r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2200
Expires: Sat, 04 Feb 2023 00:18:18 GMT
Date: Fri, 03 Feb 2023 23:41:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4037
Expires: Sat, 04 Feb 2023 00:48:55 GMT
Date: Fri, 03 Feb 2023 23:41:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7527
Expires: Sat, 04 Feb 2023 01:47:05 GMT
Date: Fri, 03 Feb 2023 23:41:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 22:43:35 GMT
content-type: application/json
age: 3483
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cpeOLWagBRDV3cuVkQaAtkEy6vPwkS4n8uZNtJtjTH+XkRyANU/b70PnUqFF4Ec/sntjgIBPGCQ=
x-amz-request-id: KDGNR4R100H6CMJ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 23:23:46 GMT
age: 1072
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 23:41:38 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 22:49:06 GMT
age: 3152
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2489
Expires: Sat, 04 Feb 2023 00:23:07 GMT
Date: Fri, 03 Feb 2023 23:41:38 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3nb8i2/gYx9YFKsy7pn8BQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tcpwkn+ODSuChVZdUr1RZodlcuE=
topmailsender.info/index.php/campaigns/dz3701yvqmcb6/track-url/er668e3l4rd71/e3373d640187b039ed5fdb3685a287033bc5e16a
301 Moved Permanently 0 B URL HTTP/1.1 topmailsender.info/index.php/campaigns/dz3701yvqmcb6/track-url/er668e3l4rd71/e3373d640187b039ed5fdb3685a287033bc5e16a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /index.php/campaigns/dz3701yvqmcb6/track-url/er668e3l4rd71/e3373d640187b039ed5fdb3685a287033bc5e16a HTTP/1.1
Host: topmailsender.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 23:41:37 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.6.37
X-XSS-Protection: 1; mode=block
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 03 Feb 2023 23:41:39 GMT
Location: http://tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6845
Expires: Sat, 04 Feb 2023 01:35:45 GMT
Date: Fri, 03 Feb 2023 23:41:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 54c06759-6fab-455c-be34-496ee42a2580
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZLQEqroAMFyWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d57b-2237358a5cc22b8003af1852;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:08:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oc3NhvAmcrO3msFYF2ITsEpq8a2wsOLkXtmZxRQpmse84yml0l9PNA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:46:57 GMT
age: 6883
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg
200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77e225775154732b55c206faa6fce355
126bdaa18d9a1650b5e3a4e883d89188e8bbf136
af7fb0e6cfe7082af183bd2ba5ef43ab3ef3f9e6df2761ed4534bd48aa078798
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3868
x-amzn-requestid: f130379c-2ea2-43d6-a1b0-e3afd4811bc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEwLFYgIAMFzwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd819a-3d0199ab38a410ff7a78a675;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:50:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QrCYar2bxFJ_7bBH-5oJ4qdaS58NXDwNJxLI7ILxrBkzvzGV95PSFw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
etag: "126bdaa18d9a1650b5e3a4e883d89188e8bbf136"
content-type: image/jpeg
age: 4264
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45c6a062f8637e689819f505b019dc0e
61665688f1039c4fad848853a68e28d057718ad1
c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 5720
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 5468
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: slDJVVNZDwjopU0kXbAvAJw4A0I_hGKXbRf9O15sXxmvu0JXe8yuPA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:17:59 GMT
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
age: 5021
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 4264
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
302 Found 2.2 kB URL HTTP/1.1 tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (999)
Hash 0992397c122b3fb0109c1451340d1436
9396dae396d23762dd5d681393878d9f2b8897ae
2b144c7d175f99f6792c56a4193ae62bb8d93ce4cac2177f5dcc24af31ac9415
GET /click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D HTTP/1.1
Host: tracking.walnutadops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 23:41:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.10.3 (Ubuntu)
Set-Cookie: ohbid=ba030e89-b8b1-4a1f-a06d-7654319640ea; expires=Wed, 03-May-2023 00:00:00 GMT; Max-Age=7604299; path=/
ohb_visitor=41b97d28-771e-3e12-8aa7-0d7484b7ca02; expires=Wed, 03-May-2023 00:00:00 GMT; Max-Age=7604299; path=/
oh_ssn_343=13944e40b36c13a6f8d724ce374ca2a7; expires=Fri, 03-Mar-2023 00:00:00 GMT; Max-Age=2333899; path=/; SameSite=Lax
Cache-Control: no-cache, private
Location: https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
302 Found 98 B URL HTTP/2 trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D
IP
File type HTML document, ASCII text
Hash 209b5545236887fc823e0e30b41de9e7
96b057d0f080da42fdb6a63d8700a8edbb03a021
4e2492b10b0a0b2ea7fdb79c7b9e53e48468cb34a72b6dd98bb72f9212fcd184
GET /ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DMWm2_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjVTDlhM-2FH2UOlXuxiQVOxSmRkFXgHBYwlmebbyuAqzMaSqobgA-2Fh6-2FyF60nbu96x2MKECN-2BufFMXy9lh2mH8kMoN0EPBRRxxRH2Hv4S6IPQPGil608s5mHnIk9GzZKGG-2FH278IpQxlrkba2GrxmXgQrUusmoEspflPQ-2BwtAbsBjbtJ8YL-2FYSnYl-2FCzPX4-2BDfIg-3D HTTP/1.1
Host: trk.klclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 98
location: https://themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
server: nginx
date: Fri, 03 Feb 2023 23:41:41 GMT
x-robots-tag: noindex, nofollow
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D14y7Ljz4fDum0w-G26k6StNl6t5IFJTUonxBi-BcQsrIGy8TJLKFQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7041531690d37e3b447a81e65ae5c93a
435d6c6c70d0540e5175e46efa8c885b176ff464
7fc6b4e0847c7fd60b54c5d44246fdb5040b222567c0457c6460dbcaccad2097
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7FC6B4E0847C7FD60B54C5D44246FDB5040B222567C0457C6460DBCACCAD2097"
Last-Modified: Fri, 03 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Sat, 04 Feb 2023 05:41:37 GMT
Date: Fri, 03 Feb 2023 23:41:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7041531690d37e3b447a81e65ae5c93a
435d6c6c70d0540e5175e46efa8c885b176ff464
7fc6b4e0847c7fd60b54c5d44246fdb5040b222567c0457c6460dbcaccad2097
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7FC6B4E0847C7FD60B54C5D44246FDB5040B222567C0457C6460DBCACCAD2097"
Last-Modified: Fri, 03 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Sat, 04 Feb 2023 05:41:37 GMT
Date: Fri, 03 Feb 2023 23:41:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 105f5d42e728ae3b1790ec73786c47d0
32fffa1e521fbe11245e76257aa365d5971633bc
ecae862ea87b317a6b402b7cb24b095b026e5c86c24558632b55381b834f759c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECAE862EA87B317A6B402B7CB24B095B026E5C86C24558632B55381B834F759C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sat, 04 Feb 2023 00:34:02 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 105f5d42e728ae3b1790ec73786c47d0
32fffa1e521fbe11245e76257aa365d5971633bc
ecae862ea87b317a6b402b7cb24b095b026e5c86c24558632b55381b834f759c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECAE862EA87B317A6B402B7CB24B095B026E5C86C24558632B55381B834F759C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sat, 04 Feb 2023 00:34:02 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
200 OK 7.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 3d2f76b468a88446ef68ab7477d88e33
cd03ffbb9e2c1362ba2833722478e29b01d87390
b30170163adc986811433c083d4e192cf3e9b1b11ac8d3f0b022b7a3e075bd65
GET /s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 7572
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png>; rel="canonical"
source-length: 18592
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 8afc2b2b-f414-4946-8419-1062acc9ce1c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 20:55:34 GMT
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42Ve54FXiiBl7pvLplNiJWhZnbQaj7j2dEnSuQtPJUBvJJnyvdNIl9H%2BlRd322HHC4kfKfl%2BDBn4PmQNHV%2FrVTWOjXFcC39Qt549Il5Ew5PKf25l79O%2BomaMhzYIBhAVKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=865.851, imageryFetch;dur=54.812, imageryProcess;dur=810.298;desc="image", cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 793f04d28d8cb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 105f5d42e728ae3b1790ec73786c47d0
32fffa1e521fbe11245e76257aa365d5971633bc
ecae862ea87b317a6b402b7cb24b095b026e5c86c24558632b55381b834f759c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECAE862EA87B317A6B402B7CB24B095B026E5C86C24558632B55381B834F759C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sat, 04 Feb 2023 00:34:02 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/soldout.png?v=12033488525615444041675284193
200 OK 1.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/soldout.png?v=12033488525615444041675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash e3866c634dcfce8343d8414235fda7d4
a4c47a6eb42875aa7294d79cf7faf1e95fd57294
219bcdb1d6549bfe3c60b563904793b5b536276ae462f33b3b9ba705cddf8562
GET /s/files/1/0607/8349/3354/t/24/assets/soldout.png?v=12033488525615444041675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/webp
content-length: 1596
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/soldout.png>; rel="canonical"
source-length: 3057
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: ed501bcc-1827-4493-a726-f6f309dc9ceb
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UlK%2B135RqMD5czuOBxJYTxwCrEKX4%2F0oKJMWEwuhMRpsZ3nG%2FbU7mFWb5QN3gIy4A6OSWniYc9uPQHR02gsTB3gXJaaVgkPNCmIArXrNAufDiCMQntyQC%2Bwx7BgsZJNpOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=118.202, imageryFetch;dur=37.626, imageryProcess;dur=78.340;desc="image", cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 793f04d2bdb5b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 105f5d42e728ae3b1790ec73786c47d0
32fffa1e521fbe11245e76257aa365d5971633bc
ecae862ea87b317a6b402b7cb24b095b026e5c86c24558632b55381b834f759c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECAE862EA87B317A6B402B7CB24B095B026E5C86C24558632B55381B834F759C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sat, 04 Feb 2023 00:34:02 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271
200 OK 65 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash e35380d9083965b22533ae4f9f5f2109
1c6a8d3a001509b763858b4af413e0e7cdf5a22a
6f2bcb415eaf5d7487ab2d95e7f6117da7a21ab2cfe7825b45035799f8e0101b
GET /s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9aaa5486-6757-421b-aed4-4171d77d3815
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 21:04:51 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLnVwYNUNc9Sz3O11R1FPw%2Ff5mXD0ZGMyETZrjyOey9LSgZu5kzt0%2FgrSs0FVwgAk3BCuM9zeUOkcGIWHgioWjktJH8YiVrcC%2BzWA%2B%2Fu8FZqBQpzZL0UhkQRLhyG8Yr8gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=139.320, imageryFetch;dur=94.381, cfRequestDuration;dur=82.999945
server: cloudflare
cf-ray: 793f04d28d86b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
422 Unprocessable Entity 429 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0bb27693d403d213058623a5c0258d0f
6ce2180d7693321878d47573e2a732c7b8a44850
1f77c1f73fda1402eef42ef1fb156c2992ee49211ad5120ced8ae602d54378a4
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:42 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675467702.236042,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 105f5d42e728ae3b1790ec73786c47d0
32fffa1e521fbe11245e76257aa365d5971633bc
ecae862ea87b317a6b402b7cb24b095b026e5c86c24558632b55381b834f759c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECAE862EA87B317A6B402B7CB24B095B026E5C86C24558632B55381B834F759C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3140
Expires: Sat, 04 Feb 2023 00:34:02 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash dcca277e579ea0b6e23eac892c0db099
2311d9e533d1af6f3ef6c966c0b190833c4ad2b3
b73668b7c2a9d7a51fc633e8ca3c52dea49ea4f674a461c17c1bd57d6d874391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Last-Modified: Fri, 03 Feb 2023 22:23:00 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.typekit.net/eck1mer.css
200 OK 858 B URL HTTP/2 use.typekit.net/eck1mer.css
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 747e4980da3a0a36331c3771df1ad644
73da7e3fa4c7e486771405b16cfcbd434999bc81
ccad877caa1c5b5ddcf6f853cec9e09dca933ad6d55d9f8344f6317ca8fc28e3
GET /eck1mer.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 858
date: Fri, 03 Feb 2023 23:41:42 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
IP
File type ASCII text, with very long lines (29702)
Hash 16f1522ca7c6b62074ae257412594e81
7d539dcdc3abf622786c68fa21c1f280e82a2bf2
dfad8514b8ed1b2534ed12c1dfb857fbec815627e49fcdc4701993daf48f1922
GET /gtag/js?id=G-2NNX47L0B6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 23:41:42 GMT
expires: Fri, 03 Feb 2023 23:41:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80694
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_e6ead7b6-dd6c-4df2-a79d-55287162eb54_300x.png?v=1669914402
200 OK 15 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_e6ead7b6-dd6c-4df2-a79d-55287162eb54_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 7c5a033153287689d782c3d3c7ba083f
2a2525e72100bd40600a35c98146195d4dbb0a56
7380c6aec2051c9c3f9d9e7b0427aaa68931823c4f73d38f4b6f3d768194e5e6
GET /s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_e6ead7b6-dd6c-4df2-a79d-55287162eb54_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 14608
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_e6ead7b6-dd6c-4df2-a79d-55287162eb54_300x.png>; rel="canonical"
source-length: 916153
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7d3e9a20-f24d-477c-93df-817280b960a1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Thu, 26 Jan 2023 13:28:49 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pVqveNqpX7%2FBpYfp%2FjZyhKt4redP%2BzqncBYXqu5vPATcQ2GWkfigs7O60qXLWmaVJ%2BHd7%2BcC0bn3BuGX99Q8b5YVyz8CFseR6LVlBHREhjcnF7lFjxfYbs9J%2BtjxUSNCfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=607.353, imageryFetch;dur=94.522, imageryProcess;dur=511.328;desc="image", cfRequestDuration;dur=126.000166
server: cloudflare
cf-ray: 793f04d28d8db523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Front_O_New_1_300x.png?v=1669914402
200 OK 7.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Front_O_New_1_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 37ca65b17330120b186af84a963f3cdb
95f7121cf19a208a6fd0f30be31c25cc4a74f6fb
57bbaf24c94138f304adf134bfb777dbb690ae1f4aac3ce39644cbfe25c4b505
GET /s/files/1/0607/8349/3354/products/FS_Gummies_30_Front_O_New_1_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 7485
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Front_O_New_1_300x.png>; rel="canonical"
source-length: 588497
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 1fa8176b-a020-4941-87fb-fbb455702c50
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 18:28:36 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kwea72iApM7hlg2%2Bza0XV4S1tdCd9S8lIu6iZ4JUraXN2jGPzd9FjCyoJQvWnP0WrDLOdi1neyRL7%2BBzMZItWWSsXh4j%2FYE29bCCPSkoqV7e5UXV0bHk0Tg6h%2FLXjIo9Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=620.091, imageryFetch;dur=147.451, imageryProcess;dur=471.616;desc="image", cfRequestDuration;dur=129.999876
server: cloudflare
cf-ray: 793f04d28d8fb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Back_New_300x.png?v=1669914402
200 OK 7.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Back_New_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 92e79d944f49f626d4703b4c58850450
95c9cf0055087b3f1d89c055a6904fa2f64ce866
9cf3227f5b94f18ea75b6e75476d51cb46ee942749d770d6b05d841ffcc4b17e
GET /s/files/1/0607/8349/3354/products/FS_Gummies_30_Back_New_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 7008
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_30_Back_New_300x.png>; rel="canonical"
source-length: 558568
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7ae8a074-0137-480e-b4ff-6834d9dcfe1f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 06 Jan 2023 00:13:52 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6XTHto7Ile13j7SNXNqZgDVfDKOAXFEbxajSBc5EVa3odjaW7SEDLT4w1ic9wIuw5eGmHy2p7lJzshHVzPYhYbcn54YOEDqrgZLNPGcqJFqzap3VFSaCnhKfTOtBQd2J6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=536.426, imageryFetch;dur=106.735, imageryProcess;dur=428.617;desc="image", cfRequestDuration;dur=129.999876
server: cloudflare
cf-ray: 793f04d29d90b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 3.2 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10292), with no line terminators
Hash af8e471957e02f58c41d60762bb31255
6de6bb5be5942196c866bec5cc70403c4353184d
0c1af50d6cfc957f65c7b36fbc1ce23d9ed95fab094653c9a9fcb15a5f6dd1a3
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b8ef5e2d-30f9-41f6-acc1-644eb84f9126
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 04 Jan 2023 20:17:32 GMT
cf-cache-status: HIT
age: 160383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xwr0NKH5tZqCoYE6q7%2FTH3UoldsVsUhWhgt8YkslCqSjDMVEyaSmVY8LVzZObfLE%2FJrxHJ5G7B%2F%2BLTzogaRgpdlIV0K4O26ZkjYBDOmyb20xewNuUbiCeOdVVfltTAHtOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.130, imageryFetch;dur=21.936, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 793f04d309d9b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_Rollover_300x.jpg?v=1669914402
200 OK 17 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_Rollover_300x.jpg?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 73f12a585c2a6dae0abc84972e3d36a0
34abc846add927dfc12afa03a11129488feaa582
6802dff720d17100127981f8eb7f1a5500c0393e2956bdf9a3e7ac2b9497b0b6
GET /s/files/1/0607/8349/3354/products/FS_Gummies_Rollover_300x.jpg?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 17179
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_Rollover_300x.jpg>; rel="canonical"
source-length: 172504
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: cb84f0d1-9908-4594-98c2-e24ba24fb8e9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 03 Feb 2023 22:57:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ncT1%2Fo9dnerIztvvD7hwM25MiYaHuxECFdi7ehZ9kUEacz3xTbHE6vk21sp3as1quIU9Aw4gdyvPVDiFzU5HNLBilKt45y6xxkd%2FEDcHb3mCAYKL0kVqzBlAaWJdZoz6Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1070.963, imageryFetch;dur=101.637, imageryProcess;dur=966.784;desc="image", cfRequestDuration;dur=129.999876
server: cloudflare
cf-ray: 793f04d29d99b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Back_300x.png?v=1669914402
200 OK 8.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Back_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash efd8aba1351a450cdd4dc4f779547d74
19d0e46665bd3027f65785a94ef052d0b083121c
d10e92bee72bdeb99b173805e6d0aaa2c3c7bd15492ef8ca0274469944b45d7d
GET /s/files/1/0607/8349/3354/products/FS_Gummies_60_Back_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 8177
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Back_300x.png>; rel="canonical"
source-length: 772129
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5045c8be-b1cf-4d70-862d-cb2e62a6d284
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 01 Dec 2022 17:40:25 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NEpZb%2FtxcaBAw3m0Qnl2VqGhMDv4yZqVUeuak5L9vXHrqpu1xvT%2FxUZL3B1eDrgpje2MqJD8sYvzraCpwtiouo0cAOzWrRSONqiKnIW3pvDmp6%2FknLZbaSU7Yg1eaLBl9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=648.302, imageryFetch;dur=91.547, imageryProcess;dur=555.950;desc="image", cfRequestDuration;dur=132.999897
server: cloudflare
cf-ray: 793f04d29d93b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Front_O_1a5fe8de-8ac1-4fb9-b3db-973775cf2141_300x.png?v=1669914402
200 OK 8.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Front_O_1a5fe8de-8ac1-4fb9-b3db-973775cf2141_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash f079e90ee6021f19c027fffbed3fb015
6a540b605bba26c9c4ba0017099a13fd2f4a7927
80e5e02884c694ca1960d5416c55fd8cc6d4b91b947f7d852b41325be3e4f231
GET /s/files/1/0607/8349/3354/products/FS_Gummies_60_Front_O_1a5fe8de-8ac1-4fb9-b3db-973775cf2141_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 8236
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_60_Front_O_1a5fe8de-8ac1-4fb9-b3db-973775cf2141_300x.png>; rel="canonical"
source-length: 754480
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: cb7940ce-d519-43d7-abfb-e26f2479397f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 22:57:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=inyI4RkUrqtaEIBz50RFl9rLF1XkGcPrG%2FCBl4TAyODYBorG%2BiDLD3s9C%2FudpPkyOy9DjQbuaCvmOi257I2Fdyfs1lKuZjv05ZgD4hSWbxX1UXDmDF94sfBPsweUse9Ypw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1328.906, imageryFetch;dur=55.008, imageryProcess;dur=724.405;desc="image", cfRequestDuration;dur=137.999773
server: cloudflare
cf-ray: 793f04d29d91b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/Gummies_fruit_300x.jpg?v=1669914402
200 OK 27 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/Gummies_fruit_300x.jpg?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 62e7671be18ef01ce0a2abb27896eaf8
a41c80229bb23585664578d9ed3bd21d4e5fce75
dc91b1feffb7c7c75a9fa50aa8fe08c7ee9c5ceafe68b83a0903444f47d31cbd
GET /s/files/1/0607/8349/3354/products/Gummies_fruit_300x.jpg?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 26667
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/Gummies_fruit_300x.jpg>; rel="canonical"
source-length: 194765
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: da427539-2def-4550-81ca-54c3559d0e4e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 03 Feb 2023 22:03:44 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yOp%2FViNGTTADQ2zZ98CKtef2%2BUnMvcykW2dvAycjMQfqkRU73R2WHRgbA9ETtoxFnLk1VZnDgCHfMzE2wq0KbDFaQyFwQPbU%2F0vfFFJy1H5oco%2BAvx4yBfIhVQhqqOg9wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1049.691, imageryFetch;dur=67.783, imageryProcess;dur=979.710;desc="image", cfRequestDuration;dur=141.999960
server: cloudflare
cf-ray: 793f04d28d8eb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_300x.png?v=1669914402
200 OK 7.8 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash faf93b6a2e45678239e86941c179ef54
973712f92165e1d39c69065851bb130648cb7d77
0f9057385159d5b4bb24bf199cac7d19b349326c6baaf2e4198ade2f0fd5f4c3
GET /s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 7848
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_300x.png>; rel="canonical"
source-length: 512890
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 1df237ce-c5c9-49b2-929c-f4d809d69c84
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 06 Jan 2023 02:16:23 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=39FtLuhMFj2jA0g5RLC6qPcR1CFS9pp4DLs30zkIUmNu%2F5Ucc3C%2FG3SvYzOWilX8LgMnVcXMe2x39RBuzXOoBfD1mzdJzDNrS0uEKDlS6mfHgmbQpdf3%2FeUdA9aIPNhpQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=512.745, imageryFetch;dur=72.838, imageryProcess;dur=438.670;desc="image", cfRequestDuration;dur=128.000021
server: cloudflare
cf-ray: 793f04d2bdb2b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_300x.png?v=1669914402
200 OK 15 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 7c5a033153287689d782c3d3c7ba083f
2a2525e72100bd40600a35c98146195d4dbb0a56
7380c6aec2051c9c3f9d9e7b0427aaa68931823c4f73d38f4b6f3d768194e5e6
GET /s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 14608
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Front_O_300x.png>; rel="canonical"
source-length: 916153
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: f04b68f5-cb4e-495e-9cef-b2c4923b77c6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 27 Jan 2023 12:25:22 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9eSulwJjfRy6W5JOAK97r9hUHd%2B4h5Kw6H7YhMuDZ4955Sdt7RtwKNkZDco2qOQqBsmxw%2FIKDEz2udM90GjfS09lhDJ9k76LQevbXIY4lufEZIMCMy76YY0m9T0cn75Hsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=761.698, imageryFetch;dur=71.756, imageryProcess;dur=688.802;desc="image", cfRequestDuration;dur=133.999825
server: cloudflare
cf-ray: 793f04d2bdb3b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Back_300x.png?v=1669914402
200 OK 11 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Back_300x.png?v=1669914402
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash c73307765ec072c24fc5b5632fc2e836
53b5a9c34c530b01aebb7a9f72b31bacb66fec11
8cb842580916664c9b0ae3556f9f6d45b43481c596a21eb48413edda956f12f6
GET /s/files/1/0607/8349/3354/products/FS_Gummies_10_Back_300x.png?v=1669914402 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: image/avif
content-length: 11125
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Gummies_10_Back_300x.png>; rel="canonical"
source-length: 569782
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a50d1323-d017-486d-9ed5-52db368f823f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 01 Dec 2022 17:40:25 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC4DdUV6MnTPCFqBbR%2FP3XvFyiRU%2FLd0l0p1zITUFQaIgfnoN5HHjgIU25P3U5br6vv3EtM08LX%2Fq8PxwHq%2BqNo%2B%2Brpnk4Mb4GgkTFrmlYW9uu6JCNOKlQLNtQOVDp5w3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=614.574, imageryFetch;dur=63.431, imageryProcess;dur=549.399;desc="image", cfRequestDuration;dur=141.000032
server: cloudflare
cf-ray: 793f04d2bdb4b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
422 Unprocessable Entity 19 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP
Hash a6cada5010e9111e0451fda65028d879
14caba0a5790961e4f2732945c4778d04b7cb7aa
7a73f46d6a94dc3146c584a780cf4d3fac23ff095be182868385d9df2bf621d3
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:42 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675467702.381835,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 25 kB IP
ASN #20940 Akamai International B.V.
Hash 95b9cfdd486f920727b8f1bcd1dbef3d
576366ced26eea2bbf998525553c7deb9ab5dbed
f4b9d0ad00e30c5eeaa915fc3fdfc2a958cb886b379a4bb900926764ba09f1ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A271749BA71523032F84B3121EA0368E829D06F0DD80C0CDE3318F16DF3C192"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13092
Expires: Sat, 04 Feb 2023 03:19:54 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18784, version 1.0\012- data
Hash 48bdbd2fdba819c4761d8eaf7948ffce
39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5
9c5529d40c44a9fc7a7325d3db1ef37b56c0a210d0c4ee3cef18e76cdaf73d79
GET /helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: font/woff2
content-length: 18784
cf-ray: 793f04d4292fb524-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 968505
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 86106b03-cab7-4c7e-ab74-4aee1cb6723a
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MXbLDfWbj3HmqqdJz89AI2LaBvnXtpNHi1eCzsgEqm5nuXb42d5cKB17ERDG9dzBPGCAQjWRqcaNqIJR%2FpeBvut0ctl0bWwkWAtuN%2Fkm%2BXrfS6W58JBisukEFmHRYHClLJjOwpj%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=39.231, imageryFetch;dur=38.912, cfRequestDuration;dur=6.000042, cfRequestDuration;dur=15.000105
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19252, version 1.0\012- data
Hash 3081ae959e35d7dfa394138443e9095e
fe093fe9ca22a15354813c912484945a36b79146
de60693f31597c2ec2c1bd972d15900b6bb7be2bcc19db7b71bd171469b7dbe0
GET /helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: font/woff2
content-length: 19252
cf-ray: 793f04d42927b524-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 968504
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 1f86b4c6-a82a-4311-a033-604d0130ff9d
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qLO2QMavsAIxfoet%2BXp91nTGBcyUQksKeXFYw2nqlSFxDWlPtAZlCIsQ74TJL5Al1klg0T5lL0D%2FAfnS7j66l%2Bc0LBrcMaJEEHfRsnp0us9D%2FMvUqcSDcFMuL%2B9Pb6vqksuoGwnI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=38.601, imageryFetch;dur=38.245, cfRequestDuration;dur=11.999846, cfRequestDuration;dur=42.999983
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
200 OK 22 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash f4f698e1e3a0133fb467ae89ff5f4468
0c1b54b064c96fa8c33e107f9f3035a689027e3b
4517a1f97363385d8b95d43aa05a765d906586ffed049e81acbe705dfed4d651
GET /helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: font/woff2
content-length: 18572
cf-ray: 793f04d43930b524-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 968460
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:39 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: d0fdab59-dc41-4626-8c7e-56caddf93fd4
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ep65v51u6xO0J7Hpkya6GuqVDVnWbf4xNLlKu0iyjHJTabgL9CaKO8A7jCakcb%2FwJHEtiQJw%2FoBZAUd4f9jaZEt2BTZy%2Bc%2BZhzRH53qHSXGWd2%2Bza%2BsY6mSET89ix9sa7h0Mubgk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=58.914, imageryFetch;dur=58.445, cfRequestDuration;dur=9.000063, cfRequestDuration;dur=17.999887
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2eda2192b91730b96d53face94327607
0f40b218c4d814e56c1913de01807c5b22cff47b
0a271749ba71523032f84b3121ea0368e829d06f0dd80c0cde3318f16df3c192
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A271749BA71523032F84B3121EA0368E829D06F0DD80C0CDE3318F16DF3C192"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13092
Expires: Sat, 04 Feb 2023 03:19:54 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 266b2d108e7dd210f0cdf75a22d612e2
16d084dc4b71345c6982a0bf34dc244f54cba90e
e28ff5c12ecadd99be995f52bd73af90b478d2b3e040ba5ba301ac0755e0164c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E28FF5C12ECADD99BE995F52BD73AF90B478D2B3E040BA5BA301AC0755E0164C"
Last-Modified: Thu, 02 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20864
Expires: Sat, 04 Feb 2023 05:29:26 GMT
Date: Fri, 03 Feb 2023 23:41:42 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0578ae9ba5c2dd4f0548aedff2533ffa
661830b62708231a50567c1042134c4def9aabea
09d97616618168494218eba590b11e32f6e6fd1186026197d78d28b46f76218d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87900
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Etag: "63dc5012-1d7"
Expires: Sun, 05 Feb 2023 00:06:42 GMT
Last-Modified: Fri, 03 Feb 2023 00:06:42 GMT
Server: nginx
Content-Length: 471
d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
200 OK 12 kB URL HTTP/1.1 d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (43965)
Hash 5a1c440e1d6602d452082be247fa2d12
d7a123d5b5bf6b1e88b4f5dfd09899833f4c64ea
2e5c6662fa2584a72b20d87a34b223c723046c47aaf94b0ef29ecdb81286c82d
GET /v5/bugsnag.min.js HTTP/1.1
Host: d2wy8f7a9ursnm.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 14 Jan 2023 00:50:41 GMT
Last-Modified: Mon, 21 Jan 2019 11:27:19 GMT
ETag: W/"a0fc7a4c606d853b67fa47c3a3eb17d1"
Cache-Control: public, max-age=315360000
x-amz-version-id: null
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cByWGZ--snXQWFnurSo3YmfZnlUjlJRXaVwS7su133bEoBEqBxQyrA==
Age: 1810262
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193
200 OK 112 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (32022)
Size 112 kB (112214 bytes)
Hash 5e3db2b3c1c74e7786880120b8418d4e
71d02072bb3130ed0fb53fe750d1d743f290496f
244eef50d54f69fb1551258843bb25c1cb90a42b2051d1fac0d3676763d3320f
GET /s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c3827813-62c7-4bb6-89ed-b4e3ec8d0477
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhuwMEbQbUQ%2B2my8a1w9wz1uJsRTtsUDRWW2doVYpwzYUEyrOiBIRZ%2B%2BALIf9uy%2FbbpNa3MEqZcIZOT9iIpoxEU6cdr8uaoR6iaMTWFzbWJr6wQJzhgE8NrC7dBKXG%2BG%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=172.607, imageryFetch;dur=115.514, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 793f04d2cdbfb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
200 OK 147 kB URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
IP
File type ASCII text, with very long lines (51220)
Size 147 kB (146943 bytes)
Hash 824807a8631fbecc815aeeb035ce51e0
0db51cd3e02a4d0a13377fa216fd1de0b18096b3
989eeed80e84473250a52e9a9e47903db86145077362c583b13a66a8a6342755
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-ratelimit-remaining-minute: 4999
x-ratelimit-limit-minute: 5000
ratelimit-remaining: 4999
ratelimit-limit: 5000
ratelimit-reset: 38
correlation-id: 90d153db-7ad6-452e-b8f0-aefb36033a90
x-kong-upstream-latency: 54
x-kong-proxy-latency: 17
content-length: 146943
cache-control: public, max-age=1144
date: Fri, 03 Feb 2023 23:41:42 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Last-Modified: Fri, 03 Feb 2023 21:59:47 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193
200 OK 20 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (365)
Hash ca0e8a9f7f670876362a581cca5948eb
3e1709907cba1043efaeb19eccb02cbcd8fb7074
bc0d96f4e9948e7f445cc281d9a7391689760b099c03a5bc7b6284925ee152aa
GET /s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 762ce07b-43aa-46ee-a8aa-ad0abe797d41
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Thu, 02 Feb 2023 14:04:48 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xeZZ742pWRist3ZrGQW7kmd2aWGRlOQJqvcPat2SIoz2gUDZFSBLUNf9%2FGsvLSqKMlRXBjlRuWn3Bo5051h2x97Es3Fel8yq77T%2Bw2ne4klSuBJNErpNQCPSVgNB2a8Czg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=57.409, imageryFetch;dur=44.897, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 793f04d2cdc6b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193
200 OK 41 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10017)
Hash 4d33b8023cd9f4a7a8a842d657ce5351
e273f6729b4de4a78c20ac8c0377ae06e6b49ba4
6804a122380e96518fc4c145121b18c05c89b8fdac707d4b4a961209f9ed1960
GET /s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4c3b1c19-2a58-41ff-961d-5cbe8afb9eff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KtkXSat8K2MousatgNFG5JWIFZYSlrvvH4CqiemdFJNybC5kisCm6x7udvoC7GazZbElGHDhluDjMxaMMHfWoYteKiFg%2B6OZEf%2FWbLcwv0SrKnn64NJS61WzU3ZQc1dX1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=63.667, imageryFetch;dur=57.401, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 793f04d28d87b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:42 GMT
Last-Modified: Fri, 03 Feb 2023 21:59:47 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8b63f5994357455d9a8db95f6244ac52
411d16d0bb9ae986cab3e78223f0c00328e48ae1
ee1fa948f943c128dff02ab031c90eb87b3c22a6dfcc053a5a082c982de33ab6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 23:41:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:46:58 GMT
Expires: Tue, 07 Feb 2023 21:46:57 GMT
Etag: "411d16d0bb9ae986cab3e78223f0c00328e48ae1"
Cache-Control: max-age=338114,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793f04d76b83b4eb-OSL
www.lightboxcdn.com/z9g/digibox.gif?c=1675467736003&h=themendico.com&e=p&u=44282
200 OK 35 B URL HTTP/2 www.lightboxcdn.com/z9g/digibox.gif?c=1675467736003&h=themendico.com&e=p&u=44282
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /z9g/digibox.gif?c=1675467736003&h=themendico.com&e=p&u=44282 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:43 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
content-md5: KNaBTzCeoon4R8ac+RGUxg==
etag: 0x8DAD3F8864E2F29
last-modified: Fri, 02 Dec 2022 00:02:38 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Fri, 02 Dec 2022 00:02:02 GMT
x-ms-request-id: c57a8e30-701e-006b-27d5-314566000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 695649
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793f04d7f9a4b529-OSL
X-Firefox-Spdy: h2
curated.fieldtest.cc/t/MEND/mend_unvpx.js
200 OK 3.0 kB URL HTTP/1.1 curated.fieldtest.cc/t/MEND/mend_unvpx.js
IP
File type ASCII text, with very long lines (337)
Hash 0353cc693c7e86c7bb747d96433d8e1e
9cd14108fa131c332ee46fe91d5505997c4b3c8b
e6c948f016679e7a73b96c242ceb8207a9ef4c85b2da406aacce951fe6fcc21f
GET /t/MEND/mend_unvpx.js HTTP/1.1
Host: curated.fieldtest.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: application/javascript
Date: Fri, 03 Feb 2023 23:41:42 GMT
Expires: Fri, 03 Feb 2023 22:41:42 GMT
Last-Modified: Fri, 03 Feb 2023 23:41:42 GMT
Pragma: no-cache
Server: Apache
Set-Cookie: ftla_fieldtestla_csrf_cookie_name=de4888c51e8ce8885d0c36ff3d0eddf0; expires=Sat, 04-Feb-2023 01:41:42 GMT; Max-Age=7200; path=/
FIELDTEST_SESSID=8vdnbkar7lp1fp3l0iuhsrotvt; expires=Wed, 08-Feb-2023 23:41:42 GMT; Max-Age=432000; path=/; HttpOnly
transfer-encoding: chunked
Connection: keep-alive
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
200 OK 42 kB URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
IP
File type ASCII text, with very long lines (65436)
Hash daa9863945e7f04ac2f34376d1b561b5
65f0afc06c9faf9b7feac8d63c278038db966f9a
7969f9043aafb2d506a8c95151272cb748472ca9bb637e238efa6e630cce6239
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
etag: W/"daa9863945e7f04ac2f34376d1b561b5"
x-request-id: 59e3c1347f00f682b49bae7aa72a3daa
x-runtime: 0.220222
access-control-allow-headers: *
content-length: 41514
cache-control: public, max-age=1087
date: Fri, 03 Feb 2023 23:41:43 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8b63f5994357455d9a8db95f6244ac52
411d16d0bb9ae986cab3e78223f0c00328e48ae1
ee1fa948f943c128dff02ab031c90eb87b3c22a6dfcc053a5a082c982de33ab6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 23:41:43 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:46:58 GMT
Expires: Tue, 07 Feb 2023 21:46:57 GMT
Etag: "411d16d0bb9ae986cab3e78223f0c00328e48ae1"
Cache-Control: max-age=338113,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793f04d76bf2b4f4-OSL
staticw2.yotpo.com/assets/open_sans.css
200 OK 216 B URL HTTP/2 staticw2.yotpo.com/assets/open_sans.css
IP
Hash 68f9ac87323a6148e8118f58f8336428
b6216cacb0d40441393ed11883bd0a3edbce2ab8
c9bb6ff6e0678f1114737fc6739cf88cdc006002a378a291d9f2793f588a2cfd
GET /assets/open_sans.css HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 216
last-modified: Mon, 30 Jan 2023 13:35:33 GMT
etag: "63d7c7a5-d8"
content-encoding: gzip
cache-control: max-age=604800
expires: Fri, 10 Feb 2023 23:41:43 GMT
date: Fri, 03 Feb 2023 23:41:43 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
sessions.bugsnag.com/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Fri, 03 Feb 2023 23:41:43 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 34 kB IP
Hash ce24030e67aabafad9952b918f417974
d7fffa7f630764dbee2220d67d2b9ea06584e48d
de6996d2062932e36c5dd6c548f6ae8f072b223046a113fe0025298f4d95bc7f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 23:41:43 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:46:58 GMT
Expires: Tue, 07 Feb 2023 21:46:57 GMT
Etag: "411d16d0bb9ae986cab3e78223f0c00328e48ae1"
Cache-Control: max-age=338113,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793f04d9fde2b4eb-OSL
sessions.bugsnag.com/
202 Accepted 13 kB IP
Hash 20fcd76ce2d1c0e2df842b45920f71d5
4216995cb10bd3d393c72c16abd60818308f268d
50e19ca84feece41a2444c6a829f49e37f40c3cc7f124215b9c7cefa3693441e
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: a51246d2a1f718541183be260c6215bd
Bugsnag-Payload-Version: 1.0
Bugsnag-Sent-At: 2023-02-03T23:42:15.862Z
Content-Length: 362
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 145ae38b-6cf3-4041-868b-1ca710fa5e0b
content-type: application/json
date: Fri, 03 Feb 2023 23:41:43 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675467736018&dre=l&callback=jQuery17107584092099943007_1675467735939&_=1675467736019
200 OK 717 B URL HTTP/1.1 api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675467736018&dre=l&callback=jQuery17107584092099943007_1675467735939&_=1675467736019
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (551), with no line terminators
Hash 2403e9220ef7043226d92336d4551797
887eea5c359303d4bed942ea5ccc6246aaaabd63
24f6bf461755e3bd373a1f686416f9eb447849eecead21981281881cfcdf1a0a
GET /z9gd/44282/themendico.com/jsonp/z?cb=1675467736018&dre=l&callback=jQuery17107584092099943007_1675467735939&_=1675467736019 HTTP/1.1
Host: api.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Fri, 03 Feb 2023 23:41:43 GMT
Server: Microsoft-IIS/10.0
Content-Encoding: gzip
Set-Cookie: TiPMix=46.98928080901368; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Powered-By: ASP.NET
sessions.bugsnag.com/
202 Accepted 21 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: a51246d2a1f718541183be260c6215bd
Bugsnag-Payload-Version: 1.0
Bugsnag-Sent-At: 2023-02-03T23:42:16.564Z
Content-Length: 362
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 1fe16f35-049e-4f14-b46c-32b5e53a9be1
content-type: application/json
date: Fri, 03 Feb 2023 23:41:43 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 03 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1z_alyHJKgt4mH7NeDr7E3kK_4oB_yfOZ3nDAdZCcH-C19TzlRCu_A==
Age: 54932
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 21:44:08 GMT
expires: Fri, 03 Feb 2023 23:44:08 GMT
cache-control: public, max-age=7200
age: 7055
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash e86e91ccaebee6bf004dc862956ef25c
167e7e73d1ad23302eef48e7074e5182deaa7999
fdf85d7c2572c064d848fd3ee3be8d0c0aa6bb5afb9e39dbcf52c41a0147c7e7
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "e86e91ccaebee6bf004dc862956ef25c"
content-type: application/javascript
fastly-restarts: 1
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=7200
date: Fri, 03 Feb 2023 23:41:43 GMT
content-length: 1146
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 55f0b35c24d8ce4af0e142e9a428c405
81f8783a7c881db78af8a3413898e80069568b2b
e583d537cb78c945bd817a3d13dc7486d90c86cd7bacca81d60f2e22f83d91f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 978
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:43 GMT
Last-Modified: Fri, 03 Feb 2023 23:25:25 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=2127308289&_gaz=1&cid=1412769601.1675467736&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675467736&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=2127308289&_gaz=1&cid=1412769601.1675467736&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675467736&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=2127308289&_gaz=1&cid=1412769601.1675467736&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675467736&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Fri, 03 Feb 2023 23:41:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.73589e70.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.73589e70.js
IP
File type ASCII text, with very long lines (57031), with no line terminators
Hash e2e6ae3a0d92146f974216e640b9f99a
8ceb48ec7a0aa43ebfe0eeb0094164292f95c6d2
965349a9e9f471fadf2512567bdfae0aedff8e90a093306e2b61673c292fed0b
GET /ct/lib/main.73589e70.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e2e6ae3a0d92146f974216e640b9f99a"
content-encoding: gzip
content-type: application/javascript
fastly-restarts: 1
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=1209600
date: Fri, 03 Feb 2023 23:41:43 GMT
content-length: 19691
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 18fcb6120af1b300507d3cac6fc94010
0bfd15e4eb26873f27cbbe3c454358aed42b91d4
b6943ba02ffb64a62a74d8626f6730098ee13cc78b21cb73b66397d869d73e1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 23:41:43 GMT
Last-Modified: Fri, 03 Feb 2023 22:07:43 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: evc6pl9Mh6UyCHRhY_mmLOwlYiR33QMqJgLgm_yzCQwK2XExsJR33A==
Age: 5640
stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Fri, 03 Feb 2023 23:41:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193
200 OK 14 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (481)
Hash 740c9356acf35b24731c717d0e82abb2
f0cb5520b7e0416889036397e0a04f605023c3a1
ddf291011058a0b7ebbbb5b87b449034178b8cc2ddc5776d3bdb8abf2f0e98aa
GET /s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ba1e7812-952d-4daa-8558-9b0cc6a86d63
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:18 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=inEBFf8ROiUkYYVmzHqTZn%2FhHSZybRniKD9TRoe%2B%2BDvloHWx3fD2i4mdAW3AMQdky%2F95GArF8yFz%2FJQobPsMjuwJsF%2BqE1v8vRQ%2ByArMaundDuf8h1VKgGMV%2FLSwOwq%2BGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=83.525, imageryFetch;dur=79.247, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 793f04d2cdc7b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.yotpo.com/i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo1Mzc1MjA5OTIsInBpeGVsX2lkIjoiMzk3NDIxMTUtN2I1My00MTQyLThlODktMGMwYmE2MTE2MTM3In0&dtm=1675467736212&tid=295387&vp=1280x939&ds=1268x8626&vid=1&duid=3d1477d7ddf4e492&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo1Mzc1MjA5OTIsInBpeGVsX2lkIjoiMzk3NDIxMTUtN2I1My00MTQyLThlODktMGMwYmE2MTE2MTM3In0&dtm=1675467736212&tid=295387&vp=1280x939&ds=1268x8626&vid=1&duid=3d1477d7ddf4e492&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo1Mzc1MjA5OTIsInBpeGVsX2lkIjoiMzk3NDIxMTUtN2I1My00MTQyLThlODktMGMwYmE2MTE2MTM3In0&dtm=1675467736212&tid=295387&vp=1280x939&ds=1268x8626&vid=1&duid=3d1477d7ddf4e492&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:43 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=f43f6c69-85f2-4e93-61ea-36b74a8a2b68; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Sat, 04 Feb 2023 23:41:43 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675467736857&dep=2%2CPAGE_LOAD
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675467736857&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675467736857&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1tSTNaR0kyTVRrdE9HWTRaUzAwT0dFeExXRTVPVEV0TnpJek5EVTROakk0WlRkaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 7218946417117130
date: Fri, 03 Feb 2023 23:41:43 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675467703.9e687270
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467736858&dep=5%2CEVENT_TAGS_ABSENT
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467736858&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467736858&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU56Z3pZVEZpT0RrdFpUTXpOeTAwTVRZNExUZzBZV0V0TURRek5HVmtNV0ZtWWpWaQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1581838100572603
date: Fri, 03 Feb 2023 23:41:43 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675467703.9e687291
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.clarity.ms/tag/52r663mgyz
200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/52r663mgyz
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash bbcc1fc8de6f75ffe2373232d0fbc751
53b105d2deced676f1c8a058fcbe3cfca4d716d2
adf24ac074aebf76da478434ea38a7cda78e7c3f39a63423f999300bf01027b5
GET /tag/52r663mgyz HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=6372c1debe6a4212b3856ef8556de5c9.20230203.20240203; expires=Sat, 03 Feb 2024 23:41:42 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0tpvdYwAAAAB7rx0/AzPsSaYK8LSQEz4FQ1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 03 Feb 2023 23:41:42 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675467736867
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675467736867
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675467736867 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 3765293642518151
date: Fri, 03 Feb 2023 23:41:43 GMT
akamai-grn: 0.274f2417.1675467703.9e6873fa
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675467736916&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675467736915.620962714&it=1675467736088&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675467736916&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675467736915.620962714&it=1675467736088&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675467736916&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675467736915.620962714&it=1675467736088&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 23:41:44 GMT
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
IP
File type ASCII text, with very long lines (2904)
Hash ab931645f68fc3088b2ba59deba91087
650138fceeadca8f60a880e9260211ceb4d1f79d
e4414afadcd5639242df405fa90490cf4101d47af3cb33e4cdcbf533b959e0cc
GET /onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"af059cda7925915baf35de396e36eae0"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5595
x-served-by: cache-lga21976-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1675467704.120383,VS0,VE2
vary: Accept-Encoding
content-length: 1036
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8c4f6580c8d9ee7aadab1911735be72
da6aa6b5413c6eb72421a0dce26d4cbb38a9ce0e
61c1472b7ac79e2e2b2405026ecc25a5829b0c68dcaf5c8142bc956ae7a9c925
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61C1472B7AC79E2E2B2405026ECC25A5829B0C68DCAF5C8142BC956AE7A9C925"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4452
Expires: Sat, 04 Feb 2023 00:55:56 GMT
Date: Fri, 03 Feb 2023 23:41:44 GMT
Connection: keep-alive
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
200 OK 38 kB URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 68324abd091242a0e45de4d9006b98b0
cdd507311d0a5ddd5e1eccdf453b7de3f620e8f0
7277623fe5d2d07044253481d55ec63c9d6c91f19bd09e71f12fcfba3cd6ea84
GET /latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: d3fe4539-cbbd-41c5-b89d-469f4603b4f7
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"266d5-CE/pq7k08/+Q2xaaWuoPjR4SI7s"
date: Fri, 03 Feb 2023 11:30:33 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Zh03zyXWWhsYMio_lwGrQanfeRiVnyT2dmJSnCcWyaJxhRuL0PKglQ==
age: 43870
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1320705298105478
date: Fri, 03 Feb 2023 23:41:44 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675467704.9e687a08
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
200 OK 8.2 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
IP
Hash 59b9a92d284949c4eb755c5b77d2b6e9
e04bd7019146398e38b76ec6948d80ef39d09ddb
152e098bebc35c4db4f71395822bd818913b858ded9fc3c4625b4ea113eff20e
GET /onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: eZAB3eC702nxkpzhANCuu4QTVE8lWyGPn9+EElQlppit9M8T6T1TM5VEMwb2jJ6thuIa4hj3dtzraPZ2Yu8Z+w==
x-amz-request-id: JR283Q7EHGZPD3J0
last-modified: Fri, 03 Feb 2023 17:28:44 GMT
etag: "f27ddd47bfc9beb64b7d3c1aad544c28"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: .7alrscAaTnWmEs8mvC2QYSnwfAI..vu
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5605
x-served-by: cache-lga21955-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 1995
vary: Accept-Encoding
content-length: 8049
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5605
x-served-by: cache-lga21921-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1714
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
200 OK 31 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 5a905c632831151198f837b621c8a5b4
6e73d7a44841037a44ed750b9d58931a6756cdb2
ad4945a6d3d8895048e9aba6509a96cc2cfb143ee2e621e4f2a7972bb40169c6
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d936557825629e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0LxrdYwAAAADD6h0Jy+Y6RKR8upn/Q9BuRlJBMjMxMDUwNDE4MDM5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0t5vdYwAAAACjRM4SQ5jXRKFEXU5dvpFZQ1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 03 Feb 2023 23:41:43 GMT
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5605
x-served-by: cache-lga13621-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 1161
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
IP
File type ASCII text, with very long lines (28184), with no line terminators
Hash 9947b9a0c514938c051ff50787786915
d78e9bb27f688655db15ad8ccc5325485e0fa410
73393d7427c388e9784f76014b52851f2d3f17d19308b8f6c6a70eb4afb8748d
GET /onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0ad6sXmXMHiFUp4bdjmrAmBwFWJ1GaCj6pLMFwLo6bZqgTxKuIcly7KnmVyuEfGMLgr3EJYE/tE=
x-amz-request-id: BEFH96F66KX7MCC2
last-modified: Fri, 03 Feb 2023 16:02:43 GMT
etag: "2918e6090a854372153e5cf84e3da824"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: DA49kfUB0O0s32Ljp5UGbAPIecnc3kbk
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5605
x-served-by: cache-lga21925-LGA, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2005
vary: Accept-Encoding
content-length: 10897
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
IP
Hash 579ebc5df7b10a10cf5fada1770efdcf
3845aa8e275e8853e55e9fd73ba20ac08dcbeb4e
354617d4b5d065c0e830ab597d15cc05edb23194bb7da4eacac42b009ece33f0
POST /s/gts1d4/EQZXquRt1Eg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
200 OK 1.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
IP
File type ASCII text, with very long lines (3927), with no line terminators
Hash dad1cfca7e143c6f971f9489945f5e4a
e7df2d2e32ab7bf4642d535c12b22fe700ecef78
bd1e924b8e386b9c009cd573e58318ae3cc3cf7c846022027d269b0d4ac98428
GET /onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cidyFX9R21NtX9uwGBs6mQVv2UQoeiERHmmJg4FpaYUT9NhNCxnaQYj/yfFMLtVKqSmFIRsz3Nc=
x-amz-request-id: E6MHX49K8258SD1W
last-modified: Fri, 03 Feb 2023 16:55:57 GMT
etag: "7956ff796e65e61f53fd9de4075e1360"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: gEtCTjDdAr9iUO0b1dPiDcxMzmi647ro
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 5605
x-served-by: cache-lga21920-LGA, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2021
vary: Accept-Encoding
content-length: 1820
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
200 OK 8.7 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4232b58eaa8aa55accdcc83ca4e55f66
353ec8ddb7c6af22907f4dd9dd4304eb886d4989
109ceca2425354bc8551a95ad9dcd39b8961f086362b5a2c87696f1d8b6c53b1
GET /forms/api/v6/TB3zxy/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PdHlEPbXdqeqYsjaiQPG2KsSiyGKpSX0XWIQZ5/13MBqEBHBjwj0WOl7CaawOt5YudpMCVtbISI=
x-amz-request-id: NDP0KZ45YTRW9S9R
last-modified: Fri, 20 Jan 2023 18:19:01 GMT
etag: "13f63c5d98e04786c6180412dad4e5c9"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/TB3zxy custom-fonts/TB3zxy
x-amz-version-id: k03ojuQyxDsyHL_Wf8pUA4X4Rda0AwgO
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
via: 1.1 varnish
age: 608304
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675467704.415443,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 8705
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
200 OK 426 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
IP
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash 56e8c85f34892fb836daf242e0fc69fa
5954582684d8bf64d11624ba3884a0ca94704777
245623794867afc34103c9ba160a40ece4b8629b844f3454be2e648f8ab061e8
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 03 Feb 2023 23:41:44 GMT
age: 8790435
x-served-by: cache-bos4662-BOS, cache-bma1639-BMA
x-cache: HIT, HIT
x-cache-hits: 628, 1
vary: Cookie
strict-transport-security: max-age=900
content-length: 426
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 941e8bb96a876029ea6368adddbde483
d4a20f389c9e2039d44731669d312d2b5858e4e0
0e4b5bcada915ac1ffcf21706e767e8dcc55d7d9f011fdb353d25a266044d23a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160819
Date: Fri, 03 Feb 2023 23:41:44 GMT
Etag: "63dd5898-1d7"
Expires: Sun, 05 Feb 2023 20:22:03 GMT
Last-Modified: Fri, 03 Feb 2023 18:55:20 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZHsE6EF3urTtgWAWEYA3fuMCojorSKZU8rYwTK6ImwtSTiNRPbTGeg==
Age: 5203
use.typekit.net/kor2vsl.css
200 OK 645 B URL HTTP/2 use.typekit.net/kor2vsl.css
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash e0096fd679c388ff4ae7e7b916dae52f
a19897df5fd83a3c0c5ddc5049bbc455fce0dbe2
58e58aa9d3750500f5eeb035c609a78efd6fecb16d74909dee361ae263bd09c8
GET /kor2vsl.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 645
date: Fri, 03 Feb 2023 23:41:44 GMT
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-monorail-edge-client-message-id,x-monorail-edge-event-created-at-ms,x-monorail-edge-event-sent-at-ms
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:44 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 86400
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: d699251e-dc93-4202-ab70-9c2d0a5e598b
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y5x956qECL%2BF3%2FMhV4MbMDqVahm9Apts6%2FFnQ9QNeX0Bo8MEJX%2F4rM99c8GeozqVoAZvteBPZoYWLEhrfB4yjoScG3sfmd%2F3OhbjaO1Gj78TzbZ49EV5ZRMFNGdeiitdE%2Fn7O8UUa7naHhw7XII%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=203.000069
server: cloudflare
cf-ray: 793f04e00d92fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
200 OK 8.0 kB URL HTTP/2 steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
IP
File type ASCII text, with very long lines (24707), with no line terminators
Hash eec970a1327acdc3751bf0617d16f8ab
cc433b3a3140d4fca3d14e79c096ab1d81db7287
c125cd2af77ed7bde76b0902ab22fcdd46fa2eba6f0954416953c8b076551d11
GET /public/discount-loader.js?shop=themendico.myshopify.com HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:44 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Origin
last-modified: Wed, 15 Jun 2022 03:41:43 GMT
expires: Sat, 04 Feb 2023 23:41:44 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:44 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 30 kB IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d79c15c4dc193bfb70f645cd3fdc0c02
4b1664c6f8569985a574f4c06e8dca284492b474
051541a4a527179d3e6925e2fd41b1ea146b385552d97b5949df1c295ae38dc6
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 617
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Fri, 03 Feb 2023 23:41:44 GMT
X-Firefox-Spdy: h2
rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
200 OK 135 kB URL HTTP/2 rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
IP
File type ASCII text, with very long lines (64728)
Size 135 kB (134809 bytes)
Hash 08a4267981a5d4459842f6342c2e8eff
b231e25e0c0b74ad30c6a59bed719670afad4db4
633affd0e74173608e2da0d596cdc22239bec58a7e7cfe70f3cb5de6102ac898
GET /load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com HTTP/1.1
Host: rudder-tracking.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:44 GMT
content-type: application/javascript
content-length: 134809
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
204 No Content 0 B URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 23:41:43 GMT
x-request-id: 50680fb0-a41c-11ed-a717-d32197391d71
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 900
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: authorization
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KuZSfGq4VroJngQtJpJR05nuJO-9OzLrCl9PyyAgbF793ms1WGsJTg==
age: 2
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
200 OK 1.1 kB URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP
File type JSON data\012- , ASCII text, with very long lines (1107), with no line terminators
Hash 24a94cbdef9a5d8d3e92bc2bb028675c
b33d6ebfa62d1e6cd9e7602a5f0223cbf80bb159
50cbeaf0be4dfb31f1d2038cd466427dd2bf19cd98ab359283aba6b64986f92e
GET /sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 1107
date: Fri, 03 Feb 2023 23:41:43 GMT
x-request-id: 509a1c30-a41c-11ed-9313-3daf66f3222f
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-expose-headers: X-Request-ID
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o610lkxVzPivkbWebeGYBjxu6Po4Zw9b4NawudTlms1rg8dWlemE6Q==
age: 2
X-Firefox-Spdy: h2
steel.oneteam.ai/public/discount-app.bb9b27f98cd6001529b6.js
200 OK 226 kB URL HTTP/2 steel.oneteam.ai/public/discount-app.bb9b27f98cd6001529b6.js
IP
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 226 kB (226405 bytes)
Hash 6d94061bebf8cba3e67e5b32a4eda5a4
6a576c1ff9bf874874dfb0d48778d6425c0cb0bc
4e2468134a86ce30ee04a96babe3bc5d5619b89c6dc2dfda9fd76448c0e8e76a
GET /public/discount-app.bb9b27f98cd6001529b6.js HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:44 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Origin
last-modified: Wed, 15 Jun 2022 03:41:43 GMT
expires: Sat, 04 Feb 2023 23:41:44 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467737196&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%2C%22pin_unauth%22%3A%22dWlkPU1tSTNaR0kyTVRrdE9HWTRaUzAwT0dFeExXRTVPVEV0TnpJek5EVTROakk0WlRkaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467737196&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%2C%22pin_unauth%22%3A%22dWlkPU1tSTNaR0kyTVRrdE9HWTRaUzAwT0dFeExXRTVPVEV0TnpJek5EVTROakk0WlRkaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2219a8dc79-77D9-4B83-E930-60846FA06520%22%7D&tid=2613409966566&cb=1675467737196&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22d17cad0e-c57b-4fd4-b374-9b0f88d3f38e%22%2C%22pin_unauth%22%3A%22dWlkPU1tSTNaR0kyTVRrdE9HWTRaUzAwT0dFeExXRTVPVEV0TnpJek5EVTROakk0WlRkaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 9842852113398054
date: Fri, 03 Feb 2023 23:41:45 GMT
set-cookie: _pinterest_ct_ua="TWc9PSYwYU91NVJrdFlEWXZYem91NnBqT0UyaVIwZ1Y5U0hFRDF4Y09ENlR2UGlJSzNMZDR2QTFuWllZNm11VEc3NlJTN0N1T3Q1ZjN6VU0rOUo1U0pJaUxETmgrS0ZoSEk4UXBuRHFXODE2ZmNuOD0mV2FmdFhXSlY4andyTU45M2RzMllDUTZkdjhNPQ=="; Expires=Sat, 03 Feb 2024 23:41:45 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675467705.9e6899e2
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 19:46:56 GMT
expires: Wed, 31 Jan 2024 19:46:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 273289
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=1412769601.1675467736&jid=1586153865&_u=YCDAgEABBAAAAEgCIAB~&z=1587671976
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=1412769601.1675467736&jid=1586153865&_u=YCDAgEABBAAAAEgCIAB~&z=1587671976
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=1412769601.1675467736&jid=1586153865&_u=YCDAgEABBAAAAEgCIAB~&z=1587671976 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 23:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
steel.oneteam.ai/client-version
200 OK 13 kB URL HTTP/2 steel.oneteam.ai/client-version
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4aae43c48c03e2ed5d2a5240ce169b82
e4fffc6864937ebda8a4f666604a3eb1151b10ef
e54eb781240f3ecbbec2ca68b36270fe10f7229d949216b3fbe9cf3e170c9ddd
GET /client-version HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:44 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
access-control-allow-origin: *
expires: Sat, 04 Feb 2023 00:11:44 GMT
cache-control: max-age=1800, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
steel.oneteam.ai/settings?shop=themendico.myshopify.com
200 OK 941 B URL HTTP/2 steel.oneteam.ai/settings?shop=themendico.myshopify.com
IP
File type JSON data\012- , ASCII text, with very long lines (750), with no line terminators
Hash d1ffd167c3a1630b9c3b5450038880ea
7a1f5ed2e7763afc661d84eaf56f333a4cba7acf
e064172d8709dc649d15bb4a4682a2216e7c6537494a45ffe67465ac086fb209
GET /settings?shop=themendico.myshopify.com HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:45 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
access-control-allow-origin: *
expires: Fri, 03 Feb 2023 23:42:45 GMT
cache-control: max-age=60, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.avmws.com/1025221/?shop=themendico.myshopify.com
200 OK 1.6 kB URL HTTP/2 cdn.avmws.com/1025221/?shop=themendico.myshopify.com
IP
Hash 972fe3efbf300c5bf40de1bb251d1850
d8f59601f6250072909264eaa986f75fad7319dc
b1473ed3863acb669053c17b001ed3ebc209959466394e81457de03289ce5839
GET /1025221/?shop=themendico.myshopify.com HTTP/1.1
Host: cdn.avmws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 1598
date: Fri, 03 Feb 2023 23:41:45 GMT
server: Apache/2.4.52 (Ubuntu)
cache-control: max-age=3600
last-modified: Sun, 15 Jan 2023 05:48:53 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MibrtyO4Lzq1-h3bQK8fFAZ4esoLtc_tu9uyW5s_yNeQ7oXbW7exvg==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 098c0ee3a6c98ca9219a07f975536123
efad1648b3201bbd3329a7a8d590637570226521
4193d1a27e25380699c9e6597561d95fcff4be56e44d7bcdb2806ff00d9a3b0d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 23:41:45 GMT
Last-Modified: Fri, 03 Feb 2023 22:03:31 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2-aiwXwcRJ4HACzcKdwYK8L8-oBTM031fvBoz6ppB7FmXg-JrbWzfA==
Age: 5894
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 098c0ee3a6c98ca9219a07f975536123
efad1648b3201bbd3329a7a8d590637570226521
4193d1a27e25380699c9e6597561d95fcff4be56e44d7bcdb2806ff00d9a3b0d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 23:41:45 GMT
Last-Modified: Fri, 03 Feb 2023 22:04:11 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: siqdIDI3BAw06Mr03H3xW96kAtMf8z8apR3v9HtSlyfOU6GJEVOc7g==
Age: 5854
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 181270
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Fri, 03 Feb 2023 23:41:45 GMT
X-Firefox-Spdy: h2
iron.oneteam.ai/api/client-version
200 OK 71 B URL HTTP/2 iron.oneteam.ai/api/client-version
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 40afed49123a7dfd2a2f8dd6ff07b96c
8746f25c5d536860de7bed698e38f4a0e2ecbdba
4739bb2b0d02997f0433859664a43556dc50ac1bdeb38ce9000aa086f6e985ac
GET /api/client-version HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:45 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"45-0Ybn6SO9Kt6BaAzu1I1Dbcn1XJY"
expires: Sat, 04 Feb 2023 00:11:45 GMT
cache-control: max-age=1800, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
themendicohqdx.dataplane.rudderstack.com/v1/page
200 OK 0 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:45 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
themendicohqdx.dataplane.rudderstack.com/v1/page
200 OK 2 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
AnonymousId: YjM3YTlhZWItMjJiZC00NTBmLTgwYTAtMGY0NjYyNWNmYmUy
Content-Length: 1545
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:46 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-origin: https://themendico.com
vary: Origin
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&RedC=c.clarity.ms&MXFR=3174C30C9BAC615F01C1D1A19FAC6F6E
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&RedC=c.clarity.ms&MXFR=3174C30C9BAC615F01C1D1A19FAC6F6E
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&RedC=c.clarity.ms&MXFR=3174C30C9BAC615F01C1D1A19FAC6F6E HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&MUID=2B725F4618556BA11CB54DEB19026A70
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2B725F4618556BA11CB54DEB19026A70; domain=c.bing.com; expires=Wed, 28-Feb-2024 23:41:46 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F237C916464F4378AB375D742712B357 Ref B: OSL30EDGE0415 Ref C: 2023-02-03T23:41:46Z
date: Fri, 03 Feb 2023 23:41:45 GMT
content-length: 0
X-Firefox-Spdy: h2
wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
200 OK 410 B URL HTTP/2 wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
IP
Hash 4ff6eb27256c43cfa0eafd912951678e
21ec9b293f8514718a554d3459e04ed63908b706
3b2d8a6935e093a90395fb8555dac8b96606bc9eb96f7e7bf920892c6594d0d1
OPTIONS /v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv HTTP/1.1
Host: wyze.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:46 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
200 OK 2 B URL HTTP/2 wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv HTTP/1.1
Host: wyze.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 128
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:46 GMT
content-type: text/plain
content-length: 2
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-origin: https://themendico.com
vary: Origin
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&MUID=2B725F4618556BA11CB54DEB19026A70
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&MUID=2B725F4618556BA11CB54DEB19026A70
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=975CC7B9C8C94BE19AAFC59C45DA33BB&MUID=2B725F4618556BA11CB54DEB19026A70 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 03-Feb-2023 23:51:46 GMT; path=/; SameSite=None; Secure;
date: Fri, 03 Feb 2023 23:41:45 GMT
content-length: 42
X-Firefox-Spdy: h2
ssl.avmws.com/1025221/?url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&ref=&name=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&avmws=0&rand=0.007397678459455936&lib=1
200 OK 197 B URL HTTP/2 ssl.avmws.com/1025221/?url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&ref=&name=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&avmws=0&rand=0.007397678459455936&lib=1
IP
File type ASCII text, with very long lines (372), with no line terminators
Hash 974cc1c561af020df0ade2a02972b64f
44f6d1999fb0d1068e886b463d9bf7cf3df5b7db
2186b2df85cded0325e5acf2ff1efd97c2a735ba148e224d4375b5a7fb72b263
GET /1025221/?url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&ref=&name=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&avmws=0&rand=0.007397678459455936&lib=1 HTTP/1.1
Host: ssl.avmws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:46 GMT
content-type: application/javascript; charset=UTF-8
content-length: 197
server: Apache/2.4.52 (Ubuntu)
p3p: CP='OTI DSP LAW NID STP UNI OTPa OUR'
set-cookie: avmws=1.096111527763dd9bba8402d656652801.194855197.1675467706.1675467706.1.1569675280; expires=Sun, 02-Feb-2025 23:41:46 GMT; Max-Age=63072000; path=/1025221; domain=.avmws.com
avmws-xref=1.096111527763dd9bba8402d656652801.1025221.1030977594; expires=Sun, 02-Feb-2025 23:41:46 GMT; Max-Age=63072000; path=/; domain=.avmws.com
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 54eb9665-9b68-4333-aba4-1374a2744b97
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 31 Aug 2022 03:59:46 GMT
cf-cache-status: HIT
age: 286680
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F6rqTXK5e6knZNsjzvvmtxhjCDTDX%2BMSmfkJT%2F3cLlK1lik7TqRFXS4pgi86wFUTvL2vUWnHXA0W0gbUijCzxCd2cLuFSVQcixancDWwe9f5EJ0XO%2BRIFu6EAtL5YgwG6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.706, imageryFetch;dur=23.538, cfRequestDuration;dur=101.000071
server: cloudflare
cf-ray: 793f04d2b986b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0453acab-94a7-462e-a0d5-db9aa7126a01
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:18 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4Xbb%2FXSTWFmovXbFShFbm68XOlPpSLNBbNhH24WzhQJWyRvpB8QQgjwD%2BfbbGMaEhpPnTnxSiT42FGTpKa0kqXymag2ozXXlGAe7dvUljSSrvJQrUvNCoXHtKtQ%2BtI%2BZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=95.840, imageryFetch;dur=95.630, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 793f04d2edd2b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
iron.oneteam.ai/public/widget-app.latest.js
200 OK 0 B URL HTTP/2 iron.oneteam.ai/public/widget-app.latest.js
IP
GET /public/widget-app.latest.js HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 23:41:45 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-powered-by: Express
last-modified: Wed, 28 Sep 2022 13:15:10 GMT
etag: W/"7b38e-183843ca330"
expires: Sat, 04 Feb 2023 23:41:45 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
200 OK 0 B URL HTTP/2 themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
IP
GET /?utm_source=Klaviyo&utm_medium=campaign&_kx= HTTP/1.1
Host: themendico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:41 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 300
x-sorting-hat-shopid: 60783493354
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=dff56663-dc68-49cf-95bd-5bfb37380880; path=/; expires=Sat, 04 Feb 2023 00:11:41 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Sat, 03 Feb 2024 23:41:41 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Sat, 03 Feb 2024 23:41:41 GMT; SameSite=Lax
_orig_referrer=; Expires=Fri, 17-Feb-23 23:41:41 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D; Expires=Fri, 17-Feb-23 23:41:41 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_y=d17cad0e-c57b-4fd4-b374-9b0f88d3f38e; Expires=Sat, 03-Feb-24 23:41:41 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_s=a8f0f8da-ae3f-4026-b9eb-f62bd533d3de; Expires=Sat, 04-Feb-23 00:11:41 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_y=d17cad0e-c57b-4fd4-b374-9b0f88d3f38e; Expires=Sat, 03-Feb-24 23:41:41 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_s=a8f0f8da-ae3f-4026-b9eb-f62bd533d3de; Expires=Sat, 04-Feb-23 00:11:41 GMT; Domain=themendico.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:788bc199726ed43fe708f8b9b3ab36b8
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 60783493354
x-shardid: 300
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: df9c2ef5-d034-464c-af5d-5ddcd8ad2538
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ty4SJsZfrpmGX5ExXiYeYwJT%2BrUQ9buXHBrAeaMNiSnfTbkZh5dSNVqIgTsZyJL1iG06jyJ0phFMMy5fqvl7fmKe7vjRV9quc83BN%2BM8SXatwK4zO43mMbOrvu293dcc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=287, db;dur=92, parse;dur=15, render;dur=142, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=368.000031
server: cloudflare
cf-ray: 793f04cf08eeb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
link: <https://cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 33a2d28e-6787-4ed8-9af8-983b992bb81c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 03 Feb 2023 23:12:24 GMT
cf-cache-status: HIT
age: 1507
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BfpLR5a55tO1OvODaDcG5qfnN1VOxRAtRkBLVynyCnFQnHfLAUzHxh5lFPzkWzIZziqjnxmW59nxBzASI7ntgpVOw%2BjrvPbBYM3EcK0lqE0tnATSDZqpvtO%2FXhJbmKbT%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=35.016, imageryFetch;dur=34.801, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 793f04d28d8ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a393d868-6474-42e2-938a-95e2b12d598e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Thu, 02 Feb 2023 14:04:57 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZG5G6kEf4KgO2q%2BCjUstCDPbzkkjdbfakLNWZ7DzzuUgAEd61lu7QZNGSZKyh8uHS%2Fe3%2FCWgBeNJljWVnxnZ%2BpUTXkG1g64d8RxDw2MV%2BbTx9qT9GWFGs%2FDW4GhZZPdr2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=114.384, imageryFetch;dur=112.709, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 793f04d2ddc8b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364
IP
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=1568742
content-md5: Yk4SgF3mj09PNJXuZIgiGw==
last-modified: Wed, 01 Feb 2023 19:15:00 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a3d9aaae-101e-0016-4780-36d9ae000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 100642
expires: Sat, 03 Feb 2024 23:41:42 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793f04d61824b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1&z=153728783
0 B URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1&z=153728783
IP
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=1412769601.1675467736>m=45je3210&aip=1&z=153728783 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3192a378-a2ea-4287-b2eb-3469c0d37f91
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 100643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w47eB1jNjcFJI%2FOvdewMWILEAqdj35ZqtAAqcAWlciiGpOzbjNX%2Ff3Sd2cprIWEIy8ibl2dqCvpMQwWcBMEryBNezsGY6tKpcAXEHTNwfwJTaVKgNTXHcCJiC96RdrReDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=51.108, imageryFetch;dur=50.917, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 793f04d28d88b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.rechargecdn.com/assets/js/widget.min.js?shop=themendico.myshopify.com
200 OK 0 B URL HTTP/2 static.rechargecdn.com/assets/js/widget.min.js?shop=themendico.myshopify.com
IP
GET /assets/js/widget.min.js?shop=themendico.myshopify.com HTTP/1.1
Host: static.rechargecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtGzGmHkrocOfzuV-ow8NtGOTj33a5365mqOJG0BtfwdzQCLj0AlRRbXCV2jPnHjTOSaPaWueTWmFIwE3ibAAMcFIwKVzIu
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1670954597511054
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 391568
x-goog-hash: crc32c=YFVKLg==, md5=ZfhfjIx5VZA5U3st7QZytQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: none
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Expires, Pragma, Server, Transfer-Encoding, Vary, X-GUploader-UploadID, X-Google-Trace, x-recharge-app
server: UploadServer
content-encoding: br
date: Fri, 03 Feb 2023 23:23:49 GMT
expires: Sat, 04 Feb 2023 00:23:49 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 Dec 2022 18:03:17 GMT
etag: W/"65f85f8c8c79559039537b2ded0672b5"
content-type: application/javascript
content-length: 121302
age: 1075
x-cache-status: hit
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
IP
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2532
content-md5: VEusMqXpmvxAk/gFz0gKdg==
last-modified: Wed, 01 Feb 2023 19:15:00 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6948c9b5-301e-0067-6780-36ab97000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 793f04d31de9b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:42 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
link: <https://cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9b36e332-2e20-402a-a4aa-cc5af617e508
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 22:19:59 GMT
cf-cache-status: HIT
age: 3519
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uE8JRXR9YTfXGM%2FEAwdwX5BVMkucxWqkT%2Bwh3U%2BH%2FVtsI67D95cs1gpddSw9gCX64KLwI%2BwIcajZeVBx8c2Yz58P9pjFwQZqWOhuVuWnbqyftDnErt%2Fh%2BEY2YEMA%2BSY7KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=20.539, imageryFetch;dur=20.297, cfRequestDuration;dur=15.000105
server: cloudflare
cf-ray: 793f04d28d89b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638108757000999351
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638108757000999351
IP
GET /static/fb_lightbox.2.1.5.css?cb=638108757000999351 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:41:43 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6016
content-md5: q4B4xYJoZwx9ikt94o1nCA==
last-modified: Wed, 10 Apr 2019 19:06:17 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Wed, 10 Apr 2019 18:50:43 GMT
x-ms-request-id: 96c36435-401e-004a-7129-382857000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 2
expires: Mon, 06 Mar 2023 23:41:43 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 793f04d7f9a2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
54.37.232.151
34.117.237.239
23.227.38.65
95.101.97.70
157.240.205.35
3.122.117.250
23.33.119.27
93.184.220.29