r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11967
Expires: Tue, 07 Feb 2023 07:53:28 GMT
Date: Tue, 07 Feb 2023 04:34:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20348
Expires: Tue, 07 Feb 2023 10:13:09 GMT
Date: Tue, 07 Feb 2023 04:34:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8466
Expires: Tue, 07 Feb 2023 06:55:07 GMT
Date: Tue, 07 Feb 2023 04:34:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 03:34:06 GMT
content-type: application/json
age: 3595
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: B0eXZxCmvyZd8nEcew4IdP695ZsmpP1DtPuo2UT0TPFtdgJ6TNb3gK5LUWn5M02I+vlvSFP+smU=
x-amz-request-id: S0J16XZWTH6KC15E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 03:35:22 GMT
age: 3519
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:34:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 03:51:19 GMT
age: 2562
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Tue, 07 Feb 2023 07:37:00 GMT
Date: Tue, 07 Feb 2023 04:34:01 GMT
Connection: keep-alive
tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DaWdR_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUBblFD6modvY0imKsE4rs2c4Dxxha7go6lEIO8MT-2BMF-2FKOab5fhgBPJ3F3ykOmD2A2P-2FGrXoVwSd-2BWpBHjueM3128Zp8RVmYsKzkpkTHCATYB-2Fuliuf245hmG7N1saMU6hMl6y4TDLTckvPcpW7a0exSBKXesAKDx6TofOQYiHJb0pTAmb5o12UvRuTSiSdhY-3D
35.71.157.226302 Found 2.1 kB URL HTTP/1.1 tracking.walnutadops.com/click?aff_id=2&offer_id=343&url=trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DaWdR_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUBblFD6modvY0imKsE4rs2c4Dxxha7go6lEIO8MT-2BMF-2FKOab5fhgBPJ3F3ykOmD2A2P-2FGrXoVwSd-2BWpBHjueM3128Zp8RVmYsKzkpkTHCATYB-2Fuliuf245hmG7N1saMU6hMl6y4TDLTckvPcpW7a0exSBKXesAKDx6TofOQYiHJb0pTAmb5o12UvRuTSiSdhY-3D
IP 35.71.157.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (987)
Hash 55ae33a69bfe7c7922068445093b64dd
ade11e32393af11171b6312d9f1f0c9d67626372
f4220c2047e79f450ab73447b64698315925d9be26abacd42a4fcd2115aef811
GET /click?aff_id=2&offer_id=343&url=trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DaWdR_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUBblFD6modvY0imKsE4rs2c4Dxxha7go6lEIO8MT-2BMF-2FKOab5fhgBPJ3F3ykOmD2A2P-2FGrXoVwSd-2BWpBHjueM3128Zp8RVmYsKzkpkTHCATYB-2Fuliuf245hmG7N1saMU6hMl6y4TDLTckvPcpW7a0exSBKXesAKDx6TofOQYiHJb0pTAmb5o12UvRuTSiSdhY-3D HTTP/1.1
Host: tracking.walnutadops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 07 Feb 2023 04:34:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.10.3 (Ubuntu)
Set-Cookie: ohbid=00ce5f71-f2cc-4f32-8e60-34c6020ff726; expires=Sun, 07-May-2023 00:00:00 GMT; Max-Age=7673159; path=/
ohb_visitor=af84a488-1200-3f23-8ec0-5d3bc2f263f0; expires=Sun, 07-May-2023 00:00:00 GMT; Max-Age=7673159; path=/
oh_ssn_343=1394cfa4e17a4a61ba67188a4b0a4a0e; expires=Tue, 07-Mar-2023 00:00:00 GMT; Max-Age=2402759; path=/; SameSite=Lax
Cache-Control: no-cache, private
Location: https://trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DEtM7_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUSzjZKVn9R-2BpFciq-2BgGEXxMQWfEw6C5fhjM1U0jJ6DXdx1Hl1U7kJ7dgYsjY52pu9g04gd-2BO8IyTdrWNYbSyOFgU8SqNLV-2B2lPgyE42N6KjXX8LSQbnG-2BOBExkKmltiA3ZlisU9zhpkh8ozvTDu3ejUe30KGDM0TT6DIf7frraGX6IUeYc1GyWrK-2FDMZ2QHN4-3D
push.services.mozilla.com/
52.35.140.96101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.140.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P1+a05YpYVLwcK7cKyb99A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: snCT5vF1TNHT3Gcg/QzigRyIiZs=
trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DEtM7_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUSzjZKVn9R-2BpFciq-2BgGEXxMQWfEw6C5fhjM1U0jJ6DXdx1Hl1U7kJ7dgYsjY52pu9g04gd-2BO8IyTdrWNYbSyOFgU8SqNLV-2B2lPgyE42N6KjXX8LSQbnG-2BOBExkKmltiA3ZlisU9zhpkh8ozvTDu3ejUe30KGDM0TT6DIf7frraGX6IUeYc1GyWrK-2FDMZ2QHN4-3D
54.230.111.71302 Found 98 B URL HTTP/2 trk.klclick.com/ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DEtM7_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUSzjZKVn9R-2BpFciq-2BgGEXxMQWfEw6C5fhjM1U0jJ6DXdx1Hl1U7kJ7dgYsjY52pu9g04gd-2BO8IyTdrWNYbSyOFgU8SqNLV-2B2lPgyE42N6KjXX8LSQbnG-2BOBExkKmltiA3ZlisU9zhpkh8ozvTDu3ejUe30KGDM0TT6DIf7frraGX6IUeYc1GyWrK-2FDMZ2QHN4-3D
IP 54.230.111.71:0
File type HTML document, ASCII text
Hash 209b5545236887fc823e0e30b41de9e7
96b057d0f080da42fdb6a63d8700a8edbb03a021
4e2492b10b0a0b2ea7fdb79c7b9e53e48468cb34a72b6dd98bb72f9212fcd184
GET /ls/click?upn=QWw9D933BawNEgfQosgkxzbcITom16Pb19UDm61uz5TsuGfMJQmc1KqsIZMumIqkIdMX7oMmF0n2EMdwsA4p1cB2aUiDFNdGLec3PJ9N3VI-3DEtM7_f5CCQS0N95iO0XGkG5jjb5Uy5bhTvC5LB89od7qNrL-2BmDSeANzitM5DR1AiyyqmuXhRDgY-2F-2FkE-2FwDjxX1WlkNmE9k3U2UihmK8Nw0dlIMjUSzjZKVn9R-2BpFciq-2BgGEXxMQWfEw6C5fhjM1U0jJ6DXdx1Hl1U7kJ7dgYsjY52pu9g04gd-2BO8IyTdrWNYbSyOFgU8SqNLV-2B2lPgyE42N6KjXX8LSQbnG-2BOBExkKmltiA3ZlisU9zhpkh8ozvTDu3ejUe30KGDM0TT6DIf7frraGX6IUeYc1GyWrK-2FDMZ2QHN4-3D HTTP/1.1
Host: trk.klclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 98
location: https://themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
server: nginx
date: Tue, 07 Feb 2023 04:34:02 GMT
x-robots-tag: noindex, nofollow
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qH_cMsVCud4z4dSMS4uIRVat3ILGmduwnRvKpqpODN_d6A2O-bVyVA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a60949cf27368025d89807f71455ea54
66ea7a35506bad96338928c1f11469309203dbf5
0006037c1980a0ba5bc8eb6fc06a62143be5325b6fcc922312178eccc34088f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0006037C1980A0BA5BC8EB6FC06A62143BE5325B6FCC922312178ECCC34088F1"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 07 Feb 2023 10:34:02 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a60949cf27368025d89807f71455ea54
66ea7a35506bad96338928c1f11469309203dbf5
0006037c1980a0ba5bc8eb6fc06a62143be5325b6fcc922312178eccc34088f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0006037C1980A0BA5BC8EB6FC06A62143BE5325B6FCC922312178ECCC34088F1"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 07 Feb 2023 10:34:02 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_Rollover_300x.jpg?v=1675210610
23.227.60.200200 OK 18 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_Rollover_300x.jpg?v=1675210610
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 336fb1bef1b08cbb34705833d2f115e0
fcda72cbbab85be92f044dff9dd61b28f37c2f2d
e899548d70902cba6c427c727d0a2a35cef8e9f3c9ef3936da8bc00edee1d7cc
GET /s/files/1/0607/8349/3354/products/FS_Salts_Rollover_300x.jpg?v=1675210610 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/webp
content-length: 17602
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_Rollover_300x.jpg>; rel="canonical"
source-length: 174720
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 63e676df-4e8d-456e-be2c-6f2c62c0bc52
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 00:21:40 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GqoXqm0h%2B1rUu1ZgEKSikTbslpblltlmDXqKXmKuDcs3%2FxgxQSWIIVmy9Gl%2B5JbusogyibRma2bijjsDQMeNYKtSCfgBgHS9Z5%2FJjdQwxQgPa0dH7lSe%2Bm%2B71U%2BCZCKrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=707.575, imageryFetch;dur=32.433, imageryProcess;dur=673.411;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7959692f6e7cb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
23.227.60.200200 OK 7.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 3d2f76b468a88446ef68ab7477d88e33
cd03ffbb9e2c1362ba2833722478e29b01d87390
b30170163adc986811433c083d4e192cf3e9b1b11ac8d3f0b022b7a3e075bd65
GET /s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png?v=1673924766 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 7572
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/files/Mendi_Logo_410x.png>; rel="canonical"
source-length: 18592
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 8afc2b2b-f414-4946-8419-1062acc9ce1c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 20:55:34 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lRABG4rOg7rEv8Rb9sRAtZuWz9he67OZZ8O1mzYUxE%2BB53H5homqANQE09An1YxpZQDZHsd%2FXR%2FgLsNd3Z2%2BTjwQhZA5zBV%2B1jqnFXj2JAMYsrN5TyIgTXpDNfK1PJ0f8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=865.851, imageryFetch;dur=54.812, imageryProcess;dur=810.298;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7959692f6e7ab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_LemRos_Front_O_300x.png?v=1675210610
23.227.60.200200 OK 6.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_LemRos_Front_O_300x.png?v=1675210610
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 0549f9ab83cad47ba0e152b5647da337
f7468349c892edf8124a99dfceb146940b47c721
415b8a0e5e0ef9009cb41a96a3c41af697ce644751bad507716dd2b57e1462a6
GET /s/files/1/0607/8349/3354/products/FS_Salts_16-300_LemRos_Front_O_300x.png?v=1675210610 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 6858
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_LemRos_Front_O_300x.png>; rel="canonical"
source-length: 671334
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: bd80f76e-2c81-4ba0-80bb-d4d0a9bc52f0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 18:28:36 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=henMMZtic%2BlNVY3tYXuLWKyvEg19djfHavd7UDYkm%2BJeds30zgNhYDUhq52LiYYdMG%2FGXZM3%2BADVieStKX3FO8DbU4VCjIy5XquM1E%2FXGMh4e%2BVeiEitoa9ssHIw9pU7Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=700.008, imageryFetch;dur=124.177, imageryProcess;dur=574.353;desc="image", cfRequestDuration;dur=8.000135
server: cloudflare
cf-ray: 7959692f6e7db4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_LemRos_Front_300x.png?v=1675210610
23.227.60.200200 OK 4.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_LemRos_Front_300x.png?v=1675210610
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 543357e6514609e4fb2281f34dc1fc52
0d75bd9751db2072ea935565d18fdd41bf414cc8
74e26e9f7145122264de8c1b30b8b6f30cb0e2825f921dfcbf038787923d9f43
GET /s/files/1/0607/8349/3354/products/FS_Salts_4-75_LemRos_Front_300x.png?v=1675210610 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 4491
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_LemRos_Front_300x.png>; rel="canonical"
source-length: 429995
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a5c16c19-c16e-4ac5-a4ad-5f43ed39e50f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 14:57:38 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x1rGaZWRqg4efVjIhOEvqug9z%2B%2F%2B24zZWT%2BoNv8WLtsQxPglkHpbQaG4wYfso8lAljWKFg%2By3YPQcESei0%2BidAvuYom5I1ikEDaFXhzNWtZVK27M8ZSKd8eie78qcKhkcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=443.999, imageryFetch;dur=103.680, imageryProcess;dur=339.663;desc="image", cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7959692f6e7eb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_Lav_Front_300x.png?v=1642618285
23.227.60.200200 OK 4.3 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_Lav_Front_300x.png?v=1642618285
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 9cf6b57d0122a19931d3aa3fa564b13c
eefe4cd1859346da9da65cb10168627e6a98028c
2bffa0e4b400335d3ef038aeea6fb30af897d2ef70d814f4f245303cb9aa37e5
GET /s/files/1/0607/8349/3354/products/FS_Salts_4-75_Lav_Front_300x.png?v=1642618285 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 4262
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_Lav_Front_300x.png>; rel="canonical"
source-length: 428698
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 2229d95d-9843-474b-9ad6-9641e33d25c4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 08:35:36 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=owPYcD5vNG9iFZDWzcn07VmrzFMpxiEi3iVwjG0qh3nQww5KUdZccBV7JfUxZ%2FKNjn3BHuF3RsRkCpan4aaOqyTXpFx5GCRsNbPobZB4%2F%2FFxXh%2FT%2FTvWHLmTVqZ9QhwDpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=461.732, imageryFetch;dur=50.627, imageryProcess;dur=410.077;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7959692f6e81b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_SanWoo_Front_O_300x.png?v=1642618285
23.227.60.200200 OK 7.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_SanWoo_Front_O_300x.png?v=1642618285
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash c5638ea59b8ef1df5e11f15ece86e974
7df723d5fa737b6b54506c66d193e9ef4793211a
d7ff601b95c5aa3c2e5dfe60050d19c80b5ad9f8d8ba6c4862d1a58c07b1712b
GET /s/files/1/0607/8349/3354/products/FS_Salts_16-300_SanWoo_Front_O_300x.png?v=1642618285 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 6952
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_SanWoo_Front_O_300x.png>; rel="canonical"
source-length: 683231
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 27aada11-302f-46ff-8c42-be10e127d404
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 01:42:44 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2EiwlYF2lSohXanK3r48qvKd9STXTMmSuefgngnyPJYymORANwHi7%2FvJ%2BOMMS4c3XKeTbg%2FgM3GuzDGQq9xiGiogDIwuGQVxwgo3ZpWQULJUlilA%2FxmT7DzHfeVJ74rCcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=721.543, imageryFetch;dur=41.953, imageryProcess;dur=677.316;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7959692f6e82b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_SanWoo_Front_300x.png?v=1642618285
23.227.60.200200 OK 4.3 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_SanWoo_Front_300x.png?v=1642618285
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 2d3b109eed85a330f7664aa42e45d583
afaee90fba95dace0f80b1525d6695fcbfa99312
2fbef5cb64d4ef58b7a1f88f78d7b97194d3274cdd91dee5f0877b5c0eab16df
GET /s/files/1/0607/8349/3354/products/FS_Salts_4-75_SanWoo_Front_300x.png?v=1642618285 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 4331
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_4-75_SanWoo_Front_300x.png>; rel="canonical"
source-length: 430005
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0fbdf10d-a20b-46fe-ac78-2bd1a618bd55
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 08:35:36 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tp0UJ0Q0JFz1dyl8T1cThAUF8T02GTzR1PJmGNHfKDf6GdoUWB6ViJ%2B5GSVw03CDluW6SL6VRt5EYwZ4kdoUVoFC0AvJBscExhY0S8%2Fm2JQQAUwdCBitVdmjM%2F1k5c59xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=573.407, imageryFetch;dur=56.180, imageryProcess;dur=515.993;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7959692f6e83b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.typekit.net/eck1mer.css
23.33.119.19200 OK 858 B URL HTTP/2 use.typekit.net/eck1mer.css
IP 23.33.119.19:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 747e4980da3a0a36331c3771df1ad644
73da7e3fa4c7e486771405b16cfcbd434999bc81
ccad877caa1c5b5ddcf6f853cec9e09dca933ad6d55d9f8344f6317ca8fc28e3
GET /eck1mer.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 858
date: Tue, 07 Feb 2023 04:34:02 GMT
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_Lav_Front_O_300x.png?v=1675210610
23.227.60.200200 OK 6.7 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_Lav_Front_O_300x.png?v=1675210610
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash b337c9648624e135309d3c4aba36146a
d1934708ce2da0615b6e093f51b72c7ac81e6f42
08155c442d86cf3070018a86af146e2e834fb2457dc77cce7947520b63d1eada
GET /s/files/1/0607/8349/3354/products/FS_Salts_16-300_Lav_Front_O_300x.png?v=1675210610 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/avif
content-length: 6703
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/products/FS_Salts_16-300_Lav_Front_O_300x.png>; rel="canonical"
source-length: 661670
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 1c15a877-e59f-447f-aacd-3cf598f30288
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 16:15:12 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v7BXR1aQYSA3a6bUBJGCVs73aJDTenzxm1GUsQ5D3C5y95zqwad1V7uLHws%2F3y0NyPEJxAu29HEbnUdvaf6CoJfIgZ6h1ay50cekk8hC8AQI4yPDPjFf3zVv5WhUPO85fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=745.754, imageryFetch;dur=136.003, imageryProcess;dur=608.591;desc="image", cfRequestDuration;dur=19.000053
server: cloudflare
cf-ray: 7959692f6e7bb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/soldout.png?v=12033488525615444041673800107
23.227.60.200200 OK 1.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/soldout.png?v=12033488525615444041673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash e3866c634dcfce8343d8414235fda7d4
a4c47a6eb42875aa7294d79cf7faf1e95fd57294
219bcdb1d6549bfe3c60b563904793b5b536276ae462f33b3b9ba705cddf8562
GET /s/files/1/0607/8349/3354/t/22/assets/soldout.png?v=12033488525615444041673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/webp
content-length: 1596
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/soldout.png>; rel="canonical"
source-length: 3057
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 67d24eb2-6c7c-4eb8-bd26-bfe8948e4705
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 06 Feb 2023 05:11:08 GMT
cf-cache-status: HIT
age: 31897
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I8zCGolwV4f1XUhc%2FScXa9BA8%2Fr%2FQP1oDjHrf8pur0%2BC3AgMGVrDx6qRYE7g5SC5wk4Bshc%2BVnb%2FRqAzqI%2BDqv%2BW8A6ZbwcV%2FfGsu5iB1NcbLJ773NRHV12hxXdvsDhTew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=115.927, imageryFetch;dur=35.773, imageryProcess;dur=79.243;desc="image", cfRequestDuration;dur=18.000126
server: cloudflare
cf-ray: 7959692f7e86b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
151.101.130.133422 Unprocessable Entity 429 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP 151.101.130.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4511e5857c773e2bfa3779618f34ee29
c8015e7d1549d3edfab8dfd61d19d3262fa1baf1
8d4b94b6bbbed749377caca05f9d6d0338baa8578a9ce813e5464640102c67b7
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1652-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675744443.841516,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5430c15a5352500a21eb5f2fbc266919
e3bb7c69a61e67859dfbbda01cce8f75ae34121f
cac43426bdb33d539acd4e433dd50cc7250d9520a83c551aaea6a9073733243c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4085
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:02 GMT
Etag: "63e118f4-117"
Last-Modified: Tue, 07 Feb 2023 03:25:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4867
Expires: Tue, 07 Feb 2023 05:55:09 GMT
Date: Tue, 07 Feb 2023 04:34:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.typekit.net/p.css?s=1&k=eck1mer&ht=tk&f=15488.15493.15494.15495.10875.32265&a=7276009&app=typekit&e=css
23.33.119.26200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=eck1mer&ht=tk&f=15488.15493.15494.15495.10875.32265&a=7276009&app=typekit&e=css
IP 23.33.119.26:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=eck1mer&ht=tk&f=15488.15493.15494.15495.10875.32265&a=7276009&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:02 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
142.250.74.168200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-2NNX47L0B6
IP 142.250.74.168:0
File type ASCII text, with very long lines (29702)
Hash ab624d84a78e1bcf19a9c286c90b6f6f
857034af8ca6746d4b1d633ed0368cf3c660fbad
95446d9532a7b631ee12cd52884184425166bfa2b8b25dc05a7b2e1d8d7e130c
GET /gtag/js?id=G-2NNX47L0B6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 04:34:02 GMT
expires: Tue, 07 Feb 2023 04:34:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/fancybox.css?v=19278034316635137701673800107
23.227.60.200200 OK 3.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/fancybox.css?v=19278034316635137701673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12795), with no line terminators
Hash 117072fc4b81681ca96bd25d9a2a613c
aa7cb4f8ecb3770b7758d4a22434256b3ae27c9e
bb34a03e841bad0b24682ec97a0c356f012096b80cbeb4e0afef652a324a6ff2
GET /s/files/1/0607/8349/3354/t/22/assets/fancybox.css?v=19278034316635137701673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/fancybox.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 95632e09-9101-4ed6-b05f-ae8574bb278e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DxEyMuK4mC5JuX%2B4uM5jrBDAoGv6KUtqdUTEXeLoquAg3xl%2FZB4CWZ%2FoQnxcuaLZMW7nLstqj7kykvvB6bYlqj4nmNh6pOD1QdBV5J6Ksy0fKab2U12AlI4759emrbWf1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=68.047, imageryFetch;dur=65.939, cfRequestDuration;dur=85.000038
server: cloudflare
cf-ray: 7959692f6e75b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/utilities.js?v=139251749790465216971673800107
23.227.60.200200 OK 57 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/utilities.js?v=139251749790465216971673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (481)
Hash 714acdc8c8064114aabd60381c11c700
e2992f3bd014a02d6afcf9e400f7da63ba9d2a25
f0500a1a73451d6bffc4dcf0a8d93c243395b3b7adb92b4342077a7812892380
GET /s/files/1/0607/8349/3354/t/22/assets/utilities.js?v=139251749790465216971673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/utilities.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 32b5da09-fa22-4259-9b68-0bd1b7930845
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MvgjOpRasHEfV3b9fILAYBK%2B14a0XbIkh%2BckS9HYJ9KS7ZVbpUqE7eF5TtW986wJnd3MJlipPC6ul0Fayvt3qaKSZeq%2Fl3dHRnTjJ%2B%2BkO2HoPFz5f130GjeRwpyEWB%2BdrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=113.815, imageryFetch;dur=107.615, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7959692fbeb1b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
151.101.130.133422 Unprocessable Entity 25 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9
IP 151.101.130.133:0
Hash dfad0ad2dd43dc08ed8929f7fb700876
69ac5da916387a3815546d9140c966ecc2a36980
ab408e6b6868cce0a1f88641b39a48fb7b65646874886bdc47ef2f31c6ac57c1
GET /onsite/js/klaviyo.js?company_id=pk_c2bd9d23c29e5df20d60058ba37364a3a9 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 422 Unprocessable Entity
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1652-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675744443.973836,VS0,VE0
access-control-allow-origin: *
content-length: 429
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 12 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9b9150dda11f3dd749235d6c22c6823
1765fc6832868d95371440592d0d55a52d0b0b95
d76009ef168b7cefab31f00a67e13b1cfb3c20d9f8d7dff04892ff094cbdbc76
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "966EDC9F371B76C490977812FFB7CDD0EFDBF6934FB4C1892908AFD81F1C50BE"
Last-Modified: Sun, 05 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Tue, 07 Feb 2023 07:24:04 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 834 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6fb3e5488bfa71105177167e0407e93c
edff08be443a3e5a02b21c46ef3ae4a3815c08ab
5a80864002c510a3c58fb91df0322b277f1e1ff0edee56c5731ceb01920c592e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "966EDC9F371B76C490977812FFB7CDD0EFDBF6934FB4C1892908AFD81F1C50BE"
Last-Modified: Sun, 05 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Tue, 07 Feb 2023 07:24:04 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
185.146.173.20200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18572, version 1.0\012- data
Hash e5fa0125371505dd88abca33a246f1c1
e01288c0d2e8e4f4101819b750499a38c41ed953
f0278bfcc725c8f63b4bae648d7835600230e721452adc2d97dc5a9c313d6c6a
GET /helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=37f75f019b8e4d38646daa10f4219f6b3556fad7efc9f720384aa1b512732ddf HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:03 GMT
content-type: font/woff2
content-length: 18572
cf-ray: 79596930f8fd0b59-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1245201
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:39 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n3.e01288c0d2e8e4f4101819b750499a38c41ed953.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: d0fdab59-dc41-4626-8c7e-56caddf93fd4
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ORelfoX6g1yqqhpehMADy3hbUIPaqImxfgiogpxi7Pg8xKZdwBnoFjwhDLkEIkW%2B71s6A6W%2BFgAodsQb%2BHrXs8RNRTRKMrjc4ayO2x3GGwRY%2Fp1IMEYEb%2F2BYeBxm1gT2swGnB4B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=58.914, imageryFetch;dur=58.445, cfRequestDuration;dur=6.999969, cfRequestDuration;dur=15.000105
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
185.146.173.20200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19252, version 1.0\012- data
Hash 3081ae959e35d7dfa394138443e9095e
fe093fe9ca22a15354813c912484945a36b79146
de60693f31597c2ec2c1bd972d15900b6bb7be2bcc19db7b71bd171469b7dbe0
GET /helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=3b754dbce2f8011f84bf16b8a629a959f0a4cd493717423b3b670eebf12bbbd1 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:03 GMT
content-type: font/woff2
content-length: 19252
cf-ray: 79596930f8fa0b59-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1245245
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 1f86b4c6-a82a-4311-a033-604d0130ff9d
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aR1LBvzfnrE32uqghMvfUKB4vF%2Bgfn4M8r6nRGFURcTyLQOVcpw8c4yuNzRhTQiRIagY2%2F1bn7lPbL845a4lTDcUpFXt2FEmImO%2BOHlzQFcbMzRFg7bzPxXLpbFtoq3PfKy%2Bamul"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=38.601, imageryFetch;dur=38.245, cfRequestDuration;dur=8.000135, cfRequestDuration;dur=54.000139
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
185.146.173.20200 OK 22 kB URL HTTP/2 fonts.shopifycdn.com/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 9721a7e54ec4fb914bae070b17d9f686
e9114ab3f52fa37acb8528f242a50836d3efd54c
60284054c3b4900c5c08c012393b61821211c3066fa7c066226c080213aa0727
GET /helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=bW9tZW5kaS5jbw&h2=dGhlbWVuZGljby5jb20&hmac=65ec621a07cca66b9dc1b02c26bcdfaa3711a5e7e721295f66ebf08eba3217f2 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themendico.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:03 GMT
content-type: font/woff2
content-length: 18784
cf-ray: 7959693109010b59-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1245246
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 11:01:24 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 86106b03-cab7-4c7e-ab74-4aee1cb6723a
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8QFj0goJFzQNL1VqvCZq%2Fb9tS3R%2BJvBio7LWqEekqUUokpJ84F%2BbBpiIYTqw4SEser8j48kim4NJv5%2B1iQGaSv1uCoPmisuBfFO0P0H9ULgzMKWIlTFi9dfW7yRLf11UB6M078P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=39.231, imageryFetch;dur=38.912, cfRequestDuration;dur=6.999969, cfRequestDuration;dur=16.000032
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8938de33feac749f6ce8d057c6e8616a
3a0ba1fd7a9912114f29487345d02b537214a5de
966edc9f371b76c490977812ffb7cdd0efdbf6934fb4c1892908afd81f1c50be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "966EDC9F371B76C490977812FFB7CDD0EFDBF6934FB4C1892908AFD81F1C50BE"
Last-Modified: Sun, 05 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Tue, 07 Feb 2023 07:24:04 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8f6e1acde186719017010ac50ac5af98
28f5d82700754406dff58caba949927b312756b8
61926f52a0cee2f15ca98fe772049e55680cc71e4246482c1a4f3edae9010432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61926F52A0CEE2F15CA98FE772049E55680CC71E4246482C1A4F3EDAE9010432"
Last-Modified: Sun, 05 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16033
Expires: Tue, 07 Feb 2023 09:01:16 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
54.230.245.128200 OK 12 kB URL HTTP/1.1 d2wy8f7a9ursnm.cloudfront.net/v5/bugsnag.min.js
IP 54.230.245.128:0
File type Unicode text, UTF-8 text, with very long lines (43965)
Hash 5a1c440e1d6602d452082be247fa2d12
d7a123d5b5bf6b1e88b4f5dfd09899833f4c64ea
2e5c6662fa2584a72b20d87a34b223c723046c47aaf94b0ef29ecdb81286c82d
GET /v5/bugsnag.min.js HTTP/1.1
Host: d2wy8f7a9ursnm.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 14 Jan 2023 00:50:41 GMT
Last-Modified: Mon, 21 Jan 2019 11:27:19 GMT
ETag: W/"a0fc7a4c606d853b67fa47c3a3eb17d1"
Cache-Control: public, max-age=315360000
x-amz-version-id: null
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 99CV3STvh0BjK868cYQYqvM4d3hmmlc9U0MzTgdyEhfBS1WgZrP5TQ==
Age: 2087003
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash add138e067f8b3dabfdc1bc1fa61ebc0
33516813619349f1fe520b20d0b647146af45bff
344565b00fd5ab8cfbc32e95b7e5cfa93f56b8484f007b525e938425fc8c72d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=156761
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:03 GMT
Etag: "63e19614-1d7"
Expires: Thu, 09 Feb 2023 00:06:44 GMT
Last-Modified: Tue, 07 Feb 2023 00:06:44 GMT
Server: nginx
Content-Length: 471
monorail-edge.shopifysvc.com/unstable/produce_batch
185.146.173.20200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 282
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:03 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 86400
x-request-id: 2c5dde27-9b3b-482a-b008-904c4f1a08b6
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5pAtONiG7Ff7ztFj8WDsEXFH7itJRFzxt1mq7K5EEIn9EecBdIIJvVmSVMAc3QwKb2DJZFS6thk2sYTyn%2F5ngIguy%2BH0sRqFApWkrYTYt9oVGQG%2FJShAJwlB1CF1JZRUs%2FHR4e%2FzWsoIMm1PMPo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=154.000044
server: cloudflare
cf-ray: 79596932af06b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13810
Expires: Tue, 07 Feb 2023 08:24:13 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13810
Expires: Tue, 07 Feb 2023 08:24:13 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13810
Expires: Tue, 07 Feb 2023 08:24:13 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9a60d6016cd998299b6665a91c01695f
6602b5a94afbe5ff3b999196d726e6424db77339
e290f612ebf43358e7d4e0f9f329f6d4b17550c61f7e0e0e62a5e6b57a42f260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4784
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:03 GMT
Last-Modified: Tue, 07 Feb 2023 03:14:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
95.101.97.70200 OK 147 kB URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js
IP 95.101.97.70:0
File type ASCII text, with very long lines (51220)
Size 147 kB (146953 bytes)
Hash df15f219c875d8a17a83adee3b2f7873
62df432df56ff98e51edf2a98caf96c78204e86e
aeb0e5dad72a2e670fe7c15828f7e394ad4d0dd773e14a58554aa0b21bf78a62
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.js HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-ratelimit-remaining-minute: 4999
x-ratelimit-limit-minute: 5000
ratelimit-remaining: 4999
ratelimit-limit: 5000
ratelimit-reset: 57
correlation-id: 9cca7070-a65c-40e4-aef7-773a5bf10d53
x-kong-upstream-latency: 54
x-kong-proxy-latency: 8
cache-control: public, max-age=10798
date: Tue, 07 Feb 2023 04:34:03 GMT
content-length: 146953
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13810
Expires: Tue, 07 Feb 2023 08:24:13 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/instantclick.min.js?v=20092422000980684151673800107
23.227.60.200200 OK 15 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/instantclick.min.js?v=20092422000980684151673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5898), with no line terminators
Hash 0fd978ade84cb07f26d02cc320d178e4
9d3a50ef2e5bd7ea3d2dc45040381a7dd9d18ccc
ab4190432a1c188746e8ec34633c08a48db3f990f2e68581f1c5da13bfb3e57e
GET /s/files/1/0607/8349/3354/t/22/assets/instantclick.min.js?v=20092422000980684151673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/instantclick.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 99fe72b0-511c-4c87-a591-a5b07f7bb911
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XbL9btM4pkJW1%2BYiuQ7X1mhsmWt8TpSNLx2zxx%2BvxQf6pyPg59NTLS41f0ZO0uxZLu56k9hz%2Bhp7drC45BwJztYQwDEMggbPM2wiDS1f2ferW%2BYLqw8ukcGYccLDyFDsMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=109.966, imageryFetch;dur=109.754, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7959692f6e77b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da137941b3b3ec5187780ff2bfaef328
29a8a1274d93a71bb356026b15b76ab48096163d
8260b49fa8fb9fb477072575eeb5fefd0b595b04db7840bca29d9f097f37ae9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10188
x-amzn-requestid: 9caa37f7-6ef7-4a1f-8cf1-3c751dd935c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5Z94GLNIAMF31A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e07058-756ee7b72b70a4a317ac1d83;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:13:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fuBn8YrNjO-euqIMiBSeiQJXVqbybsIjcArV0vZAsuXOXHRVCPYIug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 03:53:25 GMT
age: 2438
etag: "29a8a1274d93a71bb356026b15b76ab48096163d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8f6e1acde186719017010ac50ac5af98
28f5d82700754406dff58caba949927b312756b8
61926f52a0cee2f15ca98fe772049e55680cc71e4246482c1a4f3edae9010432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61926F52A0CEE2F15CA98FE772049E55680CC71E4246482C1A4F3EDAE9010432"
Last-Modified: Sun, 05 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16033
Expires: Tue, 07 Feb 2023 09:01:16 GMT
Date: Tue, 07 Feb 2023 04:34:03 GMT
Connection: keep-alive
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Z7n2hoIZQP9wSOBAb2M9jFiwJmneBezzWWFT8IytGzMALpcGSarfQMMTzVatr/OSw1GNbUTNLc55ipMP9+RUkg==
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 07 Feb 2023 04:34:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:09:58 GMT
age: 77045
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: e7653b49-3160-42e3-8292-8ae32604f775
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc8KEoPoAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb4-68fd76a95ffa656318bedff6;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KaitXsesZ9mJducJ54ChzQGfb-2-hEN4W_QojGMKXYEji4xsjNdWCA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 09:06:57 GMT
age: 70026
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d29e7077f69b88a0108efeb7a2efe7e9
1958f83edeb8c6b68f17cead3fb5714f44e619eb
371f02a5b36ac3e52cc6c4e78f0980107a0f92105e79ee53278089ae5ff6de93
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10788
x-amzn-requestid: 8e1c8026-1eea-4eb0-810e-7ea43ed11f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyymWEsSoAMFykg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddcaf5-20fc23b535fa86f56a34fbae;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:03:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nb86Kj6pqD3DFzCeTNtTGNXsNfHLvu4kgYq6qmhu2Ygya462lBl0lg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 05:11:31 GMT
age: 84152
etag: "1958f83edeb8c6b68f17cead3fb5714f44e619eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9a60d6016cd998299b6665a91c01695f
6602b5a94afbe5ff3b999196d726e6424db77339
e290f612ebf43358e7d4e0f9f329f6d4b17550c61f7e0e0e62a5e6b57a42f260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4784
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:03 GMT
Last-Modified: Tue, 07 Feb 2023 03:14:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-02-06_16-20-36
95.101.97.70200 OK 42 kB URL HTTP/2 staticw2.yotpo.com/pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-02-06_16-20-36
IP 95.101.97.70:0
File type ASCII text, with very long lines (65436)
Hash ffa841412be744d10100ff41cc44ae58
985a03666ff0e04c7148f7c059f9c6c84ab1d650
c02f9bc3c1f5d61b4b91cb7d09572fd0b925df1b5a0d448fd923d31278cb274e
GET /pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct/widget.css?widget_version=2023-02-06_16-20-36 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
etag: W/"ffa841412be744d10100ff41cc44ae58"
x-request-id: e0435300a13c63d6eda5ca115dc0c16a
x-runtime: 0.127385
access-control-allow-headers: *
content-length: 41512
cache-control: public, max-age=1773
date: Tue, 07 Feb 2023 04:34:03 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=4
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 9ce5f01e9dd3d4e29a82096fcd3ec48f
bb0821499b2edb2b3808108fba03db03a2e90cb1
23a6d76efeb63ab78e824eb8d680cc88abf491728050391f06407dcfec8235dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:34:03 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:46:53 GMT
Expires: Sat, 11 Feb 2023 09:46:52 GMT
Etag: "bb0821499b2edb2b3808108fba03db03a2e90cb1"
Cache-Control: max-age=363768,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7959693428bdb4fa-OSL
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/vendors.js?v=156815155738738603461673800107
23.227.60.200200 OK 112 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/vendors.js?v=156815155738738603461673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (32022)
Size 112 kB (112430 bytes)
Hash fd653651cccb6067db15702c87c6b80f
98c538a580bf339dd66c14b58cf1eb0880657e6e
fd33efba1d764b09f78f366794822bf7acb290a7c5a48f595a4581e9243d19d1
GET /s/files/1/0607/8349/3354/t/22/assets/vendors.js?v=156815155738738603461673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/vendors.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3b5c0919-7839-45ee-923d-acc35293cab2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nza8yIsscmkUGHsXgZZhkj1bAQpo9fUe5%2BBxzgFUFrgDXKl3P3fgBzGI%2FkIJLX%2FLYcMFasbAGQRZnLrftCFrU7mjIt3955Ms5n5eNggRv6am18%2FfUEDf2pXQ%2B6g7cl9FwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=157.409, imageryFetch;dur=88.238, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7959692fceb9b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
curated.fieldtest.cc/t/MEND/mend_unvpx.js
52.41.128.229200 OK 3.0 kB URL HTTP/1.1 curated.fieldtest.cc/t/MEND/mend_unvpx.js
IP 52.41.128.229:0
File type ASCII text, with very long lines (337)
Hash 0353cc693c7e86c7bb747d96433d8e1e
9cd14108fa131c332ee46fe91d5505997c4b3c8b
e6c948f016679e7a73b96c242ceb8207a9ef4c85b2da406aacce951fe6fcc21f
GET /t/MEND/mend_unvpx.js HTTP/1.1
Host: curated.fieldtest.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: application/javascript
Date: Tue, 07 Feb 2023 04:34:03 GMT
Expires: Tue, 07 Feb 2023 03:34:03 GMT
Last-Modified: Tue, 07 Feb 2023 04:34:03 GMT
Pragma: no-cache
Server: Apache
Set-Cookie: ftla_fieldtestla_csrf_cookie_name=7e2241d0294b61e215e68e75846db43c; expires=Tue, 07-Feb-2023 06:34:03 GMT; Max-Age=7200; path=/
FIELDTEST_SESSID=d5756l1j1h7o1eqgc4f2hkqrk5; expires=Sun, 12-Feb-2023 04:34:03 GMT; Max-Age=432000; path=/; HttpOnly
transfer-encoding: chunked
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 9ce5f01e9dd3d4e29a82096fcd3ec48f
bb0821499b2edb2b3808108fba03db03a2e90cb1
23a6d76efeb63ab78e824eb8d680cc88abf491728050391f06407dcfec8235dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:34:03 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:46:53 GMT
Expires: Sat, 11 Feb 2023 09:46:52 GMT
Etag: "bb0821499b2edb2b3808108fba03db03a2e90cb1"
Cache-Control: max-age=363768,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 795969342cc6b4f9-OSL
sessions.bugsnag.com/
35.190.88.7200 OK 0 B IP 35.190.88.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Tue, 07 Feb 2023 04:34:03 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
54.230.241.118200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 54.230.241.118:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 06 Feb 2023 07:31:38 GMT
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xa5Az2x8vwtJRCC42i00W0f86088XMC-5G1liKN2ylbsyD2raNxDpw==
Age: 75746
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 07 Feb 2023 03:44:08 GMT
expires: Tue, 07 Feb 2023 05:44:08 GMT
cache-control: public, max-age=7200
age: 2995
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1&z=928830718
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1&z=928830718
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1&z=928830718 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 04:34:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/full_star.svg?v=175693700177403511411673800107
23.227.60.200200 OK 34 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/full_star.svg?v=175693700177403511411673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text
Hash 288c3155b4817ef8e58386adaa35b0a4
e4c1abcb8ead20f24b2e0379b134c241fe063c27
92e99387220abcc4b18f7fd9f6735f6c667395b3a95384f948fe9e586eb829b2
GET /s/files/1/0607/8349/3354/t/22/assets/full_star.svg?v=175693700177403511411673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/full_star.svg>; rel="canonical"
source-length: 820
source-type: image/svg+xml
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d52262e8-5bb6-4f33-af5c-d517f833637c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ca6U8%2F7AYe83HcqWPaeHxiTqyFwcxWSj%2Bd%2BsxsLC8xu9LW2j1bF%2Be4W0%2BntaOOCaewU22GQGpXiX7mw4vpVQ23xES26E7n0KwJJB2JFpbV90ZzKYUdLRO%2BL4PD%2BkJqWZ4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=29.746, imageryFetch;dur=28.435, imageryProcess;dur=0.075;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 7959692f7e87b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: a51246d2a1f718541183be260c6215bd
Bugsnag-Payload-Version: 1.0
Bugsnag-Sent-At: 2023-02-07T04:34:51.542Z
Content-Length: 362
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 21553966-d456-492b-b263-a41560abe58f
content-type: application/json
date: Tue, 07 Feb 2023 04:34:03 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js
23.227.60.200200 OK 34 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (35328), with NEL line terminators
Hash 9433b1308752052391928041935eaf32
934f1ae1256d29a3807cda4351a4a17f4041bb4a
963d1aadc4c305cb2e81d471e34f0f52a47d04cb82748b6014070ec907d42af4
GET /shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
link: <https://cdn.shopify.com/shopifycloud/shopify-xr-js/assets/v1.0/shopify-xr.en.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 21811093-a455-4bf0-b4e5-088558934ee7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Tue, 07 Feb 2023 03:22:15 GMT
cf-cache-status: HIT
age: 2251
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SMa4r68PvLyhASl6cDM%2BNtuEJ9KBv3xvRDjYj%2B0617EbXE6bsbRu%2B1YugWux8fEotWSkzk9hggB4EAabVfn52k4qmgsD7UX9J4V%2Feas3peYFKjlMzBxVe9L%2F9gq75s0kw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=30.488, imageryFetch;dur=30.277, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7959692f6e78b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 9ce5f01e9dd3d4e29a82096fcd3ec48f
bb0821499b2edb2b3808108fba03db03a2e90cb1
23a6d76efeb63ab78e824eb8d680cc88abf491728050391f06407dcfec8235dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:34:03 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:46:53 GMT
Expires: Sat, 11 Feb 2023 09:46:52 GMT
Etag: "bb0821499b2edb2b3808108fba03db03a2e90cb1"
Cache-Control: max-age=363768,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79596935a964b4fa-OSL
p.yotpo.com/i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo0ODgwMDQxOTEsInBpeGVsX2lkIjoiMGExNTdlMDYtYjY5Zi00NDk3LTg5NTUtZWFiNTY4Yjk2OWM3In0&dtm=1675744491724&tid=258228&vp=1280x939&ds=1268x7371&vid=1&duid=3e297f60d263d1b2&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
3.66.109.71200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo0ODgwMDQxOTEsInBpeGVsX2lkIjoiMGExNTdlMDYtYjY5Zi00NDk3LTg5NTUtZWFiNTY4Yjk2OWM3In0&dtm=1675744491724&tid=258228&vp=1280x939&ds=1268x7371&vid=1&duid=3e297f60d263d1b2&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D
IP 3.66.109.71:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=pv&page=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&se_va=pJdxubbQquBGhIFXr7yH1EuRqv2t2MZw8ZSZccct&cx=eyJwdl91dWlkIjo0ODgwMDQxOTEsInBpeGVsX2lkIjoiMGExNTdlMDYtYjY5Zi00NDk3LTg5NTUtZWFiNTY4Yjk2OWM3In0&dtm=1675744491724&tid=258228&vp=1280x939&ds=1268x7371&vid=1&duid=3e297f60d263d1b2&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:03 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=617fc5b0-0284-426a-5ed5-a531f036e7e0; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Wed, 08 Feb 2023 04:34:03 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.e9706407.js
2.18.172.195200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.e9706407.js
IP 2.18.172.195:0
File type ASCII text, with very long lines (57032), with no line terminators
Hash 5083cb997261c90ff4b9f3a6f4677979
3d1af8b92cdefd875021369d9d9bd9ae1be2df39
8c931e99ae9a7d71f740f234aec64f503c42a55101210f81b3c5c3ce64a2d91a
GET /ct/lib/main.e9706407.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5083cb997261c90ff4b9f3a6f4677979"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19689
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675744492218&dep=2%2CPAGE_LOAD
151.101.192.84200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675744492218&dep=2%2CPAGE_LOAD
IP 151.101.192.84:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675744492218&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpUazJaV1F4WXpBdE5EQmtNeTAwTjJRNUxUZ3pZVGd0WXpOa056STRZV1F6TVRBeA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 8787605564858528
date: Tue, 07 Feb 2023 04:34:04 GMT
x-cdn: fastly
content-length: 375
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492247&dep=5%2CEVENT_TAGS_ABSENT
151.101.192.84200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492247&dep=5%2CEVENT_TAGS_ABSENT
IP 151.101.192.84:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492247&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU9EY3pNR1V4WW1FdFlUVmxZeTAwTWpKa0xXSm1ZbUV0TTJZek5HVm1OelV3TnpCbA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://themendico.com
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 4551007955362233
date: Tue, 07 Feb 2023 04:34:04 GMT
x-cdn: fastly
content-length: 375
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: a51246d2a1f718541183be260c6215bd
Bugsnag-Payload-Version: 1.0
Bugsnag-Sent-At: 2023-02-07T04:34:52.145Z
Content-Length: 362
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 3913bd18-6475-48c9-8ce1-7b5ef98fa1ec
content-type: application/json
date: Tue, 07 Feb 2023 04:34:04 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.clarity.ms/tag/52r663mgyz
13.107.237.53200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/52r663mgyz
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 3b094972c057e3914fdac4bb6f13689e
04ce14620e6f142c8a0e80abf0c5353151914858
b978acee5dabf238951a9217d040677747c247b1dae8b14067e0a21a77821aec
GET /tag/52r663mgyz HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=7bf7fdeb9d6b4ee18a2eb43e0cd585ac.20230207.20240207; expires=Wed, 07 Feb 2024 04:34:03 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3f60b293-70d6-4805-b0bb-3484f0a73bf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0u9ThYwAAAAAy4DLZY2boSIi3o3NZxIDxQ1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Tue, 07 Feb 2023 04:34:03 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&gjid=1323193089&_gid=1784041390.1675744492&_u=aCDAgEABBAAAAEgCIAB~&z=833687950
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&gjid=1323193089&_gid=1784041390.1675744492&_u=aCDAgEABBAAAAEgCIAB~&z=833687950
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&gjid=1323193089&_gid=1784041390.1675744492&_u=aCDAgEABBAAAAEgCIAB~&z=833687950 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://themendico.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 07 Feb 2023 04:34:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1
64.233.165.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1
IP 64.233.165.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6&cid=43472067.1675744492>m=45je3210&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Tue, 07 Feb 2023 04:34:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1413262157&_gaz=1&cid=43472067.1675744492&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675744491&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1413262157&_gaz=1&cid=43472067.1675744492&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675744491&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2NNX47L0B6>m=45je3210&_p=1413262157&_gaz=1&cid=43472067.1675744492&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675744491&sct=1&seg=0&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&dt=Mendi%20All%20Natural%20CBD%20-%20Thrive%20Naturally&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://themendico.com
date: Tue, 07 Feb 2023 04:34:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675744492220
151.101.192.84200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675744492220
IP 151.101.192.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613409966566&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675744492220 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 9357824058109688
date: Tue, 07 Feb 2023 04:34:04 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675744492170&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675744492169.1079708597&it=1675744491622&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675744492170&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675744492169.1079708597&it=1675744491622&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=726780148511754&ev=PageView&dl=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&rl=&if=false&ts=1675744492170&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675744492169.1079708597&it=1675744491622&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 07 Feb 2023 04:34:04 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afe7db92a730b1a76bed3113f60da924
531e2ba6a5907332e9e77fdcc2d88da9adb5f703
04534a7ebb8a6583102a0a532496c38d09b744572f1d01a5da952ff4a2b9825f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
151.101.130.133200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com
IP 151.101.130.133:0
File type ASCII text, with very long lines (2904)
Hash ab931645f68fc3088b2ba59deba91087
650138fceeadca8f60a880e9260211ceb4d1f79d
e4414afadcd5639242df405fa90490cf4101d47af3cb33e4cdcbf533b959e0cc
GET /onsite/js/klaviyo.js?company_id=TB3zxy&shop=themendico.myshopify.com HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
cid: TB3zxy
content-encoding: gzip
content-type: application/javascript
etag: W/"af059cda7925915baf35de396e36eae0"
server: nginx
x-kl-session-expiry: TB3zxy;VP5wHV;1675797245.2838552
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 22463
x-served-by: cache-lga21978-LGA, cache-bma1652-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1675744445.577736,VS0,VE89
vary: Accept-Encoding
content-length: 1036
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
151.101.192.84200 OK 323 B IP 151.101.192.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1810223795248037
date: Tue, 07 Feb 2023 04:34:04 GMT
x-cdn: fastly
content-length: 323
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
IP 142.250.74.131:0
Hash 5111d7103ec56650e044992136174d63
83d8377da0a1f5001207bcb4daa82274fe0dbce2
f5b5d5eb57faf59dc34e99daed8186179a5207169e1c9770d5bbe21d28daa7a0
POST /s/gts1d4/EQZXquRt1Eg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
151.101.130.133200 OK 8.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash 4c22bd089a105c68cc7cd0a6e5390056
a22676675f6a1200420b10e45472e42cda1021cb
93e74cd9d7d7c500587e6b6bb554fdcfe91bd886c90f7560d3505d59516f33b8
GET /onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: eZAB3eC702nxkpzhANCuu4QTVE8lWyGPn9+EElQlppit9M8T6T1TM5VEMwb2jJ6thuIa4hj3dtzraPZ2Yu8Z+w==
x-amz-request-id: JR283Q7EHGZPD3J0
last-modified: Fri, 03 Feb 2023 17:28:44 GMT
etag: "f27ddd47bfc9beb64b7d3c1aad544c28"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: .7alrscAaTnWmEs8mvC2QYSnwfAI..vu
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 22489
x-served-by: cache-lga21955-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 3175
vary: Accept-Encoding
content-length: 8049
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
151.101.130.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP 151.101.130.133:0
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 22489
x-served-by: cache-lga21921-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 3031
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
151.101.130.133200 OK 123 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (64471)
Size 123 kB (122628 bytes)
Hash 008cdbd37c3688e71d1d65d08341f46a
6a03072e71480f1e0f7bd1a4e97a2a872e274544
4a7b9f06a4f61e9e9fdce9d3e74c75709b1e3e65605359ac266a8c71aa647d9a
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 22489
x-served-by: cache-lga21935-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2120
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
151.101.130.133200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP 151.101.130.133:0
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 22489
x-served-by: cache-lga13621-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 2124
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 597
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Tue, 07 Feb 2023 04:34:04 GMT
X-Firefox-Spdy: h2
static.rechargecdn.com/assets/js/widget.min.js?shop=themendico.myshopify.com
34.117.135.77200 OK 121 kB URL HTTP/2 static.rechargecdn.com/assets/js/widget.min.js?shop=themendico.myshopify.com
IP 34.117.135.77:0
File type ASCII text, with very long lines (65411)
Size 121 kB (121302 bytes)
Hash fd12bbd13ab5e6f30a6de5205c99e9c9
d17f0be580af539c81013b3f3c0e3eceb0f9d1a1
ac50ae87e842d28cc8298216b29f9aa19453f19014e1a91d87ed9691ef5f336b
GET /assets/js/widget.min.js?shop=themendico.myshopify.com HTTP/1.1
Host: static.rechargecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvLNeNw7XEJf3ekFuxGjAgWb6XzBdq1QNK__ai8eCDd2xWpmJqEvp9VD13PwI5OON_F32-X2w-sQcmuxAuxwFTZQyP2yF4u
x-goog-generation: 1670954597511054
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 391568
x-goog-hash: crc32c=YFVKLg==, md5=ZfhfjIx5VZA5U3st7QZytQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: none
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Expires, Pragma, Server, Transfer-Encoding, Vary, X-GUploader-UploadID, X-Google-Trace, x-recharge-app
server: UploadServer
vary: Accept-Encoding
content-encoding: br
date: Tue, 07 Feb 2023 04:24:01 GMT
expires: Tue, 07 Feb 2023 05:24:01 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 Dec 2022 18:03:17 GMT
etag: W/"65f85f8c8c79559039537b2ded0672b5"
content-type: application/javascript
content-length: 121302
age: 603
x-cache-status: hit
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ede98fc8352e1fe75dd0968209b1f1f
e9a23f39a1762830e68613b8ec8e452cac7df8f1
29e8f14f43d838f0420b15fe6c13ac3cf8da6a3b113dac6d9e5d87985d19a11c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29E8F14F43D838F0420B15FE6C13AC3CF8DA6A3B113DAC6D9E5D87985D19A11C"
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4935
Expires: Tue, 07 Feb 2023 05:56:19 GMT
Date: Tue, 07 Feb 2023 04:34:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 13 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1fe63063c1cc8d37bdd77fce6cf901ff
ee35e7de8135aeff5cf02b4989d3f8a5fb8b22f7
e5b4e0eb22f09fe80a0e2e2c38c8962754c5a43704fda5c7f5138f1df3e87e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29E8F14F43D838F0420B15FE6C13AC3CF8DA6A3B113DAC6D9E5D87985D19A11C"
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4935
Expires: Tue, 07 Feb 2023 05:56:19 GMT
Date: Tue, 07 Feb 2023 04:34:04 GMT
Connection: keep-alive
static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
151.101.130.133200 OK 1.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (3927), with no line terminators
Hash dad1cfca7e143c6f971f9489945f5e4a
e7df2d2e32ab7bf4642d535c12b22fe700ecef78
bd1e924b8e386b9c009cd573e58318ae3cc3cf7c846022027d269b0d4ac98428
GET /onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cidyFX9R21NtX9uwGBs6mQVv2UQoeiERHmmJg4FpaYUT9NhNCxnaQYj/yfFMLtVKqSmFIRsz3Nc=
x-amz-request-id: E6MHX49K8258SD1W
last-modified: Fri, 03 Feb 2023 16:55:57 GMT
etag: "7956ff796e65e61f53fd9de4075e1360"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: gEtCTjDdAr9iUO0b1dPiDcxMzmi647ro
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 23981
x-served-by: cache-lga21920-LGA, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2806
vary: Accept-Encoding
content-length: 1820
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EQZXquRt1Eg
IP 142.250.74.131:0
Hash 5111d7103ec56650e044992136174d63
83d8377da0a1f5001207bcb4daa82274fe0dbce2
f5b5d5eb57faf59dc34e99daed8186179a5207169e1c9770d5bbe21d28daa7a0
POST /s/gts1d4/EQZXquRt1Eg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
151.101.130.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
IP 151.101.130.133:0
File type ASCII text, with very long lines (28184), with no line terminators
Hash 9947b9a0c514938c051ff50787786915
d78e9bb27f688655db15ad8ccc5325485e0fa410
73393d7427c388e9784f76014b52851f2d3f17d19308b8f6c6a70eb4afb8748d
GET /onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0ad6sXmXMHiFUp4bdjmrAmBwFWJ1GaCj6pLMFwLo6bZqgTxKuIcly7KnmVyuEfGMLgr3EJYE/tE=
x-amz-request-id: BEFH96F66KX7MCC2
last-modified: Fri, 03 Feb 2023 16:02:43 GMT
etag: "2918e6090a854372153e5cf84e3da824"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: DA49kfUB0O0s32Ljp5UGbAPIecnc3kbk
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 23981
x-served-by: cache-lga21925-LGA, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2788
vary: Accept-Encoding
content-length: 10897
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
151.101.130.133200 OK 426 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy
IP 151.101.130.133:0
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash 56e8c85f34892fb836daf242e0fc69fa
5954582684d8bf64d11624ba3884a0ca94704777
245623794867afc34103c9ba160a40ece4b8629b844f3454be2e648f8ab061e8
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=TB3zxy HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
age: 1806905
x-served-by: cache-bos4662-BOS, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 403, 1
vary: Cookie
strict-transport-security: max-age=900
content-length: 426
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0072014a5015740a60d91605d8cbb3fe
331f9707abd144f4d79748f87f7a6764b6ee33b7
8690f81b313d342573f06510a3c8d42b064fcbbe3367d3d177ed3d56fccb5fff
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144015
Date: Tue, 07 Feb 2023 04:34:04 GMT
Etag: "63e14d17-1d7"
Expires: Wed, 08 Feb 2023 20:34:19 GMT
Last-Modified: Mon, 06 Feb 2023 18:55:19 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nO8fxegXMsdFwZ6HPqdvF1KlkPJzgi5xbmAB80Mx_3nIIOcTyrIizQ==
Age: 5940
static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
151.101.2.133200 OK 8.7 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/TB3zxy/full-forms
IP 151.101.2.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4232b58eaa8aa55accdcc83ca4e55f66
353ec8ddb7c6af22907f4dd9dd4304eb886d4989
109ceca2425354bc8551a95ad9dcd39b8961f086362b5a2c87696f1d8b6c53b1
GET /forms/api/v6/TB3zxy/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PdHlEPbXdqeqYsjaiQPG2KsSiyGKpSX0XWIQZ5/13MBqEBHBjwj0WOl7CaawOt5YudpMCVtbISI=
x-amz-request-id: NDP0KZ45YTRW9S9R
last-modified: Fri, 20 Jan 2023 18:19:01 GMT
etag: "13f63c5d98e04786c6180412dad4e5c9"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/TB3zxy custom-fonts/TB3zxy
x-amz-version-id: k03ojuQyxDsyHL_Wf8pUA4X4Rda0AwgO
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:04 GMT
via: 1.1 varnish
age: 885045
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1675744445.957252,VS0,VE0
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 8705
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css
23.33.119.26200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css
IP 23.33.119.26:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=kor2vsl&ht=tk&f=10875.32265&a=116397796&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 07 Feb 2023 04:34:05 GMT
X-Firefox-Spdy: h2
www.lightboxcdn.com/z9g/digibox.gif?c=1675744493409&h=themendico.com&e=p&u=44282
104.19.211.131200 OK 35 B URL HTTP/2 www.lightboxcdn.com/z9g/digibox.gif?c=1675744493409&h=themendico.com&e=p&u=44282
IP 104.19.211.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /z9g/digibox.gif?c=1675744493409&h=themendico.com&e=p&u=44282 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:05 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
content-md5: KNaBTzCeoon4R8ac+RGUxg==
etag: 0x8DAD3F8864E2F29
last-modified: Fri, 02 Dec 2022 00:02:38 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Fri, 02 Dec 2022 00:02:02 GMT
x-ms-request-id: c57a8e30-701e-006b-27d5-314566000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 972391
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7959693f7d620b59-OSL
X-Firefox-Spdy: h2
rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
3.230.101.17200 OK 134 kB URL HTTP/2 rudder-tracking.rudderstack.com/load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com
IP 3.230.101.17:0
File type ASCII text, with very long lines (64728)
Size 134 kB (134304 bytes)
Hash bb68b610ae5cd07e36e10f01e5e731cc
df80f29c30aaa01580e860308a9ca5ed7ad093b3
fe8436ba4800bcd6c91d9d013a46bb7e0cdbb0ae2d9f9a30169e40ebbd94e6ce
GET /load?writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK&dataPlaneUrl=themendicohqdx.dataplane.rudderstack.com&shop=themendico.myshopify.com HTTP/1.1
Host: rudder-tracking.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:05 GMT
content-type: application/javascript
content-length: 134304
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1040
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Tue, 07 Feb 2023 04:34:05 GMT
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
54.230.111.6204 No Content 0 B URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP 54.230.111.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 07 Feb 2023 04:34:05 GMT
x-request-id: a7cafe30-a6a0-11ed-a2d0-f73404816977
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 900
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: authorization
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qzHRSW0rA5fKqvyRsQ3zDRU0_TVrDv9Cp_kaSDOSPbPoiX4TxqKBLw==
X-Firefox-Spdy: h2
api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675744493429&dre=l&callback=jQuery171008100486758714143_1675744493381&_=1675744493431
20.40.202.0200 OK 1.1 kB URL HTTP/1.1 api.lightboxcdn.com/z9gd/44282/themendico.com/jsonp/z?cb=1675744493429&dre=l&callback=jQuery171008100486758714143_1675744493381&_=1675744493431
IP 20.40.202.0:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 83d62fb2cdb67850ca257584f4a604b1
bc857861a5dfb4acb2384a522f6c8d014a9b13cc
5a27748e7dcf4550a08d2ed68be9523f9741be8516f57cd60c9b9b43ff675365
GET /z9gd/44282/themendico.com/jsonp/z?cb=1675744493429&dre=l&callback=jQuery171008100486758714143_1675744493381&_=1675744493431 HTTP/1.1
Host: api.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Tue, 07 Feb 2023 04:34:05 GMT
Server: Microsoft-IIS/10.0
Content-Encoding: gzip
Set-Cookie: TiPMix=49.239937507332165; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=api.lightboxcdn.com; Max-Age=3600; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Powered-By: ASP.NET
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 194959
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Tue, 07 Feb 2023 04:34:06 GMT
X-Firefox-Spdy: h2
api.rudderstack.com/sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
54.230.111.6200 OK 1.1 kB URL HTTP/2 api.rudderstack.com/sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK
IP 54.230.111.6:0
File type JSON data\012- , ASCII text, with very long lines (1107), with no line terminators
Hash 24a94cbdef9a5d8d3e92bc2bb028675c
b33d6ebfa62d1e6cd9e7602a5f0223cbf80bb159
50cbeaf0be4dfb31f1d2038cd466427dd2bf19cd98ab359283aba6b64986f92e
GET /sourceConfig/?p=cdn&v=2.23.0&writeKey=26hXRTTKaUqo0nu8hz42Ph3rJGK HTTP/1.1
Host: api.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 1107
date: Tue, 07 Feb 2023 04:34:06 GMT
x-request-id: a7fd0ab0-a6a0-11ed-aaca-9be09a0c18bb
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-expose-headers: X-Request-ID
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fabI1-C11hDqzpZOZ2tdZGWwIEyL8__0O6QrvLfW1MdBt3QX1qNOlg==
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492701&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%2C%22pin_unauth%22%3A%22dWlkPVpUazJaV1F4WXpBdE5EQmtNeTAwTjJRNUxUZ3pZVGd0WXpOa056STRZV1F6TVRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
151.101.192.84200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492701&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%2C%22pin_unauth%22%3A%22dWlkPVpUazJaV1F4WXpBdE5EQmtNeTAwTjJRNUxUZ3pZVGd0WXpOa056STRZV1F6TVRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 151.101.192.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222a27c793-0658-4C17-E9C5-B93BBD19D81B%22%7D&tid=2613409966566&cb=1675744492701&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f%22%2C%22pin_unauth%22%3A%22dWlkPVpUazJaV1F4WXpBdE5EQmtNeTAwTjJRNUxUZ3pZVGd0WXpOa056STRZV1F6TVRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
set-cookie: _pinterest_ct_ua="TWc9PSZic1BEYzV4Vjg5czlENDloNGNNUFJEclgzOWRDTVd0L2pQN0hienJUVitoNXN1eG9Dc2poWWcvcFFac08vYmY2SFkvRjdPUjNFR1Q3dG9lK0tWdWlLck12bGo2T0JqaDF4bmJHZFljSGJaTT0mbHBPZEtubDZleVJWOWt6ckg3eXEyQ3lYTGw0PQ=="; Expires=Wed, 07 Feb 2024 04:34:06 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 9035176085241257
date: Tue, 07 Feb 2023 04:34:06 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c0c18b789b296a2b3cc9adb04c94e6f7
a0fa241f813c414178f5dffd30d5c2b82d16669b
95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
54.230.111.38200 OK 38 kB URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com
IP 54.230.111.38:0
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 3d09ae22ac47233f4adb239717298152
6c0e8e58c5abc9e604771ad51b4fda2e78754f16
efcc1cbae34948cf6732e7128ada81dc37a42147b5ad38a3f17d4e76fb4cddfc
GET /latest/sdks/pushowl-shopify.js?subdomain=themendico&environment=production&guid=8b0a7750-67e7-4a3a-876f-183b78b0f16f&shop=themendico.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: d3fe4539-cbbd-41c5-b89d-469f4603b4f7
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"266d5-CE/pq7k08/+Q2xaaWuoPjR4SI7s"
date: Fri, 03 Feb 2023 11:30:33 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CwNVKW-rC7YCZNfxsrjdNMoxZApAiVfIPIqVSzYNtfGRp77yeDNIEA==
age: 320610
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&_u=aCDAgEABBAAAAEgCIAB~&z=1644684729
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&_u=aCDAgEABBAAAAEgCIAB~&z=1644684729
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141663860-1&cid=43472067.1675744492&jid=1871090085&_u=aCDAgEABBAAAAEgCIAB~&z=1644684729 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 04:34:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 19:46:56 GMT
expires: Wed, 31 Jan 2024 19:46:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 550030
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d5d7f05f3d9dd29cc073aa3523d87176
d989b89def303e342701bcf99652995f32bd1776
b5591035926906e33e0ca5273e78bc0a3ac28b78e4c08f9ea4f28c97bace548e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 04:34:06 GMT
Last-Modified: Tue, 07 Feb 2023 03:06:50 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RRbUGLHA_eGn5WpOQD_pFUZbQd60KdBlZNZBWrwtYYaAOJ0R8_TVHg==
Age: 5236
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
iron.oneteam.ai/public/widget-loader.js
3.232.176.189200 OK 240 kB URL HTTP/2 iron.oneteam.ai/public/widget-loader.js
IP 3.232.176.189:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 240 kB (239960 bytes)
Hash 8caa2b2d0757a8b1ef6933910d8e3752
5c9f285c14b26d00d6c39963dc3e95cd8a6c6f3a
7bc7d165f1d86931594ea9b4a75ea463bf934f82ec8c4d8693714eed6c546199
GET /public/widget-loader.js HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:05 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-powered-by: Express
last-modified: Wed, 28 Sep 2022 13:15:10 GMT
etag: W/"9ad7-183843ca330"
expires: Wed, 08 Feb 2023 04:34:05 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638113181451095828
104.19.211.131200 OK 84 kB URL HTTP/2 www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=638113181451095828
IP 104.19.211.131:0
File type ASCII text, with very long lines (13952)
Hash b885a99eab634e4cc0a45afb177fd48e
0011b331e007b99fd337b8cde174a7cb4af7e71b
7e09bf495bd9c4cf20c283ac6fee4c173ce62bc3fa8a851bfbd9d1ce7fbbe48e
GET /static/fb_lightbox.2.1.5.css?cb=638113181451095828 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:06 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6016
content-md5: q4B4xYJoZwx9ikt94o1nCA==
last-modified: Wed, 10 Apr 2019 19:06:17 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Wed, 10 Apr 2019 18:50:43 GMT
x-ms-request-id: f4dec248-b01e-0039-14ad-3a5894000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 0
expires: Fri, 10 Mar 2023 04:34:06 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7959693f7d610b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 04185daaf2e5b28ce39158d33edb0403
f84f940c915c9f62c8276207960e90a35922be42
6b8b5f1f8b49b4a54a8868eb40e83e769d7b07fe5cd9be693768726441d81103
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 04:34:06 GMT
Etag: "63e1692a-1d7"
Last-Modified: Tue, 07 Feb 2023 02:53:28 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CzlcjFsr-Sq0ITMg3APV2Oi4vzD6Og_IvHXxNmibi2vxN_Nz8mAevA==
Age: 6038
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 04185daaf2e5b28ce39158d33edb0403
f84f940c915c9f62c8276207960e90a35922be42
6b8b5f1f8b49b4a54a8868eb40e83e769d7b07fe5cd9be693768726441d81103
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 04:34:06 GMT
Last-Modified: Tue, 07 Feb 2023 04:05:14 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GShHky_YnycFB2_S0UHGaeiSCtgoKFX0AT6wHLueSyX6xjcX6biRLQ==
Age: 1732
themendicohqdx.dataplane.rudderstack.com/v1/page
54.210.101.51200 OK 0 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP 54.210.101.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:07 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
themendicohqdx.dataplane.rudderstack.com/v1/page
54.210.101.51200 OK 2 B URL HTTP/2 themendicohqdx.dataplane.rudderstack.com/v1/page
IP 54.210.101.51:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/page HTTP/1.1
Host: themendicohqdx.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Basic MjZoWFJUVEthVXFvMG51OGh6NDJQaDNySkdLOg==
AnonymousId: YjQ5YjE2ZWQtOTUzNS00MWI4LWE5MzYtOTVjNTExYTEwOWFj
Content-Length: 1545
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:07 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-origin: https://themendico.com
vary: Origin
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&RedC=c.clarity.ms&MXFR=1EAADC50EA826B460049CEE1EE8265A1
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&RedC=c.clarity.ms&MXFR=1EAADC50EA826B460049CEE1EE8265A1
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&RedC=c.clarity.ms&MXFR=1EAADC50EA826B460049CEE1EE8265A1 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&MUID=2E5D0A0C8A596C2E196318BD8BAC6D63
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2E5D0A0C8A596C2E196318BD8BAC6D63; domain=c.bing.com; expires=Sun, 03-Mar-2024 04:34:07 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C55756D106AC4A4BAFBAE040F318A998 Ref B: OSL30EDGE0118 Ref C: 2023-02-07T04:34:07Z
date: Tue, 07 Feb 2023 04:34:06 GMT
content-length: 0
X-Firefox-Spdy: h2
wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
52.44.204.130200 OK 0 B URL HTTP/2 wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
IP 52.44.204.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv HTTP/1.1
Host: wyze.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://themendico.com/
Origin: https://themendico.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:07 GMT
content-length: 0
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://themendico.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&MUID=2E5D0A0C8A596C2E196318BD8BAC6D63
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&MUID=2E5D0A0C8A596C2E196318BD8BAC6D63
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=13EA8AC999964DB7BC4A11F520F0C2D1&MUID=2E5D0A0C8A596C2E196318BD8BAC6D63 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themendico.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Tue, 07-Feb-2023 04:44:07 GMT; path=/; SameSite=None; Secure;
date: Tue, 07 Feb 2023 04:34:07 GMT
content-length: 42
X-Firefox-Spdy: h2
wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
52.44.204.130200 OK 2 B URL HTTP/2 wyze.dataplane.rudderstack.com/v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv
IP 52.44.204.130:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/webhook?writeKey=2GPDlEp01kl1eJCA8RRWorOY1jv HTTP/1.1
Host: wyze.dataplane.rudderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 128
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:07 GMT
content-type: text/plain
content-length: 2
server: openresty/1.21.4.1
access-control-allow-credentials: true
access-control-allow-origin: https://themendico.com
vary: Origin
X-Firefox-Spdy: h2
iron.oneteam.ai/api/shops/themendico.myshopify.com/discounts?type=automatic
3.232.176.189200 OK 483 B URL HTTP/2 iron.oneteam.ai/api/shops/themendico.myshopify.com/discounts?type=automatic
IP 3.232.176.189:0
File type JSON data\012- , ASCII text, with very long lines (375), with no line terminators
Hash f41a1acd0261c8031bc637f9ba30a014
4a9416cc0d63befb580605f08e1b77b2532efdeb
11bb2c09e62361fd31f93d8e07e2b7fd819595b8a4f3a59b2950d9dff2124044
GET /api/shops/themendico.myshopify.com/discounts?type=automatic HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:07 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"30-2WuQRWie+GVVNEl6+7S1SqsiEQY"
expires: Tue, 07 Feb 2023 04:35:07 GMT
cache-control: max-age=60, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 14688
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://themendico.com
access-control-allow-credentials: true
date: Tue, 07 Feb 2023 04:34:08 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
age: 23931
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
iron.oneteam.ai/public/widget-app.latest.js
3.232.176.189200 OK 0 B URL HTTP/2 iron.oneteam.ai/public/widget-app.latest.js
IP 3.232.176.189:0
GET /public/widget-app.latest.js HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:06 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-powered-by: Express
last-modified: Wed, 28 Sep 2022 13:15:10 GMT
etag: W/"7b38e-183843ca330"
expires: Wed, 08 Feb 2023 04:34:06 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
3.232.176.189200 OK 0 B URL HTTP/2 steel.oneteam.ai/public/discount-loader.js?shop=themendico.myshopify.com
IP 3.232.176.189:0
GET /public/discount-loader.js?shop=themendico.myshopify.com HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:04 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Origin
last-modified: Wed, 15 Jun 2022 03:41:43 GMT
expires: Wed, 08 Feb 2023 04:34:04 GMT
cache-control: max-age=86400, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b8ef5e2d-30f9-41f6-acc1-644eb84f9126
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 04 Jan 2023 20:17:32 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w3hgBXlkdZEOpd2KkW3poInDH2I7MMoNfbuCE%2FnGC0zY6jthMt3sy%2FCZ0figCVqHJ%2BJD5x9f%2BtgXLR%2BWJ2uzc5WM5jzV7X%2FGF1WOnmuNw7KU4SgUMgCIo1967JmuTDR0lQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.130, imageryFetch;dur=21.936, cfRequestDuration;dur=102.999926
server: cloudflare
cf-ray: 7959692f99561c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
104.19.211.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js
IP 104.19.211.131:0
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/lightbox_inline.js HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2532
content-md5: VEusMqXpmvxAk/gFz0gKdg==
last-modified: Mon, 06 Feb 2023 22:09:05 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d7ac3268-501e-0011-72ad-3a2f2b000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 7959692fd8b10b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 54eb9665-9b68-4333-aba4-1374a2744b97
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 31 Aug 2022 03:59:46 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mp9Ox0oWWAp3fTE10jDu5Qw%2BqeQtnzX4YEI93WfiDP8kPDUvJUbB2J6g1PE%2B4immm2tC8u7cxoW60yJRKYxpkc8H3UU3MRJlH3nPHrCQQPJ8VbfZXUtyeKF7aE4OxE64%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.706, imageryFetch;dur=23.538, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7959692fd9611c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.237.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d936557825629e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0sA7hYwAAAAA2tvZZ/IaKTKyhrqlL83q0RlJBMjMxMDUwNDE4MDQ3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0u9ThYwAAAACfyl2fkbkBT6wqcdKyRYo2Q1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Tue, 07 Feb 2023 04:34:03 GMT
X-Firefox-Spdy: h2
themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
23.227.38.65200 OK 0 B URL HTTP/2 themendico.com/?utm_source=Klaviyo&utm_medium=campaign&_kx=
IP 23.227.38.65:0
GET /?utm_source=Klaviyo&utm_medium=campaign&_kx= HTTP/1.1
Host: themendico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 300
x-sorting-hat-shopid: 60783493354
x-storefront-renderer-rendered: 1
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:788bc199726ed43fe708f8b9b3ab36b8
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 60783493354
x-shardid: 300
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 4c6bcfa3-8210-4ca2-8ae7-e9349cca981f
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
set-cookie: keep_alive=524e79eb-492e-4da3-aea1-1cba96f21dd8; path=/; expires=Tue, 07 Feb 2023 05:04:02 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Wed, 07 Feb 2024 04:34:02 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Wed, 07 Feb 2024 04:34:02 GMT
_orig_referrer=; Expires=Tue, 21-Feb-23 04:34:02 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D; Expires=Tue, 21-Feb-23 04:34:02 GMT; Domain=themendico.com; Path=/; HttpOnly; SameSite=Lax
_y=f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f; Expires=Wed, 07-Feb-24 04:34:02 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_s=a22152f7-44f1-4dda-a8f5-4aba11721e6b; Expires=Tue, 07-Feb-23 05:04:02 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_y=f9e91eb8-b1b3-428b-ac4c-34ec05a4b02f; Expires=Wed, 07-Feb-24 04:34:02 GMT; Domain=themendico.com; Path=/; SameSite=Lax
_shopify_s=a22152f7-44f1-4dda-a8f5-4aba11721e6b; Expires=Tue, 07-Feb-23 05:04:02 GMT; Domain=themendico.com; Path=/; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XGmLNbNY8pvAC4dh88DuLgUWJ96NFN0dPexoqfX97VZ6i8PdU99af%2BxQuLtibIOP3c2r7Lywj30LDir2hVxxIjzsP1SRHNu2JQ88UXRbKwurBmWe87rRNdPk1nWBsfWO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7959692dce16b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=21, db;dur=8, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=255.000114, earlyhints
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
link: <https://cdn.shopify.com/shopifycloud/model-viewer-ui/assets/v1.0/model-viewer-ui.en.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5096160b-acdf-4b30-ab6b-03ef7bda72e4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Tue, 07 Feb 2023 03:14:30 GMT
cf-cache-status: HIT
age: 3437
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UFIjwUY7DGycpdDIhy5fA2yAefeEPbk5dgvwTrMhre94v%2FJMwENl8NF5y%2B%2F28MKExqbOP2cpxq5ESazdg%2BNpj4cCiLYYPV7NKw6kytqvxUh%2FqxcJI1qYRDHmxgQgR71y5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=91.340, imageryFetch;dur=39.054, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 7959692f6e79b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
steel.oneteam.ai/client-version
3.232.176.189200 OK 0 B URL HTTP/2 steel.oneteam.ai/client-version
IP 3.232.176.189:0
GET /client-version HTTP/1.1
Host: steel.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:05 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
access-control-allow-origin: *
expires: Tue, 07 Feb 2023 05:04:05 GMT
cache-control: max-age=1800, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/sections.js?v=34438141566735436391673800107
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/sections.js?v=34438141566735436391673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/22/assets/sections.js?v=34438141566735436391673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/sections.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: fced1b3d-d6d3-45cd-b7a4-66dfecf2feea
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9UlTPj%2B8p9iyaxB7YIyqlVIUdVXvAzeotuAI3ShH0NUOib2aLeeh5mHmdKCY4vbznQ%2By%2F4Gw2NkFdgUqcy2PNqPzwk69r5qg5PizwabN9VMx%2BUdDFiKJTU2J3K14eQ%2FJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=79.132, imageryFetch;dur=66.253, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 7959692f9e94b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/app.js?v=21512433002930479311673800107
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/app.js?v=21512433002930479311673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/22/assets/app.js?v=21512433002930479311673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/app.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d6296a07-6ce2-4e8f-948e-f9ae31f896a8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BFew38lcbxlM53LmPibSqZmmGWjYZPy5wccSGaf77I49crPgijziFc%2BpwQNPBLdxug1jMyWtVhIEly19Bw7dTqMvysWirgnRlgpDTfJ3v70KoGbUwcf3q%2Fp6zkJaxwyKmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=122.928, imageryFetch;dur=117.715, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7959692f6e76b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638113181451095828
104.19.211.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638113181451095828
IP 104.19.211.131:0
GET /vendor/b04b0325-f4bb-4d4c-be3e-752cb31e6335/user.js?cb=638113181451095828 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:04 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
content-md5: jE7ewqfX+Ejr/bflygtcLQ==
last-modified: Mon, 06 Feb 2023 22:09:05 GMT
x-ms-request-id: 2db5be6b-f01e-0035-26ad-3ab665000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
cf-cache-status: HIT
age: 0
expires: Wed, 07 Feb 2024 04:34:03 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79596932998c0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
52.223.40.198200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0
IP 52.223.40.198:0
GET /track/up?adv=cfyuv8u&ref=https%3A%2F%2Fthemendico.com%2F%3Futm_source%3DKlaviyo%26utm_medium%3Dcampaign%26_kx%3D&upid=3nftgh5&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:04 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
iron.oneteam.ai/api/shops/themendico.myshopify.com/settings
3.232.176.189200 OK 0 B URL HTTP/2 iron.oneteam.ai/api/shops/themendico.myshopify.com/settings
IP 3.232.176.189:0
GET /api/shops/themendico.myshopify.com/settings HTTP/1.1
Host: iron.oneteam.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themendico.com
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 07 Feb 2023 04:34:06 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"f89-BSbidpiHJk9+mxxGJjH87D30pY8"
expires: Tue, 07 Feb 2023 04:35:06 GMT
cache-control: max-age=60, public, no-transform
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/jquery.min.js?v=81049236547974671631673800107
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/jquery.min.js?v=81049236547974671631673800107
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/22/assets/jquery.min.js?v=81049236547974671631673800107 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/jquery.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9a3f8a7c-38d1-4227-8657-c776879c852d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 05:11:07 GMT
cf-cache-status: HIT
age: 31897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oR1kiWQmnpY3inthdpa1EaXupzR8VfMD9mtHKF8YhSbpxNdcLa%2BdoENHKHkeRtOS280io9aI1Oc7lUpzxwfppVNBKSzZB0AycX62YO8W%2Fem0QXbgvjAapwU4HzGAEQNvhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=87.922, imageryFetch;dur=87.645, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7959692fbeb2b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/styles.css?v=4627060767674419351675723937
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/styles.css?v=4627060767674419351675723937
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/8349/3354/t/22/assets/styles.css?v=4627060767674419351675723937 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themendico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 04:34:02 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/8349/3354/t/22/assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e6b9105b-4e1a-4837-a7c3-b558dba11b5a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 06 Feb 2023 22:52:22 GMT
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NAA75x6eboea8Zs4iX5LcNNeLXI%2Bs5ZyPCZ0QnY39ZBSBvUUlyfqhCx%2BCy3U1eLMOWnGlLHvI%2BhLBwAH2VQK%2F%2BPJmRHaOEhz0oxO3iqyUvRYlHI4Oae3%2BxlJnIRtpyB%2FAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=107.908, imageryFetch;dur=73.451, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7959692fceb7b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2