cfRequestDuration;dur=146.999836
server: cloudflare
cf-ray: 792384ea3f21b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-snowboarder-greeting-card-28922055131215_500x.jpg?v=1637254160
200 OK 34 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-snowboarder-greeting-card-28922055131215_500x.jpg?v=1637254160
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 611c80451b11d61613389ac9dd258333
fdb03497a5bf9fd710d0f632f6a47fe5e6f25688
2d88c4b6f0fb2919ff984c1eb494da7d24cd94671b77707afbeaa5058707e4cb
GET /s/files/1/1062/6604/products/greeting-card-quilled-snowboarder-greeting-card-28922055131215_500x.jpg?v=1637254160 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 33548
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-snowboarder-greeting-card-28922055131215_500x.jpg>; rel="canonical"
source-length: 467309
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 2941d809-b8f2-4d1f-8aee-077e6e40a051
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 16 Dec 2022 20:18:24 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XFsn6jtEDtgaeay%2F%2Be8PORpL%2FpyxmWD7uN5qvTXiQWVTduBg3hBa012Oo6kYmVpXtgUPqiUY7eT0%2B8J9VbHt8H7izR94SRbRzFb6mpOGSZCfgQZlS8EWM1Nuv4EkxPHd0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=317.501, imageryFetch;dur=55.540, imageryProcess;dur=261.286;desc="image", cfRequestDuration;dur=147.000074
server: cloudflare
cf-ray: 792384ea3f23b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-ski-lift-greeting-card-28492992249935_500x.jpg?v=1627231038
200 OK 45 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-ski-lift-greeting-card-28492992249935_500x.jpg?v=1627231038
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash fd25d886af9ca8942ed55b5596823921
261e5cfa1380a3e1cd5fbbff3cfe2b18840e462a
dbd1dd018f16bbb6b28f733a47df3f6e8314862791fed5a25ff460b028e1d96c
GET /s/files/1/1062/6604/products/greeting-card-quilled-ski-lift-greeting-card-28492992249935_500x.jpg?v=1627231038 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 45040
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-ski-lift-greeting-card-28492992249935_500x.jpg>; rel="canonical"
source-length: 595994
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 9e86a1f8-436e-4cfb-83fa-3dfa00755a66
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 31 Oct 2022 13:18:21 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WWcI4Wv6frtd9wU0hEwNXNcGW%2Bn5JcOkzb8hEbAoLql5b0FB7bJNzyiS501E4vmZFYriAsgT8mAMxA8gcUB5rl7xKGLLSK6cwlTMArwigWmEqxm2YPgbTEfvt8S71dOyBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=516.860, imageryFetch;dur=61.046, imageryProcess;dur=454.956;desc="image", cfRequestDuration;dur=139.999866
server: cloudflare
cf-ray: 792384ea3f25b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-winter-tree-greeting-card-13839863054415_500x.jpg?v=1626974760
200 OK 29 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-winter-tree-greeting-card-13839863054415_500x.jpg?v=1626974760
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash dfc739f8015c1ef3f79503cbc636cedc
2077ebc2279d534356f09c4518becac7f6674e62
77351a3a4df87e7a85a03bd4c0f7780387664228625b9af57c2678c25569559c
GET /s/files/1/1062/6604/products/greeting-card-quilled-winter-tree-greeting-card-13839863054415_500x.jpg?v=1626974760 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 28884
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/products/greeting-card-quilled-winter-tree-greeting-card-13839863054415_500x.jpg>; rel="canonical"
source-length: 475799
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 2fadce12-0f65-4530-a6d4-52ba966c9c0a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 16 Dec 2022 21:37:38 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ORn32QvrURADNCfn1BlEQ%2FnMx%2BzQSNsWXkNZcN6S15rx8l5CPPSHL8ebaCUJKfYS3KBim8gjy26hnlGlqduPobrBpoO%2Bh11zsi3HOhoPHmlkni%2FRU1o5%2Fcn4kt4Qn1kIqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=360.904, imageryFetch;dur=55.206, imageryProcess;dur=305.032;desc="image", cfRequestDuration;dur=146.999836
server: cloudflare
cf-ray: 792384ea3f26b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-4.png?v=31390588516141105361672078139
200 OK 49 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-4.png?v=31390588516141105361672078139
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, hostcomputer=imagery4], comment: "Compressed by jpeg-recompress", progressive, precision 8, 580x580, components 3\012- data
Hash b3515213752ef712133ff14cb3d5cc3c
05c3914951175fe08dc04dabfccd0ff96fe76888
a71b892aac1c2a54b44b80b51a0e381ce9c14446fb1f347db5920d33d2c8552c
GET /s/files/1/1062/6604/t/42/assets/banner-home-bottom-4.png?v=31390588516141105361672078139 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/jpeg
content-length: 49384
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
cf-bgj: h2pri
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-4.png>; rel="canonical"
source-length: 49398
source-type: image/jpeg
strict-transport-security: max-age=15552000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-dc: gcp-us-central1,us-central1
x-request-id: 8f623875-6e77-4f6a-b228-4d758e6ba12b
x-xss-protection: 1; mode=block
last-modified: Mon, 26 Dec 2022 18:09:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=II772uqgoXTHUbMPuyC4tR42wSGoYGU01yu95oIn8Lsk01eGxIUe5syfgs6m10y5%2BMwOvB8TI%2BKXtBZeM5C5aOuVJTSGCAEaYKoJE%2B8JvIvGVW0iRlguQxHmIzm9uKRDrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=162.190, imageryFetch;dur=78.584, imageryProcess;dur=82.369;desc="image", cfRequestDuration;dur=137.999773
server: cloudflare
cf-ray: 792384ea3f20b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1_1300x.jpg?v=36406943333532752791672068549
200 OK 170 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1_1300x.jpg?v=36406943333532752791672068549
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Size 170 kB (170444 bytes)
Hash 9e17776a3a8788ecee3824b191b2717c
650ac049156d315a3c9bfd6b075b8d40ab582325
abf119d55e7181fdba1859542599cf14c72495e34cddd792af0967f36077130b
GET /s/files/1/1062/6604/t/42/assets/slideshow_1_1300x.jpg?v=36406943333532752791672068549 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 170444
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1_1300x.jpg>; rel="canonical"
source-length: 312447
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 81be884b-b7c0-49b9-9256-dabd5213bd48
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 15:29:33 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4QXB%2F0SRtrL7mkJJYmkNUj4RI6bFIM4yF%2FpbvetJJ5Oqk%2B%2Fpy06bPuxfHeP0MTI4pdIz2zrlNBQK9uitP72%2FxPOV9EOxqZ4CzKTPZQ5vV8KwZlWw6ALQMMSV%2BEU0cQ5hdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=289.910, imageryFetch;dur=60.272, imageryProcess;dur=228.135;desc="image", cfRequestDuration;dur=144.999981
server: cloudflare
cf-ray: 792384ea2efcb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4_1300x.jpg?v=178250806934323821251673038130
200 OK 114 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4_1300x.jpg?v=178250806934323821251673038130
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Size 114 kB (114234 bytes)
Hash 49d2ecd2f9e032979c183b3f349b57d1
5084745eb06e2c4735af330a79f40c5b8ddd3afb
c3ef24629d8baa873fb5b64da92ddb8e748ed6b5a31fc4a273c20d9e6070cfe7
GET /s/files/1/1062/6604/t/42/assets/slideshow_4_1300x.jpg?v=178250806934323821251673038130 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 114234
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_4_1300x.jpg>; rel="canonical"
source-length: 245700
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0890bc84-a37e-42a6-b967-926dc9442dfe
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 06 Jan 2023 20:51:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tJQoCS%2FUWFtTFjj9T0bN0Q8m8%2BkdE2CxkAcKL%2BU1WVCjTvJR60gkzgXSgAgecLyBVGe6Hy96D%2FQ1EYE4E%2BhCsJ6SKWBRW5SIPSlO4QsnroGFhX7W1FFfyMyue2ILDDEIhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=515.463, imageryFetch;dur=92.820, imageryProcess;dur=420.848;desc="image", cfRequestDuration;dur=140.999794
server: cloudflare
cf-ray: 792384ea2f0cb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c6bc61be9ac3f6ab07f4a956094f777
3cbe21c2d3af0a2c2ecebdab59d1184b9decdf88
c986f9055b2ba37cb723622d47d0eab67765882ddc8d98498b05acfb68c37021
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C986F9055B2BA37CB723622D47D0EAB67765882DDC8D98498B05ACFB68C37021"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15999
Expires: Tue, 31 Jan 2023 20:02:26 GMT
Date: Tue, 31 Jan 2023 15:35:47 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash d35f396d9527b37a17f37494bfd430da
aca6151dab60057d9d0cc536f1934b2469073dc2
3174f21f094562685047a983e6632473cc6941fb9ec719f2e6bd30fac9a2d959
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4268
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:47 GMT
Last-Modified: Tue, 31 Jan 2023 14:24:39 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/instafeed.min.js?v=70161113787093966361671621657
200 OK 2.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/instafeed.min.js?v=70161113787093966361671621657
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6175)
Hash 4b66507c9aff6c8b379ae13faa269561
2683de2a35aabda2cbcea5ba409b6a44d4290af0
aa37b8438f4da24107b0bc92c7d8120564f4971396c8aab1bc148adb29787683
GET /s/files/1/1062/6604/t/42/assets/instafeed.min.js?v=70161113787093966361671621657 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/instafeed.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a12c5ec0-ea9c-4bbf-8d56-2f768e0ee7eb
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XHTIR44UnvfkqkAQ7CFR%2FVNQQekGctdJ67O3hZws7YMYsSNVkXKhA%2FeoGlDUAHvCBbLIJsxSTIJSLBJmkevNsLKPpkQ55GrHei1U6fPXG69FvL5sZb3E3U6FBvXw61U2fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=92.859, imageryFetch;dur=92.630, cfRequestDuration;dur=133.000135
server: cloudflare
cf-ray: 792384ea1ef3b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-3.png?v=171202455423465452531672078145
200 OK 46 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-3.png?v=171202455423465452531672078145
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, hostcomputer=imagery4], comment: "Compressed by jpeg-recompress", progressive, precision 8, 580x580, components 3\012- data
Hash 60e6df5a18a88bfd21dfa1cda93f2890
c10f3c6c07a8088c32bec8085955bd33d3262571
63fd6269a2dbb6121d6fc9d8895efed96e88bfabda9c21e8af35cd52f1c95831
GET /s/files/1/1062/6604/t/42/assets/banner-home-bottom-3.png?v=171202455423465452531672078145 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/jpeg
content-length: 45647
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
cf-bgj: h2pri
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/banner-home-bottom-3.png>; rel="canonical"
source-length: 45661
source-type: image/jpeg
strict-transport-security: max-age=15552000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-dc: gcp-us-central1,us-east1
x-request-id: 5a59e696-d71c-49d5-bd85-2205f6955df1
x-xss-protection: 1; mode=block
last-modified: Mon, 26 Dec 2022 18:09:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WLDJkKbkbR4%2F1J4enhxaHvjQ%2ByzhI6nIzJ2kjlpULdslXeBxrXrhq4qsqENt6e6h7zjzeFb7miKuHj7xEsLWlt6YeW28VY1Onxk3OjcD92sebnya%2BsLK9Rb7EcNian1T4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=110.838, imageryFetch;dur=27.902, imageryProcess;dur=80.886;desc="image", cfRequestDuration;dur=141.999960
server: cloudflare
cf-ray: 792384ea3f1fb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=zpy0twl&ht=tk&f=35995.39512.39518.39523&a=5216446&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=zpy0twl&ht=tk&f=35995.39512.39518.39523&a=5216446&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=zpy0twl&ht=tk&f=35995.39512.39518.39523&a=5216446&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:47 GMT
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/QC_ColorwTagline.svg?v=64924445205961376121671621698
200 OK 19 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/QC_ColorwTagline.svg?v=64924445205961376121671621698
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1190)
Hash 91a83aa7e9d8ee0fec344c86f105a63e
a955b77836bd7d06a1a8c6e91be290de41ef77fe
450dc0998105e7b72305df16223dc7e0ee84959c9e19ff00ddbae256c959c4e0
GET /s/files/1/1062/6604/t/42/assets/QC_ColorwTagline.svg?v=64924445205961376121671621698 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/QC_ColorwTagline.svg>; rel="canonical"
source-length: 59440
source-type: image/svg+xml
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c725a7eb-d3a4-41f2-ad94-ccf6994362d2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oKwWKjujPQRaBCf7djeKkERM37LTNj0W6r3gv%2FJZQymBNdNNAzGGoX%2FOxCebcINc2C%2BEglA0JMEb29jLni68nK4w7GUsZMJIiE7XqKajBLxP0sOD25jD8niR6nIicIF4Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=78.219, imageryFetch;dur=62.614, imageryProcess;dur=0.675;desc="image", cfRequestDuration;dur=151.000023
server: cloudflare
cf-ray: 792384ea1ef5b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:48 GMT
age: 6706
x-served-by: cache-lga21935-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2692
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:48 GMT
age: 6706
x-served-by: cache-lga21921-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 3989
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1m_700x.jpg?v=80287389264881470411672068535
200 OK 121 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1m_700x.jpg?v=80287389264881470411672068535
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Size 121 kB (121066 bytes)
Hash c2412d481309b7518d61d29e62d4d669
f98c926d609f7a76f526c3058ffc778ff1e94cfe
af941ed017fec36b82ca9b3ad3ca7a42274bc9b21b0df1fd9cd4e72832654f1d
GET /s/files/1/1062/6604/t/42/assets/slideshow_1m_700x.jpg?v=80287389264881470411672068535 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: image/webp
content-length: 121066
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/slideshow_1m_700x.jpg>; rel="canonical"
source-length: 149975
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: bbdac3f9-86f6-4772-b00b-9fc6df095d7a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 15:29:32 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIxvGL88ZkvfGMj5yp8KF%2FnBcGY4xIGEvMZerAgdP52zvjYSytK5DRpPP82UaUB0ej6Z4u3rP%2FoN9dORZagU46mEcRUiOoHKD4r76YG%2F76k%2B80v30jSay67hSNgmoRDiZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=294.727, imageryFetch;dur=55.974, imageryProcess;dur=236.166;desc="image", cfRequestDuration;dur=585.000038
server: cloudflare
cf-ray: 792384ea2efeb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/snowman.gif?v=156647491127391099051671621715
200 OK 6.1 MB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/snowman.gif?v=156647491127391099051671621715
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Size 6.1 MB (6137008 bytes)
Hash 70ce6e430531c568587f6d7ef6f8b1b6
454a546511d60621ab5c0963094d327f0ae7da40
0e7b82e0a70b51e9116295cc94a8688bc737fccad9a7b833593b16e04c0de0d2
GET /s/files/1/1062/6604/t/42/assets/snowman.gif?v=156647491127391099051671621715 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: image/webp
content-length: 6137008
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/snowman.gif>; rel="canonical"
source-length: 7590488
source-type: image/gif
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7bef4788-1129-414d-b65f-c0d587d01126
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:48 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MIChaNnXXicV%2F8yu1vvRr3%2FcWBx1B8Zkn5j%2Bj%2BjZ2ft8h9beApuilueZ8xYmLbM7XghnygPXiick9d7Kkie2CZ6RFv8NgczhlUmssvVkamNX2eUza4zXdECWbVLKq6AICA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=21858.788, imageryFetch;dur=180.945, imageryProcess;dur=21671.502;desc="image", cfRequestDuration;dur=154.000044
server: cloudflare
cf-ray: 792384ea2efbb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Roman.woff2
200 OK 46 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Roman.woff2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 00714bc0ca3acba0f50445486c8f214f
d175c023d0787e21c56339c2928ce4c67294d4dc
3b53b273d9d9190fa0bb98330aa26112781ebeda01f4ef21890badc2a8b65e7f
GET /s/files/1/1062/6604/t/42/assets/Avenir-Roman.woff2 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: font/woff2
content-length: 31396
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Roman.woff2>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e49475ad-696e-4720-8633-f772e08595bd
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:17:14 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3u%2FMuNAr1hgHORXANCf6hpG7HCY1Q9qCfbO8%2F3AdWM34YY8KAPxYsK9Df21rZy9U%2FF46IxRoI9l9hHfEiSn1Ld4u3oXNyldtfS871JKOULsSuFy304X0LsPcDRj2E9zbDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=94.235, imageryFetch;dur=93.959, cfRequestDuration;dur=136.000156
server: cloudflare
cf-ray: 792384ed6944b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-HeavyOblique.woff2
200 OK 21 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-HeavyOblique.woff2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 21260, version 1.0\012- data
Hash 3a2ec44923aa5f2c04bdcf2352d881de
7ec130c893478b41f6e25bfc0e05b22c4f8c0f6a
8db19ff369111a7cdd5c89cb98a4906694a652c70f719f2b6023406a3437b9d7
GET /s/files/1/1062/6604/t/42/assets/Avenir-HeavyOblique.woff2 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: font/woff2
content-length: 21260
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-HeavyOblique.woff2>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 92bdf934-96e4-4a1b-8bdc-4653841ef31a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:17:14 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kkP%2FVU1q%2FWFqGdqQ8kWqpYEHYcMVgeTaqf0TZCa9vvk7DB4RKtIjX%2Fy%2FN6cD%2BZuUhzXijwMJOvALMVSJXZFT5fv41Bm6KzsR9N%2FVn7heILOeiEnJzJikjxi3Nf00dmzajQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=111.477, imageryFetch;dur=111.095, cfRequestDuration;dur=139.999866
server: cloudflare
cf-ray: 792384ed7952b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 07304039cef7e38bd3d13c7a4d034b8b
c62c73bd75693fe5d80b97db0292a923c6194d18
504b869a8cda81ca71aecc14eec1299ea70ec9c7ddffbb3604a2fb9a214961a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "504B869A8CDA81CA71AECC14EEC1299EA70EC9C7DDFFBB3604A2FB9A214961A3"
Last-Modified: Tue, 31 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16749
Expires: Tue, 31 Jan 2023 20:14:57 GMT
Date: Tue, 31 Jan 2023 15:35:48 GMT
Connection: keep-alive
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:48 GMT
age: 6706
x-served-by: cache-lga13621-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 2811
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
200 OK 24 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32761)
Hash 8c9ab8cf2ca9af811f206b85924c8eec
5151d2f7b990ea06085e37307e5c1d25857dd0f6
6c385ed6fea6b5e2469e64f6ed2a9d39fb9d939b64902c6c2001551657791c54
GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 94c7802f-0e6f-41a9-948b-8c716fabdded
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 25 Oct 2022 19:54:01 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eZBMtQ%2FzDE2Gh34wi6acITf9A4ENzv3IFBdodcm3gjmY8pIIq7wK50LHKPoyMQpYUEV0RSSLu22%2Fu8qY5EIBJ0p17tJEOYXg0HYlXdZGFuQUekFY9WNkB2CpJyscsnPzkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=25.061, imageryFetch;dur=24.890, cfRequestDuration;dur=131.999731
server: cloudflare
cf-ray: 792384ea4deeb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 24 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32755)
Hash aae130f45905f7db978aecbd31b6eb6c
4d4a582dac4e91d9807d9d7472f5e27910b73952
cab7873d786956f6f6e7440a084166e320cc5cbe2f4365f5b8d9d6a1e81781dd
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e53141ff-20b2-4224-9a8c-b971f609e341
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 30 Nov 2022 23:43:50 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yKl7LDKqSFp7dHxpuUGUDZVyZfLNOukFrjz%2BNlBFge88MVS7DsqC8oF9r4pa3bowM0Wdeq6ZF0YAPDv2ZmqG6Wse8M6%2FOvPKCKncZ7NQJ3Pa9itnKywguV6DS9FfQkVGMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.250, imageryFetch;dur=23.041, cfRequestDuration;dur=128.000021
server: cloudflare
cf-ray: 792384ea4de9b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 28c76724a447830a3989abe5e355c4a5
f4c0d1e1cf279c2e12588ef7678c7b1aef510584
471b79f462a64784d1bd1de21b9e2615dce8789e9d7bb2e6b1e6955070086afd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471B79F462A64784D1BD1DE21B9E2615DCE8789E9D7BB2E6B1E6955070086AFD"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11971
Expires: Tue, 31 Jan 2023 18:55:19 GMT
Date: Tue, 31 Jan 2023 15:35:48 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash b21d181da084d0a1b318a781d100b57c
03eaeb6911e33c1931d45a4d65c566ecc67c58e9
a703b5d540ef8cc4a9d8f5dc6660b4ef8944e7bfed926b05a77704d044b39970
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4122
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:48 GMT
Last-Modified: Tue, 31 Jan 2023 14:27:06 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 280
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/custom.scss.css?v=105414886082689812411671620908
200 OK 2.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/custom.scss.css?v=105414886082689812411671620908
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5971)
Hash ded296fd186bf396761f33322552d5b5
4873bdb4d03472f9517eb5c911ec32a46e99c547
7a7f7564be02cc22b66b6d4aa2c3bee4bcb01cc238be9837ccde769f099df528
GET /s/files/1/1062/6604/t/42/assets/custom.scss.css?v=105414886082689812411671620908 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/custom.scss.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1be3da84-c95e-4475-94a7-323ea73cc3b6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wyV6N8j6PiadlaZZhDCfPkMLkblxHP2pW255vjHvI1ZFR2Sdhl83je5gGvqf%2Fyr6lPTG6ZDubyZUQmgqzJEUdg4093kJNeREwhUaROxyh4qnXuYr%2F%2FF8sYu9HKZk%2BIgGVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=114.164, imageryFetch;dur=79.669, imageryProcess;dur=27.766;desc="scss", cfRequestDuration;dur=131.999731
server: cloudflare
cf-ray: 792384ea1ee8b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11181
Expires: Tue, 31 Jan 2023 18:42:09 GMT
Date: Tue, 31 Jan 2023 15:35:48 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-setting.css?v=28863121216098805281671621763
200 OK 2.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-setting.css?v=28863121216098805281671621763
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (9453)
Hash ab414472e347700d72fc5daf909b7819
97b007d1a7d6b93b2d7c3de2549d952c06915ba5
3e67426ec38fbe1ffd7fb572c0b926f24110ef24a14b76ed9158b5178772a713
GET /s/files/1/1062/6604/t/42/assets/theme-styles-setting.css?v=28863121216098805281671621763 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-setting.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 73125a33-b655-4e81-a82f-49bc3fdb369c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4vNBqNay2fyg4vx2Iwd4EsIyCNGDafr1LJbrKCf4z3zx84yvD2MQilUojLv%2BCsKQvfd4MNNhNbPqepnUYgZx4n%2FKqQpfPX3MKhpj3MC1NMXznF18WJMvx4qpxNGixBe4aQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=81.740, imageryFetch;dur=44.497, cfRequestDuration;dur=140.000105
server: cloudflare
cf-ray: 792384ea1ee3b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.data.js?v=118792997836867519551671621763
200 OK 25 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.data.js?v=118792997836867519551671621763
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (9566), with no line terminators
Hash c65a4cf0762f2c322bd1a66580463628
48b544a7e468075ba2b50b38df2f9f00c2443bf7
c60be4d105b0f166c499738958d12d904b11381ec4a40688853aed889592fea5
GET /s/files/1/1062/6604/t/42/assets/globo.alsobought.data.js?v=118792997836867519551671621763 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.data.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b1e572d0-266e-4899-9900-27f9eba66ab9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DoYOMDFzqnUIhnHET6gBh7nCH%2FPdDnuVpc4Q1edzBAg2vy7iXPppmqxjAs0dMt7JMA%2FyWhBe%2BaR9qcx09CNj6h4XaJYnk9I5iAA%2BvcgOud%2BxgoRJsWvQ4P%2FPzQlMFp%2FPFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=45.564, imageryFetch;dur=44.306, cfRequestDuration;dur=139.999866
server: cloudflare
cf-ray: 792384ea1eedb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 64115
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 01f406ed5d9b17a7aa00015301bddf94
d78e18830fc6cf231f66f95cc0e01520cfeebddf
33245ea764fb634a01ee9657e529a30567588ecbb10fc0e6499aac14cd21fe81
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7333
x-amzn-requestid: 7563c72f-e40d-4e96-a73f-8aa404ae0b25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFK8IAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-7eb009311701187873f05b20;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -npeyE-5ETAaI6cs7oewWxVe4ZUrtmhvCNC4tMWT_3ab3hZ3tw060w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 18:56:07 GMT
age: 74381
etag: "d78e18830fc6cf231f66f95cc0e01520cfeebddf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 49339
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:40:17 GMT
age: 42931
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 49052
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZKuBcZgC6yolu1QcaXZKAIIDynG3Zywq1d7sWI8Jlq3ULwlr6XlhWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 13:05:29 GMT
age: 9019
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash b21d181da084d0a1b318a781d100b57c
03eaeb6911e33c1931d45a4d65c566ecc67c58e9
a703b5d540ef8cc4a9d8f5dc6660b4ef8944e7bfed926b05a77704d044b39970
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4122
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:48 GMT
Last-Modified: Tue, 31 Jan 2023 14:27:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 31 Jan 2023 15:35:48 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
200 OK 7.0 kB URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ee3013daae13cd0b0eaf219899942a32
2e40e43d177b74e3074912a177d4646a8fb7452b
5c57232222bfa4aba955b5edae9df73ebbdc2f1ef628903dd2d9ca4ab3fdbf27
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 240
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://quillingcard.com
access-control-max-age: 86400
x-request-id: e10e43f5-e99c-4805-b36f-4e36f498ccec
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JSidCvizna1jCrGcmhkybHUcRe5L3ByOkKRaczCcW19n4xyACr3fiFq4o7pnkr9DuQLComZluomcYZ2Typbp%2BxA%2BsYB%2BpAN9QZzNTiU8heCM%2BpQ%2FxGlr6eDwP%2BqH%2FtJi3afKWWaKGllR0aYE%2FEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=411.999941
server: cloudflare
cf-ray: 792384f02886b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 19 kB IP
ASN #20940 Akamai International B.V.
Hash 4bd1c6122132df0508a705ed808a2f2c
c9d60be347321b70849316aa7e9aa71afadab008
aa32e33bcff357ac1a616cbae9f4ba7b132a7b02a240c045c840db31b9108dd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "504B869A8CDA81CA71AECC14EEC1299EA70EC9C7DDFFBB3604A2FB9A214961A3"
Last-Modified: Tue, 31 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16749
Expires: Tue, 31 Jan 2023 20:14:57 GMT
Date: Tue, 31 Jan 2023 15:35:48 GMT
Connection: keep-alive
shop.app/pay/session?v=1&token=bb66dbe4-21e0-4274-b74c-91514258a6d0&shop_id=10626604
200 OK 15 kB URL HTTP/2 shop.app/pay/session?v=1&token=bb66dbe4-21e0-4274-b74c-91514258a6d0&shop_id=10626604
IP
Hash 274275dc243dab8678a3d5d44783d4be
bd553292201f7bfc859e0bcad7d8c9c74646d898
f7fd76beab02f011ccd1af0538f4e2c85f89f6de96d844cb43dfbe8115933bc8
GET /pay/session?v=1&token=bb66dbe4-21e0-4274-b74c-91514258a6d0&shop_id=10626604 HTTP/1.1
Host: shop.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: application/json; charset=utf-8
content-length: 18
x-sorting-hat-podid: -1
access-control-allow-origin: https://quillingcard.com
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-frame-options: DENY
x-robots-tag: noindex
vary: Accept, Origin, Accept-Encoding
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' 'unsafe-inline' blob: https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifysvc.com https://hcaptcha.com https://*.hcaptcha.com; img-src 'self' https:; font-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com; object-src 'none'; frame-src 'self' https://*.shopifycs.com https://pay.shopify.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com
set-cookie: _pay_session=XXxAWRfyu5WW0DN8pKTyqYuuzhDGZHZaoIWo8cpDKekfcyR46xKt23HJBUkrRoXZo3YzTAtEBQM41V0asExyt6%2BFuKfwni9bvv3J4XBtRgKOR%2BsVKfyoAtCTGVL55iEIw9qM79Tnuq0BMA%2BEb4UjVxpjnjvxh1VWiA7GYFK6kxiJm4QVboLrvzf%2BrkVJPc1PmINs4w%3D%3D--%2B22zjXHCksNzJ2Au--l2gdudD4Ylynm2GIY7yyMQ%3D%3D; path=/; secure; HttpOnly
x-request-id: 7e3cfd17-e291-4176-8ae0-a7478117333f
x-runtime: 0.009020
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i9VXPNVRxsMm5lM0YADx9IH%2FsW%2FnbF62iMqOzBxm%2Bvpl80F4cl9XomOxhnevYowvDnNheaAxJA2Dq7peYlxQBtzgjZboCpdGpmotuRGMRteI3wpZCx6BXiCY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=195.000172
server: cloudflare
cf-ray: 792384f03eeeb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 2.7 kB IP
ASN #20940 Akamai International B.V.
Hash 311bce34da6f8583c74fd9c36521e790
e32fb59a35c41ff0ba423c64efd73e3d2873c045
16246512becd1dfee869d5672a6c8c6696df43fb1fc7b68bea48872772494ba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471B79F462A64784D1BD1DE21B9E2615DCE8789E9D7BB2E6B1E6955070086AFD"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11971
Expires: Tue, 31 Jan 2023 18:55:19 GMT
Date: Tue, 31 Jan 2023 15:35:48 GMT
Connection: keep-alive
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RwHZp2
200 OK 513 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RwHZp2
IP
File type JSON data\012- , ASCII text, with very long lines (2404), with no line terminators
Hash 9893fbe7dd8b5a03755255a37a3318e3
996bbdd9dd99c5201ff9b0e660fe3a68d7dc9db6
d1e60f1edd8cc9f7c0cdbb6aaa6738e2e39c309c18ef69a036bc814e74d79ada
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=RwHZp2 HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:48 GMT
age: 2360383
x-served-by: cache-bos4681-BOS, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1322, 1
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 513
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/RwHZp2/full-forms
200 OK 39 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/RwHZp2/full-forms
IP
Hash 3b8b8fdc50142a4a52893f1b1886fda9
2c486f02052bf721287e3fde26bbe9aebd326437
06356f09b8752fc5b4565875ec60e8fcab5ca74764f2558f076fca67cc241d8b
GET /forms/api/v6/RwHZp2/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: keqU4n0FDSirubI/2HNMrQIRAMPgZxAKrRcKC4SckEyuJAcMXOMm14LFmCC6vg161fFeau9lPmM=
x-amz-request-id: KMNRVYHN7FEDRJQA
last-modified: Wed, 18 Jan 2023 22:29:03 GMT
etag: "38d46a8ae421a6bf1a77ac304966808b"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/RwHZp2 custom-fonts/RwHZp2
x-amz-version-id: vHa5uDTel2DZ5he4pv9vDx0mr19Cj4A.
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:48 GMT
via: 1.1 varnish
age: 531973
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675179349.746277,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 12163
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/mr4XpjX7o8Q
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/mr4XpjX7o8Q
IP
Hash 1fe3ff7380a33a3fee4d5c2c32b1a046
1a2fad6a7ddcc8f6eaf30c3260182b8aa49c370d
607f18f7ba55e8511fbe8bfde527ae4a70c5829e73513d7a1405ba6b801a1def
POST /s/gts1p5/mr4XpjX7o8Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-responsive.css?v=169516696667206716031674672186
200 OK 6.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-responsive.css?v=169516696667206716031674672186
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (26152)
Hash 6f9c1363e6767c1d7744b6d508750dbd
93582bcf394a1eac3efdf0168b31a487d48d3b36
570a55f550585e4e1e512a540d4719854a0e666fe3b7657e8cdc91a3dc8bb9ad
GET /s/files/1/1062/6604/t/42/assets/theme-styles-responsive.css?v=169516696667206716031674672186 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles-responsive.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f04f4163-ea28-4be6-afd4-50601ab142c7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 18:44:25 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jUFjlbKaJbFAdagvNKH4wyle0L7jTEub7bPhkZOWrU5woJHIfcgnKWIYmhxcC1KfyiW4qTX4FO6xWdc8glIeaPIWtk6W1XJTJ3juFTkkrhT6AnlK11YhNc7H%2FU21eOwZ2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=79.628, imageryFetch;dur=75.971, cfRequestDuration;dur=146.999836
server: cloudflare
cf-ray: 792384ea1ee4b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-brain-widget.css?v=12280912722225961271671620875
200 OK 21 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-brain-widget.css?v=12280912722225961271671620875
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2431)
Hash 03509b58839afa01e787c183e1d5d630
71124cc6e05d1716f25dd70b5f996a8755124edc
315442bbba59e28ff09abcb724f4993752c9ce0dd516bbe242d50429497e988d
GET /s/files/1/1062/6604/t/42/assets/bold-brain-widget.css?v=12280912722225961271671620875 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-brain-widget.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0e8ee325-a0f8-46a7-a962-1abb95b405b5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3iTOMxCWJ0I0PsubAL8ReUJ7wqv22okvXBMpUiPsxQxLLdrERLdRqIXuZ3AhSv5or6rIHLACeH5Mcb6IIUP%2BmPEMcg7OyuyxWaAiri91gMjiXfy3HsY1rzAuwyTxgM0%2B5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=70.408, imageryFetch;dur=69.189, cfRequestDuration;dur=128.999710
server: cloudflare
cf-ray: 792384ea1ee9b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash aec352657815f12ffe0688a87de78b38
b1567e7c98a2fa6f5ac301ca5cbb3c3a3c887c8e
7c4140541f1afab3e549aaa11ce0014d01d16036e69da9c41a92b8dd8da7b314
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6437
Cache-Control: max-age=145483
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Etag: "63d8b17b-1d7"
Expires: Thu, 02 Feb 2023 08:00:32 GMT
Last-Modified: Tue, 31 Jan 2023 06:13:15 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 7f20a40d99ca91681a3988db4bab28de
d7f17a9dcfd3c6f4274cdd89fea71572112cfd80
9a3d33c84d6c91ac111dda7fcbe14f90c18fefd4cba9b3eb7d366e646f0ddcd2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2718
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Last-Modified: Tue, 31 Jan 2023 14:50:31 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/817143724/?random=1675179365645&cv=11&fst=1675179365645&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&auid=887935979.1675179366&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 900 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/817143724/?random=1675179365645&cv=11&fst=1675179365645&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&auid=887935979.1675179366&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1967), with no line terminators
Hash 670e38d2f57e2d38fb58dce8904d1d3f
191e14207c165f9173042a8528c398480ed91fff
faddd7f28d8584d26c1f47dadb28f1a0ca993dcf6e0c1a300e3173a6e6f897bf
GET /pagead/viewthroughconversion/817143724/?random=1675179365645&cv=11&fst=1675179365645&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&auid=887935979.1675179366&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 900
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 15:50:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
country-blocker.zend-apps.com/scripts/908/787e8665307884350308429f4fc60451.js
200 OK 31 kB URL HTTP/2 country-blocker.zend-apps.com/scripts/908/787e8665307884350308429f4fc60451.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8278), with no line terminators
Hash d37b3135e3fa4a27e325933d8c093adf
a90b211b7a1e055a11e1e024cfeed239f7134879
16620ec73778ecd73b921f15db3f443e58f18e55df9d7b41ddbd9d12a4068e0f
GET /scripts/908/787e8665307884350308429f4fc60451.js HTTP/1.1
Host: country-blocker.zend-apps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: application/javascript
cf-ray: 792384ea38c40b51-OSL
cache-control: max-age=1800
etag: W/"2205-5e4166aa04510"
last-modified: Mon, 18 Jul 2022 15:56:52 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=8709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c2UwQCxHrMO%2FJbofS%2BD%2F4hS2kRm65GRCdPTgJwiSdXEpEc1B5inumo15QudOYEhj6M1XSG2edUTvK85Vo4CmBVpixM19MQX9rBhLq8%2FTHI7pC%2FeqV1P61eIWCkSTnPrIeRRmLOwaNaFNGVXYlHPR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/component.css?v=93812948466218516831671620906
200 OK 1.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/component.css?v=93812948466218516831671620906
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (909)
Hash f6853ebbb70adfa4c457ca282de3a673
56ecc2e78d195ac713c48c490b514c1f0bce3a0a
3d92682725f5258982ce4295faceabb33c9ecaa40dfee119574849e668da6235
GET /s/files/1/1062/6604/t/42/assets/component.css?v=93812948466218516831671620906 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/component.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e372101f-e192-4772-89e7-d05975e2c025
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E0pp%2FebZ5A4310pzrm7nA3AoGJCYryqjCOT4ZSyv1MJJXSDOODP%2BYovIP%2FcdDGrbDk9zl%2F2fgnLAGbUZby5XZJ320ws5wvs%2BwQ%2BkvyZKk4jGZVfvbmMYQWmX3hV0WRMXPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=129.850, imageryFetch;dur=128.991, cfRequestDuration;dur=141.000032
server: cloudflare
cf-ray: 792384ea1ee0b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rozha+One&display=swap
200 OK 455 B URL HTTP/2 fonts.googleapis.com/css2?family=Rozha+One&display=swap
IP
Hash b6c5868ed2ec66f403ee4b82f17d0aff
4c8b7ad4791002e9aa416a8897fe28db12417bd0
c0b71f9a080933beefc3502dd415cfa5e420ed4356cbb79911511a26aa364bc7
GET /css2?family=Rozha+One&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 15:35:47 GMT
date: Tue, 31 Jan 2023 15:35:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/avenir.css?v=8242855120253938781671620860
200 OK 2.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/avenir.css?v=8242855120253938781671620860
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3792)
Hash 724eb8fa665bd24e2a802cbfcb163357
4c118f298c6149fab2a6da979bf012a6193c832e
8fc7d00b03ceaf1438b6d5169e5bb26f9c5a228447b54e1758aa1e9e24b00c36
GET /s/files/1/1062/6604/t/42/assets/avenir.css?v=8242855120253938781671620860 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/avenir.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5688437e-0b7e-48cd-83bc-dbb14158df4f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6e2lXieoaQibGl%2BfhxWhscZNb5W5mpa4MjveXegrqAsC6ztHjUYUuWWx8chHgqVqcdrYg2pojKdMlmhHeEN3Bd4qDIWo28Zvcf7%2FaECDmYKj1j9hT4UOKPU2tZ2JIbfnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=60.544, imageryFetch;dur=59.718, cfRequestDuration;dur=273.000240
server: cloudflare
cf-ray: 792384ea0ed2b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash aec352657815f12ffe0688a87de78b38
b1567e7c98a2fa6f5ac301ca5cbb3c3a3c887c8e
7c4140541f1afab3e549aaa11ce0014d01d16036e69da9c41a92b8dd8da7b314
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6437
Cache-Control: max-age=145483
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Etag: "63d8b17b-1d7"
Expires: Thu, 02 Feb 2023 08:00:32 GMT
Last-Modified: Tue, 31 Jan 2023 06:13:15 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery-cookie.min.js?v=72365755745404048181671621658
200 OK 586 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery-cookie.min.js?v=72365755745404048181671621658
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1139), with no line terminators
Hash c8a0ab1d8003ada50e99eb2dbd022518
278cd5345471bc6cd9f604346386b244cd7fea99
1baf4714d33f3318b61fe9173142150e35e94fad04226f95fac44ee58b4c23c4
GET /s/files/1/1062/6604/t/42/assets/jquery-cookie.min.js?v=72365755745404048181671621658 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery-cookie.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e011cc64-d611-49fc-a056-911ef296575b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dPjEiioT%2B8I0VuZvwA0fH20km6Ne6YMQwdId1ocMamlfObPZfbRKlJ%2FEt0zYZrYs0RWE5IM5aLNwWphNAULGOHPpfnLfEhTY64SXbCGe38335v%2Blfhve%2Fm9ysZQamJtnsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=92.407, imageryFetch;dur=92.207, cfRequestDuration;dur=138.000011
server: cloudflare
cf-ray: 792384ea1eeab51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=972111914&t=pageview&_s=1&dl=https%3A%2F%2Fquillingcard.com%2F&ul=en-us&de=UTF-8&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1490571160&gjid=731736157&cid=9686694.1675179366&tid=UA-76823198-1&_gid=1283462596.1675179366&_r=1&_slc=1>m=2ou1p0&did=BwiEti&z=165975138
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=972111914&t=pageview&_s=1&dl=https%3A%2F%2Fquillingcard.com%2F&ul=en-us&de=UTF-8&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1490571160&gjid=731736157&cid=9686694.1675179366&tid=UA-76823198-1&_gid=1283462596.1675179366&_r=1&_slc=1>m=2ou1p0&did=BwiEti&z=165975138
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=972111914&t=pageview&_s=1&dl=https%3A%2F%2Fquillingcard.com%2F&ul=en-us&de=UTF-8&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1490571160&gjid=731736157&cid=9686694.1675179366&tid=UA-76823198-1&_gid=1283462596.1675179366&_r=1&_slc=1>m=2ou1p0&did=BwiEti&z=165975138 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://quillingcard.com
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112746627-1&cid=9686694.1675179366&jid=487770168&gjid=1931737612&_gid=1283462596.1675179366&_u=YGDAgUABBAAAAGgCIAB~&z=847726689
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112746627-1&cid=9686694.1675179366&jid=487770168&gjid=1931737612&_gid=1283462596.1675179366&_u=YGDAgUABBAAAAGgCIAB~&z=847726689
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-112746627-1&cid=9686694.1675179366&jid=487770168&gjid=1931737612&_gid=1283462596.1675179366&_u=YGDAgUABBAAAAGgCIAB~&z=847726689 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://quillingcard.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.judge.me/widget/base.css
200 OK 7.0 kB URL HTTP/2 cdn.judge.me/widget/base.css
IP
Hash 0bbd89df159ea722916bde10c8bde9bd
3cafce939fee9047c9a60c5f82cb51b7722eb280
a68ba6c776b0131a13ccb6b75a5ea3618d85942dfba585a8c0e0c29b9ae922d8
GET /widget/base.css HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: text/css; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"a0225ec9ad5c431f4613269099964f19"
x-request-id: 87d707bc-2632-4983-b0c6-1fca570bb628
x-runtime: 0.006536
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/widget/base.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.bootstrap3.css?v=109945665971193120361671621701
200 OK 2.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.bootstrap3.css?v=109945665971193120361671621701
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7545)
Hash 0c4e94734c735ff46d56a20209eb7e2f
4fe41374558a5b0a955703849b62b9003d88cbd9
cf5ea6295c5910113f30cec987c6136f136d9fbf397f261daa6b68f743ddafab
GET /s/files/1/1062/6604/t/42/assets/selectize.bootstrap3.css?v=109945665971193120361671621701 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.bootstrap3.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c101cb39-c685-414d-bc5d-7b27af348086
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FaBaqMeTFvi3NrlPDh96MwbQE1rtbfLZJGAxRAx8HjOqu5NPqIy87ytZ7seirMQQWB3F%2BZG%2FBgQChqxn5M3pUHe57XXv7Zxsnu%2F4KcVD4mBSkPkmD%2BoHMXKVmNWIEFuhaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=80.735, imageryFetch;dur=73.763, cfRequestDuration;dur=138.999939
server: cloudflare
cf-ray: 792384ea1edcb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/817143724/?random=1675179366152&cv=11&fst=1675179366152&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&label=jE0aCILK4MgBEKy_0oUD&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&hn=www.google.com&frm=0&url=https%3A%2F%2Fquillingcard.com%2F>m_ee=1&auid=887935979.1675179366&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/817143724/?random=1675179365652&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2171439159&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/817143724/?random=1675179365652&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2171439159&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/817143724/?random=1675179365652&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2171439159&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/817143724/?random=1675179365645&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4163774898&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/817143724/?random=1675179365645&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4163774898&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/817143724/?random=1675179365645&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fquillingcard.com%2F&tiba=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4163774898&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63d93565c875cf5b&bkl=0&bl=1&pdt=1882&sid=63d93565c875cf5b&pub=ra-5e332dc47ac50ec3&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=quillingcard.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675179365910&jsl=262145&uvs=63d935659213d92c000&skipb=1&callback=addthis.cbs.jsonp__26911563901814140
200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63d93565c875cf5b&bkl=0&bl=1&pdt=1882&sid=63d93565c875cf5b&pub=ra-5e332dc47ac50ec3&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=quillingcard.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675179365910&jsl=262145&uvs=63d935659213d92c000&skipb=1&callback=addthis.cbs.jsonp__26911563901814140
IP
File type ASCII text, with no line terminators
Hash 35f17ee91dc680fe6a980c484330fe8c
e3b5e0d0381b08367888b8e936062b7d8ea05ebf
bd52e9892f5bc8cd4927874e54b6f25fbe516c53d0d03d3ee745ee583a527759
GET /live/red_lojson/300lo.json?si=63d93565c875cf5b&bkl=0&bl=1&pdt=1882&sid=63d93565c875cf5b&pub=ra-5e332dc47ac50ec3&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=quillingcard.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675179365910&jsl=262145&uvs=63d935659213d92c000&skipb=1&callback=addthis.cbs.jsonp__26911563901814140 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 31 Jan 2023 15:35:49 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.f6304d83.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 3.7 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10292), with no line terminators
Hash 7174ca8d7fe7895836f70266dbbf9d69
67fc7412ae704928446cce0aabe4cc723af50052
524e830b3c65a48dab7c3f2c202eb21587af49969f59476d1b569297761d5a40
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2be8ecba-f794-4a46-8d00-25b79e8da63d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 04 Jan 2023 20:11:40 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QL2rrXBL2C1HcKCYFvOxT4W5YlnbUHHvaJj4AZE8sR3T9cxPUouoJ6plYfemtHqXICCKM2aTlWVsLwUJZ6goYSEKcuzmZhECJK1%2FPe5K4v0rdsAJAFDp7yURUhQHOa81Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=24.083, imageryFetch;dur=23.810, cfRequestDuration;dur=219.000101
server: cloudflare
cf-ray: 792384ea4de1b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&cb=1675179366713&dep=2%2CPAGE_LOAD
200 OK 380 B URL HTTP/2 ct.pinterest.com/user/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&cb=1675179366713&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (538), with no line terminators
Hash 509f9f17664ea845ece0a38f0f7a70bf
849d5513fa36d2441b3325575ff2d074594e1591
4869150f10b5577c79966bc43ba24d1d9e7b2bb8cb89964263015cb7dae9a9e8
GET /user/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&cb=1675179366713&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1XWTVPVGRsWkRrdE1XVTVPUzAwWm1NMExUbGpOMkV0TW1GaFkyUm1NVGt5WVdaaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://quillingcard.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 380
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1515617029501794
date: Tue, 31 Jan 2023 15:35:49 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675179349.dba1d66
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
200 OK 133 kB URL HTTP/2 www.youtube.com/iframe_api
IP
File type ASCII text, with very long lines (509)
Size 133 kB (132852 bytes)
Hash 472cada2ea7f733ed047ee1d9bf818e8
e3e7d5baedb0d6f6be34306a7566aafb10388df8
493a4d45e0f512b87c009ee1fd1c04ce829bf957df46a28ee65ca304b2e7ab6e
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 31 Jan 2023 15:35:49 GMT
date: Tue, 31 Jan 2023 15:35:49 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=hoQisGHfLVM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=1ngJkuThyTg; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:35:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TkRnME1EVXhPVGMzTVRRd05UYzJNZz09ENXq5J4GGNXq5J4G; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:35:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+171; expires=Thu, 30-Jan-2025 15:35:49 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js
200 OK 22 kB URL HTTP/2 static.klaviyo.com/onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a9c20df32964173902c6f0fbda3fdbf
c8379909e7ff7cf358f1ebeab528e7743e4d8916
0009f63555e64e4e60a83e8747066d4373632202c30af01f90086862168dc4fa
GET /onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: sGgc/LknxNKe78JGhcPZuk0/gxK/hJrwbgExfjJKinJZWMxRRhBUjb+K/fetUMKk1o+JyrLcZsHAwrNn92qfRA==
x-amz-request-id: N0GTMDS9C1KFYNR6
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "531207e94bec8a7b205b2ec82753f708"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: KvmP_FiymXtEvzchzqiLfesALGA.PSPx
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:49 GMT
age: 6707
x-served-by: cache-lga21974-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1013
vary: Accept-Encoding
content-length: 21979
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
200 OK 172 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP
File type Unicode text, UTF-8 text, with very long lines (61915), with no line terminators
Size 172 kB (172481 bytes)
Hash f8719c0f172d70f71b52d6b73754bfed
6a1a95635ce9c0f2682326c56d56380ab5745664
928fde7bb75fc89029ca02fb0482dcf59aee9900c1132854c6a643a2f639a4fc
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:49 GMT
content-type: application/x-javascript
cache-control: max-age=432000 public
expires: Wed, 01 Feb 2023 15:35:49 GMT
last-modified: Thu, 26 Jan 2023 13:36:03 GMT
etag: W/"6bcef-63d281c3-678819b673a2fdb4;;;"
access-control-allow-origin: *
access-control-allow-headers: *
cf-cache-status: DYNAMIC
vary: Accept-Encoding
server: cloudflare
cf-ray: 792384f3aa7cb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
200 OK 1.6 kB URL HTTP/2 static.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
IP
Hash 123186ebf881fb291c627a14a642575a
ed3ef6196cdbe81c17dca2fb31da0b8fa303b9fa
ba3f67f88bb67a7dd0bcfe2f5d93e262960abb382dc57b7643cb92a7446d6d29
GET /onsite/js/styles.22c2b11c5e8fc57b054a.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: E8Ldc5LYWpIVy6sMUMRkHKWE6EoVLNREb8Zxz4w5N2Lq7Lr7Mxf/AEHr/xODuHMCsJeK5dJVJtI=
x-amz-request-id: GTP1WT056WKR4Q6R
last-modified: Mon, 23 Jan 2023 23:39:50 GMT
etag: "181cb819470277818fa669b08c54fba7"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: U9mjGRX.phFwbDudSfzAIyB1cs0tp_28
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:49 GMT
age: 6707
x-served-by: cache-lga13624-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 981
vary: Accept-Encoding
content-length: 118
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
200 OK 3.8 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
IP
File type Unicode text, UTF-8 text, with very long lines (11557), with no line terminators
Hash 759fe340b25d1df040ba2dcd71dac270
8d69511d05fe080ff071e7b85d246fb5fb6dc23a
3fd331517c2760b605933cbdb6db4dc5550728499e612db84de5c2ad10200bb5
GET /onsite/js/vendors~Render.70ff401011c5901815b0.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: +Sr12p42zeA0JnV0+SXizAOFyx1q2bqlY9D38/7Q6gcQqTf42WJB3LQXMWsTEQIIr4X7bvSA6Ds=
x-amz-request-id: 0YX5RZTRRPPXQQ94
last-modified: Tue, 24 Jan 2023 16:25:42 GMT
etag: "6050cb7857ea2cda4fbbd931d3a27604"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: TAUsxioJxBq4aOeMAnjtWsjMfzIOQpU0
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:49 GMT
age: 6707
x-served-by: cache-lga21927-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 993
vary: Accept-Encoding
content-length: 3837
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/Render.094c406e512e39274940.js
200 OK 27 kB URL HTTP/2 static.klaviyo.com/onsite/js/Render.094c406e512e39274940.js
IP
File type ASCII text, with very long lines (18595)
Hash d9c08c2bc85ec57d7d88cf91ed94ed62
c97426a83ad396c69bb143116a281094aba1cc08
790ad21e4d884043a4412333c2ceb18711e36c31d31b1648716e4c5a590de897
GET /onsite/js/Render.094c406e512e39274940.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: yMoI7H2EVLftHP9RKm6ZOwgMACn8QcIi7AanaliNsGLmBz39RbNn1d8vGiozf1F4oNjArXZwzt1g4GF8rQSIZA==
x-amz-request-id: 1M6E4HV5E1J0BE7E
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "ec7612510d269a11ae9bda0611a4e5aa"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: VOeMv1lalt.pqNaFTu6L59jIjv5DtstE
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:49 GMT
age: 6707
x-served-by: cache-lga21979-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 989
vary: Accept-Encoding
content-length: 27201
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=nkf8ixr&ht=tk&f=10954.13453.13454.13455.13456.13457.13458.13459.13460.13461.35992.35993.35994.35995.35996.35997.35998.35999&a=84005771&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=nkf8ixr&ht=tk&f=10954.13453.13454.13455.13456.13457.13458.13459.13460.13461.35992.35993.35994.35995.35996.35997.35998.35999&a=84005771&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=nkf8ixr&ht=tk&f=10954.13453.13454.13455.13456.13457.13458.13459.13460.13461.35992.35993.35994.35995.35996.35997.35998.35999&a=84005771&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/cef9f3/000000000000000000010b5e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
200 OK 24 kB URL HTTP/2 use.typekit.net/af/cef9f3/000000000000000000010b5e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24232, version 1.0\012- data
Hash b7e2909c557fbca538d1dd7cfaed7f72
db27e6e86bd88353a44ff596f9041a7aa1843e54
c114e8c9146e113cd37fc2b6c8e6b2b99202dbd20791c1e2b457aa82d06dff7d
GET /af/cef9f3/000000000000000000010b5e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24232
etag: "2cf082c83c603f9c00006fb11a3498c4cf214475"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/ef00b1/00000000000000007735e431/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
200 OK 43 kB URL HTTP/2 use.typekit.net/af/ef00b1/00000000000000007735e431/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 42844, version 1.0\012- data
Hash 417a3e1445cbaaa0248575d90da74861
8ca50c8c47c21add860858a46f05c3c435acb8c3
4c00700eeb6696046335d3615151ab9648e91d6e3285c29a059bdcaa0568cd07
GET /af/ef00b1/00000000000000007735e431/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 42844
etag: "f17c74596c4545988f8c10723ddcd6b4ac0f804c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/1709eb/000000000000000000010b60/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
200 OK 25 kB URL HTTP/2 use.typekit.net/af/1709eb/000000000000000000010b60/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24740, version 1.0\012- data
Hash bcacfe3600270087657f4900c30165d1
5669414bb268a5950b92425d8264bd6d711cb1fa
f94786fe65dcbc65b0099b471ae2bb89bbabd7fa7d8573dd3c4e0f5bbe555447
GET /af/1709eb/000000000000000000010b60/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24740
etag: "9bd0488a91630a3c738a4d950e0b0b7930bcb98f"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
telemetrics.klaviyo.com/v1/metric
204 No Content 0 B URL HTTP/2 telemetrics.klaviyo.com/v1/metric
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/metric HTTP/1.1
Host: telemetrics.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 400
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 15:35:50 GMT
x-amzn-requestid: 2f596167-847c-4fe9-a590-5e29c09489aa
access-control-allow-origin: *
x-amz-apigw-id: fnVFeFL1oAMFnQg=
x-amzn-trace-id: Root=1-63d93556-4e108dfb49a2aef36b4d1635;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: D0LrmlZZeYSvQm04WO9twQsoFMlqEh76ZqUhyD4k_SNVhxq7BF0XVA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 02:42:35 GMT
expires: Wed, 31 Jan 2024 02:42:35 GMT
cache-control: public, max-age=31536000
age: 46395
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quillingcard.com/
200 OK 44 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8584), with CRLF, LF line terminators
Hash 2cdae0eeb4a7c73203886aca1bb1b779
ebb746cac0a1068ae010cd288ec35acee8e0656f
9de113e279cb41cecc20e1bb57454efaa66e7cf14fafbf5668827566d9b89d4b
GET / HTTP/1.1
Host: quillingcard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 78
x-sorting-hat-shopid: 10626604
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=5f17b020-a881-408b-9c47-d24dad53f545; path=/; expires=Tue, 31 Jan 2023 16:05:46 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Wed, 31 Jan 2024 15:35:47 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Wed, 31 Jan 2024 15:35:47 GMT; SameSite=Lax
cart_currency=USD; path=/; expires=Tue, 14 Feb 2023 15:35:47 GMT; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=quillingcard.com; path=/; expires=Wed, 01 Feb 2023 15:35:47 GMT; SameSite=Lax
_orig_referrer=; Expires=Tue, 14-Feb-23 15:35:47 GMT; Domain=quillingcard.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F; Expires=Tue, 14-Feb-23 15:35:47 GMT; Domain=quillingcard.com; Path=/; HttpOnly; SameSite=Lax
_y=bb66dbe4-21e0-4274-b74c-91514258a6d0; Expires=Wed, 31-Jan-24 15:35:47 GMT; Domain=quillingcard.com; Path=/; SameSite=Lax
_s=668aa83e-daec-4320-a22c-eb74ab4155d2; Expires=Tue, 31-Jan-23 16:05:47 GMT; Domain=quillingcard.com; Path=/; SameSite=Lax
_shopify_y=bb66dbe4-21e0-4274-b74c-91514258a6d0; Expires=Wed, 31-Jan-24 15:35:47 GMT; Domain=quillingcard.com; Path=/; SameSite=Lax
_shopify_s=668aa83e-daec-4320-a22c-eb74ab4155d2; Expires=Tue, 31-Jan-23 16:05:47 GMT; Domain=quillingcard.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:a201fd7bd1a97893e2fe1e227396d97c
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 10626604
x-shardid: 78
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 468fde10-5126-458e-b5fb-74f1ca4ce54c
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B3t4ocI%2Bo%2F%2B4Fuj53RcLE0FPEarcgMFRlAkHIha8aSHEsjbs%2FjzRWmV%2F42PmLgx5y8hFTsebEW4UaTn%2Bmucr1k0JVoD1LllH6ZXI%2BJkkWXF01KD7fEraeCqGsaRdVmJKk8Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=396, db;dur=166, parse;dur=2, render;dur=118, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=630.999804
server: cloudflare
cf-ray: 792384e52aa5b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.judge.me/widget/main.js
200 OK 83 kB URL HTTP/2 cdn.judge.me/widget/main.js
IP
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 0b649975bd33d7610b0d12ab0ceecdc9
c0cfd7b0257f3f4a1b23336703a1c6ee9aa269f4
8efd1e2a557da8eb36a2270ded3382388a7e959ffd4af17a2c030cdfc91dfef5
GET /widget/main.js HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: text/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"9e5e5f2c207791486ac2e3d43f018b88"
x-request-id: 346907ed-df9f-498b-b774-504d7923c732
x-runtime: 0.013483
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/widget/main.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675179366714
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675179366714
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613440529914&pd=%7B%22em%22%3A%22e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675179366714 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 2643074425103924
date: Tue, 31 Jan 2023 15:35:50 GMT
akamai-grn: 0.274f2417.1675179350.dba389e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=712716195896394&ev=Microdata&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179367383&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22meta%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22og%3Aimage%22%3A%22http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Aimage%3Asecure_url%22%3A%22https%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22og%3Asite_name%22%3A%22Quilling%20Card%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&es=automatic&tm=3&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=712716195896394&ev=Microdata&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179367383&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22meta%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22og%3Aimage%22%3A%22http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Aimage%3Asecure_url%22%3A%22https%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22og%3Asite_name%22%3A%22Quilling%20Card%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&es=automatic&tm=3&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=712716195896394&ev=Microdata&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179367383&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22meta%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE%22%2C%22og%3Aimage%22%3A%22http%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Aimage%3Asecure_url%22%3A%22https%3A%2F%2Fcdn.shopify.com%2Fs%2Ffiles%2F1%2F1062%2F6604%2Ft%2F42%2Fassets%2Flogo.png%3Fv%3D44877023725579383911671621687%22%2C%22og%3Adescription%22%3A%22Quilling%20Card%20makes%20beautiful%20handcrafted%20greeting%20cards%20for%20birthdays%2C%20Christmas%2C%20Valentine%27s%20Day%2C%20Mother%27s%20Day%2C%20and%20all%20occasions.%20Each%20card%20is%20a%20true%20work%20of%20art.%20Each%20of%20our%20greeting%20cards%20are%20handcrafted%20using%20the%20ancient%20artform%20of%20quilling.%20Don%27t%20just%20send%20a%20card%2C%20send%20art!%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fquillingcard.com%2F%22%2C%22og%3Asite_name%22%3A%22Quilling%20Card%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&es=automatic&tm=3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=712716195896394&ev=PageView&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179366877&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&rqm=GET
302 Found 0 B URL HTTP/2 www.facebook.com/tr/?id=712716195896394&ev=PageView&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179366877&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=712716195896394&ev=PageView&dl=https%3A%2F%2Fquillingcard.com%2F&rl=&if=false&ts=1675179366877&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675179366876.2143860154&it=1675179366438&coo=false&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
date: Tue, 31 Jan 2023 15:35:50 GMT
set-cookie:
location: /tr/?a=shopify&coo=false&dl=https%3A%2F%2Fquillingcard.com%2F&ec=0&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&ev=PageView&fbp=fb.1.1675179366876.2143860154&id=712716195896394&if=false&it=1675179366438&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675179366877&v=2.9.95
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-type: text/plain
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/a274feb4-de80-43eb-ab33-b69dae0c9bb7.png
200 OK 1.4 MB URL HTTP/1.1 d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/a274feb4-de80-43eb-ab33-b69dae0c9bb7.png
IP
File type PNG image data, 1772 x 778, 8-bit/color RGBA, non-interlaced\012- data
Size 1.4 MB (1400595 bytes)
Hash 4c9f48ce13fe69f251b3e9614c572743
fb4a47239e67d500f798107b01dc484c28a7db0e
5809e66d236bf59ee3f1fb6b0adc09930aad56566523a4dc66c76e1b92746c6b
GET /company/RwHZp2/images/a274feb4-de80-43eb-ab33-b69dae0c9bb7.png HTTP/1.1
Host: d3k81ch9hvuctc.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1400595
Connection: keep-alive
Date: Tue, 17 Jan 2023 06:25:16 GMT
Last-Modified: Mon, 03 Oct 2022 20:11:55 GMT
ETag: "4c9f48ce13fe69f251b3e9614c572743"
Cache-Control: public,max-age=2592000
x-amz-version-id: bpVqE4wS.4l92pCGTZkeorIvDdvFLaQ7
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NiPxLDer2XuOsehTmZBr06eQgtzLBzhSpii9t_-BpZC5XHgO3bpvAw==
Age: 1242635
d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/782b77d4-5e2b-471d-bbc3-ada902fa357e.jpeg
200 OK 558 kB URL HTTP/1.1 d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/782b77d4-5e2b-471d-bbc3-ada902fa357e.jpeg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.0 (Macintosh), datetime=2022:09:28 12:12:14], progressive, precision 8, 2072x2072, components 3\012- data
Size 558 kB (557551 bytes)
Hash 4e73a31d24cf20b7209ce975f4fa41da
97dce1b7b34410e58497a5cecb3709bf4867c6ff
729918fe8c8f1bacb7b206c3fcacd95e29d06c3aa637651ae5d4f99ee922879a
GET /company/RwHZp2/images/782b77d4-5e2b-471d-bbc3-ada902fa357e.jpeg HTTP/1.1
Host: d3k81ch9hvuctc.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 557551
Connection: keep-alive
Date: Sun, 08 Jan 2023 02:06:06 GMT
Last-Modified: Mon, 03 Oct 2022 20:11:09 GMT
ETag: "4e73a31d24cf20b7209ce975f4fa41da"
Cache-Control: public,max-age=2592000
x-amz-version-id: YEb8HJTiflBUPkKWGKlsFAs1L6cLuzsg
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b_QIu8CvPF4dZUdY1o0SGUl0ckT6uqot35YzdgSolhISgkZPBGSRkg==
Age: 2035785
d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/90cce646-9fe3-4611-b2b6-6c0e52facbca.jpeg
200 OK 1.4 MB URL HTTP/1.1 d3k81ch9hvuctc.cloudfront.net/company/RwHZp2/images/90cce646-9fe3-4611-b2b6-6c0e52facbca.jpeg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=9, manufacturer=SONY, model=ILCE-7M3, orientation=upper-left, xresolution=136, yresolution=144, resolutionunit=2, software=Adobe Photoshop 23.0 (Macintosh), datetime=2022:05:24 10:42:44], baseline, precision 8, 1500x1200, components 3\012- data
Size 1.4 MB (1372270 bytes)
Hash b07c94b14bdba3029e03365ce33b31d3
221a9dbbb14c4d9b85e7c1e6cad785959d8f9a91
da50b79708b080c5255130147d9318eda4f2b240a3faeca1ed9f2a0ce82a795d
GET /company/RwHZp2/images/90cce646-9fe3-4611-b2b6-6c0e52facbca.jpeg HTTP/1.1
Host: d3k81ch9hvuctc.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 1372270
Connection: keep-alive
Date: Fri, 27 Jan 2023 06:43:41 GMT
Last-Modified: Thu, 05 Jan 2023 19:44:02 GMT
ETag: "b07c94b14bdba3029e03365ce33b31d3"
Cache-Control: public,max-age=2592000
x-amz-version-id: bZXa9Kv3g7J9CGm5OdpZr3jLTQX0nC4P
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: a6VCDxeYWLBdzXUpvjewTa749LMmlozLeQFUCHsf6zvjPQj_R4fYRA==
Age: 377530
www.facebook.com/tr/?a=shopify&coo=false&dl=https%3A%2F%2Fquillingcard.com%2F&ec=0&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&ev=PageView&fbp=fb.1.1675179366876.2143860154&id=712716195896394&if=false&it=1675179366438&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675179366877&v=2.9.95
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?a=shopify&coo=false&dl=https%3A%2F%2Fquillingcard.com%2F&ec=0&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&ev=PageView&fbp=fb.1.1675179366876.2143860154&id=712716195896394&if=false&it=1675179366438&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675179366877&v=2.9.95
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?a=shopify&coo=false&dl=https%3A%2F%2Fquillingcard.com%2F&ec=0&eid=0878a18d-0450-4E96-B0D0-1B35FF9D8555&ev=PageView&fbp=fb.1.1675179366876.2143860154&id=712716195896394&if=false&it=1675179366438&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675179366877&v=2.9.95 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 15:35:50 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash cee606260acf87ac57f9626c28521002
823cedf48fa4bbc0268a2e2d145ab48ce15c2886
df5677b48bf52217c4361733c427d4af55e15aed86575bceb2ee7c73008e6281
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6228
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Last-Modified: Tue, 31 Jan 2023 13:52:02 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 8167101925880398
date: Tue, 31 Jan 2023 15:35:50 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675179350.dba41ea
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash d5d3c73ef85159f4785c952f595ba619
ba3f7272c469e8d46a038738c50869bf261efc02
60f98444f2ea5076152e5c5528129b3052e5b2820758dcf03978d83b7113f09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3931
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Last-Modified: Tue, 31 Jan 2023 14:30:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash cee606260acf87ac57f9626c28521002
823cedf48fa4bbc0268a2e2d145ab48ce15c2886
df5677b48bf52217c4361733c427d4af55e15aed86575bceb2ee7c73008e6281
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4959
Cache-Control: max-age=109097
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Etag: "63d82921-118"
Expires: Wed, 01 Feb 2023 21:54:07 GMT
Last-Modified: Mon, 30 Jan 2023 20:31:29 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash d5d3c73ef85159f4785c952f595ba619
ba3f7272c469e8d46a038738c50869bf261efc02
60f98444f2ea5076152e5c5528129b3052e5b2820758dcf03978d83b7113f09d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3931
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:50 GMT
Last-Modified: Tue, 31 Jan 2023 14:30:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
kst.klickly.com/index-cache.bundle.js?v=1669234348836&b_type_visit=ad08239d0387178a&b_type_cart=53320f26b78d2d17&b_type_checkout=ba44864a58da82c6&shop=quilling-card.myshopify.com
200 OK 9.2 kB URL HTTP/2 kst.klickly.com/index-cache.bundle.js?v=1669234348836&b_type_visit=ad08239d0387178a&b_type_cart=53320f26b78d2d17&b_type_checkout=ba44864a58da82c6&shop=quilling-card.myshopify.com
IP
Hash d9aae6f21612db30796e58184aea1a12
7bfeea00c283074229bdd2c6c769aed83a8bc96e
fdaf5a8500fa4694ef5d5aa343bcea0c60b18ade44718506e06904a3524105de
GET /index-cache.bundle.js?v=1669234348836&b_type_visit=ad08239d0387178a&b_type_cart=53320f26b78d2d17&b_type_checkout=ba44864a58da82c6&shop=quilling-card.myshopify.com HTTP/1.1
Host: kst.klickly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 22 Jan 2023 10:01:25 GMT
last-modified: Wed, 23 Nov 2022 20:10:54 GMT
etag: W/"e802bc90446df95f45d703d9d52bf3cb"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EfALivSuwtoqdn_7mZgGpO-QtNm8floerbuhRHGRyYKWDZRCSwu6GA==
age: 797666
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 18d831e377d74b96278ad966f1127ff4
da5c343418158a807d76ff6760c4538846fab089
ab203622e70aaff05fc3678753ad5972b33909fe9fce04b519ea0174b217166d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:50 GMT
Last-Modified: Tue, 31 Jan 2023 15:26:40 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KX1biipeq0XqgXIpxRm0St2bJA9Z4Go7WqEJq6Ql0RU0sptaEXzefw==
Age: 550
protect.humanpresence.io/spi.js?shop=quilling-card.myshopify.com
200 OK 19 B URL HTTP/2 protect.humanpresence.io/spi.js?shop=quilling-card.myshopify.com
IP
Hash 26669deb6f343fcb1d9ead1800f890ea
29159945b78fbf8700cc57dc872b3d9159eafa11
bc292292d3fa0680353fc6c6d66f5ca0d60aa8a98d9b6ced2eb5bfaac56bd055
GET /spi.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: protect.humanpresence.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 19
last-modified: Sat, 30 Oct 2021 05:03:21 GMT
x-amz-version-id: XL681C13yB0AuapnpPe1wyhBoIR8cahF
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 22:16:57 GMT
etag: "26669deb6f343fcb1d9ead1800f890ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ONU79783bkrQXbKfXNLCBeeNes4liExvTssc_FwJWBkw8Gt6FW9GUg==
age: 62394
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 924 B IP
ASN #20940 Akamai International B.V.
Hash aa60ffeb199329b8ffbc63936d6ae00b
12908eaa9b512b2b791331968c499c746a9cef62
4909f366b1c6adb742f1045b7e9c6196f0dd31e7017de09f6658c9de13ecd71b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C494C30472E13C2FECD6304C391CB7031BC8346C2B8840F68569979631C71881"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16743
Expires: Tue, 31 Jan 2023 20:14:53 GMT
Date: Tue, 31 Jan 2023 15:35:50 GMT
Connection: keep-alive
vital-forms.c1.humanpresence.app/ellipsis-vital-forms.js?shop=quilling-card.myshopify.com
200 OK 6.4 kB URL HTTP/2 vital-forms.c1.humanpresence.app/ellipsis-vital-forms.js?shop=quilling-card.myshopify.com
IP
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (6411), with no line terminators
Hash 057d940e7c976171a0a9802fb1064858
4def6c151b81351ab8e4142d37bcfb16bea709f6
3a33846051c42342ccfbd01338967465d230a84338344947206ca1a71f5d80ac
GET /ellipsis-vital-forms.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: vital-forms.c1.humanpresence.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:50 GMT
content-type: application/javascript
content-length: 6411
last-modified: Tue, 18 Oct 2022 18:31:59 GMT
etag: "634ef11f-190b"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 0ab302246563a83d9fbaff1c692f5a49
a1eb2e0c17adc06103b4e8bc57154885b5ac0414
7087869051924553894f53c73eb20c4c8b090c4890ea22efd5a56b8ba096229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1678
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:51 GMT
Last-Modified: Tue, 31 Jan 2023 15:07:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 727
pixel.sitescout.com/dmp/asyncPixelSync
302 Found 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: ssi=baa331d3-b77f-4cc0-a2f0-832168a95476#1675179351091; Domain=.sitescout.com; Expires=Wed, 31-Jan-2024 15:35:51 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
content-length: 0
date: Tue, 31 Jan 2023 15:35:50 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
204 No Content 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Tue, 31 Jan 2023 15:35:50 GMT
server: AC1.1
X-Firefox-Spdy: h2
cdn.judge.me/assets/installed.js?shop=quilling-card.myshopify.com
200 OK 58 B URL HTTP/2 cdn.judge.me/assets/installed.js?shop=quilling-card.myshopify.com
IP
File type ASCII text, with no line terminators
Hash 6fc296050f821889fe424c584881a130
e155e4644cad89b47fd2bbab7d9b43b7ec528e2c
83dc6eeccb2573139da6b7058f1e8c4029d532c9da639294ea15d39d2fd1a04d
GET /assets/installed.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: application/javascript
content-length: 58
last-modified: Fri, 06 Jul 2018 02:42:15 GMT
cache-control: public, max-age=7776000
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/assets/installed.js?shop=quilling-card.myshopify.com>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
upsells.boldapps.net/v2_ui/js/UpsellTracker.js?shop=quilling-card.myshopify.com
200 OK 37 kB URL HTTP/2 upsells.boldapps.net/v2_ui/js/UpsellTracker.js?shop=quilling-card.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash ee090fa3799dd0f155e519bd22945b8c
fade6516e5ff4bec66f10b4e20f1df9935f4f633
9f6d5cea31bc89c85779e609e4503afc89e8c4fb18f44132d71a46c4cceac2d1
GET /v2_ui/js/UpsellTracker.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: upsells.boldapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: application/javascript
content-length: 37037
last-modified: Wed, 25 Jan 2023 15:08:39 GMT
etag: "2546d-5f31801d42bc0-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=172800
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
expires: Thu, 02 Feb 2023 15:35:51 GMT
accept-ranges: bytes
set-cookie: __cf_bm=I_ba1Ogklm2CYZlVaieQT1EX_vTJyBmUICwobWKam94-1675179351-0-AUEftpCiHRyoduBbRFv1u2pdzuWjXhHqpwCFf+IHpxMVxEtuzLkDXl8kYKFWpI3HEANl5xGTh5o2Mrltmwnw9p4=; path=/; expires=Tue, 31-Jan-23 16:05:51 GMT; domain=.boldapps.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792384fe3f7e0b51-OSL
X-Firefox-Spdy: h2
analytics.klickly.com/processing-iframe.html
200 OK 295 B URL HTTP/2 analytics.klickly.com/processing-iframe.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 91f48cef4e229bc0b75e4044b160dfab
fc064a99bcde9352cb414efa23ed1d74ce1b17ec
4172301700c7bd0b0facc891059a7700ae95b4264f2132928802262c32c92f49
GET /processing-iframe.html HTTP/1.1
Host: analytics.klickly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 295
last-modified: Wed, 23 Nov 2022 20:09:54 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 14:51:43 GMT
cache-control: max-age=3600
etag: "91f48cef4e229bc0b75e4044b160dfab"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hYgpRwdRUlUAssG-ASBdXLQcQsPhNSvD_tZGo84srxQEO1b2kOntFg==
age: 2652
X-Firefox-Spdy: h2
chimpstatic.com/mcjs-connected/js/users/ee3e3086296289e27945bb844/e9e5c047c003421a94fa15335.js?shop=quilling-card.myshopify.com
200 OK 4.5 kB URL HTTP/1.1 chimpstatic.com/mcjs-connected/js/users/ee3e3086296289e27945bb844/e9e5c047c003421a94fa15335.js?shop=quilling-card.myshopify.com
IP
File type ASCII text, with very long lines (2819)
Hash c4733229410ad61de464db3fbedd5ed3
bae9698c7b3fee931d6f6479e1fe2c3d70acfdb3
882b765a83dd2044c0167568ee17b6fc91b8a333acd2588fd88bd69225a25d27
GET /mcjs-connected/js/users/ee3e3086296289e27945bb844/e9e5c047c003421a94fa15335.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: DME34qldLci0j48ORm3kZEoxWi124Whx4x9VdSnQE3J+P+NyslVHWdME68lk2/AvYHeHguY/2cQ=
x-amz-request-id: GWPYYSA2Y4CSCCS9
Last-Modified: Tue, 18 Aug 2020 16:11:41 GMT
ETag: "2d9266102cb3beefde57292038edf139"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 18, 6
X-EdgeConnect-Origin-MEX-Latency: 94, 106
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1768
Expires: Tue, 31 Jan 2023 16:05:19 GMT
Date: Tue, 31 Jan 2023 15:35:51 GMT
Content-Length: 4490
Connection: keep-alive
cdn.acsbapp.com/cache/app/en.build.json
200 OK 61 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 20f9447200d28a1c837434756d76f5be
e5c8342d2b3f5ed9af417e94ae98e9b8e21e591f
66aa10f2820c3a841bbca18c11bbdacff1b3cce6deb82bad69da6b588b2d89dd
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:50 GMT
content-type: application/json
cache-control: max-age=432000 public
expires: Wed, 01 Feb 2023 15:35:50 GMT
last-modified: Sat, 28 Jan 2023 19:02:03 GMT
etag: W/"3bb7f-63d5712b-127308840042964f;;;"
access-control-allow-origin: *
access-control-allow-headers: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792384fa28a51c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
web1.acsbapp.com/apps/app/dist/media/logomono.svg
200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Wed, 31 Jan 2024 15:35:51 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Tue, 31 Jan 2023 15:35:51 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e228332f0cd6fd1eabd9a2d72d2b956a
f426fb69c1ad8b3bbe9542713238635c87f3427b
c2fb4eb3b597258244b8b63506db0c171d8720ea1a15ab904e5639c9fe3d184e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:51 GMT
Last-Modified: Tue, 31 Jan 2023 14:16:49 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7blyAo61-FN3Uq_l1XxPBl2DguNW5_CFq9xS2_b8eu1Ibxlrr7M1Dw==
Age: 4742
script.metricode.com/a.js
200 OK 2.0 kB URL HTTP/2 script.metricode.com/a.js
IP
Hash b8e30d0cacd8c096e9632e625ee908ea
183cf0cd72d9467a0885054bd7de5a8aee961d10
10fd28719d16b2aa5cbc642ff6e033b552be176ecb0a09252d4d094213f4e1ff
GET /a.js HTTP/1.1
Host: script.metricode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 28 Nov 2020 17:41:02 GMT
x-amz-version-id: RPKuOh9IiFWoUgleDqsWjrkRdJy_SBtK
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 18:34:02 GMT
etag: W/"4cb47c85faa5bb4135c28730a672e62c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RBA_-hcR8A2kT1W4a9TGmHj_URhIveu9H8TqPOb3Rw8AkxaLCuRvdA==
age: 75931
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 564728d4d784bac4c0a161b713f3b8f7
8c264565843cc999e1fc29fb58c81f9a5cd5c062
170576d6f93fb8a29a141fd8064c0964b3a19badd0c72b19a787e9ade8cbc16d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:51 GMT
Last-Modified: Tue, 31 Jan 2023 14:02:52 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ULY9uzRBtP17Z2-UaH_dQlkFTuEPnHmcWCTAf06qUx5Fn2439f6eqA==
Age: 5579
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 564728d4d784bac4c0a161b713f3b8f7
8c264565843cc999e1fc29fb58c81f9a5cd5c062
170576d6f93fb8a29a141fd8064c0964b3a19badd0c72b19a787e9ade8cbc16d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:51 GMT
Etag: "63d8fc06-1d7"
Last-Modified: Tue, 31 Jan 2023 15:00:14 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LyTMyMfIK0cpuuoVgABnP9QEGqhHeUbsQBfmCm30L1GSFWr_opBz_w==
Age: 2137
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a557d670349ca1e2cd316b08e92a1f61
d45ffab671123eb6abf60098883fa77049c9f1d9
d749bf97553af33ad387a1d063d8dc3da8dc110b20cc74084b67fd603bd3d12a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D749BF97553AF33AD387A1D063D8DC3DA8DC110B20CC74084B67FD603BD3D12A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8332
Expires: Tue, 31 Jan 2023 17:54:43 GMT
Date: Tue, 31 Jan 2023 15:35:51 GMT
Connection: keep-alive
a.humanpresence.app/p.gif?evt=view&cid=Shopify&apik=b36573fd-4e23-48bf-9e0b-a134ce98529a&sid=fb672150-a17c-11ed-b289-e354893ec213&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&pt=%2F&ur=https%3A%2F%2Fquillingcard.com&ho=quillingcard.com&rf=&ce=true&lg=en-US&ht=1024&wd=1280&cd=24&pd=24&ah=1002&aw=1280&oa=0&ot=landscape&wh=939&ww=1280&sh=4040&wrh=0.94&wrw=1&tm=2023-01-31T15%3A36%3A08.508Z
200 OK 43 B URL HTTP/2 a.humanpresence.app/p.gif?evt=view&cid=Shopify&apik=b36573fd-4e23-48bf-9e0b-a134ce98529a&sid=fb672150-a17c-11ed-b289-e354893ec213&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&pt=%2F&ur=https%3A%2F%2Fquillingcard.com&ho=quillingcard.com&rf=&ce=true&lg=en-US&ht=1024&wd=1280&cd=24&pd=24&ah=1002&aw=1280&oa=0&ot=landscape&wh=939&ww=1280&sh=4040&wrh=0.94&wrw=1&tm=2023-01-31T15%3A36%3A08.508Z
IP
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /p.gif?evt=view&cid=Shopify&apik=b36573fd-4e23-48bf-9e0b-a134ce98529a&sid=fb672150-a17c-11ed-b289-e354893ec213&dt=Quilling%20Greeting%20Cards%20%7C%20Quilling%20Art%20%7C%20Quilling%20Card%20%C2%AE&pt=%2F&ur=https%3A%2F%2Fquillingcard.com&ho=quillingcard.com&rf=&ce=true&lg=en-US&ht=1024&wd=1280&cd=24&pd=24&ah=1002&aw=1280&oa=0&ot=landscape&wh=939&ww=1280&sh=4040&wrh=0.94&wrw=1&tm=2023-01-31T15%3A36%3A08.508Z HTTP/1.1
Host: a.humanpresence.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: image/gif
content-length: 43
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store
accept-ranges: bytes
last-modified: Thu, 09 Dec 2021 12:41:14 GMT
etag: W/"2b-17d9f364610"
X-Firefox-Spdy: h2
dl-api.klickly.com/events/shop
204 No Content 0 B URL HTTP/2 dl-api.klickly.com/events/shop
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/shop HTTP/1.1
Host: dl-api.klickly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://quillingcard.com/
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 15:35:51 GMT
server: nginx/1.16.1
x-powered-by: Express
access-control-allow-origin: https://quillingcard.com
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
pixel.sitescout.com/iap/357c6e9d4d9b263b
302 Found 0 B URL HTTP/2 pixel.sitescout.com/iap/357c6e9d4d9b263b
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/357c6e9d4d9b263b HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: ssi=8053aee4-6f86-4f0c-a45b-3968d76c0a0a#1675179351821; Domain=.sitescout.com; Expires=Wed, 31-Jan-2024 15:35:51 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/iap/357c6e9d4d9b263b?cookieQ=1
content-length: 0
date: Tue, 31 Jan 2023 15:35:51 GMT
server: AC1.1
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 451 B IP
Hash 3dc44a1536d210bacec2de1453df991c
1ea063a1a4403abda5547270b307b86a6f3d23f3
95666129d26a3c9ccc50512b4ec8ae29e87ddac09f12c84e9be4d1708ef74115
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2863
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:51 GMT
Last-Modified: Tue, 31 Jan 2023 14:48:08 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 313 B IP
Hash 3025fb112231fed65dd6afa7586ea320
7055cfa6528fac0e753e6d5c816ed4c833860b15
8bf2cd4d60db22be0de2f303c50bb070b2c0d4d89376d638e39d03c9d9666da1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4505
Cache-Control: max-age=101073
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:51 GMT
Etag: "63d80b8f-139"
Expires: Wed, 01 Feb 2023 19:40:24 GMT
Last-Modified: Mon, 30 Jan 2023 18:25:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
js.smile.io/v1/smile-shopify-08cd826a98666ecd4305.modern.js
200 OK 66 kB URL HTTP/2 js.smile.io/v1/smile-shopify-08cd826a98666ecd4305.modern.js
IP
File type Unicode text, UTF-8 text, with very long lines (65518), with no line terminators
Hash 01d3a1ff0a7d37fc1a42355977e50c33
04361807185603b765a87359833e82a71d4609da
31ba0691f2e283244d03f694d1d9a94fa4de99b469033f96c9282a37971fa3d8
GET /v1/smile-shopify-08cd826a98666ecd4305.modern.js HTTP/1.1
Host: js.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 19:44:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 0
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 30 Jan 2023 18:40:07 GMT
x-amz-version-id: aRr7zIiGEsge6ExsnUR8nrgwdf3RXpoY
etag: W/"3c64de95dca55d1a4266702f9003323d"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cm2M7QqIsNYYgQH9dXPRaXiSCMiRQbbdPV53i49o57hT1oI88K37Ag==
age: 71482
X-Firefox-Spdy: h2
instafeed.nfcube.com/cdn/49856dc2cd15cc354550cad5900e1fb9.js?shop=quilling-card.myshopify.com
200 OK 6.4 kB URL HTTP/2 instafeed.nfcube.com/cdn/49856dc2cd15cc354550cad5900e1fb9.js?shop=quilling-card.myshopify.com
IP
File type exported SGML document, ASCII text, with very long lines (18689), with no line terminators
Hash 02f8f5c4d9b03ad8ed90c0d7335e52c5
37c67f63ee658e354f83582e8f33bef73ebf4685
fb45a53f527882a19dcf5586a87811970922ad51448cab8b14ec83dd5ac1d411
GET /cdn/49856dc2cd15cc354550cad5900e1fb9.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: instafeed.nfcube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:50 GMT
content-type: application/javascript
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=18884
etag: W/"62190a1c-49c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 25 Feb 2022 16:55:56 GMT
pragma: public
vary: Accept-Encoding
x-rule: cdn migration
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NC37QCeehuAgCFaStZigqfcclstsq5pP8acHPnmD%2BO8QJvJ8J2xUfb2HHV8cXIeECvSUftraoionn2MNE1pHJUocY9ZbnOmWlfNzrB5fR1gk97Dpww4dsBZXysv4GjkmmvrK8Boq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792384fe6c88b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js?shop=quilling-card.myshopify.com
200 OK 21 kB URL HTTP/2 static.criteo.net/js/ld/ld.js?shop=quilling-card.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (64408), with no line terminators
Hash 4fa2eb9c41c4349d1240eae75e036220
7aa0b540cf14ab6e2c90b49714b5f63963e5f341
5eb6a0c8729d7037c9f059042f0f98e989c03e942b43c7c92444406a016209bc
GET /js/ld/ld.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: text/javascript
last-modified: Mon, 02 Jan 2023 16:36:54 GMT
etag: W/"63b30826-aae4"
expires: Wed, 01 Feb 2023 15:35:51 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
204 No Content 0 B URL HTTP/2 pixel.sitescout.com/dmp/asyncPixelSync?cookieQ=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmp/asyncPixelSync?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Tue, 31 Jan 2023 15:35:51 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/iap/ad08239d0387178a
302 Found 0 B URL HTTP/2 pixel.sitescout.com/iap/ad08239d0387178a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/ad08239d0387178a HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: ssi=7da6d632-b64e-4441-a798-4ed74728296a#1675179352145; Domain=.sitescout.com; Expires=Wed, 31-Jan-2024 15:35:52 GMT; Path=/; Secure; SameSite=None
location: https://pixel.sitescout.com/iap/ad08239d0387178a?cookieQ=1
content-length: 0
date: Tue, 31 Jan 2023 15:35:51 GMT
server: AC1.1
X-Firefox-Spdy: h2
pixel.sitescout.com/iap/357c6e9d4d9b263b?cookieQ=1
204 No Content 0 B URL HTTP/2 pixel.sitescout.com/iap/357c6e9d4d9b263b?cookieQ=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iap/357c6e9d4d9b263b?cookieQ=1 HTTP/1.1
Host: pixel.sitescout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0,no-cache,no-store
pragma: no-cache
expires: Tue, 11 Oct 1977 12:34:56 GMT
p3p: CP="NON DEVa PSAa PSDa OUR NOR NAV",policyref="/w3c/p3p.xml"
date: Tue, 31 Jan 2023 15:35:51 GMT
server: AC1.1
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.fancybox.css?v=89361026904262089661671621663
200 OK 1.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.fancybox.css?v=89361026904262089661671621663
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3367)
Hash 98e812314964bb18995d852a029d58f7
db1ac87b3ca304aebff4b0480baba50ff55c99f4
68a968b259c448443b526f9f84823bf4ded200fc3f62b40b98eee89f3c59d281
GET /s/files/1/1062/6604/t/42/assets/jquery.fancybox.css?v=89361026904262089661671621663 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.fancybox.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 121b2389-d778-482f-8ad0-f805f76acd96
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NGK4eorRj1zw0r4kEpKcV54IbFsqq%2FJxQ81Tafa3NjjNDdaSmeXoLShMRLuTNW40qKoP0%2BRWhDR%2B8gH8Ntz%2BotCex%2F3QiG7XNha74XqtS%2BHEREnO9Viq7eThPUm2gKzB2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=78.139, imageryFetch;dur=77.089, cfRequestDuration;dur=149.000168
server: cloudflare
cf-ray: 792384ea1edfb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 5a3b8ee23f21740c11c01213a2a19819
9887d6fe0b1669d9f1905bb76d085ec7ded8e158
abbd84d6812e9a405ae14e563c4bb30f11186e0c782280b2aebed054921e4fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2185
Cache-Control: max-age=161750
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:52 GMT
Etag: "63d901a5-138"
Expires: Thu, 02 Feb 2023 12:31:42 GMT
Last-Modified: Tue, 31 Jan 2023 11:55:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
static.shareasale.com/json/shopify/deduplication.js?shop=quilling-card.myshopify.com
200 OK 609 B URL HTTP/2 static.shareasale.com/json/shopify/deduplication.js?shop=quilling-card.myshopify.com
IP
Hash 06b8c4d640533142865caae404790377
35648538fb61eb13bd4abb3156d151c079ab5801
1934fe46ac8e1d4e77ba5f9e94d1b9ad4fab7c2b7f7bb55809f9e35489ba4eba
GET /json/shopify/deduplication.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: static.shareasale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:52 GMT
content-type: application/javascript
x-amz-id-2: TAJhJjEC/mRYr0cl1FohV5PT5MSEJ2jTOPDu5bTq/brImNcmxiUZ9vOVrfTFgreGju4Qmapus3U=
x-amz-request-id: G0APT49CFX47WNAD
last-modified: Wed, 23 Jun 2021 15:57:36 GMT
etag: W/"f12d1a61011c4eb81f2c7b58c060dd6d"
cf-cache-status: DYNAMIC
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792385051bf0b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=quillingcard.com&origin=onetag
200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=quillingcard.com&origin=onetag
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 336d3e015f987a65d205999a49be4805
57a3f572cd89347b5ead196670776134f1f0f69e
9621f1cc5441ed0d364b0fb9986a8c6742af2c5c356e6e4edb432728fe319ff3
GET /syncframe?topUrl=quillingcard.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=f200be1e-a08b-46a3-b8a0-df1bf006b2c6; expires=Sun, 25 Feb 2024 15:35:52 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 801649
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash e24b648009bb4c419c3bf2c995832b00
457168a7a1f2cfff41ebcd7855410c08001eb5d4
c4f888188d5b4c7885cd16c39e5e4915a45bc91e8303a6e62fcd2e433a80aee1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1831
Cache-Control: max-age=134401
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:52 GMT
Etag: "63d89832-139"
Expires: Thu, 02 Feb 2023 04:55:53 GMT
Last-Modified: Tue, 31 Jan 2023 04:25:22 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
web-analytics.smile.io/collect?data=eyJ0eXBlIjoic2Vzc2lvbi9zdGFydGVkIiwic2Vzc2lvbl91dWlkIjoiZmJkYTdjOTAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl91dWlkIjoiZmJkYTU1ODAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl90eXBlIjoidmlzaXRvciIsImN1c3RvbWVyX2lkIjpudWxsLCJhY2NvdW50X2lkIjo5NDk1NiwiY2hhbm5lbF9rZXkiOiJjaGFubmVsX0tsV2ZRbGpEcTJxc0NMNGRWNUN5Sm9EaSIsImRhdGFfanNvbiI6bnVsbH0%3D&u=1675179369235
200 OK 356 B URL HTTP/2 web-analytics.smile.io/collect?data=eyJ0eXBlIjoic2Vzc2lvbi9zdGFydGVkIiwic2Vzc2lvbl91dWlkIjoiZmJkYTdjOTAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl91dWlkIjoiZmJkYTU1ODAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl90eXBlIjoidmlzaXRvciIsImN1c3RvbWVyX2lkIjpudWxsLCJhY2NvdW50X2lkIjo5NDk1NiwiY2hhbm5lbF9rZXkiOiJjaGFubmVsX0tsV2ZRbGpEcTJxc0NMNGRWNUN5Sm9EaSIsImRhdGFfanNvbiI6bnVsbH0%3D&u=1675179369235
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 472f343b3748be30359816d0f76cffc7
2b2f036a142a6022a572916584c2485791d4a25b
d41ba7833e44cb90edaf2b1f2dcba1891ad14901340e3b25ab3932f3e59d1215
GET /collect?data=eyJ0eXBlIjoic2Vzc2lvbi9zdGFydGVkIiwic2Vzc2lvbl91dWlkIjoiZmJkYTdjOTAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl91dWlkIjoiZmJkYTU1ODAtYTE3Yy0xMWVkLTkxYmMtYzNkNGI0OWE4YWUyIiwidmlzaXRvcl90eXBlIjoidmlzaXRvciIsImN1c3RvbWVyX2lkIjpudWxsLCJhY2NvdW50X2lkIjo5NDk1NiwiY2hhbm5lbF9rZXkiOiJjaGFubmVsX0tsV2ZRbGpEcTJxc0NMNGRWNUN5Sm9EaSIsImRhdGFfanNvbiI6bnVsbH0%3D&u=1675179369235 HTTP/1.1
Host: web-analytics.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:52 GMT
content-type: image/gif
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-disposition: inline
content-transfer-encoding: binary
cache-control: no-cache
etag: W/"a065920df8cc4016d67c3a464be90099"
x-request-id: 4751616e-260b-4209-825c-f214d3df1143
x-runtime: 0.014051
vary: Origin
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 358 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
File type JSON data\012- , ASCII text, with very long lines (417), with no line terminators
Hash a819bc7ea06eaf3e0475b80e0153314e
d06a998c4086097d9c5d2b564638d753119b8d56
62a1779a66af9a6439e60790f5594f9e86cdd50a63f2ff49aa9e099196a183b6
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 89112
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 866 B IP
Hash 42a0a35e112373b683ce284ecd016cb7
0a0d167608351b581f5c132d73ee7c91c83c3ae4
4b66ae5d88a99b469226bde6b71c922db8d85e863e331b0797aab642373e6dfb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6227
Cache-Control: max-age=127638
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:52 GMT
Etag: "63d86c9b-139"
Expires: Thu, 02 Feb 2023 03:03:10 GMT
Last-Modified: Tue, 31 Jan 2023 01:19:23 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5904751600df6994f62eab99197a8705
e65bc6e3799d93b307201a5b290780f92a8066e0
d5aba69d545b5d714331716832f87b25a9cd6aa6a084e04e7468f0775a99c685
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5ABA69D545B5D714331716832F87B25A9CD6AA6A084E04E7468F0775A99C685"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11406
Expires: Tue, 31 Jan 2023 18:45:59 GMT
Date: Tue, 31 Jan 2023 15:35:53 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-20veqtlQDes7aSnnwm1NySwyGDFy-eJ9Y-RNNA
200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-20veqtlQDes7aSnnwm1NySwyGDFy-eJ9Y-RNNA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-20veqtlQDes7aSnnwm1NySwyGDFy-eJ9Y-RNNA HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Tue, 31 Jan 2023 15:35:52 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b3ffdd3b4e2f4b05f935884755700a20
73275a447a3b59022c1d2cfeecf5d43d37c9889e
aad2e45fbc30f6a31ad6d14e3e6ce84248c87baf02b516faeb43fa337ce6bc02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5904751600df6994f62eab99197a8705
e65bc6e3799d93b307201a5b290780f92a8066e0
d5aba69d545b5d714331716832f87b25a9cd6aa6a084e04e7468f0775a99c685
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5ABA69D545B5D714331716832F87B25A9CD6AA6A084E04E7468F0775A99C685"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11406
Expires: Tue, 31 Jan 2023 18:45:59 GMT
Date: Tue, 31 Jan 2023 15:35:53 GMT
Connection: keep-alive
www.recaptcha.net/recaptcha/api.js?onload=storefrontContactFormsRecaptchaCallback&render=6LcCR2cUAAAAANS1Gpq_mDIJ2pQuJphsSQaUEuc9&hl=en
200 OK 1.3 kB URL HTTP/2 www.recaptcha.net/recaptcha/api.js?onload=storefrontContactFormsRecaptchaCallback&render=6LcCR2cUAAAAANS1Gpq_mDIJ2pQuJphsSQaUEuc9&hl=en
IP
Hash e97c1ab8466777f65f74634063bdbd84
57379de7e70e8af7aedc3ad596010f1ca434494d
270a6eea39339833e8f62ee58103f1bb016c90c9593feca21bb0a38854beca83
GET /recaptcha/api.js?onload=storefrontContactFormsRecaptchaCallback&render=6LcCR2cUAAAAANS1Gpq_mDIJ2pQuJphsSQaUEuc9&hl=en HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 31 Jan 2023 15:35:53 GMT
date: Tue, 31 Jan 2023 15:35:53 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 627
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 80779
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5bb2f16667c8d87dd0602626cd1140c6
d4dbe0a256125551db1ca0d2e149584d5a7d9da8
6f18118e9cf77f0f588e75d30755088647a5e330d64ee8ca6d7f65d071603ff0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136250
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d8a4a3-1d7"
Expires: Thu, 02 Feb 2023 05:26:43 GMT
Last-Modified: Tue, 31 Jan 2023 05:18:27 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: o3B-c8bD8wGPmqyKhYmuXLgHaNAJ_LzWNIYod0DUKBVteTBZRCsPRA==
Age: 496
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 740842
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-VXVRuNlQDes7aSnnwm1NySwyGDEyJ_rQ1uLe0Q
200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-VXVRuNlQDes7aSnnwm1NySwyGDEyJ_rQ1uLe0Q
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-VXVRuNlQDes7aSnnwm1NySwyGDEyJ_rQ1uLe0Q HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3181809533580242000V10; Expires=Wed, 31 Jan 2024 15:35:53 GMT; domain=.media.net; Path=/;
data-c-ts=1675179353;Expires=Thu, 02 Mar 2023 15:35:53 GMT;path=/;domain=.media.net;
data-c=k-VXVRuNlQDes7aSnnwm1NySwyGDEyJ_rQ1uLe0Q~~3;Expires=Thu, 02 Mar 2023 15:35:53 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Tue, 31 Jan 2023 15:35:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 31 Jan 2023 15:35:53 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 43097148ded0e08cecbac6ace30dc4b0
a324fdf39a403300bcbb40087ce277d231b82bd5
8beed2662a036fbc8db464e3911728e0d474c1856b6dc28d9f42e03746a85b91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6233
Cache-Control: max-age=111432
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d82d48-117"
Expires: Wed, 01 Feb 2023 22:33:05 GMT
Last-Modified: Mon, 30 Jan 2023 20:49:12 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22861a7be3635aa6cc542d394b72a866
aa28050a11dc8d47f10360251351b380b9a85cf9
77518188813c585ffbf9e72006293d28542c80a93e977cabce60c7d6b5d85da7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77518188813C585FFBF9E72006293D28542C80A93E977CABCE60C7D6B5D85DA7"
Last-Modified: Mon, 30 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20988
Expires: Tue, 31 Jan 2023 21:25:41 GMT
Date: Tue, 31 Jan 2023 15:35:53 GMT
Connection: keep-alive
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 99f24bfd145ea4c5fbf3e2dce62c777b
81044337bcca1a895987038d4bde9b89efb63cd1
2751f38a0191a9fe271b99b0b8454db798fe17743e7dfc9520ea12baca92194d
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm=&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw&google_tc=
date: Tue, 31 Jan 2023 15:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 15:50:53 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-IJKl2dlQDes7aSnnwm1NySwyGDEs2YrPIj12Bg
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-IJKl2dlQDes7aSnnwm1NySwyGDEs2YrPIj12Bg
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-IJKl2dlQDes7aSnnwm1NySwyGDEs2YrPIj12Bg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Tue, 31 Jan 2023 15:35:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 31 Jan 2023 15:35:53 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 545b04cf-823a-43a2-b397-40813d4d2ffb
Set-Cookie: uuid2=2017627173309711878; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 15:35:53 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 943.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/styles__ltr.css
200 OK 25 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/styles__ltr.css
IP
File type ASCII text, with very long lines (56403), with no line terminators
Hash a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:12:49 GMT
expires: Tue, 30 Jan 2024 17:12:49 GMT
cache-control: public, max-age=31536000
age: 80584
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id5-sync.com/s/966/9.gif?puid=k-LERUttlQDes7aSnnwm1NySwyGDFVRcRI_SRHgw
200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-LERUttlQDes7aSnnwm1NySwyGDFVRcRI_SRHgw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-LERUttlQDes7aSnnwm1NySwyGDFVRcRI_SRHgw HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Tue, 31-Jan-2023 15:40:53 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Tue, 31 Jan 2023 15:35:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 80779
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm=&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw&google_tc=
302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm=&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 803349aabd677b45547656b160c86b27
df0d34500fa07db242f001554e0d0ce8cc006768
ce782d42a1a7758a00957f5ce3afa49c64bac1ab8e63ee6a4de98b9c2901ead8
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_cm=&google_hm=ay04YzFvUjlsUURlczdhU25ud20xTnlTd3lHREhlZlVZMFlxMV9adw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_error=3
date: Tue, 31 Jan 2023 15:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-3379PtlQDes7aSnnwm1NySwyGDEwiOg6NgtEyQ
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-3379PtlQDes7aSnnwm1NySwyGDEwiOg6NgtEyQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-3379PtlQDes7aSnnwm1NySwyGDEwiOg6NgtEyQ HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Mon, 30 Jan 2023 15:35:53 GMT
Date: Tue, 31 Jan 2023 15:35:53 GMT
Connection: keep-alive
Set-Cookie: id=77439015-bb3e-436d-8ae8-8301a326d942; Path=/; Domain=prod.svc.y6b.de; Expires=Wed, 31-Jan-2024 15:35:53 GMT; Max-Age=31536000; Secure; SameSite=None
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA&C=1
cf-ray: 7923850fdffd0b4d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9k1WTM5BBZDAtNTrJgUhwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 31 Jan 2024 15:35:53 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=703; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 15:35:53 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=703; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 15:35:53 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fmuDk6aDrq8vKPKf99gDIM7hCALS8xn63iyqJT3W%2Fs2K0iueNrf9YmkPJCu%2F%2B6pn2q4D3broIIwmK4BSL9AD50oqi8gU%2FboT5jmpo%2BDrtkuFBye7dBblIMT%2BerEJvZbjXUrI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 239bcbe509e76cd1b7f3280de740283b
e571fe316abb3ceb22fd6a4b1d3a055bf7a0703f
a399105f22b465ad2b65bf92a56f40a8d3da62ad836f69e97d7af1dd5a96aa21
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167924
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d9111f-1d7"
Expires: Thu, 02 Feb 2023 14:14:37 GMT
Last-Modified: Tue, 31 Jan 2023 13:01:19 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6qU6Zv7pLX4sHUl6iTCOGx5bY8P-zCqR9EBW0nZZZxfj7P4Sw3eCYQ==
Age: 4398
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=598254,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923850fe97fb4fd-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 571578fe8105fb9db1d98412455228cd
06ffedbca8683a0bb6fb9ba9c034d390fe7badfe
76470b9660bda8693c9180aefc7168be548dfc6f392dc9f03e0dcedc64621ba7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 15:11:55 GMT
Expires: Sat, 04 Feb 2023 15:11:54 GMT
Etag: "06ffedbca8683a0bb6fb9ba9c034d390fe7badfe"
Cache-Control: max-age=343560,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923850ff991b4fd-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8b4033ce2ad139c7c70f653fb347c945
02b5407f5c73d65294ce35e21fc2a274505c3af3
14b3fca4421b42bc6c05ebc6fdb9b12cb443fb0c8799264620e8f138e40b47c6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119074
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d862b7-1d7"
Expires: Thu, 02 Feb 2023 00:40:27 GMT
Last-Modified: Tue, 31 Jan 2023 00:37:11 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vQCPsPJzwIK1VgffD5RFGc0pHMFsA-2bGtTJx3LPwbidSl_3KEdnqg==
Age: 196
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 61dea6157a05806089a1de6794c639a5
9c693faa2a6c2ab612ad4f94d8376985dd960202
de2603c5c56d0b5d342947f06890c93bbf3ac28bb18cab30974ce812624c03cf
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 21:27:39 GMT
Expires: Tue, 31 Jan 2023 21:27:39 GMT
ETag: "9c693faa2a6c2ab612ad4f94d8376985dd960202"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 16deb874-08e6-4cb7-b025-aa1f282e1b2d
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 943.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash 86a495b75ff859704f449758c94f6437
18570ecd08c8b7faa884bda9941a553d22f2a4ca
1814989ca5fb4e099342d961ab895268f13bc976f9b95ef8427086add176792f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6379
Cache-Control: max-age=90301
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d7da2b-1d7"
Expires: Wed, 01 Feb 2023 16:40:54 GMT
Last-Modified: Mon, 30 Jan 2023 14:54:35 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash d3588a5266857c3bfb7ac9c37f592c12
d1db21253e762d717a46f6dd731162dd1367fad6
00655ddd7a88e2005bb9990d12605ab87298dbe5c5ddb6c8f40ea939affcc517
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3662
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Last-Modified: Tue, 31 Jan 2023 14:34:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
eb2.3lift.com/xuid?mid=2711&xuid=k-DAy70tlQDes7aSnnwm1NySwyGDFy4mEJnizy8Q&dongle=013b
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-DAy70tlQDes7aSnnwm1NySwyGDFy4mEJnizy8Q&dongle=013b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-DAy70tlQDes7aSnnwm1NySwyGDFy4mEJnizy8Q&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=a7b17692-ac2e-49c7-8d8b-6eebf0aced76; path=/; expires=Wed, 31-Jan-2024 15:35:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675179353; path=/; expires=Wed, 31-Jan-2024 15:35:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675179353; path=/; expires=Wed, 31-Jan-2024 15:35:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675179353; path=/; expires=Wed, 31-Jan-2024 15:35:53 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A
set-cookie: tuuid=5e96c20a-ec65-48fd-afdb-36f0e019b75e; Expires=Mon, 01 May 2023 15:35:53 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675179353; Expires=Mon, 01 May 2023 15:35:53 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 41a4a3693b6cf7e1a345afbe00934ca7
6f072cde84187c4124dd88fab10a1296bcba998c
9e426a348b95f52ca2e18f09932f0e48046abd55f30c8a884da00d8e89d45bc4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6427
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Last-Modified: Tue, 31 Jan 2023 13:48:46 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash f05280f3b6585309cc122d7e1273bbe6
900fd9ca57f4c0c173be4eabd61b7b596c26c29a
82efaee85dab4763ddaa8f4c6cb2ef3ff7ff94662be09f305b99a09a2f7f8825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1217
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Last-Modified: Tue, 31 Jan 2023 15:15:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
e1.emxdgt.com/put?d=d53&uid=k-UuloONlQDes7aSnnwm1NySwyGDHl62vOdGtV1CCvNEurGUhq
204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-UuloONlQDes7aSnnwm1NySwyGDHl62vOdGtV1CCvNEurGUhq
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-UuloONlQDes7aSnnwm1NySwyGDHl62vOdGtV1CCvNEurGUhq HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Tue, 31 Jan 2023 15:35:53 GMT
content-length: 0
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-R6buj9lQDes7aSnnwm1NySwyGDGtHNSQaMQdtg
200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-R6buj9lQDes7aSnnwm1NySwyGDGtHNSQaMQdtg
IP
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-R6buj9lQDes7aSnnwm1NySwyGDGtHNSQaMQdtg HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=f660738a0852b4b5fa32981b8a87e0fb; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 15:35:53 GMT
content-length: 49
x-envoy-upstream-service-time: 24
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash d57d293aa9cc6e10e609e6b70ddc253f
7ca236cfea4a885594667b24f94dcbdcdb7dfec8
b5d9e35a17136600230e2b56a8b650e13fd05c097ab726a9d2705deeede1ae09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6262
Cache-Control: max-age=142401
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d8a624-139"
Expires: Thu, 02 Feb 2023 07:09:14 GMT
Last-Modified: Tue, 31 Jan 2023 05:24:52 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
cm.adform.net/pixel?adform_pid=15&adform_pc=k-SQNxhdlQDes7aSnnwm1NySwyGDHhXDRERZrmaA
200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-SQNxhdlQDes7aSnnwm1NySwyGDHhXDRERZrmaA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-SQNxhdlQDes7aSnnwm1NySwyGDHhXDRERZrmaA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 43
last-modified: Fri, 18 Nov 2022 16:49:04 GMT
etag: "6377b780-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-MyXNddlQDes7aSnnwm1NySwyGDHEiVzvbYajBA&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 43
cf-ray: 79238510b8dc0b4d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uOSrg3A3L7bkN1dR7%2BjoWf%2BwK%2F3NGvzAHwXqltVS%2Bkyr6miGbmj%2FqsOa8gdUukgICO0SVlr0Hp1CAwIPhUCWqQiQee9ssSMjHxLhlvipeR7SCKCO6UYrXour4FE%2B%2F64hvJ2k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFk12WMCEAXTu1VkehDpiMWIlr3T52UFEgEBAQGG2mPjYwAAAAAA_eMAAA&S=AQAAAuZo5PdpX-KIlAbMRW3WsTY; Expires=Wed, 31 Jan 2024 21:35:53 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-NGTjHNlQDes7aSnnwm1NySwyGDE2BCh17OfatQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-26gSitlQDes7aSnnwm1NySwyGDHBdWePpgt_Xg&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-26gSitlQDes7aSnnwm1NySwyGDHBdWePpgt_Xg&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-26gSitlQDes7aSnnwm1NySwyGDHBdWePpgt_Xg&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 78e3bdce5107450057bade54d54a0a7e
Content-Type: image/gif
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A
200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-OLFOltlQDes7aSnnwm1NySwyGDFcJ3HVjRWc-A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g&KRTB&23144-uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g&KRTB&23286-uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g&KRTB&23287-uid:k-QeLbwtlQDes7aSnnwm1NySwyGDFcQo2yOjp30g; domain=pubmatic.com; secure; expires=Thu, 02-Mar-2023 15:35:53 GMT; path=/
PugT=1675179353; domain=pubmatic.com; secure; expires=Thu, 02-Mar-2023 15:35:53 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b79a7bc908595175fd9d671dd1a3728
2ea901d1bac5dbe8eb771db3908aae5a6d49799b
cadb9664626d379cdc046693a5bfc4d0e264cf86ba6d73332f98309f30615e38
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:53 GMT
Last-Modified: Tue, 31 Jan 2023 14:22:05 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rf0phBteS1MXqUT0nHEOZOGiD8YKYoqfNEOqvNZ24cuBitO6GbJVVw==
Age: 4428
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-OanyZtlQDes7aSnnwm1NySwyGDHRQ-GFXoZAUg
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-OanyZtlQDes7aSnnwm1NySwyGDHRQ-GFXoZAUg
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-OanyZtlQDes7aSnnwm1NySwyGDHRQ-GFXoZAUg HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Tue, 31 Jan 2023 15:35:53 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=5739066770279458798; expires=Thu, 29 Feb 2024 15:35:53 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Thu, 29 Feb 2024 15:35:53 GMT; domain=smartadserver.com; path=/
csync=79:k-OanyZtlQDes7aSnnwm1NySwyGDHRQ-GFXoZAUg; expires=Wed, 31 Jan 2024 15:35:53 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
200 OK 471 B IP
Hash ba0a5a019f68de808d546b25f5f1afd9
33c3d1972b2d517029bab1e749ee1374300491d9
edfd8175f0da704eb77840543eb2913a223a94107e3c4adb2bf30b8bda9fe991
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5598
Cache-Control: max-age=144267
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d8b006-1d7"
Expires: Thu, 02 Feb 2023 07:40:20 GMT
Last-Modified: Tue, 31 Jan 2023 06:07:02 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash 43097148ded0e08cecbac6ace30dc4b0
a324fdf39a403300bcbb40087ce277d231b82bd5
8beed2662a036fbc8db464e3911728e0d474c1856b6dc28d9f42e03746a85b91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6504
Cache-Control: max-age=111703
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d82d48-117"
Expires: Wed, 01 Feb 2023 22:37:36 GMT
Last-Modified: Mon, 30 Jan 2023 20:49:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash f95e6378a219589583139355cc36a843
6e36a793d76636e30b6fd01e9a80afd45bda8d74
e4a1ad91126f1386a75a39cadf584a8cdc99478ba9ca27651e9ed3218569b8ad
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160489
Date: Tue, 31 Jan 2023 15:35:53 GMT
Etag: "63d90302-1d7"
Expires: Thu, 02 Feb 2023 12:10:42 GMT
Last-Modified: Tue, 31 Jan 2023 12:01:06 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: j_m90715RASN7jwuVIJeqgkRqRSDeSq4Xh3zF_6Gmy-OPtCeduzu3Q==
Age: 576
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-RiPuDtlQDes7aSnnwm1NySwyGDEdRd4DQQeaIA
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-RiPuDtlQDes7aSnnwm1NySwyGDEdRd4DQQeaIA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-RiPuDtlQDes7aSnnwm1NySwyGDEdRd4DQQeaIA HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 15:35:53 GMT
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-xPU27tlQDes7aSnnwm1NySwyGDGIsgFSbbseIg
200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-xPU27tlQDes7aSnnwm1NySwyGDGIsgFSbbseIg
IP
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash 57de7889684b7342664382aae05316c4
44d54401eeb29a21e7d6b18413bc4970882a740f
b18923e52113e8f3bc192baf1eb97dcf63c19a97b9405334b2c03974c48aec0c
GET /cookie-sync?p=criteo&uid=k-xPU27tlQDes7aSnnwm1NySwyGDGIsgFSbbseIg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 15:35:53 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: 9a10ae072865bc5174128013b12026a8
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-06601d6e7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=52837980290720894870508149779748409291; Max-Age=15552000; Expires=Sun, 30 Jul 2023 15:35:53 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: lVm7p6hAT2Q=
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 74be048cae4a81b12cbf7fc643928693
b7c2113780c088beb77f9f84e0226a1d6f7175fa
b28d19a792836850ec81eddd1f8c1d22122b1f454977ba5b3e65ef4b2c25fb5f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 15:35:53 GMT
Last-Modified: Tue, 31 Jan 2023 14:20:53 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JFakyaSink9d1sGtausIeJKIKiF3zFJ7PLvNeJZISSk1ubfoVI3duw==
Age: 4500
sync-criteo.ads.yieldmo.com/sync?id=k-zkzqv9lQDes7aSnnwm1NySwyGDH3QVeKTavHJw&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-zkzqv9lQDes7aSnnwm1NySwyGDH3QVeKTavHJw&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-zkzqv9lQDes7aSnnwm1NySwyGDH3QVeKTavHJw&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gf9a7d41756bbd4d53d6%7C1675179353883%7C0%7C; Domain=.yieldmo.com; Expires=Wed, 31-Jan-2024 15:35:53 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-zkzqv9lQDes7aSnnwm1NySwyGDH3QVeKTavHJw; Domain=ads.yieldmo.com; Expires=Wed, 31-Jan-2024 15:35:53 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-s3ofTdlQDes7aSnnwm1NySwyGDH99ogSzdIXBQ&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 15:35:53 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFk12WMCEGiSf5JV6z7wJXdJerOsTckFEgEBAQGG2mPjYwAAAAAA_eMAAA&S=AQAAAkR44NOsfXgxKZB5BFuSe1Y; Expires=Wed, 31 Jan 2024 21:35:53 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0284b356a.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: Sv85wQsRTiE=
Content-Length: 59
Connection: keep-alive
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 926447
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b108f85f518789e4407173de7290f564
37a4c72b8cafa2d2b0d38340338ec38e82e06534
6c3aab441a49813af851356e31b86fc0646c20dec6d4e218e3ac1cdb6c2a61b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: max-age=166335
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:35:54 GMT
Etag: "63d902fe-1d7"
Expires: Thu, 02 Feb 2023 13:48:09 GMT
Last-Modified: Tue, 31 Jan 2023 12:01:02 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 15:35:54 GMT
set-cookie: _kuid_=PWg-jn_w; Expires=Sun, 30-Jul-23 15:35:54 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n011-dub-prod.krxd.net
x-request-time: D=64 t=1675179354
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 15:35:53 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 532564
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 39bee1ae71d94d24c1d1ddb08602579b
ecea6c42c9f97b7346728bd6f87051ffd03e1b43
daee544a8fb4fd2bf15bd4483504a5c0f3fb65acf397744673a2bb525f62a807
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAEE544A8FB4FD2BF15BD4483504A5C0F3FB65ACF397744673A2BB525F62A807"
Last-Modified: Tue, 31 Jan 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3578
Expires: Tue, 31 Jan 2023 16:35:32 GMT
Date: Tue, 31 Jan 2023 15:35:54 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:54 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: f333d370-a17c-11ed-9110-0000ac170230
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: djoQmYTv7Rlq9tKKkJ5U1J3YeVSIs5yzSts_xRN3bdi27Ra8UfM6OQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:44:45 GMT
age: 64270
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-8c1oR9lQDes7aSnnwm1NySwyGDHefUY0Yq1_Zw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 272349
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.dwin1.com/19038.js?shop=quilling-card.myshopify.com
200 OK 0 B URL HTTP/2 www.dwin1.com/19038.js?shop=quilling-card.myshopify.com
IP
GET /19038.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 09:29:43 GMT
x-amz-version-id: K79kFuQJkqkxn7Rvda8a8v_AI8U2YQN_
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 15:29:54 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"57e46848d59c3a6b2dbe80c0a67c9b56"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4b2cUvtJ_-hAeseXmfQ-mVYcj3e5Yzh9L-KIy6OFMDaEJ5VOiSLnKA==
age: 357
X-Firefox-Spdy: h2
script.metricode.com/ellipsis.js?api_key=b36573fd-4e23-48bf-9e0b-a134ce98529a&shop=quilling-card.myshopify.com
200 OK 0 B URL HTTP/2 script.metricode.com/ellipsis.js?api_key=b36573fd-4e23-48bf-9e0b-a134ce98529a&shop=quilling-card.myshopify.com
IP
GET /ellipsis.js?api_key=b36573fd-4e23-48bf-9e0b-a134ce98529a&shop=quilling-card.myshopify.com HTTP/1.1
Host: script.metricode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 18:13:06 GMT
last-modified: Mon, 09 Jan 2023 18:03:14 GMT
etag: W/"a9e5e6013b630cb27070a976af3983d8"
x-amz-version-id: PtS9zZsvSlt.RRtmIh.LMcGkEMO6KbhF
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7aWkr_aMRfLozPjeb3kNT450UtBikE_J__gELgiJo5oqjh6Sg8dB9g==
age: 76965
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.min.js?v=74685606144567451161671621701
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.min.js?v=74685606144567451161671621701
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/selectize.min.js?v=74685606144567451161671621701 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/selectize.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8cbfeb87-9829-430c-a8ee-fee51cffdbe8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pugZjecPl2%2FO2JS7YZ4zPHlVLzqR6cvlnj%2FaY0k%2BPEp%2BFecbode%2BhMHyFGfKSzhJtzDAH%2BvA45MseQu%2BazlAX2eqqK%2Bv%2BDdJ%2BL1Zk0S8EPAfuA2aRyQotM3b8dLlKAURww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=104.021, imageryFetch;dur=103.807, cfRequestDuration;dur=138.999939
server: cloudflare
cf-ray: 792384ea1eebb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platform.smile.io/v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi
200 OK 0 B URL HTTP/2 platform.smile.io/v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi
IP
OPTIONS /v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi HTTP/1.1
Host: platform.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,smile-channel-key,smile-client
Referer: https://quillingcard.com/
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:32:41 GMT
server: nginx/1.23.1
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,smile-channel-key,smile-client
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kcOUZGL2FUTtgDDA7k8r1yKMQ3PcuGTvC_Q5LD-EGagPKzI3soRVIw==
age: 79390
X-Firefox-Spdy: h2
acsbap.com/apps/app/assets/js/acsb.js
301 Moved Permanently 0 B URL HTTP/2 acsbap.com/apps/app/assets/js/acsb.js
IP
GET /apps/app/assets/js/acsb.js HTTP/1.1
Host: acsbap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 15:35:48 GMT
location: https://acsbapp.com/apps/app/assets/js/acsb.js
cache-control: max-age=3600
expires: Tue, 31 Jan 2023 16:35:48 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AMw6bDbs1%2BcuwNJjhoWw4DOFV%2BORXZMpXEt7aNIZyISQps8FdDxfy0biU1iuT5i9rZ3sTjc3alGCCDxYZcwKrX8Jh8nAoSvWtlDxn3qWRylY%2FIqmZ8qL8ibsHKr4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792384f078f6b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bootstrap.min.css?v=125365494255861483591671620877
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bootstrap.min.css?v=125365494255861483591671620877
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/bootstrap.min.css?v=125365494255861483591671620877 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bootstrap.min.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 32b1f914-191d-4656-996a-04ab1bd580e8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BirNAu1dNeVx%2BlAbQ%2BnTdvUMe9adtPxVMNRAm4JHUau6XFxvqs7QnVEtyYHdGlIBJgABCAyoTpoAiQ67qJgo%2B0Vi6k8pKsXNh7rT%2BlZM8U2uPbTAZhgDz4YFDq5xozo80g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=89.227, imageryFetch;dur=89.071, cfRequestDuration;dur=145.999908
server: cloudflare
cf-ray: 792384ea5f4cb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/animate.css?v=61395382580414497701671620818
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/animate.css?v=61395382580414497701671620818
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/animate.css?v=61395382580414497701671620818 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/animate.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 43f11204-8e62-439c-a214-480320a75277
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6aerj4EcVd7RvHOgMhPhsXUm3iSKAEvJ%2BMKxM01ZIQ%2BVYHBUG9t1hBxyg92UmGBnYnIFW5I9XNaLgSnYFUE18HZMHknx%2FXZmvtp9AU4bgzTwoM22SLA2x0BVGUJG%2B%2Bm2Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=189.428, imageryFetch;dur=66.349, cfRequestDuration;dur=142.999887
server: cloudflare
cf-ray: 792384ea1ee5b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.smile.io/v1/smile-lite-7eed663533.js
200 OK 0 B URL HTTP/2 js.smile.io/v1/smile-lite-7eed663533.js
IP
GET /v1/smile-lite-7eed663533.js HTTP/1.1
Host: js.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 19:44:29 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 0
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 30 Jan 2023 18:40:07 GMT
x-amz-version-id: R_HKP1dGbAO2B33obzUKyrCiXFqjXXjV
etag: W/"7eed663533b22192ffa9dcc9eaaabf52"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2kAWp_6HP8Ux8hQFzDM4CKZrf2FQ-ZY5z46TxDzGd56iJa_mK6Wmkg==
age: 71483
X-Firefox-Spdy: h2
platform.smile.io/v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi
200 OK 0 B URL HTTP/2 platform.smile.io/v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi
IP
GET /v1/smile_ui/init?channel_key=channel_KlWfQljDq2qsCL4dV5CyJoDi HTTP/1.1
Host: platform.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quillingcard.com/
Smile-Channel-Key: channel_KlWfQljDq2qsCL4dV5CyJoDi
Smile-Client: smile-ui
Content-Type: application/json
Origin: https://quillingcard.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: nginx/1.23.1
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: ALLOWALL
x-request-id: aa51c720-db47-4dbb-9113-39a844a1ad00
x-runtime: 0.009727
content-encoding: gzip
date: Tue, 31 Jan 2023 15:35:51 GMT
cache-control: max-age=900, public
etag: W/"b762fd672ded3a9257f52e5a4d4532d8"
vary: Accept-Encoding,Origin
x-cache: RefreshHit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SnK9LqIIQvu7_MkH7TZ8kHFN4_lycUTrfc3J7pbS4FPg1ytKmLnTbg==
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.flexslider-min.js?v=61727824838382291461671621664
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.flexslider-min.js?v=61727824838382291461671621664
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/jquery.flexslider-min.js?v=61727824838382291461671621664 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/jquery.flexslider-min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d1dd445d-8eeb-4df3-ba4a-ebd74825534a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7SNzSbCFvSHZnGQxCeuZUcKhe6ejKXImpk%2Fhz71OiXQzV3fKs4pmtTrXgoVb3VGhKcrNxJPycpIqv8HOb46TVgoAyXwrDMysZqLL5sbGc1mjxI3vR5HmQMlrGbacO5fhIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=78.983, imageryFetch;dur=69.530, cfRequestDuration;dur=135.999918
server: cloudflare
cf-ray: 792384ea1eecb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.judge.me/widget/common.js
200 OK 0 B URL HTTP/2 cdn.judge.me/widget/common.js
IP
GET /widget/common.js HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: text/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"39b4fc4d76482c09b8b74b0346eb43f8"
x-request-id: 830e9ae3-525c-4140-96c7-c751757ce0b5
x-runtime: 0.010814
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/widget/common.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2
analytics.klickly.com/processing.js
200 OK 0 B URL HTTP/2 analytics.klickly.com/processing.js
IP
GET /processing.js HTTP/1.1
Host: analytics.klickly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://analytics.klickly.com/processing-iframe.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 20:09:54 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 14:39:46 GMT
cache-control: max-age=3600
etag: W/"1c4dc07662a4409bff9be43723625c28"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u9slESfIgfC2k51PvJxA-HqxgkmtHonQjM4FcHaiYOkSwMta94sZBA==
age: 3375
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles.css?v=105395326853150816231674672186
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles.css?v=105395326853150816231674672186
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/theme-styles.css?v=105395326853150816231674672186 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/theme-styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7f36614b-a565-48b9-ac2a-8cd2866b0141
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 18:44:25 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rb5iDKjD79YdgwVsy9u3cHdnmw0OsopZK5XLZqwNOGa8TQT%2FDd4cRRd9WfJ%2BFq8t6iEIQiRFYkKc09z0%2BEt1gEw%2BxkImlo59PtLg6Vba0ITnscHduvH8pT4v8xWvPLzCXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=90.716, imageryFetch;dur=82.082, cfRequestDuration;dur=161.000013
server: cloudflare
cf-ray: 792384ea1ee2b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.smile.io/v1/vendor-bb37736b2d094033ed90.modern.js
200 OK 0 B URL HTTP/2 js.smile.io/v1/vendor-bb37736b2d094033ed90.modern.js
IP
GET /v1/vendor-bb37736b2d094033ed90.modern.js HTTP/1.1
Host: js.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 19:44:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 0
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 30 Jan 2023 18:40:07 GMT
x-amz-version-id: V7KtrzQiWgoMDEePEuHwh5ec02miV7Fw
etag: W/"ed026add6dc80ae4b262865c587c7c54"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S0TvCKnOXgYb5xVnckogx7jxwh3O9E-BzgXzw_cqsS4baXabjGICog==
age: 71482
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 78993
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
upsells.boldapps.net/v2_ui/js/upsell.js?shop=quilling-card.myshopify.com
200 OK 0 B URL HTTP/2 upsells.boldapps.net/v2_ui/js/upsell.js?shop=quilling-card.myshopify.com
IP
GET /v2_ui/js/upsell.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: upsells.boldapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 15:08:39 GMT
etag: "4cce6-5f31801d42bc0-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=172800
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
expires: Thu, 02 Feb 2023 15:35:51 GMT
set-cookie: __cf_bm=S1dHMX_IJhpt06sjQrijzay789PkqnaAgiI77tQ_TIY-1675179351-0-AV7GwrwmgwaN5PNl43h68ZtPIqN/vhKz6q0g0ThX6zpFskpDOv3krK/xEK55uVoQF/Akt3p4eQMDZHEM8Hoz0RU=; path=/; expires=Tue, 31-Jan-23 16:05:51 GMT; domain=.boldapps.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792384fe6fb60b51-OSL
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
200 OK 0 B URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116423
date: Tue, 31 Jan 2023 15:35:48 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 31 Jan 2023 15:35:49 GMT
date: Tue, 31 Jan 2023 15:35:49 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=yfS9MhSzEM0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TkRnME1EVXlNRGcyTnpFeE1EWXlNdz09ENXq5J4GGNXq5J4G; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:35:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=bP_sqZjJaQU; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:35:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+332; expires=Thu, 30-Jan-2025 15:35:49 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.smile.io/v1/smile-ui-styles-bc5988cf63d133c8c701.modern.js
200 OK 0 B URL HTTP/2 js.smile.io/v1/smile-ui-styles-bc5988cf63d133c8c701.modern.js
IP
GET /v1/smile-ui-styles-bc5988cf63d133c8c701.modern.js HTTP/1.1
Host: js.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 18:12:57 GMT
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 30 Jan 2023 18:08:44 GMT
x-amz-version-id: DHb6adiqJU13cHMtrXPlmk27LWu4JC1c
etag: W/"00d7d626704b13122c19917b0a9e356a"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1h19TQpS53MrTyWTtaIrfSIygY4HJCN4KOBVB5oXJaPHfkfxxVUY_g==
age: 76975
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Black.woff2
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Black.woff2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/Avenir-Black.woff2 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quillingcard.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: font/woff2
content-length: 29452
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/Avenir-Black.woff2>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: fdb1813e-3326-48de-af1c-8da8064fff3f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:17:14 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1Ap%2F%2BwXaBAXsWS3T%2FAEcJUVKM%2FUUJ0iX3mfI%2FhVcALwSy80Q6E65FI5IWV9JHhOBmC7LFEBFsZZ0yxFNMPRpG5SlCSP0eebyNwPW80juAlbGm5ecpKjw590CFkr5Vg%2FgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=58.888, imageryFetch;dur=58.539, cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 792384ed794bb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/reveal.css?v=123326691692260780381671621700
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/reveal.css?v=123326691692260780381671621700
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/reveal.css?v=123326691692260780381671621700 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/reveal.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3c50a10a-2c6f-4e15-b40e-829bd1acc105
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2BsADvMmw%2FUtuxJXojisLkAWUE%2Fx1fv%2Fnm4kejVcfDbceRm99H0EPkJ4A1DsRiDyVSmasjPthm5JdzwRvTQqixM5JgWQ%2BnuNfZM4%2BJaztSfJIELG3CB606RJ10NDMt06eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=108.874, imageryFetch;dur=108.045, cfRequestDuration;dur=136.999846
server: cloudflare
cf-ray: 792384ea3f2bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-rkzQotlQDes7aSnnwm1NySwyGDHXmWUGNiY_k8hZyrgqQhMc
200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-rkzQotlQDes7aSnnwm1NySwyGDHXmWUGNiY_k8hZyrgqQhMc
IP
GET /usersync/push?partner=criteo&partnerId=k-rkzQotlQDes7aSnnwm1NySwyGDHXmWUGNiY_k8hZyrgqQhMc HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22f26e87a0-a17c-11ed-833a-db384cf601a6%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 14 Feb 2023 15:35:53 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22f26e87a0-a17c-11ed-833a-db384cf601a6%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 14 Feb 2023 15:35:53 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22f26e87a0-a17c-11ed-833a-db384cf601a6%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 14 Feb 2023 15:35:53 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22f26e87a0-a17c-11ed-833a-db384cf601a6%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 14 Feb 2023 15:35:53 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-rkzQotlQDes7aSnnwm1NySwyGDHXmWUGNiY_k8hZyrgqQhMc%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Tue, 14 Feb 2023 15:35:53 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-C2KXAdlQDes7aSnnwm1NySwyGDF-vQQCk1NniA
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-C2KXAdlQDes7aSnnwm1NySwyGDF-vQQCk1NniA
IP
GET /sync?UICR=k-C2KXAdlQDes7aSnnwm1NySwyGDF-vQQCk1NniA HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
use.fontawesome.com/77d553db33.js
200 OK 0 B URL HTTP/2 use.fontawesome.com/77d553db33.js
IP
GET /77d553db33.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
x-amz-id-2: dwRgaBrdWcref97qwp7Xwh29z8oI50cTNaaRWHu5nIM+CzAa/7CYRpLIb0JHdi9Cq0hVZ88z3SQ=
x-amz-request-id: ZRS3YC65PQJX8M45
last-modified: Wed, 30 Jun 2021 20:55:45 GMT
etag: W/"d573357b7cec28d1201bbf0662ed427c"
cache-control: max-age=1800
cf-cache-status: HIT
age: 5780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FUHSyPdTybplgos19G6NdTMHjgmbSUb%2Fi5lB7oNuLtqoVEcJJdpJyLpa3CsK72u3L2d2%2FhSASzcav2X69javg9VIAcBOqTKUTg%2FT0T9RvDokG4YNT%2BjrsM%2BX0UHGokUUX6LLxrWR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792384ea9a967717-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.instagram.com/v1/users/223671784/media/recent?access_token=521184101.5ea0515.1b13741b950c4bbcaffd632a9f557b3b&count=10&callback=instafeedCache519f9edea6742c8d.parse
404 Not Found 0 B URL HTTP/2 api.instagram.com/v1/users/223671784/media/recent?access_token=521184101.5ea0515.1b13741b950c4bbcaffd632a9f557b3b&count=10&callback=instafeedCache519f9edea6742c8d.parse
IP
GET /v1/users/223671784/media/recent?access_token=521184101.5ea0515.1b13741b950c4bbcaffd632a9f557b3b&count=10&callback=instafeedCache519f9edea6742c8d.parse HTTP/1.1
Host: api.instagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 15:35:49 GMT
vary: Accept-Language
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-frame-options: SAMEORIGIN
content-security-policy: report-uri https://www.instagram.com/security/csp_report/; default-src 'self' https://www.instagram.com; img-src data: blob: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com https://*.facebook.com https://*.fbsbx.com; font-src data: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com; media-src 'self' blob: https://www.instagram.com https://*.cdninstagram.com https://*.fbcdn.net; manifest-src 'self' https://www.instagram.com; script-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://*.cdninstagram.com wss://www.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https://*.www.instagram.com https://www.instagram.com 'unsafe-inline'; connect-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://graph.instagram.com https://*.graph.instagram.com https://i.instagram.com/graphql_www https://graphql.instagram.com https://*.cdninstagram.com https://api.instagram.com https://i.instagram.com https://*.i.instagram.com https://*.od.instagram.com wss://www.instagram.com wss://edge-chat.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net chrome-extension://boadgeojelhgndaghljhdicfkmllpafd blob:; worker-src 'self' blob: https://www.instagram.com; frame-src 'self' https://instagram.com https://www.instagram.com https://*.instagram.com https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://connect.facebook.net https://m.facebook.com https://*.fbsbx.com; object-src 'none'; upgrade-insecure-requests
cross-origin-embedder-policy-report-only: require-corp;report-to="coep"
report-to: {"group": "coep", "max_age": 86400, "endpoints": [{"url": "/security/coep_report/"}]},{"group": "coop", "max_age": 86400, "endpoints": [{"url": "/security/coop_report/"}]}
origin-trial: AuqWincgAuXeuu3KypEMnrrFEJHySaesyJS3EaIH40zvafzrU0Irhb7+5QwZpOqMZrPTjgvFl7Z5jJgy1dNAcQMAAAB6eyJvcmlnaW4iOiJodHRwczovL2luc3RhZ3JhbS5jb206NDQzIiwiZmVhdHVyZSI6IkNyb3NzT3JpZ2luT3BlbmVyUG9saWN5UmVwb3J0aW5nIiwiZXhwaXJ5IjoxNjEzNDExNjYyLCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop"
x-content-type-options: nosniff
x-xss-protection: 0
x-ig-push-state: c2
x-aed: 75
access-control-expose-headers: X-IG-Set-WWW-Claim
x-ig-request-elapsed-time-ms: 41
x-ig-peak-time: 1
content-length: 20955
x-ig-origin-region: rva
x-fb-trip-id: 1512268381
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell-custom.css?v=150135899998303055901671620875
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell-custom.css?v=150135899998303055901671620875
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/bold-upsell-custom.css?v=150135899998303055901671620875 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell-custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ff7ea370-637a-44b4-a8b7-cce5bccf07cd
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p08z8EAYcm9sc10i5XUecQGaHl%2B9tqD0HUywAAX1ipA2doievJ40L0P1ZZ7Sbbp15zc5wc%2BF3Id3iPABburn9OcncAOPo2sdkSovxrfiu9o%2BkyEM2ypZaUMoe6JOdY8QYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=69.191, imageryFetch;dur=68.342, cfRequestDuration;dur=130.000114
server: cloudflare
cf-ray: 792384ea1ef2b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.judge.me/loader.js
200 OK 0 B IP
GET /loader.js HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"e4235f2e652dd76c4706234da20a219c"
x-request-id: 40dfc467-1c93-4f13-9f27-003212722802
x-runtime: 0.006770
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/loader.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.carousel.css?v=121839832965423023641671621694
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.carousel.css?v=121839832965423023641671621694
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/owl.carousel.css?v=121839832965423023641671621694 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.carousel.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c3fa91b8-b028-4788-9144-498be16abd8a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SGI7RE2%2BAxQAOk27ggi3PXZwbpL9fvhOVuAXUJmgr%2FY7pOfCDgvARWycmBjoy49tJUuF33mtrjjDnY0C9%2B9Y5xzsBjuORjEwHOq%2FeilYHeZn3oimk%2B7pxHmehmqGTeZx1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=103.450, imageryFetch;dur=102.493, cfRequestDuration;dur=127.000093
server: cloudflare
cf-ray: 792384ea5f5bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.theme.css?v=33875463726410107361671621696
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.theme.css?v=33875463726410107361671621696
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/owl.theme.css?v=33875463726410107361671621696 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/owl.theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c29fc763-70db-456f-96aa-06a8768f4316
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Thu, 26 Jan 2023 01:45:04 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8PT0veU%2B%2BvL67ekwnewx57cWBbIAhAIBjxd1iiWZTDeHLKSejhjjQ9170%2BC%2BplD%2FfeimwBKnxa7xdVpByIvwqhYnoulyH9PwV1fBuFKuyNMY5CexvWF6nwfCTdW%2FStw6jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=105.333, imageryFetch;dur=104.011, cfRequestDuration;dur=129.999876
server: cloudflare
cf-ray: 792384ea6f6bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-KJkD4dlQDes7aSnnwm1NySwyGDHJm-5RmYnNuQ
200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-KJkD4dlQDes7aSnnwm1NySwyGDHJm-5RmYnNuQ
IP
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-KJkD4dlQDes7aSnnwm1NySwyGDHJm-5RmYnNuQ HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:35:53 GMT
x-fastly-to-nlb-rtt: 22243
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:53 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 419983
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.judge.me/widget/base.js
200 OK 0 B URL HTTP/2 cdn.judge.me/widget/base.js
IP
GET /widget/base.js HTTP/1.1
Host: cdn.judge.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: keycdn-engine
date: Tue, 31 Jan 2023 15:35:48 GMT
content-type: text/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=604800, public
vary: Accept-Encoding
content-encoding: gzip
etag: W/"8eb8a31a6dc40d6e5df5e70882e6b065"
x-request-id: ab8d3b44-7982-4d0b-b671-cc23bf1e6b90
x-runtime: 0.016403
strict-transport-security: max-age=31536000
via: 1.1 vegur
link: <https://judge.me/widget/base.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.smile.io/v1/smile-shopify.js?shop=quilling-card.myshopify.com
200 OK 0 B URL HTTP/2 js.smile.io/v1/smile-shopify.js?shop=quilling-card.myshopify.com
IP
GET /v1/smile-shopify.js?shop=quilling-card.myshopify.com HTTP/1.1
Host: js.smile.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 18:40:08 GMT
x-amz-version-id: dcLoyKDx35d8vNc4Xw6i_pfxvSCq97YE
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 15:35:52 GMT
cache-control: no-cache
etag: W/"d364e46abb250dd3237f794ce476c079"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Du-Qs2LzUAw_xjsJ8keuHRvnDYIO6aD-0l1Sqe0YuhbBGj-LU2FRtw==
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=7X7zw180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ2OWhncmt6WDJQUjl3YjRPeGNwSDRQQ25lJTJGdWNaTE1qTHlDcXRVR0xQcw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=lgl7ZF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ2OWhncmt6WDJQUjl3YjRPeGNwSDdoaFVFT1o1MW5WYlBkVVRQOWlVaVA; expires=Sun, 25 Feb 2024 15:35:52 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 676016
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell.css?v=51915886505602322711671620876
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell.css?v=51915886505602322711671620876
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/bold-upsell.css?v=51915886505602322711671620876 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/bold-upsell.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 262876c2-d95c-4e30-9646-79ae760f3ad5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:26 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZYS1c5W21LfPOoMANve%2BYCVfXySpyewb1xPNYywegiYRgB5tVesiyUQf%2BPTQnbgslN8Z1FxXjNzFFmXb%2BM6kVgTnIMkd8KjOAgg7WoPZ4%2BnNEUsLwx5T73pHsfXRqy9UA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=51.917, imageryFetch;dur=49.484, cfRequestDuration;dur=133.000135
server: cloudflare
cf-ray: 792384ea1ef1b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.js?v=28580454971368686671671621641
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.js?v=28580454971368686671671621641
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/1062/6604/t/42/assets/globo.alsobought.js?v=28580454971368686671671621641 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:35:47 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/1062/6604/t/42/assets/globo.alsobought.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6c488064-6fcc-4e55-8ea7-838af0556755
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 26 Dec 2022 13:16:27 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=royN3zLWOwjxGo%2F595fPRNa5OoQlHyv7ACCjFpOw0Ktx2lMuSSxRfzY0%2FRWOZYfxqRINX5dV2F3GfDyDxkSJ9QfPSEMUKaL1bRYRYlxpoAxQiutCTc3f%2FEoNudt3ToyZxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=932.468, imageryFetch;dur=99.962, cfRequestDuration;dur=131.000042
server: cloudflare
cf-ray: 792384ea1eeeb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.klickly.com/pixel.js?v=1.3.3
200 OK 0 B URL HTTP/2 analytics.klickly.com/pixel.js?v=1.3.3
IP
GET /pixel.js?v=1.3.3 HTTP/1.1
Host: analytics.klickly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quillingcard.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 20:09:54 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 15:12:48 GMT
cache-control: max-age=3600
etag: W/"d9ade55d5977d567949353b64f116ea4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vs97yVX6U9Rbd6P-sggtmZwc5Xphg70RXFGxLSsMa8ZJz8tMxYmqDg==
age: 1383
X-Firefox-Spdy: h2
23.227.38.74
104.18.32.68
192.124.249.36
185.86.139.106
23.195.255.234
23.32.110.31
35.156.114.230
3.248.39.194
141.226.228.48
157.240.205.35
93.184.220.29
37.157.5.141