r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10504
Expires: Fri, 03 Feb 2023 17:13:35 GMT
Date: Fri, 03 Feb 2023 14:18:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11132
Expires: Fri, 03 Feb 2023 17:24:03 GMT
Date: Fri, 03 Feb 2023 14:18:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 13:43:35 GMT
content-type: application/json
age: 2096
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11482
Expires: Fri, 03 Feb 2023 17:29:53 GMT
Date: Fri, 03 Feb 2023 14:18:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: o+JDVvT14QuV0t6rU5r8d/4O4Q4TCsncyFUt1TrMAnTzbxSP/onVZ5CBL5p2IM9VxTG2vdFg4DX6M7mmfIkUvg==
x-amz-request-id: V8H3MY8GSGP80XTY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 13:23:33 GMT
age: 3298
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:18:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 13:49:06 GMT
age: 1765
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10265
Expires: Fri, 03 Feb 2023 17:09:36 GMT
Date: Fri, 03 Feb 2023 14:18:31 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QiGb7y8e3p1XFDV/J0FWbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g4ag3Pkmi/IyP3XPzUoV+VvtNGs=
topmailsender.info/index.php/campaigns/dz3701yvqmcb6/track-url/ca462vvfpz3c3/09c889cf3abfa165da126274c3657c0bf802e95a
301 Moved Permanently 0 B URL HTTP/1.1 topmailsender.info/index.php/campaigns/dz3701yvqmcb6/track-url/ca462vvfpz3c3/09c889cf3abfa165da126274c3657c0bf802e95a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.php/campaigns/dz3701yvqmcb6/track-url/ca462vvfpz3c3/09c889cf3abfa165da126274c3657c0bf802e95a HTTP/1.1
Host: topmailsender.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 14:18:30 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.6.37
X-XSS-Protection: 1; mode=block
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 03 Feb 2023 14:18:32 GMT
Location: http://tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12894
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 14:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12894
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 14:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12894
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 14:18:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12894
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 14:18:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 57040
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 50009
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 56983
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 59497
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T-OEFTj1rywKfBhEUUD0Rc6pFbk-gyFsETr_fjDQR5WGHAVOBgrB9A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 19:18:01 GMT
age: 68432
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 33912
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
302 Found 2.3 kB URL HTTP/1.1 tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1043)
Hash 5cd70ebf6340ed7b9b12ba7945a9e4cc
537ef7c0284147ee67cf8b2b5630fd8e4366b7ee
e08f46ee1475b4de4f39e874fc58abae63cf451f10728cbe6cd46c377b3001e1
GET /click?aff_id=2&offer_id=343&url=https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D HTTP/1.1
Host: tracking.walnutadops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 14:18:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0 (Ubuntu)
Set-Cookie: ohbid=fc8627ed-0dab-490d-8d91-6843c9b896d8; expires=Wed, 03-May-2023 00:00:00 GMT; Max-Age=7638086; path=/
ohb_visitor=bc8c3659-47fd-3fe4-80ea-27f58d9d814f; expires=Wed, 03-May-2023 00:00:00 GMT; Max-Age=7638086; path=/
oh_ssn_343=13944e40b36c13a6f8d724ce374ca2a7; expires=Fri, 03-Mar-2023 00:00:00 GMT; Max-Age=2367686; path=/; SameSite=Lax
Cache-Control: no-cache, private
Location: https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
302 Found 117 B URL HTTP/2 trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D
IP
File type HTML document, ASCII text
Hash 6c7ca5fc945533c0058a001b65034451
535e9064e8ee16b44d2f6ad4eff2b44bed9dd607
25f4e0dc62ffa9d338e05835c50752ca46664bfc6a6455d0d1dc7096dc944711
GET /ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5SvJO4ZGXl3sIvHiwr6-2FrBgUZGJAN8ONFmlImu-2FmCk-2Bvrdx826Ps-2BwhPWM5oPiw-2BKFRXiyd8md47hBGi0BO6CgPN1_O_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUHaQVcdo7pZ0Z58ZTGN5hup-2BmWKRQkkKXIUm3ifWHvemPqIjU86xOOW53mBeueDB5ImYMc3S97XgxweedTmt-2FLmA01M0jWU9pA6qCG7gH2oDENZESyKLWhwCvqYC-2BJy10IA20wDaE0FpFU-2BqLwIpxXW9muvF2uyNTKT-2BQZEbdK-2BoybpvtRVzyxAtB1jIfYZ5M-3D HTTP/1.1
Host: trk.klclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 117
location: https://themendico.com/pages/subscriptions?utm_source=Klaviyo&utm_medium=campaign&_kx=
server: nginx
date: Fri, 03 Feb 2023 14:18:34 GMT
x-robots-tag: noindex, nofollow
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qZMMt6JT_AbZGe9CPWjeXUUkXrjlLyx-mLvtQCGj5Fgqvx9gArWUyQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7041531690d37e3b447a81e65ae5c93a
435d6c6c70d0540e5175e46efa8c885b176ff464
7fc6b4e0847c7fd60b54c5d44246fdb5040b222567c0457c6460dbcaccad2097
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7FC6B4E0847C7FD60B54C5D44246FDB5040B222567C0457C6460DBCACCAD2097"
Last-Modified: Fri, 03 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 20:18:34 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7041531690d37e3b447a81e65ae5c93a
435d6c6c70d0540e5175e46efa8c885b176ff464
7fc6b4e0847c7fd60b54c5d44246fdb5040b222567c0457c6460dbcaccad2097
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7FC6B4E0847C7FD60B54C5D44246FDB5040B222567C0457C6460DBCACCAD2097"
Last-Modified: Fri, 03 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 20:18:34 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
200 OK 7.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 3d2f76b468a88446ef68ab7477d88e33
cd03ffbb9e2c1362ba2833722478e29b01d87390
b30170163adc986811433c083d4e192cf3e9b1b11ac8d3f0b022b7a3e075bd65
GET /s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: image/avif
content-length: 7572
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png>; rel="canonical"
source-length: 18592
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 338c3868-d987-4c72-9b39-c79a3c1075b3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Tue, 31 Jan 2023 19:11:58 GMT
cf-cache-status: HIT
age: 126595
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9NZrJiXM0EexKaj3vyPoMzAPLfuvYj8QaVaay9K0vXtqvonjJNlSqguK8NedaQ6ij9rxzMZiihYIYWOB1DTxB1C6M5aPmq69nn1mJS2%2FWJ5s0%2F45waeJJUdaFtIjHyfJZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1109.792, imageryFetch;dur=91.106, imageryProcess;dur=1017.985;desc="image", cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 793bcbefcd970b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5751
Expires: Fri, 03 Feb 2023 15:54:25 GMT
Date: Fri, 03 Feb 2023 14:18:34 GMT
Connection: keep-alive
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
422 Unprocessable Entity 429 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a74677efaa9af2d6c88cd8326dd6a0cf
e19cfd719b693b6d44e9b6f679facafbfefa59f0
b9fe8f8184ec658450dffd2eb88993b68ad01f18e9a5c8daf1530a2658da42c3
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675433915.902500,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193
200 OK 15 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (481)
Hash 25c8182405fa06f78d36f9a260b330a9
6c03cf4aa20eb271e2e38c488d417a128bfd56a5
1ce61a7a0920f30f89812fe20415fe1bba7de369f27a963a584ff5eaf563818b
GET /s/files/1/0607/8349/3354/t/24/assets/utilities.js?v=139251749790465216971675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/utilities.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ba1e7812-952d-4daa-8558-9b0cc6a86d63
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:18 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hoIq%2FOZ8Xk%2BQ1q5l%2FXnn87ZCcmN0MK0Un%2F3AatHi%2B6YEUhBPBqv%2FMXTOZcnUnff3yFeQUN4pXBlxtcYJlPYlplc3PtInxip8bRojKHc9uK7Ck%2BdYqPviVmZNv3Guk8gLUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=83.525, imageryFetch;dur=79.247, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 793bcbefdda10b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.typekit.net/eck1mer.css
200 OK 858 B URL HTTP/2 use.typekit.net/eck1mer.css
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 747e4980da3a0a36331c3771df1ad644
73da7e3fa4c7e486771405b16cfcbd434999bc81
ccad877caa1c5b5ddcf6f853cec9e09dca933ad6d55d9f8344f6317ca8fc28e3
GET /eck1mer.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 858
date: Fri, 03 Feb 2023 14:18:34 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
IP
File type ASCII text, with very long lines (29702)
Hash e5a3e26ac38eeec4daba4b16770ce940
fadd24b54c179ec723d13e67a913903f3db79119
794c7cb671b4628dbda24b1ae66a0e28144905d17fff83ab0e0edf0e2889e69c
GET /gtag/js?id=G-2NNX47L0B6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 14:18:34 GMT
expires: Fri, 03 Feb 2023 14:18:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80709
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193
200 OK 32 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65451)
Hash 71d0a13b6c85060f0670bc8889f81bed
ade929fa3212a3c0fd2f22f77e2f37be6fb0e138
ea73db8c8dd9b69adf7bc00a3e78b3b855fbfbcb3abf0f720983378458e91317
GET /s/files/1/0607/8349/3354/t/24/assets/jquery.min.js?v=81049236547974671631675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/jquery.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0453acab-94a7-462e-a0d5-db9aa7126a01
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:18 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zax%2BBCGWwPiXUrw4s3%2F0yWOR9A84ZqakfS39P93rD3F38HxQlXeVRiF07uaT3oe9CE%2Bl9%2FpUgsGewPqj7p5jU%2FkScXdN3Cnm5WtbOPLN%2B0DSdhQwbNFICAjJuJoAwLkWgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=95.840, imageryFetch;dur=95.630, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 793bcbf02e060b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
422 Unprocessable Entity 429 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6eaeaf16ca4365c3963e25640b6beedd
1d7a9a4d143cbc1cf8bac303438a60577897fa9c
95f1789904bc5128c0a570ae7cd7cb4104c53b817e257e5b493068b48a71b38c
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675433915.037596,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 13 kB IP
ASN #20940 Akamai International B.V.
Hash 99bc7c401d433252fcf31497092862bc
4078c0fd3e3defb85970815491060d9b90bb8d09
74f52da49e7bcbc12da3daf7c7fce8ccab35a51fe7f274267212e6a791d36318
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A271749BA71523032F84B3121EA0368E829D06F0DD80C0CDE3318F16DF3C192"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8006
Expires: Fri, 03 Feb 2023 16:32:01 GMT
Date: Fri, 03 Feb 2023 14:18:35 GMT
Connection: keep-alive
fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18572, version 1.0\012- data
Hash e5fa0125371505dd88abca33a246f1c1
e01288c0d2e8e4f4101819b750499a38c41ed953
f0278bfcc725c8f63b4bae648d7835600230e721452adc2d97dc5a9c313d6c6a
GET /helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:35 GMT
content-type: font/woff2
content-length: 18572
cf-ray: 793bcbf1bf6efac4-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 934673
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:39 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: d0fdab59-dc41-4626-8c7e-56caddf93fd4
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vAijK2zDkuMhGi6p99P%2B6k9wHuDnrQEawkMGNEalqU9T2I6O%2Bhc%2B%2F1qwwRWm9hiiMa3SoxhzhZ1ho2WiwfrEhXdhCQYn4rOi9f6DYM8jZMuWuZz9LRp6YKBCZPsAOOz%2FP5HdWYch"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=58.914, imageryFetch;dur=58.445, cfRequestDuration;dur=10.999918, cfRequestDuration;dur=21.000147
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19252, version 1.0\012- data
Hash 3081ae959e35d7dfa394138443e9095e
fe093fe9ca22a15354813c912484945a36b79146
de60693f31597c2ec2c1bd972d15900b6bb7be2bcc19db7b71bd171469b7dbe0
GET /helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:35 GMT
content-type: font/woff2
content-length: 19252
cf-ray: 793bcbf1af67fac4-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 934717
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 1f86b4c6-a82a-4311-a033-604d0130ff9d
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wxs%2F81%2BXLoD7zALg4CCPNzWEyw8G5qzjU7nkfrj3Spb4oQ4oc%2FMklKDRsCgej3QX1kSBWrORB3i6RMFsWdiDAsztHkMui6hiGZn7dgwuoRRjsEvQJcNt%2FQyK3wbeeFLuQUqJIoZh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=38.601, imageryFetch;dur=38.245, cfRequestDuration;dur=24.000168, cfRequestDuration;dur=59.000015
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18784, version 1.0\012- data
Hash 48bdbd2fdba819c4761d8eaf7948ffce
39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5
9c5529d40c44a9fc7a7325d3db1ef37b56c0a210d0c4ee3cef18e76cdaf73d79
GET /helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:35 GMT
content-type: font/woff2
content-length: 18784
cf-ray: 793bcbf1bf6dfac4-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 934718
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 86106b03-cab7-4c7e-ab74-4aee1cb6723a
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JwUk6pJZ3en66PP3I86MTAd53TB7T62D0DMlDTkgQWwcsvV1LFuLguk50i9pamBTBAhT9T43x2iHirsVjki%2Fa8G2KZZhwPQWAT%2F%2F1BlEv8ujKOT8H5zs9slmYv2nBW25qyTXx0La"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=39.231, imageryFetch;dur=38.912, cfRequestDuration;dur=9.000063, cfRequestDuration;dur=26.999950
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2eda2192b91730b96d53face94327607
0f40b218c4d814e56c1913de01807c5b22cff47b
0a271749ba71523032f84b3121ea0368e829d06f0dd80c0cde3318f16df3c192
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A271749BA71523032F84B3121EA0368E829D06F0DD80C0CDE3318F16DF3C192"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8006
Expires: Fri, 03 Feb 2023 16:32:01 GMT
Date: Fri, 03 Feb 2023 14:18:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 266b2d108e7dd210f0cdf75a22d612e2
16d084dc4b71345c6982a0bf34dc244f54cba90e
e28ff5c12ecadd99be995f52bd73af90b478d2b3e040ba5ba301ac0755e0164c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E28FF5C12ECADD99BE995F52BD73AF90B478D2B3E040BA5BA301AC0755E0164C"
Last-Modified: Thu, 02 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15538
Expires: Fri, 03 Feb 2023 18:37:33 GMT
Date: Fri, 03 Feb 2023 14:18:35 GMT
Connection: keep-alive
monorail-edge.shopifysvc.com/unstable/produce_batch
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 301
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 86400
x-request-id: d8a5ae80-15b4-48be-8c59-63cb0f613cbe
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qeLH5gabWmQgxbPm%2B8c5unHat4h4900BzofyEL%2B7QOyE99GXzLWh6NZFy%2BsOM8N0PfNnkv3lrFlAPtoNKrcr1FC%2BZDLC8C%2FS5GtprE6sni7Bx3IR8%2F8hOdprnRrrfqfhdw95MvobrJYGxkEaqIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=183.000088
server: cloudflare
cf-ray: 793bcbf2ab8f0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 266b2d108e7dd210f0cdf75a22d612e2
16d084dc4b71345c6982a0bf34dc244f54cba90e
e28ff5c12ecadd99be995f52bd73af90b478d2b3e040ba5ba301ac0755e0164c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E28FF5C12ECADD99BE995F52BD73AF90B478D2B3E040BA5BA301AC0755E0164C"
Last-Modified: Thu, 02 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15538
Expires: Fri, 03 Feb 2023 18:37:33 GMT
Date: Fri, 03 Feb 2023 14:18:35 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0578ae9ba5c2dd4f0548aedff2533ffa
661830b62708231a50567c1042134c4def9aabea
09d97616618168494218eba590b11e32f6e6fd1186026197d78d28b46f76218d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2491
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:35 GMT
Etag: "63dafe92-1d7"
Last-Modified: Fri, 03 Feb 2023 13:37:04 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 471
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193
200 OK 115 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (32022)
Size 115 kB (115191 bytes)
Hash 6b7ea8063fc1b05e7170798f36ea26bf
ce99bdeec618ab80da2da11193fa84e1c872bcad
61832ffbde46fd97938eb8f5b78453dcd5b8672309aa41e478083b5adeefdbe1
GET /s/files/1/0607/8349/3354/t/24/assets/vendors.js?v=156815155738738603461675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/vendors.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c3827813-62c7-4bb6-89ed-b4e3ec8d0477
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pe31oq2pURXFAYRnefzFjrZxVnTgGm1HFvwIkrj2E4lf%2BinEkDWedIeI7aOVM6cVlBkaw1xsXnGe3s0uOnuk5wWZcmNWuhBjlEsGAzF7b%2BQ90ifIbkU2kwYYYVH3JJseBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=172.607, imageryFetch;dur=115.514, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 793bcbf02dfa0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 03 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 56V0NxrjFSPyuQ__tFPyf278fPDIsbrh_Cnar1OVrVNsUKX87Up2TA==
Age: 21145
d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
200 OK 12 kB URL HTTP/1.1 d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (43965)
Hash 5a1c440e1d6602d452082be247fa2d12
d7a123d5b5bf6b1e88b4f5dfd09899833f4c64ea
2e5c6662fa2584a72b20d87a34b223c723046c47aaf94b0ef29ecdb81286c82d
GET /v5/bugsnag.min.js HTTP/1.1
Host: d2wy8f7a9ursnm.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 14 Jan 2023 00:50:41 GMT
Last-Modified: Mon, 21 Jan 2019 11:27:19 GMT
ETag: W/"a0fc7a4c606d853b67fa47c3a3eb17d1"
Cache-Control: public, max-age=315360000
x-amz-version-id: null
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KjSMLVj7y7ySxdmP6E8ED_Q_1UvUJajXSg0TiMzHldPBRhK_sJkaSQ==
Age: 1776476
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 13:45:20 GMT
expires: Fri, 03 Feb 2023 15:45:20 GMT
cache-control: public, max-age=7200
age: 1996
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4470
Cache-Control: max-age=96286
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 17:03:22 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1&z=1846141848
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1&z=1846141848
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1&z=1846141848 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:18:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: rH687L6gqmCEnlL7M3pncTnp3IeoDSz1E0S7yHMGnhaqmLf5ygQD+BRBnG30MtKqLCrrCLDzBFKt5N4yBPx2KA==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 14:18:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash e86e91ccaebee6bf004dc862956ef25c
167e7e73d1ad23302eef48e7074e5182deaa7999
fdf85d7c2572c064d848fd3ee3be8d0c0aa6bb5afb9e39dbcf52c41a0147c7e7
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "e86e91ccaebee6bf004dc862956ef25c"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4470
Cache-Control: max-age=96286
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 17:03:22 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1122691579&_gaz=1&cid=804070074.1675433947&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675433946&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1122691579&_gaz=1&cid=804070074.1675433947&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675433946&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1122691579&_gaz=1&cid=804070074.1675433947&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675433946&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Fri, 03 Feb 2023 14:18:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.clarity.ms/tag/52r663mgyz
200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/52r663mgyz
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash adf1df1cff5cc15b62667171971a8e80
061f06c6df01cd0558461a95944d902563433d1c
28ac1de2288ad782e9212c6e8599dd5a12640863cdc4f51e501bc7be7c97efd6
GET /tag/52r663mgyz HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=4fcf4a02e79643fc8f9548509910dbd8.20230203.20240203; expires=Sat, 03 Feb 2024 14:18:36 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0vBfdYwAAAAD7GZ/c8tzGT6uoTf2ONtyGQ1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 03 Feb 2023 14:18:35 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6&cid=804070074.1675433947>m=45je3210&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Fri, 03 Feb 2023 14:18:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&gjid=578901987&_gid=670129786.1675433947&_u=YCDAgEABBAAAAEgCIAB~&z=122859490
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&gjid=578901987&_gid=670129786.1675433947&_u=YCDAgEABBAAAAEgCIAB~&z=122859490
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&gjid=578901987&_gid=670129786.1675433947&_u=YCDAgEABBAAAAEgCIAB~&z=122859490 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://themendico.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 14:18:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8b63f5994357455d9a8db95f6244ac52
411d16d0bb9ae986cab3e78223f0c00328e48ae1
ee1fa948f943c128dff02ab031c90eb87b3c22a6dfcc053a5a082c982de33ab6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 14:18:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:46:58 GMT
Expires: Tue, 07 Feb 2023 21:46:57 GMT
Etag: "411d16d0bb9ae986cab3e78223f0c00328e48ae1"
Cache-Control: max-age=371900,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793bcbf7bebab500-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8b63f5994357455d9a8db95f6244ac52
411d16d0bb9ae986cab3e78223f0c00328e48ae1
ee1fa948f943c128dff02ab031c90eb87b3c22a6dfcc053a5a082c982de33ab6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 14:18:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:46:58 GMT
Expires: Tue, 07 Feb 2023 21:46:57 GMT
Etag: "411d16d0bb9ae986cab3e78223f0c00328e48ae1"
Cache-Control: max-age=371900,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793bcbf7bfd7b527-OSL
sessions.bugsnag.com/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Fri, 03 Feb 2023 14:18:36 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sessions.bugsnag.com/
202 Accepted 21 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: a51246d2a1f718541183be260c6215bd
Bugsnag-Payload-Version: 1.0
Bugsnag-Sent-At: 2023-02-03T14:19:07.250Z
Content-Length: 362
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: dd48994c-369d-4589-a892-26e37c81a516
content-type: application/json
date: Fri, 03 Feb 2023 14:18:36 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lightboxcdn.com/z9g/digibox.gif?c=1675433947736&h=themendico.com&e=p&u=44282
200 OK 35 B URL HTTP/2 www.lightboxcdn.com/z9g/digibox.gif?c=1675433947736&h=themendico.com&e=p&u=44282
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /z9g/digibox.gif?c=1675433947736&h=themendico.com&e=p&u=44282 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:36 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
content-md5: KNaBTzCeoon4R8ac+RGUxg==
etag: 0x8DAD3F8864E2F29
last-modified: Fri, 02 Dec 2022 00:02:38 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Fri, 02 Dec 2022 00:02:02 GMT
x-ms-request-id: c57a8e30-701e-006b-27d5-314566000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 661862
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793bcbfab9771c12-OSL
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
200 OK 20 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 064b531c19c8f0bb62795bcd1347ced0
30e86010c327ed6985383d982b0296f93a0566c4
9b122eb3af600ccc05d36f1a883f357e3b9a21ffd41c5fe5fcf7ecfa7e4e4e6c
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d936557825629e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0r8jbYwAAAACXLVLHNYLlSa6dlqEW0+VpRlJBMjMxMDUwNDE4MDA5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0vBfdYwAAAACl2ui9kC0TR7dfXw8JNwfjQ1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 03 Feb 2023 14:18:36 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.73589e70.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.73589e70.js
IP
File type ASCII text, with very long lines (57031), with no line terminators
Hash e2e6ae3a0d92146f974216e640b9f99a
8ceb48ec7a0aa43ebfe0eeb0094164292f95c6d2
965349a9e9f471fadf2512567bdfae0aedff8e90a093306e2b61673c292fed0b
GET /ct/lib/main.73589e70.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e2e6ae3a0d92146f974216e640b9f99a"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19691
akamai-x-true-ttl: 1209600
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&_u=YCDAgEABBAAAAEgCIAB~&z=1922092245
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&_u=YCDAgEABBAAAAEgCIAB~&z=1922092245
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=804070074.1675433947&jid=964453443&_u=YCDAgEABBAAAAEgCIAB~&z=1922092245 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:18:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox.js?mb=1675433947000&lv=1
200 OK 715 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox.js?mb=1675433947000&lv=1
IP
File type ASCII text, with very long lines (399), with no line terminators
Hash c461ee54ece9777ee1728d4f27f389a5
9782b696b7eb5404a6c113071b155811d6f99705
261f1fa80b56438b169ef0b7e44724d998eac6ae2f1bc8e6fa0d79a7cb564b38
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox.js?mb=1675433947000&lv=1 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:36 GMT
content-type: application/javascript
vary: Accept-Encoding
x-powered-by: ASP.NET
last-modified: Fri, 03 Feb 2023 07:47:34 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 793bcbf61ca21c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 995a0f4fbf625e7ce6e87423b14160b7
b0243206a109078ead7ccf35a07617bdc9c86437
39585600822fbb2a8e20f0af72023d328855bfaddd2ed274a1728251b15c76fb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110405
Date: Fri, 03 Feb 2023 14:18:36 GMT
Etag: "63dc1d95-1d7"
Expires: Sat, 04 Feb 2023 20:58:41 GMT
Last-Modified: Thu, 02 Feb 2023 20:31:17 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gHxyww-phqdTPeGeZYNbs6JFNAvZMW2E84ZNJSPvrGYuN51se27NeQ==
Age: 1644
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675433947864&dep=2%2CPAGE_LOAD
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675433947864&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675433947864&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVptRXdZbVEyTldNdE5tSTFZeTAwWVdKa0xUaGpPRGt0WlRjM05EQTBPVFk0TlRkag
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6221739164165807
date: Fri, 03 Feb 2023 14:18:36 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675433916.8d752dbe
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433947866&dep=5%2CEVENT_TAGS_ABSENT
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433947866&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433947866&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1HVTVPVFExTm1RdFpXSTVaaTAwWkdVeExUZ3lZalF0TW1JME5qWm1ZekJqWVRKag
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 8660783560035033
date: Fri, 03 Feb 2023 14:18:36 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675433916.8d752dd1
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
p.yotpo.com/i?e=pv&page=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo2Njg3NTY0NDksInBpeGVsX2lkIjoiMWNiZTFkNjgtMjVhNS00MDU4LWI2NWYtMmYzYTgxYmNlOTgzIn0&dtm=1675433947511&tid=314469&vp=1280x939&ds=1280x4626&vid=1&duid=9bb044e2ac76103e&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=pv&page=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo2Njg3NTY0NDksInBpeGVsX2lkIjoiMWNiZTFkNjgtMjVhNS00MDU4LWI2NWYtMmYzYTgxYmNlOTgzIn0&dtm=1675433947511&tid=314469&vp=1280x939&ds=1280x4626&vid=1&duid=9bb044e2ac76103e&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=pv&page=Subscribe%20and%20save%20on%20CBD%20Hemp%20Products%20%7C%20Mendi&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo2Njg3NTY0NDksInBpeGVsX2lkIjoiMWNiZTFkNjgtMjVhNS00MDU4LWI2NWYtMmYzYTgxYmNlOTgzIn0&dtm=1675433947511&tid=314469&vp=1280x939&ds=1280x4626&vid=1&duid=9bb044e2ac76103e&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:36 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=39d250d1-4c00-4f31-67ad-ad229295cf50; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Sat, 04 Feb 2023 14:18:36 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
staticw2.yotpo.com/assets/open_sans.css
200 OK 216 B URL HTTP/2 staticw2.yotpo.com/assets/open_sans.css
IP
Hash 68f9ac87323a6148e8118f58f8336428
b6216cacb0d40441393ed11883bd0a3edbce2ab8
c9bb6ff6e0678f1114737fc6739cf88cdc006002a378a291d9f2793f588a2cfd
GET /assets/open_sans.css HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 216
last-modified: Mon, 30 Jan 2023 13:35:33 GMT
etag: "63d7c7a5-d8"
content-encoding: gzip
cache-control: max-age=604800
expires: Fri, 10 Feb 2023 14:18:36 GMT
date: Fri, 03 Feb 2023 14:18:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675433947866
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675433947866
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675433947866 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1309263523845305
date: Fri, 03 Feb 2023 14:18:37 GMT
akamai-grn: 0.274f2417.1675433917.8d7537f4
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433948021&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%2C%22pin_unauth%22%3A%22dWlkPVptRXdZbVEyTldNdE5tSTFZeTAwWVdKa0xUaGpPRGt0WlRjM05EQTBPVFk0TlRkag%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433948021&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%2C%22pin_unauth%22%3A%22dWlkPVptRXdZbVEyTldNdE5tSTFZeTAwWVdKa0xUaGpPRGt0WlRjM05EQTBPVFk0TlRkag%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%2217a54129-0B5F-4E8F-059E-A7CBA625DC3B%22%7D&tid=2613409966566&cb=1675433948021&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%225654d56d-5036-4e71-9ac8-7948937cb9e7%22%2C%22pin_unauth%22%3A%22dWlkPVptRXdZbVEyTldNdE5tSTFZeTAwWVdKa0xUaGpPRGt0WlRjM05EQTBPVFk0TlRkag%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
referrer-policy: origin
x-pinterest-rid: 2889492731983805
date: Fri, 03 Feb 2023 14:18:37 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZUWkJvaFlMR3JQU1FPTG51L0d4ZFdhVk0yN3pWR2U2RzlMdDlXRklzaVp1K3dpWmdxU0dKZHRYQlEvUHNwM2I1VmRRWDV6dEdQUG9Nd0NpUCt0NjA4b0VWcmNNcURvcjVuQjIvb21xR1MyQT0mNXBKM0pmZlpQaURHTFBrZFZuaTBUeHNyMUkwPQ=="; Expires=Sat, 03 Feb 2024 14:18:37 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675433917.8d7537f9
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675433947960&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675433947959.1182898021&it=1675433947335&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675433947960&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675433947959.1182898021&it=1675433947335&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675433947960&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675433947959.1182898021&it=1675433947335&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 14:18:37 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 569
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Fri, 03 Feb 2023 14:18:36 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 110200
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Fri, 03 Feb 2023 14:18:36 GMT
X-Firefox-Spdy: h2
api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675433947744&dre=l&callback=jQuery171008116611678417285_1675433947700&_=1675433947745
200 OK 713 B URL HTTP/1.1 api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675433947744&dre=l&callback=jQuery171008116611678417285_1675433947700&_=1675433947745
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (548), with no line terminators
Hash a803a15ad04c68a01d9df36c70ba848d
41b82e2a1e02bde51315559e20af1ed2d77c5a0c
5f39992dc1fdcaeaf6d609d2a7fab869683e9c04f4e5f9ebcbde4d43aadfa7f8
GET /z9gd/44282/themendico.com/jsonp/z?cb=1675433947744&dre=l&callback=jQuery171008116611678417285_1675433947700&_=1675433947745 HTTP/1.1
Host: api.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Fri, 03 Feb 2023 14:18:37 GMT
Server: Microsoft-IIS/10.0
Content-Encoding: gzip
Set-Cookie: TiPMix=84.36004760627205; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Powered-By: ASP.NET
static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
IP
File type ASCII text, with very long lines (2904)
Hash 410c4ad37a41f2f3896f83909053ff7a
2110052eac718916962a5ea540d3b30b32ac5ef7
8e4dd649737ec16db3f957d07e7d30c2b7d7aa856f7936cb4e82efd279305123
GET /onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"bcbd0c0287e477f1f5a4823d3d351754"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43026
x-served-by: cache-lga21943-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1675433918.556999,VS0,VE2
vary: Accept-Encoding
content-length: 1037
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1698344527157394
date: Fri, 03 Feb 2023 14:18:37 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675433917.8d7548e0
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
IP
Hash 579ebc5df7b10a10cf5fada1770efdcf
3845aa8e275e8853e55e9fd73ba20ac08dcbeb4e
354617d4b5d065c0e830ab597d15cc05edb23194bb7da4eacac42b009ece33f0
POST /s/gts1d4/EQZXquRt1Eg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
200 OK 163 kB URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16
IP
File type ASCII text, with very long lines (65436)
Size 163 kB (162816 bytes)
Hash 4ec09c0b03dc65497bbb131105e05700
2d651938bd094a1ac1ac43a28cab29649a34135c
2c5128758317b253b6e39925f02c3b9253753cbef3a76c960df2fb81c35809b7
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-01-30_12-16-16 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
etag: W/"daa9863945e7f04ac2f34376d1b561b5"
x-request-id: 931c4646dd2972f31e6cb7165c1cd5e2
x-runtime: 0.115502
access-control-allow-headers: *
cache-control: public, max-age=10761
date: Fri, 03 Feb 2023 14:18:36 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=105, origin; dur=213
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1
200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1
IP
File type ASCII text, with very long lines (19473), with no line terminators
Hash 0bfa5456347cd54654c3f1d42f7f342a
359e04c98caf7699616301882b207a2dae554d5f
f078d26a518c9567f25955df4109259c95604299a8ae9bae936397183e2eab29
GET /onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: XNCpk0Wf+0kNQoZn0WqLyXd5A0kmJTcSkjMOJcjDhQeXfG2L3C5wC6Pi4IySNR01ph9VbnLPNGM=
x-amz-request-id: K44T61YS7N6H1N4W
last-modified: Tue, 31 Jan 2023 19:58:24 GMT
etag: "b328f6ba1ae6daf7f77d0626cbe4faf2"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: dP3XE6gd0EW9ELGahXlBHoemygSvLtyK
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43049
x-served-by: cache-lga21965-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17747
vary: Accept-Encoding
content-length: 8050
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43049
x-served-by: cache-lga21921-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 16709
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43049
x-served-by: cache-lga21935-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 11173
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43049
x-served-by: cache-lga13621-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 11412
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
200 OK 30 kB URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
IP
Hash 25bdf4df16a779b602bf0ee48dcc94f9
59b9e84a01ba234b13578d9d18462f74104b2aeb
7c39e1266037ce901543078871cddb24af94cf79a14f58c771e69088f00e3e15
POST /s/gts1d4/EQZXquRt1Eg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-tracking.klaviyo.com/onsite/js/static.c73a89c306a5df965ecf.js?cb=1
200 OK 5.3 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.c73a89c306a5df965ecf.js?cb=1
IP
File type ASCII text, with very long lines (12678), with no line terminators
Hash dbb7bd6922465678a9160fc21708afa0
833c86c75ac9ac60ba23efe56e420d1ec04efc2b
d524cd297fc6eba2a72cc41e52ef193d0b46ad3077e0d06ab4a5cf992cad6791
GET /onsite/js/static.c73a89c306a5df965ecf.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dZStU0btn6riWyDw6CPAxdDwvpAWEFPl8/f3d3bih7ZHq0U+ttidquUpSypUQX/pmiUPPW25Cgf/RiX0dNCODg==
x-amz-request-id: 7VPC5FJ55WRWNX1D
last-modified: Tue, 31 Jan 2023 13:43:53 GMT
etag: "41c708bf794d51c90a54bbf4160bb148"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: _Xt5Vrr1FeBXdqV5_5T0X7HFo78SNGjz
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 43049
x-served-by: cache-lga21949-LGA, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17864
vary: Accept-Encoding
content-length: 5333
X-Firefox-Spdy: h2
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
200 OK 37 kB URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 923e80a169d4871d9544eb28d45f218d
69d6920e3dc9b2aea5fc4241058821188a199b30
310ca1b1dfdca118d2e9f98b7618ed468192ba044e04f83863a422f08dc7f0ea
GET /latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: d3fe4539-cbbd-41c5-b89d-469f4603b4f7
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"266d5-CE/pq7k08/+Q2xaaWuoPjR4SI7s"
date: Fri, 03 Feb 2023 11:30:33 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JVHOVh-V8kM3girhHtb3sE4TpV3CAYAzNm7q_BlHSvgHOiQON9YcMg==
age: 10083
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 1.3 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash d9d196b40a1597d3445e490bbd10dedb
2c558c2b41ae290a152dee08c068e59fb2658644
5f223833ab3c9626f5f74f2fb2b03c556d51604d9eb6b2325a906103b86162fa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 14:18:37 GMT
Last-Modified: Fri, 03 Feb 2023 12:30:05 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Qfv6RPOUSSr8iLclOkAlnOvA9O_7zN8jmidCUkx_N7hmeGy9j1to8Q==
Age: 6512
cdn.pushowl.com/config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify
200 OK 0 B URL HTTP/2 cdn.pushowl.com/config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
cache-control: public, s-maxage=15552000, max-age=15552000
date: Fri, 03 Feb 2023 12:52:27 GMT
x-request-id: 79e5ac8b-08cd-466f-87c2-029012b1feb6
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CfMsoUVYDdslifxJFIbecdUqxgvFTB69NIZw3wNncq2z2gUVqDTIVQ==
age: 5170
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
200 OK 8.7 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4232b58eaa8aa55accdcc83ca4e55f66
353ec8ddb7c6af22907f4dd9dd4304eb886d4989
109ceca2425354bc8551a95ad9dcd39b8961f086362b5a2c87696f1d8b6c53b1
GET /forms/api/v6/TB3zxy/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PdHlEPbXdqeqYsjaiQPG2KsSiyGKpSX0XWIQZ5/13MBqEBHBjwj0WOl7CaawOt5YudpMCVtbISI=
x-amz-request-id: NDP0KZ45YTRW9S9R
last-modified: Fri, 20 Jan 2023 18:19:01 GMT
etag: "13f63c5d98e04786c6180412dad4e5c9"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/TB3zxy custom-fonts/TB3zxy
x-amz-version-id: k03ojuQyxDsyHL_Wf8pUA4X4Rda0AwgO
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
via: 1.1 varnish
age: 574518
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675433918.946881,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 8705
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
200 OK 426 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
IP
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash 56e8c85f34892fb836daf242e0fc69fa
5954582684d8bf64d11624ba3884a0ca94704777
245623794867afc34103c9ba160a40ece4b8629b844f3454be2e648f8ab061e8
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:37 GMT
age: 8756649
x-served-by: cache-bos4662-BOS, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 628, 1
vary: Cookie
strict-transport-security: max-age=900
content-length: 426
X-Firefox-Spdy: h2
cdn.pushowl.com/config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify
200 OK 3.0 kB URL HTTP/2 cdn.pushowl.com/config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2955), with no line terminators
Hash c3972fe9918b96f039226b9cc02849b4
94e313159b4d0fcc82014cf121f70f9d17b15d57
226874d592da45b6464e8d89645ab13ee53cdea10ca5556bab913cac173f231b
GET /config/api/v1/themendico/subscriber/config/widget/?guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&platform=shopify HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 2970
x-request-id: cf05ec6e-679d-427a-8409-9b630bd2e9ea
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"b9a-lOMTFZtND8yCAUzxIfcPnRexXVc"
date: Fri, 03 Feb 2023 12:52:27 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XsKnaKRYT7rH-hcRyTQVC_V-kXOjg1hNRkPDw9JXPBMeCU1L4ZidBQ==
age: 5169
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
200 OK 645 B URL HTTP/2 insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
IP
File type gzip compressed data, from Unix\012- data
Hash e0096fd679c388ff4ae7e7b916dae52f
a19897df5fd83a3c0c5ddc5049bbc455fce0dbe2
58e58aa9d3750500f5eeb035c609a78efd6fecb16d74909dee361ae263bd09c8
GET /track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:37 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-monorail-edge-client-message-id,x-monorail-edge-event-created-at-ms,x-monorail-edge-event-sent-at-ms
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:38 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 86400
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: cda22421-b2f8-42a1-8bf5-43377bc26139
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smRu793LMhLNo5KbEBBZda3ZfuxTG3XUpvoFIx8FQAgCIqvfCqEeMW4JrlqlY4PNcjyY7NswwLyIoifxjfhlIzPCKJoMdkp97AWNXJMtIekrOwvAbeVJSy9EETo4z9lMLvlIxTlvSXxFlXu627s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=164.999962
server: cloudflare
cf-ray: 793bcc032d62b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css
200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:18:38 GMT
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Content-Type: application/json; charset=utf-8
X-Monorail-Edge-Event-Created-At-Ms: 1675433949075
X-Monorail-Edge-Event-Sent-At-Ms: 1675433949076
X-Monorail-Edge-Client-Message-Id: 68057929-3d24-41d8-8050-7e9f953db10c
Origin: https://themendico.com
Content-Length: 370
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:38 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 86400
x-request-id: 457573a1-292b-47ae-bfff-32a856b42ae1
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWgn624kO9rg2DxaFyfN2yQwzrPRFh9kfBUZ%2BVY5KjiTCswVNsB0ZbXOMSji%2B7HIzxMZeqBGqiMvIdITfh3cZS6IJVp645%2BkmR3KEfjov545A6Ob1l2v2tAeghz5VXJm2My1WYj9gVvr3OaH1nI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=120.000124
server: cloudflare
cf-ray: 793bcc041ea3b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
200 OK 135 kB URL HTTP/2 rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
IP
File type ASCII text, with very long lines (64728)
Size 135 kB (134809 bytes)
Hash 08a4267981a5d4459842f6342c2e8eff
b231e25e0c0b74ad30c6a59bed719670afad4db4
633affd0e74173608e2da0d596cdc22239bec58a7e7cfe70f3cb5de6102ac898
GET /load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com HTTP/1.1
Host: rudder-tracking.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:37 GMT
content-type: application/javascript
content-length: 134809
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
204 No Content 0 B URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 14:18:38 GMT
x-request-id: a73c1830-a3cd-11ed-a765-97b71289297c
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 900
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: authorization
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qovv5lGxnA8rPigXZ4l5zIPMGHotG3-DiHqCyMTRDtQk94L3QKY1fg==
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
200 OK 1.1 kB URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP
File type JSON data\012- , ASCII text, with very long lines (1107), with no line terminators
Hash 24a94cbdef9a5d8d3e92bc2bb028675c
b33d6ebfa62d1e6cd9e7602a5f0223cbf80bb159
50cbeaf0be4dfb31f1d2038cd466427dd2bf19cd98ab359283aba6b64986f92e
GET /sourceConfig/?p=cdn&v=2.22.3&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 1107
date: Fri, 03 Feb 2023 14:18:39 GMT
x-request-id: a76a0600-a3cd-11ed-925f-0966e5bd4208
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-expose-headers: X-Request-ID
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Wb3eRNNCQfNlRgSbMFKYc-inOIbJXyyEFpSiQt4B0uVyPPnKHe4Lng==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.avmws.com/1025221/?shop=themendico.myshopify.com
200 OK 1.6 kB URL HTTP/2 cdn.avmws.com/1025221/?shop=themendico.myshopify.com
IP
Hash 972fe3efbf300c5bf40de1bb251d1850
d8f59601f6250072909264eaa986f75fad7319dc
b1473ed3863acb669053c17b001ed3ebc209959466394e81457de03289ce5839
GET /1025221/?shop=themendico.myshopify.com HTTP/1.1
Host: cdn.avmws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 1598
date: Fri, 03 Feb 2023 13:57:47 GMT
server: Apache/2.4.52 (Ubuntu)
cache-control: max-age=3600
last-modified: Sun, 15 Jan 2023 05:27:39 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HpCdk4qchpEj5uzVyFApU8RufIgx2YTxnfJ9znWOFte6NWpuGF6bdg==
age: 1252
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 19:02:59 GMT
expires: Tue, 30 Jan 2024 19:02:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 328540
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=A888F8D43EB94ECB8CCF9C32CA845AD5&RedC=c.clarity.ms&MXFR=2B1804A54CC5674531DF160848C5691E
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=2B1804A54CC5674531DF160848C5691E; domain=.clarity.ms; expires=Wed, 28-Feb-2024 14:18:39 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 03 Feb 2023 14:18:39 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a6ce06a44fa560e9a9966f1def807b13
9d65a3b0cbf73d3df4cbd2b0d308ee7712d431fa
b7a83381165b3ba91b663fce33c2e3013943cbed35e0e98ac19a11e6fbb09c61
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 14:18:39 GMT
Last-Modified: Fri, 03 Feb 2023 13:08:21 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZclR4An1N3W5J02j49yB2T9BERJolre8Ilv3szreA_IG3IUrSObofw==
Age: 4218
themendicohqdx.dataplane.rudderstack.com/v1/page
200 OK 0 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:39 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 21499
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Fri, 03 Feb 2023 14:18:38 GMT
X-Firefox-Spdy: h2
themendicohqdx.dataplane.rudderstack.com/v1/page
200 OK 2 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
AnonymousId: N2I0Y2UwZmEtYTc3MS00ZjRhLWJlNTktYTMxMmQ1MmVhZjRi
Content-Length: 1757
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:39 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-origin: https://themendico.com
vary: Origin
X-Firefox-Spdy: h2
wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
200 OK 239 B URL HTTP/2 wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
IP
Hash c3d729082690548da7bc033c4504d485
3c438f73af0bdead663e0b514b29db7e9da6acff
39dd19ef268cf85e8ea17fb37e70039b03884d536dad6352f5d074d022428b23
OPTIONS /v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv HTTP/1.1
Host: wyze.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:40 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
steel.oneteam.ai/public/discount-app.bb9b27f98cd6001529b6.js
200 OK 0 B URL HTTP/2 steel.oneteam.ai/public/discount-app.bb9b27f98cd6001529b6.js
IP
GET /public/discount-app.bb9b27f98cd6001529b6.js HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:38 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Origin
last-modified: Wed, 15 Jun 2022 03:41:43 GMT
expires: Sat, 04 Feb 2023 14:18:38 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
iron.oneteam.ai/api/shops/themendico.myshopify.com/settings
200 OK 0 B URL HTTP/2 iron.oneteam.ai/api/shops/themendico.myshopify.com/settings
IP
GET /api/shops/themendico.myshopify.com/settings HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:39 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"f89-BSbidpiHJk9+mxxGJjH87D30pY8"
expires: Fri, 03 Feb 2023 14:19:39 GMT
cache-control: max-age=60, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
themendico.com/pages/subscriptions?utm_source=Klaviyo&utm_medium=campaign&_kx=
200 OK 0 B URL HTTP/2 themendico.com/pages/subscriptions?utm_source=Klaviyo&utm_medium=campaign&_kx=
IP
GET /pages/subscriptions?utm_source=Klaviyo&utm_medium=campaign&_kx= HTTP/1.1
Host: themendico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 300
x-sorting-hat-shopid: 60783493354
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=39a435df-c72a-4195-b24f-df36b4e615b6; path=/; expires=Fri, 03 Feb 2023 14:48:34 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Sat, 03 Feb 2024 14:18:34 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Sat, 03 Feb 2024 14:18:34 GMT
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=themendico.com; path=/; expires=Sat, 04 Feb 2023 14:18:34 GMT; SameSite=Lax
_orig_referrer=; Expires=Fri, 17-Feb-23 14:18:34 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2Fpages%2Fsubscriptions%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D; Expires=Fri, 17-Feb-23 14:18:34 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_y=5654d56d-5036-4e71-9ac8-7948937cb9e7; Expires=Sat, 03-Feb-24 14:18:34 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_s=ab7c7389-a7a1-4d12-8028-4395103099d0; Expires=Fri, 03-Feb-23 14:48:34 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_y=5654d56d-5036-4e71-9ac8-7948937cb9e7; Expires=Sat, 03-Feb-24 14:18:34 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_s=ab7c7389-a7a1-4d12-8028-4395103099d0; Expires=Fri, 03-Feb-23 14:48:34 GMT; Domain=themendico.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:412d251e67ee88807f10a89a718e441f
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 60783493354
x-shardid: 300
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 036f17c5-2b63-4285-b406-bbddb87fd044
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ABg81WNuWUkf5h1TWhr7Q7meAPpljlsLLaQoU%2FwsNW2K1GGrA%2BDwsY1%2BgblDvQ5rgQhwUXpIT4g12R%2FXp%2BX0A%2FeiMd4b%2FAciShnC%2FJlDFi3A%2FfooJXL9gP364LkfxIe5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=27, db;dur=14, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=271.000147
server: cloudflare
cf-ray: 793bcbee5c201c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 54eb9665-9b68-4333-aba4-1374a2744b97
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 31 Aug 2022 03:59:46 GMT
cf-cache-status: HIT
age: 252892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WRpJIUKNa8Kixv7U4W0mhsUAs6zv%2Bf0fRLchLw4uGCMfuZqz55sL%2BYyc%2B9UqSLOXiKvzkgHcUm0%2FZaUx76JNwVVHLky7ZKMIKmm6sGjXLYW%2FkS0BBB1kfGpv6cBVMmaExg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.706, imageryFetch;dur=23.538, cfRequestDuration;dur=27.999878
server: cloudflare
cf-ray: 793bcbefdf3c0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/app.js?v=21512433002930479311675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/app.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4c3b1c19-2a58-41ff-961d-5cbe8afb9eff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gkppXSIs5NBQhC%2BxbvUyc82bKidyst8iu8mD8L4vnwTUmzXco9MHw6fLwkEHr2hSr4g%2FGLxCi4YMy9GVmRgJSEmAIODQfkQ1awD7R61myFrVMKsDPNeb3FMPtFAkU%2FVhfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=63.667, imageryFetch;dur=57.401, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 793bcbefcd910b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/styles.css?v=80714631132865287841675285271 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9aaa5486-6757-421b-aed4-4171d77d3815
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 21:04:51 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2BLqg9gYbNED11XAqN%2FBfTIF%2F4DeIIDKaTZJs%2Bi8iOeiC8rIZjfrSLkjB57LoTCOw0diEzAk7l6UZIwnCWHx5CSk9hM0PCkWHLYx%2FW7UNzdZudk7B%2FyL8IE%2B06XcxwRNrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=139.320, imageryFetch;dur=94.381, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 793bcbf01df00b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
steel.oneteam.ai/client-version
200 OK 0 B URL HTTP/2 steel.oneteam.ai/client-version
IP
GET /client-version HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:38 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
access-control-allow-origin: *
expires: Fri, 03 Feb 2023 14:48:38 GMT
cache-control: max-age=1800, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
iron.oneteam.ai/public/widget-loader.js
200 OK 0 B URL HTTP/2 iron.oneteam.ai/public/widget-loader.js
IP
GET /public/widget-loader.js HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:38 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-powered-by: Express
last-modified: Wed, 28 Sep 2022 13:15:10 GMT
etag: W/"9ad7-183843ca330"
expires: Sat, 04 Feb 2023 14:18:38 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
iron.oneteam.ai/api/shops/themendico.myshopify.com/discounts?type=automatic
200 OK 0 B URL HTTP/2 iron.oneteam.ai/api/shops/themendico.myshopify.com/discounts?type=automatic
IP
GET /api/shops/themendico.myshopify.com/discounts?type=automatic HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:39 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"30-2WuQRWie+GVVNEl6+7S1SqsiEQY"
expires: Fri, 03 Feb 2023 14:19:39 GMT
cache-control: max-age=60, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/fancybox.css?v=19278034316635137701675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/fancybox.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a393d868-6474-42e2-938a-95e2b12d598e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Thu, 02 Feb 2023 14:04:57 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pdsuAt1u18ttoGDLsaYzDZYbjmrrYZoW4FQ24Qa%2BJYxeuKSjVzY33QmKaY9iJCQwMli%2Biq0yQ5SBHIxtt3IGhAhdKTkx2si2ooVXRCGT6t9Hy%2Bn80E2vgyjoFkWIwXpEMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=114.384, imageryFetch;dur=112.709, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 793bcbf00ddb0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364
IP
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638108756382468364 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:36 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=1568742
content-md5: Yk4SgF3mj09PNJXuZIgiGw==
last-modified: Wed, 01 Feb 2023 19:15:00 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a3d9aaae-101e-0016-4780-36d9ae000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 66856
expires: Sat, 03 Feb 2024 14:18:36 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793bcbf97fe71c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638108757000999351
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638108757000999351
IP
GET /static/fb_lightbox.2.1.5.css?cb=638108757000999351 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:36 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6016
content-md5: q4B4xYJoZwx9ikt94o1nCA==
last-modified: Wed, 10 Apr 2019 19:06:17 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Wed, 10 Apr 2019 18:50:43 GMT
x-ms-request-id: ea38d881-101e-001d-509c-36c1da000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 126593
expires: Mon, 06 Mar 2023 14:18:36 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 793bcbfaa95a1c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
200 OK 0 B URL HTTP/2 steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
IP
GET /public/discount-loader.js?shop=themendico.myshopify.com HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Fri, 03 Feb 2023 14:18:37 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Origin
last-modified: Wed, 15 Jun 2022 03:41:43 GMT
expires: Sat, 04 Feb 2023 14:18:37 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/sections.js?v=34438141566735436391675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/sections.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 762ce07b-43aa-46ee-a8aa-ad0abe797d41
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Thu, 02 Feb 2023 14:04:48 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUJl8AoVRMlnGkmLEC%2BZOjAKW3r0KR0I%2F8rOVMyFMdLkybN10YamiA9byhFP5TUDlnCP1yS1L0mbP0R9p94AIeJiDQxM4ikdj8qZ9bkiE3mgWz7ITW5ZCu4t7vYVS1PNKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=57.409, imageryFetch;dur=44.897, cfRequestDuration;dur=42.999983
server: cloudflare
cf-ray: 793bcbefcd8d0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
200 OK 0 B URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
IP
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-ratelimit-remaining-minute: 4999
x-ratelimit-limit-minute: 5000
ratelimit-remaining: 4999
ratelimit-limit: 5000
ratelimit-reset: 24
correlation-id: 2977aa23-d3a7-431b-a623-776d5cc47417
x-kong-upstream-latency: 57
x-kong-proxy-latency: 12
cache-control: public, max-age=10800
date: Fri, 03 Feb 2023 14:18:36 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=10, origin; dur=166
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
IP
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:35 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2532
content-md5: VEusMqXpmvxAk/gFz0gKdg==
last-modified: Wed, 01 Feb 2023 19:15:00 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6948c9b5-301e-0067-6780-36ab97000000
x-ms-version: 2009-09-19
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 793bcbf04df01c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js?v=20092422000980684151675284193 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/24/assets/instantclick.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3192a378-a2ea-4287-b2eb-3469c0d37f91
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 20:43:19 GMT
cf-cache-status: HIT
age: 66855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2BfkXD8Z5KtYn5CLfVh9QfvO7pk91k1XEkfpDJ9ro8XIBqij2p8Ig9Y28COXbTAtV0saZsACDq%2FNtTlqk%2B%2BNTzAvVA4GBIPBOJCwa5CnuAly9spVvt5S9PeH5Dg7tC%2FQ7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=51.108, imageryFetch;dur=50.917, cfRequestDuration;dur=29.999971
server: cloudflare
cf-ray: 793bcbefcd930b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:18:34 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b8ef5e2d-30f9-41f6-acc1-644eb84f9126
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 04 Jan 2023 20:17:32 GMT
cf-cache-status: HIT
age: 126595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nJ29ZyeZISTQ7GikpNNd8QbBMy72hOhax8Fqh0OsJIUodz%2FXcP0vdmvfCv1mHMGds2%2FL%2BcczrLlSMAKsyeAa9YRbhQLdHKSAlX5adLciILc3ai7FqvlBaTvw8AMx%2BllaYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.130, imageryFetch;dur=21.936, cfRequestDuration;dur=18.999815
server: cloudflare
cf-ray: 793bcbefdf420b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
54.37.232.151
172.64.155.188
23.38.200.197
185.146.173.20
104.19.211.131
93.184.220.29
3.122.117.250
23.227.38.65
157.240.205.11