urlquery - report: uehsygsolgobgocuybkx9588719481.blogspot.com/knee

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
thebestofferx.shop (21)	0	2022-08-03 14:26:24 UTC	2022-11-30 23:17:42 UTC	198.54.120.24	Unknown ranking
tls-use1.fpapi.io (1)	28648	2021-08-16 14:07:38 UTC	2022-11-30 23:17:45 UTC	99.83.173.21
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.88
fp.ctrwow.com (1)	506136	2021-02-24 22:01:25 UTC	2022-11-30 23:17:47 UTC	75.2.62.78
r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-11-30 17:12:16 UTC	23.36.77.32
uehsygsolgobgocuybkx9588719481.blogspot.com (2)	0	No data	No data	142.250.74.161	Unknown ranking
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-30 17:12:31 UTC	34.102.187.140
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-30 17:13:24 UTC	34.117.237.239
fonts.googleapis.com (2)	8877	2013-06-10 20:14:26 UTC	2022-11-30 21:05:51 UTC	142.250.74.106
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2022-11-30 20:24:46 UTC	93.184.220.29
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-11-30 17:19:42 UTC	34.160.144.191
ocsp.pki.goog (7)	175	2017-06-14 07:23:31 UTC	2022-11-30 17:12:14 UTC	142.250.74.131
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-11-30 17:12:17 UTC	34.215.91.121
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-11-30 17:26:07 UTC	34.120.237.76
ctrwow-prod-analytics-socketserver.azurewebsites.net (1)	448469	2019-03-26 12:52:17 UTC	2022-11-30 23:17:45 UTC	52.176.5.241
d16hdrba6dusey.cloudfront.net (1)	0	2022-11-17 23:16:23 UTC	2022-12-01 00:29:04 UTC	54.230.245.118	Unknown ranking
ocsp.sectigo.com (2)	487	2018-12-17 11:31:55 UTC	2022-11-30 21:13:57 UTC	172.64.155.188
tikiz.shop (2)	0	2022-04-20 08:22:45 UTC	2022-11-30 19:29:04 UTC	198.54.126.24	Unknown ranking
fonts.gstatic.com (1)	0	2014-09-09 00:40:21 UTC	2022-11-30 22:48:06 UTC	216.58.207.227	Domain (gstatic.com) ranked at: 540

Scan Date	Severity	Indicator	Comment
2022-11-30	2	tikiz.shop	Sinkholed
2022-11-30	2	tikiz.shop	Sinkholed

Date	UQ / IDS / BL	URL	IP
2023-01-21 16:46:31 +0000	0 - 0 - 1	wytike.page.link/pQhBiPQ2o7GVemxA8	142.250.74.161
2023-01-21 16:46:26 +0000	0 - 0 - 1	defewyr.page.link/JoAeTra1xCczHZfv7	142.250.74.161
2023-01-21 16:46:19 +0000	0 - 0 - 1	dymuder.page.link/kvtDZbqxU8AkQ2dV7	142.250.74.161
2023-01-21 13:31:38 +0000	0 - 0 - 1	feqesi.page.link/365pd6duvijVApZL9	142.250.74.161
2023-01-21 13:31:24 +0000	0 - 0 - 1	raliwobe.page.link/BCJyT76QUmkH92Uy7	142.250.74.161

Date	UQ / IDS / BL	URL	IP
2023-01-26 22:12:11 +0000	0 - 0 - 3	hbgfhjng7657.blogspot.hk/	172.217.21.161
2023-01-26 22:11:03 +0000	0 - 0 - 2	35.227.234.222/2/PU_BE_PA_SB_DT_LADBROKES	35.227.234.222
2023-01-26 22:08:57 +0000	0 - 1 - 0	s.itorrent.bz/i/fdb96d32d0c0def3889f191922426 (...)	35.205.61.67
2023-01-26 22:05:04 +0000	0 - 3 - 0	www.superwebbysearch.com/search.php?q=2070.20 (...)	35.186.238.101
2023-01-26 22:04:34 +0000	0 - 0 - 3	fsghgdfjfhb.blogspot.com.ar/	172.217.21.161

Date	UQ / IDS / BL	URL	IP
2022-12-01 02:21:55 +0000	0 - 0 - 2	uehsygsolgobgocuybkx9588719481.blogspot.com/knee	142.250.74.161

Date	UQ / IDS / BL	URL	IP
2022-12-02 18:46:54 +0000	0 - 0 - 2	etsenlyvobouhffkwfou7754369277.blogspot.com/knee	142.250.74.161
2022-12-02 11:41:01 +0000	0 - 0 - 2	plxsdpflmnsohhuhyohj7129996630.blogspot.com/knee	142.250.74.33
2022-12-02 10:52:00 +0000	0 - 0 - 2	ajasxkqdyfgxkpgifeiq4991117694.blogspot.com/knee	142.250.74.33
2022-12-02 10:29:14 +0000	0 - 0 - 4	yaqvqzntpovfuqilqikq6190115986.blogspot.com/knee	172.217.21.161
2022-12-02 09:34:02 +0000	0 - 0 - 2	fryomhskvogcdavhmmou9445277139.blogspot.com/knee	172.217.21.161

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13126 Expires: Thu, 01 Dec 2022 06:00:30 GMT Date: Thu, 01 Dec 2022 02:21:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a5daf4dc99951793ae2315d4795e8146 Sha1: 4427507ca4d3a5632cc8f598afbc85e2195d00bd Sha256: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
GET /knee HTTP/1.1 Host: uehsygsolgobgocuybkx9588719481.blogspot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: uehsygsolgobgocuybkx9588719481.blogspot.com/knee FQDN: uehsygsolgobgocuybkx9588719481.blogspot.com IP: 142.250.74.161 HASH: 6c1bef6e56573f37e2b2de0038954791ecc6446d972287db1a367f8e46a100b4 142.250.74.161 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=UTF-8 Location: https://uehsygsolgobgocuybkx9588719481.blogspot.com/knee Content-Encoding: gzip Date: Thu, 01 Dec 2022 02:21:44 GMT Expires: Thu, 01 Dec 2022 02:21:44 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'self' X-XSS-Protection: 1; mode=block Content-Length: 199 Server: GSE --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text Size: 199 Md5: 331632b2d0efb1ae993d9e28f930888c Sha1: 6dc55526228a815fb96d6d2bac8234e1ae52fc6f Sha256: 6c1bef6e56573f37e2b2de0038954791ecc6446d972287db1a367f8e46a100b4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16135 Expires: Thu, 01 Dec 2022 06:50:39 GMT Date: Thu, 01 Dec 2022 02:21:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6d9d34c96b9a826ae5676640c966469c Sha1: 8052a16d41a637e420478b7de1ff5a2dc951fccd Sha256: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6589 Cache-Control: max-age=122364 Date: Thu, 01 Dec 2022 02:21:44 GMT Etag: "638730f7-1d7" Expires: Fri, 02 Dec 2022 12:21:08 GMT Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: f3cf023c797da81728c0ac84c8759331 Sha1: fa07c5e39e4b0741ea484101cccb2202acea9d9c Sha256: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: ZFwmV0gNoLHxz3Yrx00gkqXQ/ECVjaYbj+KfPwTZrlVI40w9MZYg9klsXRpfLpnxhcuM4jXcE7/qORTy0y/49Q== x-amz-request-id: W0Z762V3P0ENQ3GD content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 01 Dec 2022 01:45:28 GMT age: 2176 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 01 Dec 2022 02:19:45 GMT cache-control: public,max-age=3600 age: 119 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 14cd9a0afb6ba9a763651d5112760d1e Sha1: 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 8c7740729b3e689d0f033aae372325c2 Sha1: c6daa75cb90188534367ab0a3ef263a7f8b15ff8 Sha256: 077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 01 Dec 2022 02:21:44 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /knee HTTP/1.1 Host: uehsygsolgobgocuybkx9588719481.blogspot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: uehsygsolgobgocuybkx9588719481.blogspot.com/knee FQDN: uehsygsolgobgocuybkx9588719481.blogspot.com IP: 142.250.74.161 HASH: 553b4ebee40f9318c46e36bb7f512e5f9b8d3898083eacdd333d42f76ab7e8a4 142.250.74.161 HTTP/2 404 Not Found content-type: text/html; charset=UTF-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Thu, 01 Dec 2022 02:21:44 GMT content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 15007 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6565) Size: 15007 Md5: 20e07c99ff199dba94e1f516e9652398 Sha1: c8cd809ae9e0026bef3389c176ed31e01c3eac42 Sha256: 553b4ebee40f9318c46e36bb7f512e5f9b8d3898083eacdd333d42f76ab7e8a4
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 8c7740729b3e689d0f033aae372325c2 Sha1: c6daa75cb90188534367ab0a3ef263a7f8b15ff8 Sha256: 077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6582 Cache-Control: max-age=117289 Date: Thu, 01 Dec 2022 02:21:44 GMT Etag: "63871d2b-1d7" Expires: Fri, 02 Dec 2022 10:56:33 GMT Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: cfdd00e67ee6ca21712b867eb5288ab6 Sha1: b61d5d6ec3b7ad71619e13e32c87f2d01871b88a Sha256: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 01 Dec 2022 02:08:56 GMT cache-control: public,max-age=3600 age: 769 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: ce3f67fbd8e950fb322c5648634413f0a2b3f4182d7b2fd6790abd47e4f79786 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:45 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Wed, 30 Nov 2022 15:52:28 GMT Expires: Wed, 07 Dec 2022 15:52:27 GMT Etag: "bc4454b74d2d30b86718c8a0baafa6b338051cfb" Cache-Control: max-age=566441,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 772859e52cc8b524-OSL --- Additional Info --- Magic: data Size: 471 Md5: 0a744f3961e89e64ec4ebc1e62312ef0 Sha1: bc4454b74d2d30b86718c8a0baafa6b338051cfb Sha256: ce3f67fbd8e950fb322c5648634413f0a2b3f4182d7b2fd6790abd47e4f79786
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: UfnXUaZntExSDRQWemwLLA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 34.215.91.121 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 34.215.91.121 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: r6IF3BIYylLV+dSTPxGZbTV74cc= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /knee HTTP/1.1 Host: tikiz.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://uehsygsolgobgocuybkx9588719481.blogspot.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: tikiz.shop/knee FQDN: tikiz.shop IP: 198.54.126.24 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 198.54.126.24 HTTP/2 301 Moved Permanently content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.2.34 x-redirect-by: WordPress location: https://tikiz.shop/knee/ x-litespeed-cache: hit content-length: 0 date: Thu, 01 Dec 2022 02:21:45 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
GET /knee/ HTTP/1.1 Host: tikiz.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://uehsygsolgobgocuybkx9588719481.blogspot.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers	URL: tikiz.shop/knee/ FQDN: tikiz.shop IP: 198.54.126.24 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 198.54.126.24 HTTP/2 301 Moved Permanently content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.2.34 x-redirect-by: WordPress location: https://thebestofferx.shop/CircaKnee/en/pre-2.html x-litespeed-cache: hit content-length: 0 date: Thu, 01 Dec 2022 02:21:45 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 3bfe3f10d5245c22baced21d0e4a101bdddc5aa84b4aec12241973f143c29ff7 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Content-Length: 472 Connection: keep-alive Last-Modified: Wed, 30 Nov 2022 02:50:25 GMT Expires: Wed, 07 Dec 2022 02:50:24 GMT Etag: "df35145717b5c0205d1c6a47d2c37989cb3130d6" Cache-Control: max-age=519517,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 772859ea4f03b524-OSL --- Additional Info --- Magic: data Size: 472 Md5: 99a150855c0357c53e3dc6dc85d7d6ba Sha1: df35145717b5c0205d1c6a47d2c37989cb3130d6 Sha256: 3bfe3f10d5245c22baced21d0e4a101bdddc5aa84b4aec12241973f143c29ff7
GET /CircaKnee/en/pre-2.html HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://uehsygsolgobgocuybkx9588719481.blogspot.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: thebestofferx.shop/CircaKnee/en/pre-2.html FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: d7d0fcd5f58bb30cee020a7e39b7d06a3972f82113ca75f632aa195c3c925baf 198.54.120.24 HTTP/2 200 OK content-type: text/html last-modified: Tue, 29 Nov 2022 19:41:34 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 7945 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23006) Size: 7945 Md5: 5f15ff73fd2b974ee9462ee8fbfad5ca Sha1: d45e4151b5e504b707627814d61e9731a1821b36 Sha256: d7d0fcd5f58bb30cee020a7e39b7d06a3972f82113ca75f632aa195c3c925baf
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 146dac10a93604a686550631e14eefb9 Sha1: b4af601ce6d515d9ec124938ce626060e0d43099 Sha256: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 146dac10a93604a686550631e14eefb9 Sha1: b4af601ce6d515d9ec124938ce626060e0d43099 Sha256: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
GET /css2?family=Open+Sans:wght@300;400;500;600;700;800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Open+Sans:wght@300;400 (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 HASH: e4efb1567c38d6fec4c9fdbd0f20a9099546aedd7e68ee14e18d9a2073c54dad 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 Dec 2022 02:21:46 GMT date: Thu, 01 Dec 2022 02:21:46 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1304 Md5: 88be1ac9c893b7c9e8f07987239787d5 Sha1: 588f4b319fa86f0cb486be46b3126e0b0a94316c Sha256: e4efb1567c38d6fec4c9fdbd0f20a9099546aedd7e68ee14e18d9a2073c54dad
GET /CircaKnee/en/assets/js/modernizr-custom6e74.js?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/modernizr-cus (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: dac9d5fc489299c2e574e47789aaa4100703e29132dd696cb23f07516398504c 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 23 Nov 2022 21:40:40 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 1552 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (4277) Size: 1552 Md5: 9c74f2e5dc813498595bc50eee6265d0 Sha1: 086ce2e94c15ceabde6a1b47bf0df1f9566172c2 Sha256: dac9d5fc489299c2e574e47789aaa4100703e29132dd696cb23f07516398504c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7772 Expires: Thu, 01 Dec 2022 04:31:18 GMT Date: Thu, 01 Dec 2022 02:21:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7772 Expires: Thu, 01 Dec 2022 04:31:18 GMT Date: Thu, 01 Dec 2022 02:21:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8740 x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cP7uyE9CoAMF6Xg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 18:58:06 GMT age: 26620 etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8740 Md5: 26d6dffbf400da4803a2e76e2a8ef2f8 Sha1: 2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8 Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4199 x-amzn-requestid: 61981ad5-3560-43e1-a1cd-37f823e89675 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cZQxoEz5IAMFzQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6386c80a-291574e42bee51b2523b3920;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: fL5AwXN4Kitj3BB3DyYyYfFYk3GRgLvhNNTiQKrDcxPR6mkfzyUuzQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 22:05:04 GMT age: 15402 etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4199 Md5: 4fd5f7a9e04d27654062b3e18b8aecca Sha1: 07fafbd614cdb49f20bceea29d5e684725d3bdf6 Sha256: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4409 x-amzn-requestid: cb422842-e955-4749-8b2a-3c028a09c20f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz7XEE2IAMFY3A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd15-3c4d1a6d4d542e81179ea8ba;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:25 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: zYLCQ4DUQtMklG-T-ATot22PDIUMjnN1wpVkoHBh4Oa3TAyNzTv86g== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:49:45 GMT age: 16321 etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4409 Md5: b8802d5080eb35e4052ef31cf7658650 Sha1: 1e78566f2e69268c5f753fb49112ab07aae3eccf Sha256: 9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9459 x-amzn-requestid: 9e243a73-18ff-4abf-9b9c-442719960125 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cMpppFXjoAMFehg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6381bca3-47620f39181264772d2fb52d;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 07:13:40 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _v5hatZyEWVRB4Tebygbb-QfE02oaFxE8CRfQsUY7I_ektxE3YeIpw== via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 17:08:01 GMT age: 33225 etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9459 Md5: e1e6b6ba4f82221b41c3d9129008c76d Sha1: 2f9532d698b4c28df23e18bbb66399ec776d5b9f Sha256: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 16038 x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz80EHboAMFtmQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:52:00 GMT age: 16186 etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 16038 Md5: ffd12f9c423ffc627d9e3b3145944fe4 Sha1: 5cf9a7a784952e1bb0cbe499104f1774b1269d08 Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: fd9bc5cfa9db9999ceba780a3c801663ae3a9d115fc968f633800da2a680d49c 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6036 x-amzn-requestid: ad1d9f29-4a4b-4b5f-b29f-d2e5849b5c1e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbzMQGoSoAMFUnQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cbe7-40e8de13537ad17b3b28e1c1;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 7EqSYILMuuXaZkdkEPxROiSw3HU1zfjqpXDU4TqBGLdNSWyj4Ioezw== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:46:29 GMT age: 16517 etag: "4593bb86a0a61eccab43063cb3c0c797abea5b46" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6036 Md5: 83e8a8c500dbcb636ad4a57a10de8adf Sha1: 4593bb86a0a61eccab43063cb3c0c797abea5b46 Sha256: fd9bc5cfa9db9999ceba780a3c801663ae3a9d115fc968f633800da2a680d49c
GET /CircaKnee/en/assets/js/jquery-3.4.1.min6e74.js?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/jquery-3.4.1. (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: d43f300aa3d25a8f356e19496df590a60a2e23c09d4d768c40fc68a9ad1c96b6 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 23 Nov 2022 21:40:42 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 30047 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65451) Size: 30047 Md5: fb2fa79a9c7027aa0e9dd8b23a607d29 Sha1: 1f254951fbbbf3490feef1a8eb28d1cdb1c35258 Sha256: d43f300aa3d25a8f356e19496df590a60a2e23c09d4d768c40fc68a9ad1c96b6
GET /CircaKnee/en/assets/js/blazy.min6e74.js?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/blazy.min6e74 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 82c12bac3b3114555a894d18fc9edfc4a43c7ed4f27ca7910eb8262987172455 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 23 Nov 2022 21:40:42 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 1886 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (4991) Size: 1886 Md5: f40399ebe2ac5cde650cdf5db17c30cd Sha1: 91d3f734596f0ff6b5c22974383e3951d37f2590 Sha256: 82c12bac3b3114555a894d18fc9edfc4a43c7ed4f27ca7910eb8262987172455
GET /CircaKnee/en/assets/js/ctrwowUtils-v2.8.0.min6e74.js?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/ctrwowUtils-v (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 92be81bcc9b4b5b68cf117b63a574356264971dfa7c840d6ca2458e6b271c884 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:55:12 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 10384 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (33560), with no line terminators Size: 10384 Md5: 4b9a4a5a1e1d28077f04c2c3b06db555 Sha1: cf0f0ae0cf832594db799f1e1c957722336489d1 Sha256: 92be81bcc9b4b5b68cf117b63a574356264971dfa7c840d6ca2458e6b271c884
GET /CircaKnee/en/assets/css/pre-26e74.css?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/css/pre-26e74.cs (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: d1554226025b35f6b85b50cc06d2d71a5a79a8e089339abb73f5a278607656f7 198.54.120.24 HTTP/2 200 OK content-type: text/css cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:52:56 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 2516 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (11657), with no line terminators Size: 2516 Md5: 24cc83bdd23a331df6667201d6a71b72 Sha1: dea1710e61ba21d4594cde56a27ba40360ca35ca Sha256: d1554226025b35f6b85b50cc06d2d71a5a79a8e089339abb73f5a278607656f7
GET /CircaKnee/en/assets/js/CTR_FP_TRACKING-v2.4.0.min.js HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/CTR_FP_TRACKI (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: be7796ce98b751dd0a13bc877b36dc2422d418183cf87bdfaaa0611cf3379ea0 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:55:08 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 11715 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (41829), with no line terminators Size: 11715 Md5: 2aab61c530efbe9a55b3654c35a79991 Sha1: 6785a658e19dab0f5d26fc4bf01671be6218f608 Sha256: be7796ce98b751dd0a13bc877b36dc2422d418183cf87bdfaaa0611cf3379ea0
GET /CircaKnee/en/assets/js/CTR_FUNNEL_TRACKING-v2.1.0.min.js HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/CTR_FUNNEL_TR (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 12c92b133d72dfc75943193ea3a11c0935bf29107c8fce3c1a81fe26fa8b0204 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:55:08 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 2803 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (8769), with no line terminators Size: 2803 Md5: 0da622d59a1abbcc8212a4aeec7ccbce Sha1: 5b3bf5143acd6a48a65b91ad8fe5fac2c8218be6 Sha256: 12c92b133d72dfc75943193ea3a11c0935bf29107c8fce3c1a81fe26fa8b0204
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://thebestofferx.shop Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWb (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 28 Nov 2022 18:52:41 GMT expires: Tue, 28 Nov 2023 18:52:41 GMT cache-control: public, max-age=31536000 age: 199745 last-modified: Mon, 15 Aug 2022 18:20:18 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 01 Dec 2022 02:21:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
GET /CircaKnee/en/assets/js/ctr_heatmap_tracking-v1.3.0.min.js HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/ctr_heatmap_t (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: cb23968c87f56cf2fc9fd3dc9a3b849075fcba498b3aa774415464b961f80800 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:55:08 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 8998 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (30558), with no line terminators Size: 8998 Md5: 70d5674f23ef32827ddc52eed7b06e5b Sha1: fdd5582295e1736ed46af00afce11aaabfc51fa9 Sha256: cb23968c87f56cf2fc9fd3dc9a3b849075fcba498b3aa774415464b961f80800
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/6d866d3b-d097-46cb-a8d3-6b73e82a7f57/cheveron-right.png.webp HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 65af102de77fac2199b65839b036d0da0a5474c0408018d4410b56d924de4103 198.54.120.24 HTTP/2 200 OK content-type: image/webp cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Tue, 29 Nov 2022 16:56:42 GMT accept-ranges: bytes content-length: 333 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 50 x 50, 8-bit gray+alpha, non-interlaced\012- data Size: 333 Md5: 71d24d6575655520b394c0db8648976b Sha1: 09be0b1db09ad6be850ab633264812548f836b11 Sha256: 65af102de77fac2199b65839b036d0da0a5474c0408018d4410b56d924de4103
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/128d132d-8f38-447d-accd-3058b3f1b45b/right-arrow.png.webp HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 198.54.120.24 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /CircaKnee/en/assets/js/pre-26e74.js?v=1636346423309 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/js/pre-26e74.js? (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 551d67eedeb439219ec0daf94febed955321c13fea715bd557e5ae8cd2ebd818 198.54.120.24 HTTP/2 200 OK content-type: application/javascript cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:46 GMT last-modified: Wed, 22 Jun 2022 18:55:24 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 2282 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (6236) Size: 2282 Md5: 386315672a316f8a062ff55aed8151bf Sha1: 262df7d1944d8700eb0be094179281a8c2239be8 Sha256: 551d67eedeb439219ec0daf94febed955321c13fea715bd557e5ae8cd2ebd818
GET /static.addtoany.com/menu/page.js HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/static.addtoany.com/menu/page.js FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 198.54.120.24 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /d16hdrba6dusey.cloudfront.net/sitecommon/js/components/blueshift_wowbea6.js?v=7 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/d16hdrba6dusey.cloudfront.net/siteco (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 198.54.120.24 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /www.googletagmanager.com/gtm5445.html?id=GTM-5W4SPMQ HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/www.googletagmanager.com/gtm5445.htm (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 198.54.120.24 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Thu, 01 Dec 2022 02:21:46 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/432f7ce2-6e5c-4f34-ac0f-786fc11ba21a/screen-shot-2020-08-09-at-1.48.02-pm.webp?t=20211013T094601269 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 7f929c06acafeaa96311da4f68aba53c14cc101f86ec2476bb3896d900142f94 198.54.120.24 HTTP/2 200 OK content-type: image/webp cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:47 GMT last-modified: Tue, 29 Nov 2022 16:55:10 GMT accept-ranges: bytes content-length: 1180 date: Thu, 01 Dec 2022 02:21:47 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image, VP8 encoding, 95x71, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size: 1180 Md5: 048b4c7f8db778af4e6d23198c54815b Sha1: 9082bbb5f6a7a4330592ac5281d4b6e58be1513f Sha256: 7f929c06acafeaa96311da4f68aba53c14cc101f86ec2476bb3896d900142f94
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/288ca373-6481-4eb4-8ad9-fb173453e55d/founder_fr.webp?t=20211013T094359914 HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: cbf9cf54459923ff973c9fe632462757af0b99a40ac35d1c4ec00c1478204807 198.54.120.24 HTTP/2 200 OK content-type: image/webp cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:47 GMT last-modified: Tue, 29 Nov 2022 16:58:04 GMT accept-ranges: bytes content-length: 25290 date: Thu, 01 Dec 2022 02:21:47 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image, VP8 encoding, 711x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size: 25290 Md5: 1b88106f636979e8aee2bf9667bbf02a Sha1: 470d1f7179839ccce6c33126ddf04288311bd38c Sha256: cbf9cf54459923ff973c9fe632462757af0b99a40ac35d1c4ec00c1478204807
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/b2a07546-9070-4907-9673-6abef00a31ea/screen-shot-2019-08-20-at-8.42.18-pm.png.webp HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 3b5219c1a5775e1109a1c35f729ecf5a09ba5afdb0922fe3b6e9169682bb5d05 198.54.120.24 HTTP/2 200 OK content-type: image/webp cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:47 GMT last-modified: Tue, 29 Nov 2022 16:54:00 GMT accept-ranges: bytes content-length: 25721 date: Thu, 01 Dec 2022 02:21:47 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 301 x 136, 8-bit/color RGB, non-interlaced\012- data Size: 25721 Md5: 37cd006ef2fede03b339c73651b8863e Sha1: c5532561ae5678532cfdec4cbc35b7d8467a626f Sha256: 3b5219c1a5775e1109a1c35f729ecf5a09ba5afdb0922fe3b6e9169682bb5d05
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/aff48b26-0f14-4b28-b3c2-069a03b974b9/screen-shot-2017-11-27-at-9.53.08-pm.png.webp HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 45842031729f5e701ac1b252deac5c3c1278860227b7b174259b8bf4a4e39b82 198.54.120.24 HTTP/2 200 OK content-type: image/webp cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:47 GMT last-modified: Tue, 29 Nov 2022 16:54:34 GMT accept-ranges: bytes content-length: 4907 date: Thu, 01 Dec 2022 02:21:47 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 456 x 80, 8-bit colormap, non-interlaced\012- data Size: 4907 Md5: c0ca8299dd3fcb8216fbc6c5e396d874 Sha1: 3629707b727427c3bd383045bc68343ecae1f0e1 Sha256: 45842031729f5e701ac1b252deac5c3c1278860227b7b174259b8bf4a4e39b82
GET /www.googletagmanager.com/gtm5445.html?id=GTM-5F7JVCL HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/www.googletagmanager.com/gtm5445.htm (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 198.54.120.24 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Thu, 01 Dec 2022 02:21:47 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/61a8e210-6748-4c7c-b2a1-23ebffc86321/favicon-a5551bb1-a4db-4b5e-ab39-4afedf9403a7.png HTTP/1.1 Host: thebestofferx.shop User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: thebestofferx.shop/CircaKnee/en/assets/image/19822fef-8 (...) FQDN: thebestofferx.shop IP: 198.54.120.24 HASH: d4571ae92aa3e457bd64730f7bca11b74a0052faddd90e9c57560683ed538c11 198.54.120.24 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Thu, 08 Dec 2022 02:21:41 GMT last-modified: Wed, 23 Nov 2022 21:47:46 GMT accept-ranges: bytes content-length: 1048 date: Thu, 01 Dec 2022 02:21:41 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 128 x 127, 8-bit colormap, non-interlaced\012- data Size: 1048 Md5: 0f351fbdf834a0dfa6b09ee104664762 Sha1: 1d0f4329ee8bd6e0f4fd1e89ba7b6e7feb4c117b Sha256: d4571ae92aa3e457bd64730f7bca11b74a0052faddd90e9c57560683ed538c11
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 26869fde3e88f7e5dfee5484d1a53f21d5ce579cacf178ed8f598add6aeeeb93 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "26869FDE3E88F7E5DFEE5484D1A53F21D5CE579CACF178ED8F598ADD6AEEEB93" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8720 Expires: Thu, 01 Dec 2022 04:47:08 GMT Date: Thu, 01 Dec 2022 02:21:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 52406b1f7d42faeb7e9e6af646b25e78 Sha1: 48da24ccb568aafd34b79b8a050854a3f8d21e43 Sha256: 26869fde3e88f7e5dfee5484d1a53f21d5ce579cacf178ed8f598add6aeeeb93
GET / HTTP/1.1 Host: tls-use1.fpapi.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://thebestofferx.shop Connection: keep-alive Referer: https://thebestofferx.shop/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: tls-use1.fpapi.io/ FQDN: tls-use1.fpapi.io IP: 99.83.173.21 HASH: 6d9d8a297e9e258265f07b5938d1c6a82dc65f076c0d3e7f69c6967e8a6d897c 99.83.173.21 HTTP/2 200 OK content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: max-age=2592000, immutable, private strict-transport-security: max-age=63072000; includeSubDomains content-length: 204 date: Thu, 01 Dec 2022 02:21:48 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 204 Md5: 8e9a6abb0e2c9c8bf508e9612af9d417 Sha1: 74de20e5846c39e102434b4f99b709c71ee07d58 Sha256: 6d9d8a297e9e258265f07b5938d1c6a82dc65f076c0d3e7f69c6967e8a6d897c
GET /?trackingId=5f8ea23018087a1c5c16753a HTTP/1.1 Host: ctrwow-prod-analytics-socketserver.azurewebsites.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://thebestofferx.shop Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: i+AkROBMpXPojK3VCcWtyw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: ctrwow-prod-analytics-socketserver.azurewebsites.net/?t (...) FQDN: ctrwow-prod-analytics-socketserver.azurewebsites.net IP: 52.176.5.241 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.176.5.241 HTTP/1.1 101 Switching Protocols Connection: Upgrade Date: Thu, 01 Dec 2022 02:21:48 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=0e0d0dda1d1a51409d84a1bfe3626325f6b81768ece72a4a1375861a25b210bf;Path=/;HttpOnly;Secure;Domain=ctrwow-prod-analytics-socketserver.azurewebsites.net ARRAffinitySameSite=0e0d0dda1d1a51409d84a1bfe3626325f6b81768ece72a4a1375861a25b210bf;Path=/;HttpOnly;SameSite=None;Secure;Domain=ctrwow-prod-analytics-socketserver.azurewebsites.net Upgrade: websocket Sec-WebSocket-Accept: UI2fY2gd8fSX+BluiFwP3Q1VrMs= Origin: https://thebestofferx.shop X-Powered-By: ASP.NET --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.88 HASH: 6a60a6c07d77d533b1de70e77c010e413898851adee7db67ccc4ad105ed7f46c 143.204.42.88 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=95598 Date: Thu, 01 Dec 2022 02:21:50 GMT Etag: "6386d575-1d7" Expires: Fri, 02 Dec 2022 04:55:08 GMT Last-Modified: Wed, 30 Nov 2022 04:00:53 GMT Server: ECS (dcb/7ECB) X-Cache: Miss from cloudfront Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 7sgzuPY70yyJZlPyyZaw2n4xFcLZRSd0evxscOC4begGjIJL6u8qPQ== Age: 3255 --- Additional Info --- Magic: data Size: 471 Md5: 7f16908ae0ed5d3237b313abeed2604d Sha1: cd1dec698b98b172c64cefada5c43c65ab9698f5 Sha256: 6a60a6c07d77d533b1de70e77c010e413898851adee7db67ccc4ad105ed7f46c
POST /?ci=js/3.6.6 HTTP/1.1 Host: fp.ctrwow.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 2899 Origin: https://thebestofferx.shop Connection: keep-alive Referer: https://thebestofferx.shop/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fp.ctrwow.com/?ci=js/3.6.6 FQDN: fp.ctrwow.com IP: 75.2.62.78 HASH: 28dfba44cc7e4d123097eacc1b96c01f4ce05895d35d2e104ce6aff5f16f908e 75.2.62.78 HTTP/2 200 OK content-type: text/plain date: Thu, 01 Dec 2022 02:21:52 GMT content-length: 360 server: nginx access-control-allow-credentials: true access-control-allow-origin: https://thebestofferx.shop access-control-expose-headers: Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none' referrer-policy: no-referrer set-cookie: _iidt=e5cywLbrg2yGfTN1FhhJXhYf/XAskqVroCEz1+XepN4ew8GHefsoe9+slDM6UG/1UPhVb4Fy8VA5umOBLXy/yqCwp4v+WKo=; Path=/; Domain=ctrwow.com; Expires=Fri, 01 Dec 2023 02:21:52 GMT; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=63072000 vary: Origin x-content-type-options: nosniff x-frame-options: DENY X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 360 Md5: 6973cde1261945ec949535d7e61c6361 Sha1: e9405b7b6dc75a8633dfa25c2fa28d9b2e9a190c Sha256: 28dfba44cc7e4d123097eacc1b96c01f4ce05895d35d2e104ce6aff5f16f908e
GET /sitecommon/js/commons/ctrwow_analytics.v3.pro.min.js HTTP/1.1 Host: d16hdrba6dusey.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d16hdrba6dusey.cloudfront.net/sitecommon/js/commons/ctr (...) FQDN: d16hdrba6dusey.cloudfront.net IP: 54.230.245.118 54.230.245.118 HTTP/2 200 OK content-type: application/javascript date: Thu, 01 Dec 2022 02:21:48 GMT last-modified: Wed, 06 Jul 2022 00:01:01 GMT etag: W/"247a6fef6d4fc61c3e4fcc09c346e749" cache-control: no-store server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: CkVMGUztiTTR8k7aVluQmkjMM87QjUrhQZqcyeMR26_lrg62yukItQ== X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans:300,400,600,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://thebestofferx.shop/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:300,400,600,7 (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 Dec 2022 02:21:46 GMT date: Thu, 01 Dec 2022 02:21:46 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=13126 

                                        
                                            
Expires: Thu, 01 Dec 2022 06:00:30 GMT 

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a5daf4dc99951793ae2315d4795e8146

                                                Sha1:   4427507ca4d3a5632cc8f598afbc85e2195d00bd

                                                Sha256: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=16135 

                                        
                                            
Expires: Thu, 01 Dec 2022 06:50:39 GMT 

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    6d9d34c96b9a826ae5676640c966469c

                                                Sha1:   8052a16d41a637e420478b7de1ff5a2dc951fccd

                                                Sha256: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream

                                        

                                        
                                            
x-amz-id-2: ZFwmV0gNoLHxz3Yrx00gkqXQ/ECVjaYbj+KfPwTZrlVI40w9MZYg9klsXRpfLpnxhcuM4jXcE7/qORTy0y/49Q== 

                                        
                                            
x-amz-request-id: W0Z762V3P0ENQ3GD 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Thu, 01 Dec 2022 01:45:28 GMT 

                                        
                                            
age: 2176 

                                        
                                            
last-modified: Thu, 10 Nov 2022 09:21:27 GMT 

                                        
                                            
etag: "9ebddc2b260d081ebbefee47c037cb28" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    9ebddc2b260d081ebbefee47c037cb28

                                                Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39

                                                Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    8c7740729b3e689d0f033aae372325c2

                                                Sha1:   c6daa75cb90188534367ab0a3ef263a7f8b15ff8

                                                Sha256: 077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c

                                        
                                            GET /knee HTTP/1.1 

                                        
                                            
Host: uehsygsolgobgocuybkx9588719481.blogspot.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         142.250.74.161

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
cache-control: no-cache, no-store, max-age=0, must-revalidate 

                                        
                                            
pragma: no-cache 

                                        
                                            
expires: Mon, 01 Jan 1990 00:00:00 GMT 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:44 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 15007 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6565)

                                                Size:   15007

                                                Md5:    20e07c99ff199dba94e1f516e9652398

                                                Sha1:   c8cd809ae9e0026bef3389c176ed31e01c3eac42

                                                Sha256: 553b4ebee40f9318c46e36bb7f512e5f9b8d3898083eacdd333d42f76ab7e8a4

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 6582 

                                        
                                            
Cache-Control: max-age=117289 

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:44 GMT 

                                        
                                            
Etag: "63871d2b-1d7" 

                                        
                                            
Expires: Fri, 02 Dec 2022 10:56:33 GMT 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT 

                                        
                                            
Server: ECS (ska/F709) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    cfdd00e67ee6ca21712b867eb5288ab6

                                                Sha1:   b61d5d6ec3b7ad71619e13e32c87f2d01871b88a

                                                Sha256: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         172.64.155.188

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:45 GMT 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 15:52:28 GMT 

                                        
                                            
Expires: Wed, 07 Dec 2022 15:52:27 GMT 

                                        
                                            
Etag: "bc4454b74d2d30b86718c8a0baafa6b338051cfb" 

                                        
                                            
Cache-Control: max-age=566441,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb1 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 772859e52cc8b524-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    0a744f3961e89e64ec4ebc1e62312ef0

                                                Sha1:   bc4454b74d2d30b86718c8a0baafa6b338051cfb

                                                Sha256: ce3f67fbd8e950fb322c5648634413f0a2b3f4182d7b2fd6790abd47e4f79786

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         172.64.155.188

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
Content-Length: 472 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 02:50:25 GMT 

                                        
                                            
Expires: Wed, 07 Dec 2022 02:50:24 GMT 

                                        
                                            
Etag: "df35145717b5c0205d1c6a47d2c37989cb3130d6" 

                                        
                                            
Cache-Control: max-age=519517,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb4 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 772859ea4f03b524-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    99a150855c0357c53e3dc6dc85d7d6ba

                                                Sha1:   df35145717b5c0205d1c6a47d2c37989cb3130d6

                                                Sha256: 3bfe3f10d5245c22baced21d0e4a101bdddc5aa84b4aec12241973f143c29ff7

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    146dac10a93604a686550631e14eefb9

                                                Sha1:   b4af601ce6d515d9ec124938ce626060e0d43099

                                                Sha256: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87

                                        
                                            GET /css2?family=Open+Sans:wght@300;400;500;600;700;800&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.106

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1304

                                                Md5:    88be1ac9c893b7c9e8f07987239787d5

                                                Sha1:   588f4b319fa86f0cb486be46b3126e0b0a94316c

                                                Sha256: e4efb1567c38d6fec4c9fdbd0f20a9099546aedd7e68ee14e18d9a2073c54dad

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7772 

                                        
                                            
Expires: Thu, 01 Dec 2022 04:31:18 GMT 

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    ac3edd07bb0a4ebdaae6ec26e91d2079

                                                Sha1:   b6efe3811dfa37cdcde1e9d411c171732ac7e12a

                                                Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8740 

                                        
                                            
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cP7uyE9CoAMF6Xg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA== 

                                        
                                            
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 18:58:06 GMT 

                                        
                                            
age: 26620 

                                        
                                            
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8740

                                                Md5:    26d6dffbf400da4803a2e76e2a8ef2f8

                                                Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8

                                                Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4409 

                                        
                                            
x-amzn-requestid: cb422842-e955-4749-8b2a-3c028a09c20f 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cbz7XEE2IAMFY3A= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6387cd15-3c4d1a6d4d542e81179ea8ba;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:25 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: zYLCQ4DUQtMklG-T-ATot22PDIUMjnN1wpVkoHBh4Oa3TAyNzTv86g== 

                                        
                                            
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 21:49:45 GMT 

                                        
                                            
age: 16321 

                                        
                                            
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4409

                                                Md5:    b8802d5080eb35e4052ef31cf7658650

                                                Sha1:   1e78566f2e69268c5f753fb49112ab07aae3eccf

                                                Sha256: 9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 16038 

                                        
                                            
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cbz80EHboAMFtmQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg== 

                                        
                                            
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 21:52:00 GMT 

                                        
                                            
age: 16186 

                                        
                                            
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   16038

                                                Md5:    ffd12f9c423ffc627d9e3b3145944fe4

                                                Sha1:   5cf9a7a784952e1bb0cbe499104f1774b1269d08

                                                Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167

                                        
                                            GET /CircaKnee/en/assets/js/jquery-3.4.1.min6e74.js?v=1636346423309 HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:46 GMT 

                                        
                                            
last-modified: Wed, 23 Nov 2022 21:40:42 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-length: 30047 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65451)

                                                Size:   30047

                                                Md5:    fb2fa79a9c7027aa0e9dd8b23a607d29

                                                Sha1:   1f254951fbbbf3490feef1a8eb28d1cdb1c35258

                                                Sha256: d43f300aa3d25a8f356e19496df590a60a2e23c09d4d768c40fc68a9ad1c96b6

                                        
                                            GET /CircaKnee/en/assets/js/ctrwowUtils-v2.8.0.min6e74.js?v=1636346423309 HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:46 GMT 

                                        
                                            
last-modified: Wed, 22 Jun 2022 18:55:12 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-length: 10384 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (33560), with no line terminators

                                                Size:   10384

                                                Md5:    4b9a4a5a1e1d28077f04c2c3b06db555

                                                Sha1:   cf0f0ae0cf832594db799f1e1c957722336489d1

                                                Sha256: 92be81bcc9b4b5b68cf117b63a574356264971dfa7c840d6ca2458e6b271c884

                                        
                                            GET /CircaKnee/en/assets/js/CTR_FP_TRACKING-v2.4.0.min.js HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:46 GMT 

                                        
                                            
last-modified: Wed, 22 Jun 2022 18:55:08 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-length: 11715 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (41829), with no line terminators

                                                Size:   11715

                                                Md5:    2aab61c530efbe9a55b3654c35a79991

                                                Sha1:   6785a658e19dab0f5d26fc4bf01671be6218f608

                                                Sha256: be7796ce98b751dd0a13bc877b36dc2422d418183cf87bdfaaa0611cf3379ea0

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    608e4d04a251ebcd51660e801f388303

                                                Sha1:   fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d

                                                Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://thebestofferx.shop 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         216.58.207.227

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 44856 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Mon, 28 Nov 2022 18:52:41 GMT 

                                        
                                            
expires: Tue, 28 Nov 2023 18:52:41 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 199745 

                                        
                                            
last-modified: Mon, 15 Aug 2022 18:20:18 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data

                                                Size:   44856

                                                Md5:    565ce506190ad3af920b40baf1794cec

                                                Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d

                                                Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

                                        
                                            GET /CircaKnee/en/assets/js/ctr_heatmap_tracking-v1.3.0.min.js HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:46 GMT 

                                        
                                            
last-modified: Wed, 22 Jun 2022 18:55:08 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-length: 8998 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (30558), with no line terminators

                                                Size:   8998

                                                Md5:    70d5674f23ef32827ddc52eed7b06e5b

                                                Sha1:   fdd5582295e1736ed46af00afce11aaabfc51fa9

                                                Sha256: cb23968c87f56cf2fc9fd3dc9a3b849075fcba498b3aa774415464b961f80800

                                        
                                            GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/128d132d-8f38-447d-accd-3058b3f1b45b/right-arrow.png.webp HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 1238 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1238

                                                Md5:    0bde7d4b3da67537eaf9188e6f8049cf

                                                Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a

                                                Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

                                        
                                            GET /static.addtoany.com/menu/page.js HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 1238 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1238

                                                Md5:    0bde7d4b3da67537eaf9188e6f8049cf

                                                Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a

                                                Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

                                        
                                            GET /www.googletagmanager.com/gtm5445.html?id=GTM-5W4SPMQ HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 1238 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:46 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1238

                                                Md5:    0bde7d4b3da67537eaf9188e6f8049cf

                                                Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a

                                                Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

                                        
                                            GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/288ca373-6481-4eb4-8ad9-fb173453e55d/founder_fr.webp?t=20211013T094359914 HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:47 GMT 

                                        
                                            
last-modified: Tue, 29 Nov 2022 16:58:04 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 25290 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:47 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 711x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data

                                                Size:   25290

                                                Md5:    1b88106f636979e8aee2bf9667bbf02a

                                                Sha1:   470d1f7179839ccce6c33126ddf04288311bd38c

                                                Sha256: cbf9cf54459923ff973c9fe632462757af0b99a40ac35d1c4ec00c1478204807

                                        
                                            GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/aff48b26-0f14-4b28-b3c2-069a03b974b9/screen-shot-2017-11-27-at-9.53.08-pm.png.webp HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/webp

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:47 GMT 

                                        
                                            
last-modified: Tue, 29 Nov 2022 16:54:34 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 4907 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:47 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 456 x 80, 8-bit colormap, non-interlaced\012- data

                                                Size:   4907

                                                Md5:    c0ca8299dd3fcb8216fbc6c5e396d874

                                                Sha1:   3629707b727427c3bd383045bc68343ecae1f0e1

                                                Sha256: 45842031729f5e701ac1b252deac5c3c1278860227b7b174259b8bf4a4e39b82

                                        
                                            GET /CircaKnee/en/assets/image/19822fef-80c0-4e76-ac06-1c9140d937d2/5f8ea23018087a1c5c16753a/61a8e210-6748-4c7c-b2a1-23ebffc86321/favicon-a5551bb1-a4db-4b5e-ab39-4afedf9403a7.png HTTP/1.1 

                                        
                                            
Host: thebestofferx.shop

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/CircaKnee/en/pre-2.html 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         198.54.120.24

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Thu, 08 Dec 2022 02:21:41 GMT 

                                        
                                            
last-modified: Wed, 23 Nov 2022 21:47:46 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 1048 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:41 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 128 x 127, 8-bit colormap, non-interlaced\012- data

                                                Size:   1048

                                                Md5:    0f351fbdf834a0dfa6b09ee104664762

                                                Sha1:   1d0f4329ee8bd6e0f4fd1e89ba7b6e7feb4c117b

                                                Sha256: d4571ae92aa3e457bd64730f7bca11b74a0052faddd90e9c57560683ed538c11

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: tls-use1.fpapi.io

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://thebestofferx.shop 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         99.83.173.21

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: max-age=2592000, immutable, private 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubDomains 

                                        
                                            
content-length: 204 

                                        
                                            
date: Thu, 01 Dec 2022 02:21:48 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   204

                                                Md5:    8e9a6abb0e2c9c8bf508e9612af9d417

                                                Sha1:   74de20e5846c39e102434b4f99b709c71ee07d58

                                                Sha256: 6d9d8a297e9e258265f07b5938d1c6a82dc65f076c0d3e7f69c6967e8a6d897c

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         143.204.42.88

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=95598 

                                        
                                            
Date: Thu, 01 Dec 2022 02:21:50 GMT 

                                        
                                            
Etag: "6386d575-1d7" 

                                        
                                            
Expires: Fri, 02 Dec 2022 04:55:08 GMT 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 04:00:53 GMT 

                                        
                                            
Server: ECS (dcb/7ECB) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: 7sgzuPY70yyJZlPyyZaw2n4xFcLZRSd0evxscOC4begGjIJL6u8qPQ== 

                                        
                                            
Age: 3255 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    7f16908ae0ed5d3237b313abeed2604d

                                                Sha1:   cd1dec698b98b172c64cefada5c43c65ab9698f5

                                                Sha256: 6a60a6c07d77d533b1de70e77c010e413898851adee7db67ccc4ad105ed7f46c

                                        
                                            GET /sitecommon/js/commons/ctrwow_analytics.v3.pro.min.js HTTP/1.1 

                                        
                                            
Host: d16hdrba6dusey.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://thebestofferx.shop/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         54.230.245.118

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Thu, 01 Dec 2022 02:21:48 GMT 

                                        
                                            
last-modified: Wed, 06 Jul 2022 00:01:01 GMT 

                                        
                                            
etag: W/"247a6fef6d4fc61c3e4fcc09c346e749" 

                                        
                                            
cache-control: no-store 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-encoding: gzip 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: CkVMGUztiTTR8k7aVluQmkjMM87QjUrhQZqcyeMR26_lrg62yukItQ== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	uehsygsolgobgocuybkx9588719481.blogspot.com/knee
IP	142.250.74.161 (United States)
ASN	#15169 GOOGLE
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-12-01 02:21:55 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	2
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (19)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Last 5 reports on ASN: GOOGLE

Last 1 reports on domain: uehsygsolgobgocuybkx9588719481.blogspot.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (60)

Overview

Domain Summary (19)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161

Last 5 reports on ASN: GOOGLE

Last 1 reports on domain: uehsygsolgobgocuybkx9588719481.blogspot.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (60)

Network Intrusion Detection Systems