r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2213
Expires: Wed, 30 Nov 2022 02:59:57 GMT
Date: Wed, 30 Nov 2022 02:23:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5064
Expires: Wed, 30 Nov 2022 03:47:28 GMT
Date: Wed, 30 Nov 2022 02:23:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 199
Cache-Control: max-age=115885
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:04 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 10:34:29 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r2AjXLQKnunmzP/5f85AtGGfftyy7LVZPjNasZ+F0Gi3WJZYglVrpFookd54Xtz5u3Djhb7RQQU=
x-amz-request-id: 5Z3F3XYT9K7KYWE4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 01:45:41 GMT
age: 2243
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 02:19:39 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 205
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:23:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
herbaleveryday.com/~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
103.53.42.49302 Found 290 B URL HTTP/1.1 herbaleveryday.com/~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e6c3192857bc59f60aa0a9c7fa729e6a
dad997a84f3b850c8b9a116917c2dc9e20a61817
87d1d6e0c5417bedbc2a9f4b19e825ce6eb3b698cf57399acc7973e95f6f5d1a
Analyzer Verdict Alert fortinet Phishing
GET /~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html HTTP/1.1
Host: herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 02:22:51 GMT
Server: nginx/1.17.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 290
Location: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
X-Server-Cache: true
X-Proxy-Cache: HIT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 02:08:56 GMT
cache-control: public,max-age=3600
age: 849
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 200
Cache-Control: max-age=110823
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:05 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:10:08 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.88.220.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.220.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N29l7EC8tzWBewGNKXOIiw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: em3aDiZ6TQ7lWd+6nh01eNDu9Vs=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611dd5a7afa24956c476a175f86722ca
6fee87162b54e186c332b95dbbcf6d07be8ae447
8b911d2fcf2c2c4c9de2024efd93159522055407c8de35127fcdf17f7135aef7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B911D2FCF2C2C4C9DE2024EFD93159522055407C8DE35127FCDF17F7135AEF7"
Last-Modified: Wed, 30 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 08:23:06 GMT
Date: Wed, 30 Nov 2022 02:23:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17592
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 02:23:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17592
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 02:23:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17592
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 02:23:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Bh6VQ3BLEXcZKHFyJxHVGQWVQm-w2s0786t8SQOcHQUaNvSFc1rg-A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:51 GMT
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
age: 16215
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17592
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 02:23:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 16415
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4f88ec5-5875-45d1-bcd3-d997040d6d42.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4f88ec5-5875-45d1-bcd3-d997040d6d42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ceb8e975fb408de32c43f55febaa6414
453067f6ab356aa87a3ad3b56e33545376597852
e0ecbb6052b4fef75f58da8dae589c81ab9ec9d304de08f26c144a2c3ce9eaac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4f88ec5-5875-45d1-bcd3-d997040d6d42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3719
x-amzn-requestid: 6fab3454-fedd-4a1e-ae47-468ddd6233bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaGQ4IAMFUkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-4b313cf054d6301e71cdc0c1;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: phw8DXQgjOyH5g4gvbqgZk-2sHr2n9cHVr4lqqPXfXtyhG32gs2pIg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:45 GMT
age: 16221
etag: "453067f6ab356aa87a3ad3b56e33545376597852"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acb1e555533322dbfeb8e0d8c956c43d
e1eec39299f081b53c647953b57da4f2f1ba10bc
579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5492
x-amzn-requestid: 4b09d9a8-09fa-40e5-a996-8a6ad9f8283e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgE9E5TIAMF6ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1f-2f17467d7a6318796d01fd2e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:11 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6QhRECWKI2TAlt2bgVuKlQPCeyzkes1_5i5kJ4FQYD591KBADY9qVg==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:45 GMT
age: 16221
etag: "e1eec39299f081b53c647953b57da4f2f1ba10bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 15260
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vOFoi7vW7NluI5wQB03BGh9efp_jvCoH1sUh4s1ubG_JAC6KcDkHxg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:15:52 GMT
age: 14834
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i
142.250.74.106200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i
IP 142.250.74.106:0
Hash 54d371e32fdcbad3ca69ab0325009bf2
f70e6c77466f70c7d7638202150d8e5dd20b82d9
73013172c31d260d0d5d0548269f57cbd5fcaf0f83efbbd0ac311fd8871a1f73
GET /css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 02:23:07 GMT
date: Wed, 30 Nov 2022 02:23:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/ocquickview/ocquickview.js
103.53.42.49200 OK 599 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/ocquickview/ocquickview.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with CRLF line terminators
Hash bc8d30a076a487c59d4aa9e6832d2e01
c6458e69a60708acf01caaf3db454f4ae6d616ea
2075b38b5096126cb28c39730c73e61ddb6965c6d57b7b53c8e5b61c1c371ac6
GET /catalog/view/javascript/opentheme/ocquickview/ocquickview.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 599
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/elevatezoom/jquery.elevatezoom.js
103.53.42.49200 OK 15 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/elevatezoom/jquery.elevatezoom.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (390), with CRLF line terminators
Hash 43d8c95d74b443db3a3a4387743b96b4
01b2e4ae416e29526b77c21cb3f15b726930b64f
0690a569152ada41f30f994199192bec15ddaef838a319b82cab420d84d7cb47
GET /catalog/view/javascript/jquery/elevatezoom/jquery.elevatezoom.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15038
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/ocquickview/css/ocquickview.css
103.53.42.49200 OK 869 B URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/ocquickview/css/ocquickview.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 9b9514ee8d8fb58a6071fc24adbe882b
749e15999b939cf06599252a84f9b036039a590c
4cc6a1c087d6004e7141f39db39b1ad8072935e5185a81b76bd5eb8311431c78
GET /catalog/view/theme/tt_organica1/stylesheet/opentheme/ocquickview/css/ocquickview.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 869
content-type: text/css
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/css/owl.theme.green.min.css
103.53.42.49200 OK 434 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/css/owl.theme.green.min.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (845)
Hash 4e6c5d704caa382429003523d255ffa7
e3c9566cd15e45a0693462dfc05b94614fb551ce
1faaca2c3261d7f93d8f1e48a678f11bfda4b27b4d5aa48addbe9aa06d498c25
GET /catalog/view/javascript/jquery/owl-carousel/css/owl.theme.green.min.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 434
content-type: text/css
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/css/owl.carousel.min.css
103.53.42.49200 OK 975 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/css/owl.carousel.min.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2850)
Hash 86b4c2e9da4c590b9f0a3cbe3c68a12c
23811bdb69c076aafc2eadcc4abe513d1fe0c517
5efa7c2999c678be8dfc42858eb4ffc247f1e0ff8cfd0de491a9da626fb8483c
GET /catalog/view/javascript/jquery/owl-carousel/css/owl.carousel.min.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 975
content-type: text/css
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/bootstrap/js/bootstrap.min.js
103.53.42.49200 OK 14 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/bootstrap/js/bootstrap.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash 7abfb8daefad44de617da5f9c6378f7a
b672103e84f7e553b68fa59557011afde5628cf3
af09bf7c30601ce42496f839d4630e825ce99187525cde21704ddfb977c8754b
GET /catalog/view/javascript/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14307
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/js/owl.carousel.min.js
103.53.42.49200 OK 15 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/owl-carousel/js/owl.carousel.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32000)
Hash f3be1764bc1ce2c0562ba864362b834b
5b5d080b0b33dc04bcb52e7cb766ff5e814fcdc9
72c97e2253c5617d7a9f872a8cdca78389d604739d67334aa32acfeaef396559
GET /catalog/view/javascript/jquery/owl-carousel/js/owl.carousel.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15325
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/default/stylesheet/bundle/bundle.css
103.53.42.49200 OK 383 B URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/default/stylesheet/bundle/bundle.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 4ea100c20b531c7d86003dd53b5eb285
67d6bcbbfbe30b4755ac3f1e0e26fd4bad58f4de
c0a6dc6ac437e33da077ac777a7f5232ced28176910c2492c6314959bd19a879
GET /catalog/view/theme/default/stylesheet/bundle/bundle.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 383
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/hozmegamenu/custommenu.js
103.53.42.49200 OK 974 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/hozmegamenu/custommenu.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 84302271973b39b7e7d8cfdececeaf0a
6afe20ae8f04a16010ebda38b8b2b7bd41af1e49
c4cb360d7eb9929cdcbe29ac0b07ef3d5f4db8596c99946f5605fe3f87813766
GET /catalog/view/javascript/opentheme/hozmegamenu/custommenu.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 974
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/language/en-gb/en-gb.png
103.53.42.49200 OK 699 B URL HTTP/2 www.herbaleveryday.com/catalog/language/en-gb/en-gb.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 8f359705b906b7b1502f6a9fad7736e2
8d468951fbac1f7e805ba7c88eb0c20d51f48838
f8504243946d8ec17ac6773da7802de2afb2a27cebbeaf05ece6da5e008df200
GET /catalog/language/en-gb/en-gb.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:29 GMT
accept-ranges: bytes
content-length: 699
content-type: image/png
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/hozmegamenu/mobile_menu.js
103.53.42.49200 OK 643 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/hozmegamenu/mobile_menu.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with CRLF line terminators
Hash 17988b2c1b77cea0f7c82344bee55d49
5d2911460cfb6f8daec358d6ac67b628f0b953bf
888f4f6b4327ffce9afa0556542518f96da90144266f013b15b4856ed382c8b3
GET /catalog/view/javascript/opentheme/hozmegamenu/mobile_menu.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 643
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/countdown/jquery.plugin.min.js
103.53.42.49200 OK 1.6 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/countdown/jquery.plugin.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2373), with CRLF line terminators
Hash 7befd70f70bfdfc9a587718bfb41a67d
6dc049572415982831d5d8daeaab8d0a8211b8b7
b12e52e93bbb8bc2ee2adeb11173c8610ca5908c7d9c4d0dee245f10bb69ac4e
GET /catalog/view/javascript/opentheme/countdown/jquery.plugin.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1596
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/stylesheet.css
103.53.42.49200 OK 3.3 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/stylesheet.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type troff or preprocessor input, ASCII text, with very long lines (529)
Hash 83fa35028e0dda2ecb19e521bf063ce9
3cc6a1475a169bfa27ae35a42e99ea498b057be9
ebd44fc8fe607016790fe35fc9b210a637edb5cb76f015ca738e9a778d035a29
GET /catalog/view/theme/tt_organica1/stylesheet/stylesheet.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3327
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/wow.min.js
103.53.42.49200 OK 3.1 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/wow.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8152)
Hash 31dacf31ed006b7da37aa2b1d96eddb3
d35a488b87b0fc2818227c33f5f6e19b7f8922d9
d113301fa593b94adc1bdc3b38eab228b67186580fb2c42caeadd105b60bb98e
GET /catalog/view/javascript/wow.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3131
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/ocslideshow/ocslideshow.css
103.53.42.49200 OK 4.9 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/ocslideshow/ocslideshow.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash ed916684047fffa0a747e40054b789cd
afb5c8d09c3a3c9320661ea18876a831fb40bd06
647207bfe52c668331aad20fb5fbb1951b70af77c828b312a6e8e99f003bcef0
GET /catalog/view/theme/tt_organica1/stylesheet/opentheme/ocslideshow/ocslideshow.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4944
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css
103.53.42.49404 Not Found 358 B URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Mon, 05 Jul 2021 12:36:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/html
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/hozmegamenu/css/custommenu.css
103.53.42.49200 OK 2.4 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/hozmegamenu/css/custommenu.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c91a3e41065d570ed4c08a9716e77de2
fce638a1e9ee5d7e66bd0b8f2791f63d66b6b219
d35a3e9526cf0098fdafbc4ef84f93c1ba090f5946833f7ede3f1f5f24efeaf5
GET /catalog/view/theme/tt_organica1/stylesheet/opentheme/hozmegamenu/css/custommenu.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2420
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/cookie.js
103.53.42.49200 OK 710 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/cookie.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 15797958e9bfdc5b062864c31c8afd40
638957c7484bef9ed11fb9eeda481ebd3aa793b6
f3bd14954b4bb867db5cc2bf6b6a81183ac64bf3864c9e5edba3fe3d2194217d
GET /catalog/view/javascript/jquery/cookie.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 30 Oct 2019 06:58:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 710
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/font-awesome/css/font-awesome.min.css
103.53.42.49200 OK 6.1 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/font-awesome/css/font-awesome.min.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (26548)
Hash 33d78c0c97f29197ffdb56fa832c2bb7
2df3a04483047e500c8e6c7d265321e9e3e505cf
c85751bd7809193fb47b86979667b6ea846bcdd6c5250ada89741f3f94971982
GET /catalog/view/javascript/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6084
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/css/animate.css
103.53.42.49200 OK 7.8 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/opentheme/css/animate.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash d422caf72ad5cd1e9b6d2a5edcde9eff
4a8977273ff92e2bf55fd4bbaf45fa0ad32e2d32
a1a9d2a50a1a50e47f779598c1ba134e66ffe324e3a8c65a0e189bdd16499540
GET /catalog/view/theme/tt_organica1/stylesheet/opentheme/css/animate.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7789
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/theme.css
103.53.42.49200 OK 17 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/theme.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (378)
Hash 2d1b8a8d8863ec22ecfd094f802be903
525a0a044d5aeb4c678abf4f12b092ec53468a95
867893b2e0f2c4b4b41f41d6fe0a34220eb61f1e5715fdb21d38d271850f5df0
GET /catalog/view/theme/tt_organica1/stylesheet/theme.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16618
content-type: text/css
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lobster+Two:400,400i,700,700i
142.250.74.106200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Lobster+Two:400,400i,700,700i
IP 142.250.74.106:0
Hash ba550354dfaf450d081432c2509dbaa0
82db2740fbdc53a630c5fac6ce40bf5b2ec65e5a
a7990d0ca965140499bb724508544d1ddc5048b22803e980f1a64df0338ff0ea
GET /css?family=Lobster+Two:400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 02:23:07 GMT
date: Wed, 30 Nov 2022 02:23:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-4.png
103.53.42.49200 OK 1.3 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-4.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 66 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 014ba2e6f645c48b47a09b45d1623430
cdfad6f1118aa14053e739de0625c5317d098640
3d1fadb5b01847e7ccaf89a55fbcb2a0f30cc756e45c86c73a8c4a6528405a75
GET /catalog/view/theme/tt_organica1/image/stars-4.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
content-length: 1251
content-type: image/png
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-3.png
103.53.42.49200 OK 1.3 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-3.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 66 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash ceabdab23392cdb5c1cb4d2f7ce9dab1
e833c7fc920b020ddfabb354dcebe5904087a959
395f7423dc986794345155a54db944fd218356ceb7550488a2695f2a3275cb1c
GET /catalog/view/theme/tt_organica1/image/stars-3.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
content-length: 1314
content-type: image/png
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-0.png
103.53.42.49200 OK 1.4 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/stars-0.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 66 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 051b65f55c96b356b7f3c45706316dda
6782aea5abcf2ecf7cf2c52074903b2195c9570f
62b9c386bb294e4cd06c1c2e1633807399588a5052f9e85c5f390f824c6cae51
GET /catalog/view/theme/tt_organica1/image/stars-0.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
content-length: 1411
content-type: image/png
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
103.53.42.49200 OK 30 kB URL HTTP/2 www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash f6e6ddd474f872266909749a6501119b
0c9d99b42252149c04add90679c2e0808e3db6fe
f1bd81f14cb90ba0b1dba3b7291080824d6159cc72fa5b49bbedf923cda708c0
GET /index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:23:06 GMT
server: Apache
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: MISS
set-cookie: OCSESSID=60f87f480531b965357e418d63; path=/
OCSESSID=8586e0169d5c7bf45a21d788ef; path=/
language=en-gb; expires=Fri, 30-Dec-2022 02:23:07 GMT; Max-Age=2592000; path=/; domain=www.herbaleveryday.com
currency=GBP; expires=Fri, 30-Dec-2022 02:23:07 GMT; Max-Age=2592000; path=/; domain=www.herbaleveryday.com
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/countdown/jquery.countdown.min.js
103.53.42.49200 OK 5.2 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/countdown/jquery.countdown.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (13345)
Hash 7b146c565717db050f4bb858c83382c5
76629a1d2757f478a002b4eb6e8c0c9e730bf9a0
8f7e8378986f601aec7468e3a672b22d0463fc72c51815d7a8302f09da69ef29
GET /catalog/view/javascript/opentheme/countdown/jquery.countdown.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5200
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/common.js
103.53.42.49200 OK 6.2 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/common.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 53de8680376c2f9f823677ec2846d611
50e95da1c01b80a1eaaf8fb5caa43d0991546cf2
0da8057e74f36154928d02a21b2494f8926967f6286f5f3d80271b7e431a85e0
GET /catalog/view/javascript/common.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6175
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/opentheme/ocslideshow/jquery.nivo.slider.js
103.53.42.49200 OK 7.5 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/opentheme/ocslideshow/jquery.nivo.slider.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (386), with CRLF line terminators
Hash c60d03156f8bbf9416be85d55052863a
ecd519e4f5eade5ee6362462cc4d053d59f13c9c
4cab9771938cb92c845339ceb7f2f97cef6a8a9bdc198a565532e74c1c86bde2
GET /catalog/view/javascript/opentheme/ocslideshow/jquery.nivo.slider.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7533
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/image/catalog/logo/Herbal%20logo%20Jpeg.jpg
103.53.42.49200 OK 197 kB URL HTTP/2 www.herbaleveryday.com/image/catalog/logo/Herbal%20logo%20Jpeg.jpg
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1673x492, components 3\012- data
Size 197 kB (197402 bytes)
Hash 89eea4c736564a9dbd324fdfe596f0d0
ad5c1a44c1b0f12c747a433fb924123ce8b540a2
ad510f4be594f3cf7d1c3362db6407f738c4bc35a88f17872c98fd59b59295c3
GET /image/catalog/logo/Herbal%20logo%20Jpeg.jpg HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:31 GMT
accept-ranges: bytes
content-length: 197402
content-type: image/jpeg
date: Wed, 30 Nov 2022 02:23:08 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.herbaleveryday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:15 GMT
expires: Thu, 23 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 542934
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.herbaleveryday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:33:54 GMT
expires: Thu, 23 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 542955
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.herbaleveryday.com/catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css
103.53.42.49404 Not Found 358 B URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /catalog/view/theme/default/stylesheet/opentheme/ocpagebuilder.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Mon, 05 Jul 2021 12:36:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/html
date: Wed, 30 Nov 2022 02:23:09 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.herbaleveryday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:33:56 GMT
expires: Thu, 23 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 542953
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lobstertwo/v18/BngMUXZGTXPUvIoyV6yN5-fN5qU.woff2
216.58.207.227200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/lobstertwo/v18/BngMUXZGTXPUvIoyV6yN5-fN5qU.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47200, version 1.0\012- data
Hash 758008732bb87d3c4b860ba954ff8d8a
b0868d968d916de3234c00b89e78d92c6a8539d8
b8451fa56f1594500f223c0a0cd21330ffc888bfa61d64d69dbc4a2463a6c1eb
GET /s/lobstertwo/v18/BngMUXZGTXPUvIoyV6yN5-fN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.herbaleveryday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47200
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:12:27 GMT
expires: Wed, 29 Nov 2023 19:12:27 GMT
cache-control: public, max-age=31536000
age: 25842
last-modified: Tue, 26 Apr 2022 15:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/top_cart.png
103.53.42.49200 OK 1.5 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/top_cart.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 797bc57bc3b4e583077ef71021bf96a3
7ea698a25be0558c274ee9f975517486d064416c
daa5ffe4f74ae9c8a0858bb1871f9e7ad359ced0b6171f97d7f9c5368c4b9e2f
GET /catalog/view/theme/tt_organica1/image/top_cart.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/theme.css
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
content-length: 1546
content-type: image/png
date: Wed, 30 Nov 2022 02:23:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/favicon.ico
103.53.42.49404 Not Found 358 B URL HTTP/2 www.herbaleveryday.com/favicon.ico
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /favicon.ico HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Wed, 30 Nov 2022 02:23:09 GMT
server: Apache
content-type: text/html
content-length: 358
last-modified: Mon, 05 Jul 2021 12:36:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/back-top.png
103.53.42.49200 OK 3.1 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/theme/tt_organica1/image/back-top.png
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 54 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ee627a0ec67070956054b6e62677c5c
b8743cf836b7e20ed5ed7950be00dc83b376470e
8956fa5c7888f506596d30d20b2dad917e5de0659903ec01ee5f2196361bb88e
GET /catalog/view/theme/tt_organica1/image/back-top.png HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/catalog/view/theme/tt_organica1/stylesheet/theme.css
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:27 GMT
accept-ranges: bytes
content-length: 3110
content-type: image/png
date: Wed, 30 Nov 2022 02:23:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0
103.53.42.49200 OK 64 kB URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /catalog/view/javascript/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.herbaleveryday.com/catalog/view/javascript/font-awesome/css/font-awesome.min.css
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
content-length: 64464
content-type: font/woff2
date: Wed, 30 Nov 2022 02:23:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/index.php?route=product/ocquickview/appendcontainer
103.53.42.49200 OK 476 B URL HTTP/2 www.herbaleveryday.com/index.php?route=product/ocquickview/appendcontainer
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (483)
Hash 31d54d52bc84c868cbacd274358c8443
b9f2b18d1fc8f435493192f30fec74dd92539d9c
c6505b9a2ec83c3f12298c9739bc92d62e0a5447c9f12d6e6f38210c5ac28672
GET /index.php?route=product/ocquickview/appendcontainer HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:23:10 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 476
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: false
set-cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; path=/
OCSESSID=8586e0169d5c7bf45a21d788ef; path=/
X-Firefox-Spdy: h2
www.herbaleveryday.com/image/catalog/logo/favicon%20jpeg.jpg
103.53.42.49200 OK 640 B URL HTTP/2 www.herbaleveryday.com/image/catalog/logo/favicon%20jpeg.jpg
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 16x16, components 3\012- data
Hash 66c3f421cc2a8be574913458f1470f16
7aea9722773fc90efd5408734ce054694aa63223
f52e270b6257a560c9044e2b72bdd23fa2f9c36295fd36bea5a637b5e220bbbb
GET /image/catalog/logo/favicon%20jpeg.jpg HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:31 GMT
accept-ranges: bytes
content-length: 640
content-type: image/jpeg
date: Wed, 30 Nov 2022 02:23:10 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/image/catalog/AjaxLoader.gif
103.53.42.49200 OK 1.0 kB URL HTTP/2 www.herbaleveryday.com/image/catalog/AjaxLoader.gif
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type GIF image data, version 89a, 30 x 30\012- data
Hash e2e99570cb9d820e2a485392ddaa785b
ee72c81f368e4a44c087887fa221f113ce07f627
b51d4eae8bc4e1e5f63c2ee75899060791c8a6160dcfc1a65d54587fe688612a
GET /image/catalog/AjaxLoader.gif HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:31 GMT
accept-ranges: bytes
content-length: 1041
content-type: image/gif
date: Wed, 30 Nov 2022 02:23:10 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/bootstrap/css/bootstrap.min.css
103.53.42.49200 OK 0 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/bootstrap/css/bootstrap.min.css
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /catalog/view/javascript/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/jquery-ui.min.js
103.53.42.49200 OK 0 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/jquery-ui.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /catalog/view/javascript/jquery/jquery-ui.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.herbaleveryday.com/catalog/view/javascript/jquery/jquery-2.1.1.min.js
103.53.42.49200 OK 0 B URL HTTP/2 www.herbaleveryday.com/catalog/view/javascript/jquery/jquery-2.1.1.min.js
IP 103.53.42.49:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /catalog/view/javascript/jquery/jquery-2.1.1.min.js HTTP/1.1
Host: www.herbaleveryday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.herbaleveryday.com/index.php?_route_=~dimcart/eosoz.com/wp-content/plugins/ubh/zen/totall.html
Cookie: OCSESSID=8586e0169d5c7bf45a21d788ef; language=en-gb; currency=GBP
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Oct 2019 14:01:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 30 Nov 2022 02:23:07 GMT
server: Apache
X-Firefox-Spdy: h2