Domain release.merch.co
United States
AMAZON-02
Software information
CloudFront
tcp/443 tcp/80
-
Open service 65.9.86.47:80 · release.merch.co
2026-01-10 05:36
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 05:36:26 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 e029c86e892e2d8a35492f6625a1d26e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: AMS1-C1 X-Amz-Cf-Id: rNWO3YKu3OGUgzEJn37wFpH16RmoG_gNYS7myfq79ihv7BT3fZatEQ== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:3800:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 66a008dd3c1b49635fc036a68872758c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: rFnKBcm2NWxMHB3kDy_zAjKyLFamiyM1wuDnBe6vNNlZ5ez8MW7QyQ== Age: 67517 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.4:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 09b934fc5a2991212bdc3b299a0a1cb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: nfLz_7DadLwKHbvtd7OUKGi24PYJ1gRRg8EgFO7-txm9w2iKUE54XQ== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:4800:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 d34e2629ef96cca4a5e6c92c061c82b4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: xjmjvWNtk0aERpA6P97sC8EsRlJHgiPynhO97QT55G64Wq5dT6lCqg== Age: 67517 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:2a00:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 82fdc4c167a56caabe3a8a99b02abee4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: rMLcm7fSere3jPOoeeZET4RY3RKiVv_yTSrN7-fEbM4yElKZcbZizQ== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:9400:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 67393fa6b3a865c1a8252acac0aa5cbc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: fSrlF54qU8gln4rCsnYIQ6FrC8tF1xXbbkuWMJOxBoX32zeF-7GDlg== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.111:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:47 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 e33c4b19512a86c5972c18d1c60d21f8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: OXSFgow7qAhUv_eguV5DVAaMjcIWw11NatQWd8BE0ktzPhJg24hANA== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:2a00:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 e5f838cca0e0de4bbf3520e7a4d3ae3e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: WP-5Ez8gKPhuvvo4H7ppYrgl_RvatfMK3RRyBlJi9lzJHhTNUelpEA== Age: 67517 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:e000:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 73b81cd9bd041c21d2fd170c0f53e030.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: pcROMbBSVyL6G_zcmUqTM_Nh9lHZTN1xcfSvJD-bisOsSbtERk349A== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:4800:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 3fbcd51d3039c17ef404823aaeb1f66c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: XBpRVIj8UCva3OlxxcAGnLnBojetWZo3gT4C2z--FrNcgkUCEfGvng== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:9400:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 82fdc4c167a56caabe3a8a99b02abee4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: ZjN-iIMLIj6X3SwECDqNAAf3010GEaJ2QIbx_Qhwa2QGrI-98ZLnIQ== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:3800:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 09dddedbac44fa07d4af5f638358fa8a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: 7NHT-aBziHD6ggxtj1_Jmk9SubYQqBwu_AhNKkvoLvmQeUqhC0VUCw== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.15:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 73b81cd9bd041c21d2fd170c0f53e030.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: wJ5sr3WM-dTbSr78PJJin0BLP-eg8cNaI3Pa6Rw_UuHArhEb3GwOjg== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:6e00:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 349eb6985da057f318665aa6bde74732.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: f4cbnXPblJ8OEJ1ByvePf_C2K8VvPc9HqwK4TsqS3a9aV-dq_86LRg== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.75:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 ac1ae217387c42a8268a34d5a89f4b46.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: lh67rrwTl28gXdSH0odnLegaRAb4HATi6lp_uBje3TGSf_VEtfQQ-A== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:6e00:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 349eb6985da057f318665aa6bde74732.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: ztNWdVJn-W4coRLsXQ5KeZWkjUd2G1f5LaJXbOI9Q2E2zi3fO8SF2Q== Age: 67517 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:8c00:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 73b81cd9bd041c21d2fd170c0f53e030.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: vLxNSJAoE7afwXlIpNP2kmIwMpCmjfD_0AWlstDp996GVzkUzZfQbQ== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.75:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 f52fb277cecd3d7de14d996c1f683de2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: R8pxTB3PsGZbgeApYb4vEcyUPR5uQ730ZxiITnKJwyrehIm74ZvW_w== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:5000:1c:a56d:61c0:93a1:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 66a008dd3c1b49635fc036a68872758c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: 1nN9R4dpieCuUPIGjMv_7eHk-YjNKk-wG2VMoSGY7p0Miv6WwO_Cqg== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.4:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 91220e34cbdd95f669dbfd83e711fee6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: zmWDBdMfOJozdKQtBZ61twvBdBZ3UxzHo12TSSf9NMsVaihxw6T5VQ== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:e000:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 c7e33a86531bfe239a9c43428fc5c122.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: jPk4eWk7JthzXKZepJAdtjIttBrx2c2f_jJm1APEzmDmLv6o7fIQow== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:8c00:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 e5f838cca0e0de4bbf3520e7a4d3ae3e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: lN3xhyKP1KUXrNXwrFI_EIUQFD4KeDYN2qE_oM_EkwoUF_Jo0Cm86g== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:5000:1c:a56d:61c0:93a1:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 46e871af86c897cd369d8d20c90166ec.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: I0Aqb9cud7ckwPgizA_ETdzqz5XEAy0D7HgrgHNvOYTA7XpXnmWdMQ== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.111:443 · release.merch.co
2026-01-10 00:27
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Fri, 09 Jan 2026 05:42:30 GMT Last-Modified: Thu, 08 Jan 2026 22:33:22 GMT ETag: "322c12604dee81699b2503b0d5a77a34" x-amz-server-side-encryption: AES256 x-amz-version-id: z8z9WD0dZ4ylLJqQoXRIV6.4Mwwsc17o Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 7f6fdb9a0ec439bac9ac6cc0db13237e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: fC29BeU6U3jsMX-LBjpPcJsWZrc5RGemsVeAqhYHYkXtdfGgv5e64g== Age: 67516 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-SINBANIM.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-SINBANIM.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-ZFMTNWKJ.js" type="module"></script></body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 108.138.36.15:80 · release.merch.co
2026-01-10 00:27
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Sat, 10 Jan 2026 00:27:46 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 91220e34cbdd95f669dbfd83e711fee6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: -eC15Noh-6sayj7c5wzs2vW2Y7tCCsjO_mU8K7q_Y06qpu4iTl4lhg== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com *.up.railway.app; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2026-01-10 by HttpPluginCreate report
-
Open service 2600:9000:237d:8c00:1c:a56d:61c0:93a1:443 · release.merch.co
2025-12-30 11:59
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Tue, 30 Dec 2025 09:09:51 GMT Last-Modified: Tue, 23 Dec 2025 19:50:01 GMT ETag: "0148aab093bb9ea38e8d4a125dc51578" x-amz-server-side-encryption: AES256 x-amz-version-id: DNst53JOTvYivlpi.f_Psq1o4GzyigIs Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 a79cccd642ddc0038c3b0c4a9e7fcd6c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: Luu3wDpaj8tQQ6mwwyGIzfXWqQwdk6GohZ6LgPXQiPsbV_DT_sz-3Q== Age: 10181 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-XUOTHOJY.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-XUOTHOJY.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-22VRAQUI.js" type="module"></script></body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 2600:9000:237d:8c00:1c:a56d:61c0:93a1:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:31 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 3fbcd51d3039c17ef404823aaeb1f66c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: Sugh6dHT8WIvK9ptCL7nXs1jZQ32qZ5yTIq5kRwCyYnqDGfrl5GMUA== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 2600:9000:237d:2400:1c:a56d:61c0:93a1:443 · release.merch.co
2025-12-30 11:59
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Tue, 30 Dec 2025 09:09:51 GMT Last-Modified: Tue, 23 Dec 2025 19:50:01 GMT ETag: "0148aab093bb9ea38e8d4a125dc51578" x-amz-server-side-encryption: AES256 x-amz-version-id: DNst53JOTvYivlpi.f_Psq1o4GzyigIs Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 46e871af86c897cd369d8d20c90166ec.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: gfGr1qEGiIMf4_oyPvaV5LoxNaY42vZ3DInU52AD57A3BN3tVXa_uw== Age: 10181 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-XUOTHOJY.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-XUOTHOJY.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-22VRAQUI.js" type="module"></script></body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 108.138.36.4:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:30 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 a1d3f4e4f5c5940d2f1eea05f736c3ee.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: f0eaw8kEberDsqt-vHh74gyJpRtLUGlrLm_Q3cFgYxK8pEM8d_SG7A== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 2600:9000:237d:2c00:1c:a56d:61c0:93a1:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:30 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 09b934fc5a2991212bdc3b299a0a1cb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: 9gajGCKheo7AGZXYxXHrI7-8I5yTntKYf4Sec6vMwj6jvOE5ZUmVog== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 2600:9000:237d:b600:1c:a56d:61c0:93a1:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:30 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 ac1ae217387c42a8268a34d5a89f4b46.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: 9LKCMO_1p_q2LwLNLhpzCwWt-pfOqGlwM7aN8NX93Ct25JkoAoEtQQ== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 108.138.36.111:443 · release.merch.co
2025-12-30 11:59
HTTP/1.1 200 OK Server: CloudFront Content-Type: text/html Content-Length: 3324 Connection: close Date: Tue, 30 Dec 2025 09:09:51 GMT Last-Modified: Tue, 23 Dec 2025 19:50:01 GMT ETag: "0148aab093bb9ea38e8d4a125dc51578" x-amz-server-side-encryption: AES256 x-amz-version-id: DNst53JOTvYivlpi.f_Psq1o4GzyigIs Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 826a64379fff05f157845c418fee53d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: L0otKdgRGuY0gh8H3J3irFtAG_hcmM27_HHE2LdZGQWzs9q1iaLpDg== Age: 10180 X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Vary: Origin Page title: Commerce <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Commerce</title> <base href="/"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="cache-control" content="no-cache, no-store, must-revalidate"> <meta http-equiv="expires" content="0"> <meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"> <meta http-equiv="Pragma" content="no-cache"> <link id="appFavicon" rel="icon"> <link href="https://api.merch.co" rel="preconnect"> <link href="assets/fonts/inter/inter.css" rel="stylesheet"> <link href="assets/styles/splash-screen.css" rel="stylesheet"> <style>:root{--mat-divider-width: 1px;--mat-divider-color: #e2e8f0;--mdc-icon-button-state-layer-size: 40px}*,:before,:after{--tw-border-spacing-x: 0;--tw-border-spacing-y: 0;--tw-translate-x: 0;--tw-translate-y: 0;--tw-rotate: 0;--tw-skew-x: 0;--tw-skew-y: 0;--tw-scale-x: 1;--tw-scale-y: 1;--tw-pan-x: ;--tw-pan-y: ;--tw-pinch-zoom: ;--tw-scroll-snap-strictness: proximity;--tw-gradient-from-position: ;--tw-gradient-via-position: ;--tw-gradient-to-position: ;--tw-ordinal: ;--tw-slashed-zero: ;--tw-numeric-figure: ;--tw-numeric-spacing: ;--tw-numeric-fraction: ;--tw-ring-inset: ;--tw-ring-offset-width: 0px;--tw-ring-offset-color: #fff;--tw-ring-color: rgb(59 130 246 / .5);--tw-ring-offset-shadow: 0 0 #0000;--tw-ring-shadow: 0 0 #0000;--tw-shadow: 0 0 #0000;--tw-shadow-colored: 0 0 #0000;--tw-blur: ;--tw-brightness: ;--tw-contrast: ;--tw-grayscale: ;--tw-hue-rotate: ;--tw-invert: ;--tw-saturate: ;--tw-sepia: ;--tw-drop-shadow: ;--tw-backdrop-blur: ;--tw-backdrop-brightness: ;--tw-backdrop-contrast: ;--tw-backdrop-grayscale: ;--tw-backdrop-hue-rotate: ;--tw-backdrop-invert: ;--tw-backdrop-opacity: ;--tw-backdrop-saturate: ;--tw-backdrop-sepia: ;--tw-contain-size: ;--tw-contain-layout: ;--tw-contain-paint: ;--tw-contain-style: }*,:before,:after{box-sizing:border-box;border-width:0;border-style:solid;border-color:#e5e7eb}:before,:after{--tw-content: ""}html{line-height:1.5;-webkit-text-size-adjust:100%;-moz-tab-size:4;tab-size:4;font-family:ui-sans-serif,system-ui,sans-serif,"Apple Color Emoji","Segoe UI Emoji",Segoe UI Symbol,"Noto Color Emoji";font-feature-settings:normal;font-variation-settings:normal;-webkit-tap-highlight-color:transparent}body{margin:0;line-height:inherit} </style><link rel="stylesheet" href="styles-XUOTHOJY.css" media="print" onload="this.media='all'"><noscript><link rel="stylesheet" href="styles-XUOTHOJY.css"></noscript></head> <body> <!-- Splash screen --> <splash-screen> <div class="spinner"> <div class="bounce1"></div> <div class="bounce2"></div> <div class="bounce3"></div> </div> </splash-screen> <merch-root></merch-root> <!-- Start of merchhelp Zendesk Widget script --> <script async="true" id="ze-snippet" src="https://static.zdassets.com/ekr/snippet.js?key=0819307f-c5ad-4f29-9b93-e2fb93a0b97d"></script> <!-- End of merchhelp Zendesk Widget script --> <script src="polyfills-EONH2QZO.js" type="module"></script><script src="main-22VRAQUI.js" type="module"></script></body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 108.138.36.75:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:30 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 75964e4626dd702b8dac2690031df25a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: ih_SxcJJSKDychtXdyuUqa2lUQG4bv7d69kwALMW94ao1tL7J8u98Q== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 2600:9000:237d:c000:1c:a56d:61c0:93a1:80 · release.merch.co
2025-12-30 11:59
HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Tue, 30 Dec 2025 11:59:30 GMT Content-Type: text/html Content-Length: 167 Connection: close Location: https://release.merch.co/ X-Cache: Redirect from cloudfront Via: 1.1 66a008dd3c1b49635fc036a68872758c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P2 X-Amz-Cf-Id: oRHd8cP26NGb8GsqGekfBEUrxCK49D2G1O-e1h5ga21bx7UxRRajBw== X-XSS-Protection: 1; mode=block Referrer-Policy: no-referrer Content-Security-Policy: default-src 'self' 'unsafe-inline' ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com; connect-src 'self' blob: ws: wss: data: merch-assets-production.s3.amazonaws.com *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com *.algolianet.com *.algolia.net *.openreplay.com; style-src 'self' *.merch.co twemoji.maxcdn.com *.stripe.com *.zdassets.com *.zendesk.com fonts.googleapis.com 'unsafe-inline'; font-src 'self' *.hotjar.com fonts.gstatic.com *.zdassets.com *.stripe.com *.zendesk.com; img-src 'self' blob: data: https: *.zdassets.com *.zendesk.com *.stripe.com; frame-ancestors 'self' *.printful.com *.merch.co *.activisionblizzard.com; worker-src 'self' blob: *.printful.com; script-src 'self' 'unsafe-inline' ws: wss: *.hotjar.io *.hotjar.com *.printful.com *.sentry.io *.stripe.com *.merch.co *.zdassets.com *.zendesk.com twemoji.maxcdn.com blob: *.algolianet.com *.algolia.net *.openreplay.com X-Content-Type-Options: nosniff Vary: Origin Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>CloudFront</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
*.merch.co
CN:
*.merch.co
Not before:
2025-08-12 00:00
Not after:
2026-09-10 23:59
Domain summary
IP summary
65.9.86.47 1 2600:9000:237d:3800:1c:a56d:61c0:93a1 1 108.138.36.4 1 2600:9000:237d:4800:1c:a56d:61c0:93a1 1 2600:9000:237d:2a00:1c:a56d:61c0:93a1 1 2600:9000:237d:9400:1c:a56d:61c0:93a1 1 108.138.36.111 1 2600:9000:237d:e000:1c:a56d:61c0:93a1 1 108.138.36.15 1 2600:9000:237d:6e00:1c:a56d:61c0:93a1 1 108.138.36.75 1 2600:9000:237d:8c00:1c:a56d:61c0:93a1 1 2600:9000:237d:5000:1c:a56d:61c0:93a1 1 2600:9000:237d:2400:1c:a56d:61c0:93a1 1 2600:9000:237d:2c00:1c:a56d:61c0:93a1 1 2600:9000:237d:b600:1c:a56d:61c0:93a1 1 2600:9000:237d:c000:1c:a56d:61c0:93a1 1