heidimaunder.com/
185.230.63.186301 Moved Permanently 0 B IP 185.230.63.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: heidimaunder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 24 Mar 2023 15:39:05 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.heidimaunder.com/
strict-transport-security: max-age=3600
Age: 74049
Server-Timing: cache;desc=hit, varnish;desc=hit, dc;desc=84
X-Seen-By: yKskFaTI/RmB0yGOaMOo6Q==,sHU62EDOGnH2FBkJkG/Wx8EeXWsWdHrhlvbxtlynkVgp9DPJ6CT17cJ4lrLdYKci,m0j2EEknGIVUW/liY8BLLugxpzo4Lzk5UB/xu5OzG7jJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalhsn2cXlKG8O+bKEmke/YsNYRxAtwPvdwUwbd+Sgow0USe6IKXskp/QFFSyl4Mnknw==,2UNV7KOq4oGjA5+PKsX47JsWNB/NSpKXnjnMMfR0HfS8ZDY613cHYLbuhNMgAom1
Cache-Control: no-cache
X-Wix-Request-Id: 1679672345.1072514839418623452
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4482
Expires: Fri, 24 Mar 2023 16:53:47 GMT
Date: Fri, 24 Mar 2023 15:39:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2725
Expires: Fri, 24 Mar 2023 16:24:30 GMT
Date: Fri, 24 Mar 2023 15:39:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Fri, 24 Mar 2023 16:41:33 GMT
Date: Fri, 24 Mar 2023 15:39:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 15:27:38 GMT
content-type: application/json
age: 687
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 163bVQWygz7hph8W/BjFlg5qQwQkUgiMq1luGQP8EIZM/xKYfXOrS0vHTk8JrIJtQsmJjiISMTngoZQpcFgSQQ==
x-amz-request-id: PW66YMGYHFKB5ESW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 14:54:32 GMT
age: 2673
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 15:39:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9cea89685ce773de8365adb9bfd63dc1
39707716a8843749424149a027845c7235999148
e537860edd3628078f691ef64fb3083c2e54fabe6eedc99a7031313ef8b7c43d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 20:08:16 GMT
Expires: Thu, 30 Mar 2023 20:08:15 GMT
Etag: "39707716a8843749424149a027845c7235999148"
Cache-Control: max-age=533949,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad0013f5c45b4eb-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 15:14:33 GMT
age: 1472
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11697
Expires: Fri, 24 Mar 2023 18:54:03 GMT
Date: Fri, 24 Mar 2023 15:39:06 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9cea89685ce773de8365adb9bfd63dc1
39707716a8843749424149a027845c7235999148
e537860edd3628078f691ef64fb3083c2e54fabe6eedc99a7031313ef8b7c43d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 20:08:16 GMT
Expires: Thu, 30 Mar 2023 20:08:15 GMT
Etag: "39707716a8843749424149a027845c7235999148"
Cache-Control: max-age=533948,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00141e90cb4eb-OSL
push.services.mozilla.com/
52.88.218.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.218.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rk/B5m0fv3asrg5J9ZdBog==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Uav68mfxYGsHqwpAn7AceQFdnvw=
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c6692bcad16410226b4e245756d069e3
90de370f13778c3b1157b1e31f65b7082eea6aa1
23f371f98c3010291ec3569a6bf622ddee31ee214469038b1c2003cd9539bc8c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:33:56 GMT
Expires: Thu, 30 Mar 2023 04:33:55 GMT
Etag: "90de370f13778c3b1157b1e31f65b7082eea6aa1"
Cache-Control: max-age=477888,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00143dbaab4eb-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c6692bcad16410226b4e245756d069e3
90de370f13778c3b1157b1e31f65b7082eea6aa1
23f371f98c3010291ec3569a6bf622ddee31ee214469038b1c2003cd9539bc8c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:33:56 GMT
Expires: Thu, 30 Mar 2023 04:33:55 GMT
Etag: "90de370f13778c3b1157b1e31f65b7082eea6aa1"
Cache-Control: max-age=477888,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00143ebbd0b61-OSL
frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&platformOnSite=true
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&platformOnSite=true
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&platformOnSite=true HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:06 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=62&tts=949&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=62&tts=949&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=1&event_name=Init&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=62&tts=949&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:06 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=740&tts=1626&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=740&tts=1626&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=12&event_name=Partially%20visible&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&st=2&ts=740&tts=1626&url=https%3A%2F%2Fwww.heidimaunder.com%2F%3F&v=1.11982.0&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:06 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&name=partially_visible&duration=1679672357371&pageId=rofwe
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&name=partially_visible&duration=1679672357371&pageId=rofwe
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=fastly_g&is_cached=false&msid=131be200-f210-4308-b95d-a1d73122a3a4&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&ish=false&isb=false&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&caching=miss,miss_miss&pv=visible&pn=1&v=1.11982.0&url=https%3A%2F%2Fwww.heidimaunder.com%2F&st=2&ts=45&tsn=932&name=partially_visible&duration=1679672357371&pageId=rofwe HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:06 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 46e1286ec2d44b5fdbdfce8199e215f9
3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa
d1d4be5d9ddb8f3bac015856bb2f52885d9bb660a75f4c149e917bffd67783c3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:07:40 GMT
Expires: Thu, 30 Mar 2023 04:07:39 GMT
Etag: "3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa"
Cache-Control: max-age=476312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00146dd661c0e-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 974e1306846aac87e75d0429e89fecdb
c31c47e19eb1fbd67c95a8a47fcc88511a617fcd
93d2041fcd0bbcce59133cef0014411d8b120362bc370cf153f9487dd0da29dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 15:32:56 GMT
Expires: Thu, 30 Mar 2023 15:32:55 GMT
Etag: "c31c47e19eb1fbd67c95a8a47fcc88511a617fcd"
Cache-Control: max-age=517428,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00146cfc40b61-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 46e1286ec2d44b5fdbdfce8199e215f9
3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa
d1d4be5d9ddb8f3bac015856bb2f52885d9bb660a75f4c149e917bffd67783c3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:07:40 GMT
Expires: Thu, 30 Mar 2023 04:07:39 GMT
Etag: "3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa"
Cache-Control: max-age=476312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00146dcfbb4ff-OSL
static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js
34.96.106.200200 OK 36 kB URL HTTP/2 static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (682)
Hash c88aca3ce8fd7ec85ff55d835e476dcc
66f5f5ddcff30e3b7425ca4995c27ab19fee025f
c2c5ce710d0420daa825ffff8ade4628c84ab0dad9c066d356e91c47f5dec485
GET /unpkg/react-dom@16.14.0/umd/react-dom.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 36048
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 577284541 363174524
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679414480.73772297606517401
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Tue, 21 Mar 2023 16:01:20 GMT
cache-control: public, max-age=7776000, immutable
age: 257866
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: "c5abc87541fe6bb0f43f22af475a8b20"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/wix-perf-measure/1.1058.0/wix-perf-measure.umd.min.js
34.96.106.200200 OK 11 kB URL HTTP/2 static.parastorage.com/services/wix-perf-measure/1.1058.0/wix-perf-measure.umd.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (27675)
Hash c5245e396cfe6a8abac92abb4a2943fa
a32d66a4f36b71a27df3e9acb1e3ffc20d3b868e
0ac5dddcc5282bed2d95df37a0b899c545260c0b3b8e5ff4127c618d25987cbf
GET /services/wix-perf-measure/1.1058.0/wix-perf-measure.umd.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 10652
x-amz-replication-status: REPLICA
x-amz-version-id: HvxFk4zAYiVL47AxzVLPpM_pDTPZE.na
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-amz-server-side-encryption: AES256
content-encoding: br
x-varnish: 966928401 886788934
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679604160.25810557529676830087
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 20:42:40 GMT
cache-control: public, max-age=7776000, immutable
age: 68186
last-modified: Thu, 23 Feb 2023 14:17:22 GMT
etag: "9562c76ed2a51f076cdd128b590e7b83"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2
34.96.106.200200 OK 28 kB URL HTTP/2 static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 27888, version 1.0\012- data
Hash f3f710f181ea1983faa7e8a884544114
dc9aa90f2e54d592144bf654d68c6f11a51c1e7e
f473a8e8cb109bf35b3138929e5abb1fd488ce53d6ab3a312ba229972fd35acc
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 27888
pragma: no-cache
x-envoy-upstream-service-time: 102
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 145383956 68381195
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1677210159.7483751148740723896
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Fri, 24 Feb 2023 03:42:39 GMT
cache-control: public, max-age=7776000
age: 2462187
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js
34.96.106.200200 OK 3.1 kB URL HTTP/2 static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (7849)
Hash 4b6098bb7a5117dc2d4f7f3cd878ce02
32c87e5fafae4aa5000662e8cc4590e4b86a12b2
ded04e66730230757b89ecab062e82862b63c49cfcb5c410f957474933f54716
GET /services/tag-manager-client/1.705.0/siteTags.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 3092
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: tMdd3gNZg3QA3O.jbnMbXDc0pFPNujsf
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 596600184 572870965
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchsyoANA5L58iE/4UOTdE0x,aVxMblM8KFG3we5NLvyVczcu59EpmtW9m1QeKn/Zhei8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679585508.2971016840574589387
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 15:31:48 GMT
cache-control: public, max-age=7776000, immutable
age: 86838
last-modified: Wed, 28 Dec 2022 13:39:32 GMT
etag: W/"82ef8cd522818464cafdf4bf58ab1ffa"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js
34.96.106.200200 OK 25 kB URL HTTP/2 static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (4143)
Hash 9661f391f69ddbf1e8bbf879c1c69660
60e78567cd82d5dec158be4ae4d365f45412fb36
59fe3fa5daacb2b18c734a563d4e8e9df1f51eb24672249ca4962f3132149191
GET /unpkg/lodash@4.17.21/lodash.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 25102
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 454162269 267050045
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679355520.66964445504685777
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Mon, 20 Mar 2023 23:38:40 GMT
cache-control: public, max-age=7776000, immutable
age: 316826
last-modified: Sun, 21 Feb 2021 02:37:42 GMT
etag: "9becc40fb1d85d21d0ca38e2f7069511"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js
34.96.106.200200 OK 4.7 kB URL HTTP/2 static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (574)
Hash 98af04861581703b8f33819f777e19f5
68333056e788b1276646537149661537143ddc8a
9b4dce05c51788fcb566e1b8bbfc8f9df48249035b9d2cb8633011b7bd26c5dc
GET /unpkg/react@16.14.0/umd/react.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 4703
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 920134131 892002472
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679585505.479101772230675778
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 15:31:45 GMT
cache-control: public, max-age=7776000, immutable
age: 86841
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: "63d498e143f421cc44dfb64f22fef270"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2
34.96.106.200200 OK 29 kB URL HTTP/2 static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 28664, version 1.0\012- data
Hash def163acd28eedc05d4360414ec512c2
ec438bfa4e4dad43e5d1c9424ea2508574676506
055f76708fb4f4c8e275b57a70f66e7a86b5f36f7e59033624d867b5e425ca35
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 28664
pragma: no-cache
x-envoy-upstream-service-time: 112
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 398384619 368729935
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjR6IMkIgDN3dKWLSNjYj0d,aVxMblM8KFG3we5NLvyVc7BqDNFHAXxDhnSr3nbzCBC8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679093045.12632694727765777
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Fri, 17 Mar 2023 22:44:05 GMT
cache-control: public, max-age=7776000
age: 579301
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/64017d81-9430-4cba-8219-8f5cc28b923e.woff2
34.96.106.200200 OK 23 kB URL HTTP/2 static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/64017d81-9430-4cba-8219-8f5cc28b923e.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 23088, version 1.0\012- data
Hash 2d0f4ed39eab36ed9ce8971423f32e07
939f68086c868da19d03c5f7fee6f1583785424c
5571fff42dc7e301a496d7affcc5305688037d897a6a4cbad6a3de042e384717
GET /services/third-party/fonts/user-site-fonts/fonts/64017d81-9430-4cba-8219-8f5cc28b923e.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 23088
x-amz-version-id: ziBkzDBLroXWzdKzc88JPrx5w098iQE7
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 449466911 249822450
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1677200878.907380804868925754
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Fri, 24 Feb 2023 01:07:58 GMT
cache-control: public, max-age=7776000, immutable
age: 2471468
last-modified: Tue, 17 Apr 2018 11:10:41 GMT
etag: "09b3ae354f51d58bb56e20ee0547c9ec-1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/wix-thunderbolt/dist/main.03ac1974.bundle.min.js
34.96.106.200200 OK 38 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/main.03ac1974.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash af13f0e20f330bfdac411a34b602bbce
3d5df8c9abe5c4ccc90d80b67aa26d63f453046e
7fdb1b63da4f0a889b18311b4d30b0207837b3d11a82e375b8fd05b644d230b1
GET /services/wix-thunderbolt/dist/main.03ac1974.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 37975
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: Rc85ckI06h.2S0.1wXKQhdpwjaXNpftb
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 837266100 671916412
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchsyoANA5L58iE/4UOTdE0x,aVxMblM8KFG3we5NLvyVc1jYNdX5iXQWX+OiINkuR/e8ZDY613cHYLbuhNMgAom1
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679557179.08695677262939386
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 07:39:39 GMT
cache-control: public, max-age=7776000, immutable
age: 115167
last-modified: Wed, 22 Mar 2023 13:03:05 GMT
etag: W/"d0c691a0bc37bb23c42d3c5e7abc8d99"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/z9rX03Xuz9ZNHTMg1_ghGRUOjZSKWg4xBWp_C_qQx0o.woff2
34.96.106.200200 OK 30 kB URL HTTP/2 static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/z9rX03Xuz9ZNHTMg1_ghGRUOjZSKWg4xBWp_C_qQx0o.woff2
IP 34.96.106.200:0
File type Web Open Font Format (Version 2), TrueType, length 30000, version 1.0\012- data
Hash 9f71cf108de81f6ac6a793caf65e8ee4
c806a427d3e05614d763a63d1b150bb10c2628b8
443c894d3780f5b7513455a54a1cb12d9b3a784ac48fd4695f2639a51b356050
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/z9rX03Xuz9ZNHTMg1_ghGRUOjZSKWg4xBWp_C_qQx0o.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 30000
pragma: no-cache
x-envoy-upstream-service-time: 111
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 432900229 349548619
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciIhzGxulME7YKteYTeCw6C,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679247863.0904945573581230087
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Sun, 19 Mar 2023 17:44:23 GMT
cache-control: public, max-age=7776000
age: 424483
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.5cfb4463.bundle.min.js
34.96.106.200200 OK 23 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.5cfb4463.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b9be5c1090c5d3ea34dd1e2b401ce76
7755c4a29ea62bea74285a138f1397f0b26d9e01
c326fcd9d49e397d285669f5def0f37a69533a14de987cf7b656174fe5456730
GET /services/wix-thunderbolt/dist/thunderbolt-commons.5cfb4463.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 23101
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: t4mdMB70_hOf3oimhpNNacr0jwcj47lN
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 101325071 1022347621
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679557179.08894321614367400
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 07:39:39 GMT
cache-control: public, max-age=7776000, immutable
age: 115167
last-modified: Wed, 22 Mar 2023 18:55:08 GMT
etag: W/"ef610a290e6fc8b4de83956e2a28586e"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 46e1286ec2d44b5fdbdfce8199e215f9
3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa
d1d4be5d9ddb8f3bac015856bb2f52885d9bb660a75f4c149e917bffd67783c3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:07:40 GMT
Expires: Thu, 30 Mar 2023 04:07:39 GMT
Etag: "3cf04d0f113f3a8d2541946bb7eecfd3141b4cfa"
Cache-Control: max-age=476312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00147cec81c0e-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 974e1306846aac87e75d0429e89fecdb
c31c47e19eb1fbd67c95a8a47fcc88511a617fcd
93d2041fcd0bbcce59133cef0014411d8b120362bc370cf153f9487dd0da29dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 15:32:56 GMT
Expires: Thu, 30 Mar 2023 15:32:55 GMT
Etag: "c31c47e19eb1fbd67c95a8a47fcc88511a617fcd"
Cache-Control: max-age=517428,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad00146ec04b524-OSL
static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.354c6615.chunk.min.js
34.96.106.200200 OK 8.9 kB URL HTTP/2 static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.354c6615.chunk.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (30121)
Hash a18899a43e0b91d0e66e006c3785ddd9
028bfa0e060eae9bf4c21808d164fd1160fe6444
beacd9e956a766a5d4ffbb70e4c36858302e0365c0f8ad25fbba6860618ea327
GET /services/wix-thunderbolt/dist/thunderbolt-components-registry.354c6615.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 8927
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: peGa_WCEqFd9KsFROY951p9enqf6TGEJ
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 429617802 308117791
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVcyc3RE2AEtYWQGVQ/2ywuOgeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1677651646.09241704045342723896
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Wed, 01 Mar 2023 06:20:46 GMT
cache-control: public, max-age=7776000, immutable
age: 2020700
last-modified: Tue, 28 Feb 2023 16:15:08 GMT
etag: W/"a3d93635740a70fe5040b25d18628558"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/profile-card-tpa-ooi/1.1053.0/viewerScript.bundle.min.js
34.96.106.200200 OK 35 kB URL HTTP/2 static.parastorage.com/services/profile-card-tpa-ooi/1.1053.0/viewerScript.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6c3a2963242260bcf7e3e616b5be431
283229200c39a05d01e226dcecd6583f81ea999b
35ca21839544af38f8f508749e568f91ce6355a04a158c2105851ef2573afe53
GET /services/profile-card-tpa-ooi/1.1053.0/viewerScript.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Origin: https://www.heidimaunder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 35406
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: XbreC.YeFlExO8pqqtuPxzsGQi8TXJAS
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 882136664 875003050
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679562618.83395402018217400
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 09:10:18 GMT
cache-control: public, max-age=7776000, immutable
age: 109728
last-modified: Thu, 23 Mar 2023 07:13:10 GMT
etag: W/"f62b64c00ce618ea0cbb8f0e160235cb"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/profile-card-tpa-ooi/1.1053.0/ProfileCardController.bundle.min.js
34.96.106.200200 OK 61 kB URL HTTP/2 static.parastorage.com/services/profile-card-tpa-ooi/1.1053.0/ProfileCardController.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (33396)
Hash 5f9ac2da6be7beec8f972a5a9cceceb0
8e0ab1221627e75e00be8742c58d331111115fbc
19bf38b2cabf59a7fa3b16f95ec19cfe92e954240a4140a27e36f238fc3d9575
GET /services/profile-card-tpa-ooi/1.1053.0/ProfileCardController.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Origin: https://www.heidimaunder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 61107
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: sRl_j4Si6H7L3mLGRfKCcZQN62AZJBbJ
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 880888013 875870904
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVc2240yoD0MlMpM73djr11roeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679562618.684953811645467401
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 09:10:18 GMT
cache-control: public, max-age=7776000, immutable
age: 109728
last-modified: Thu, 23 Mar 2023 07:13:09 GMT
etag: W/"af514204f8256ee153e0cb4c0251967b"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.parastorage.com/services/santa-members-viewer-app/1.1268.0/viewerScript.bundle.min.js
34.96.106.200200 OK 33 kB URL HTTP/2 static.parastorage.com/services/santa-members-viewer-app/1.1268.0/viewerScript.bundle.min.js
IP 34.96.106.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 16ab88f55c5151049273c6dffc26de76
bf860515fcd2343e50a174065aabea8f033218b2
43f13c80143c609301bc31c5255f0ae7b9081b834a2671f674d47ce21feacfd2
GET /services/santa-members-viewer-app/1.1268.0/viewerScript.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Origin: https://www.heidimaunder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 33122
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: 0EvIpxjxpXDlXR6q.7NqNBc2DMCS9wwX
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 875918633 871702568
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciuywJq1k3i9boDUht6MLw5,aVxMblM8KFG3we5NLvyVczEbmANe8Bb4VBvfNWC6jxEeGdLDLXwpLd0CTVHPbfOd
accept-ranges: bytes
server: Pepyaka/1.19.10
x-wix-request-id: 1679560975.869950503142447400
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 23 Mar 2023 08:42:55 GMT
cache-control: public, max-age=7776000, immutable
age: 111371
last-modified: Thu, 23 Mar 2023 07:13:38 GMT
etag: W/"486147c955c868e7bdb4a9d046004c44"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.wixstatic.com/media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_200,h_55,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png
34.102.176.152200 OK 3.9 kB URL HTTP/2 static.wixstatic.com/media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_200,h_55,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ded979f49e74e4593b10b676020de3b9
209c45df2420e48d1facfbf072ae2316adba1f8d
dd7aaf3f81a630136965cf5098aeb8cf616803c09b46f376afa734443459ae10
GET /media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_200,h_55,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Fri, 24 Mar 2023 15:39:06 GMT
content-type: image/webp
content-length: 3908
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2NSzbzPcIqZehJyBSpuJczjes0X
x-seen-by: image-manipulator-5fdcdfd696-gtzxp
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.wixstatic.com/media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_357,h_98,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png
34.102.176.152200 OK 9.1 kB URL HTTP/2 static.wixstatic.com/media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_357,h_98,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 053dfc6091a4201462a167aac7d43903
652e12357c747542251257086f8ac825e6f286a0
e5488c8692452f7711c8a8ef11e18a8d1f6075bc27804be6d1e25a28a61df114
GET /media/e25e5d_5728f618198e48179f20531b46bf8ccd~mv2.png/v1/fill/w_357,h_98,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Maunder%20Art%20(1).png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Fri, 24 Mar 2023 15:39:07 GMT
content-type: image/webp
content-length: 9110
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2NSzc1RaHSQXd6CO7wKxwYoe6hI
x-seen-by: image-manipulator-5fdcdfd696-m749m
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 974e1306846aac87e75d0429e89fecdb
c31c47e19eb1fbd67c95a8a47fcc88511a617fcd
93d2041fcd0bbcce59133cef0014411d8b120362bc370cf153f9487dd0da29dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 15:32:56 GMT
Expires: Thu, 30 Mar 2023 15:32:55 GMT
Etag: "c31c47e19eb1fbd67c95a8a47fcc88511a617fcd"
Cache-Control: max-age=517427,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad001494add0b61-OSL
siteassets.parastorage.com/pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_0e220dc177a28a9fad54ed3a8c2e4191_133.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
34.96.106.200200 OK 16 kB URL HTTP/2 siteassets.parastorage.com/pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_0e220dc177a28a9fad54ed3a8c2e4191_133.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
IP 34.96.106.200:0
Hash f0ea55791ea3b64815726d2a2ad24ca0
672a3aca7de77eae17867404b6c9d1ed230cdeba
5d52a30a6ea55d81fd17ef000c9d0d2e268e5bfcb00f1870705a736a258f388a
GET /pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_0e220dc177a28a9fad54ed3a8c2e4191_133.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:06 GMT
content-type: application/json
etag: W/"13b0d-BB85rpNS8iX9ABhCPMPULuq4pYQ"
x-wix-request-id: 1679672346.8451151619092830087
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
x-varnish: 1041857705, 26275216
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR374F0S6IZWPBSR/IxrWsyAAl,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxsDhWZFH/kvslXptoBZYhMx,ZUT6NeJ/NsDmQ9DMGnwT1DZe7saXJrqXI/cbJwRhqu7hTxcQYDONneeBKnlnBEMV,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++frAKCs9wQnsbwuEAwiSEDMK,7npGRUZHWOtWoP0Si3wDpw1wmR8v3iHU/pyGyiJHHXY=,xTu8fpDe3EKPsMR1jrheEGseXV+32g3aVvYac8MZq8I=,o/Sof6cnxBFRHBk8PsHvE1RrrbLaKhw5lp1wpf/Ccn2ZogIVX6Sd/qUjUo7eQ75pZ0Y2szaBXobgtFfUeeYb9g==,xTu8fpDe3EKPsMR1jrheEGseXV+32g3aVvYac8MZq8I=,xTu8fpDe3EKPsMR1jrheEC3NLPi6mgcJaPfOIYfqqKA=,X0+kt7XXQOUL1jfJ/HiBImZ+Wgyr9WiJrchg1n5i++iFNO2QSowUKTBMb4CSegyO9nvUCA9cG4Ciwi541VIEb/AJ2SO8Ac1l4Gr2Qy8ud78=
accept-ranges: bytes
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.wixstatic.com/media/e25e5d_565db844794148ba98204e304f841f18~mv2.jpg/v1/fill/w_795,h_530,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Art-097.jpg
34.102.176.152200 OK 94 kB URL HTTP/2 static.wixstatic.com/media/e25e5d_565db844794148ba98204e304f841f18~mv2.jpg/v1/fill/w_795,h_530,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Art-097.jpg
IP 34.102.176.152:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 556b8acbb75eb462410620d5b2c54ff7
ebe0e90f8009742056e2b25f87d0e243bc6fb257
822647977ab15353092068fa1438b9012b24bbed47a78ffc830e523105a0af91
GET /media/e25e5d_565db844794148ba98204e304f841f18~mv2.jpg/v1/fill/w_795,h_530,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/Heidi%20Art-097.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Fri, 24 Mar 2023 15:39:07 GMT
content-type: image/webp
content-length: 93938
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2NSzbzcaHXJwfugRAiJt78oqnI8
x-seen-by: image-manipulator-5fdcdfd696-mcfcr
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1308
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/site-members?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2271&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=5&evid=698&biToken=131be200-f210-4308-b95d-a1d73122a3a4&context=undefined&ts=1385&viewmode=undefined&visitor_id=f560eb82-0305-4561-9475-1a214dbcce85&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723580650
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/site-members?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2271&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=5&evid=698&biToken=131be200-f210-4308-b95d-a1d73122a3a4&context=undefined&ts=1385&viewmode=undefined&visitor_id=f560eb82-0305-4561-9475-1a214dbcce85&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723580650
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /site-members?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2271&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=5&evid=698&biToken=131be200-f210-4308-b95d-a1d73122a3a4&context=undefined&ts=1385&viewmode=undefined&visitor_id=f560eb82-0305-4561-9475-1a214dbcce85&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723580650 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
siteassets.parastorage.com/pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_157b301e34e6efc3fe34df0cf932d3dc_132.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
34.96.106.200200 OK 2.9 kB URL HTTP/2 siteassets.parastorage.com/pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_157b301e34e6efc3fe34df0cf932d3dc_132.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop
IP 34.96.106.200:0
Hash 232f7d049b73470d57aa1692118c316d
9a74ea9ab76818084d05742f44851f7188aaafdb
61f8d9ceb5991b7a313e3984ea240be2c8bfe71d036ed921a2bf8d698d2ae95d
GET /pages/pages/thunderbolt?appDefinitionIdToSiteRevision=%7B%2214271d6f-ba62-d045-549b-ab972ae1f70e%22%3A%2218%22%7D&beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.ExpandableMenuFixDirection%3Atrue%2Cspecs.thunderbolt.PayPalApiv2%3Atrue%2Cspecs.thunderbolt.comps_to_hide_effectsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.fontAntiAliased%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.url_hierarchy%3Atrue%2Cspecs.thunderbolt.hoverbox_css_catharsis%3Atrue%2Cspecs.PayPalButton.apiv2%3Atrue%2Cspecs.thunderbolt.useMergedCssSelectors%3Atrue%2Cspecs.thunderbolt.landing_page_css_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2260.0&disableStaticPagesUrlHierarchy=false&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.heidimaunder.com&fileId=38a0043c.bundle.min&formFactor=desktop&hasTPAWorkerOnSite=true&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=131be200-f210-4308-b95d-a1d73122a3a4&migratingToOoiWidgetIds=14fd5970-8072-c276-1246-058b79e70c1a&module=thunderbolt-features&originalLanguage=en&pageId=e25e5d_157b301e34e6efc3fe34df0cf932d3dc_132.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10559.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=5d32e80b-9203-409c-95a8-63dac07c2718&siteRevision=133&staticHTMLComponentUrl=https%3A%2F%2Fwww-heidimaunder-com.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:07 GMT
content-type: application/json
etag: W/"1930-+tP2kUpS3XfPgNaI2kYY4li7QCE"
x-wix-request-id: 1679672346.982115063363515777
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
x-varnish: 1058378872, 571243905
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR375iK9ipUuWu57EktsrV6pBx,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxvNE8RLbxH62LEBrrXVG8FL,ZUT6NeJ/NsDmQ9DMGnwT1DZe7saXJrqXI/cbJwRhqu7hTxcQYDONneeBKnlnBEMV,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++frAKCs9wQnsbwuEAwiSEDMK,7npGRUZHWOtWoP0Si3wDp7WuSH68sZSiNuj4ZnGbshE=,o/Sof6cnxBFRHBk8PsHvE3MukhtAujUwp0oL6D/GZ1lgQhKKGQwRKkfNQWe6abOT1kkfKp2CAbjARsZnB0k2Mg==,xTu8fpDe3EKPsMR1jrheEAF7Bie8dRNz8mtSpJ8o0Ok=,xTu8fpDe3EKPsMR1jrheEF6vYYs3hRP94UC9hYCv8I0=,X0+kt7XXQOUL1jfJ/HiBImZ+Wgyr9WiJrchg1n5i++iFNO2QSowUKTBMb4CSegyOeYdbX+Nd6JW5moa63vPg0VpZg4tQ9dd7BMytSCBz1/Q=
accept-ranges: bytes
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2699
Expires: Fri, 24 Mar 2023 16:24:06 GMT
Date: Fri, 24 Mar 2023 15:39:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 725b558c5b217b40ec923c072a764dc9
f3a16cf007c5793b3abc4978fe023f60d375315b
543d159b2fe8680fcaebd19ed567ea7725030f8c564784be0c542deed456144d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10649
x-amzn-requestid: e8bfb59a-ccad-4150-9dfa-a9ae7966500b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM7CIHrFoAMFTXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b720d-0ef87c8a6a55d9c77f2faa03;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:24:29 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: MZAWLd0V6aOwfS3stOcabNJMrPjvrfMHg8lLXDrdEL6y-8XPZTgydQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 15:50:05 GMT
age: 85742
etag: "f3a16cf007c5793b3abc4978fe023f60d375315b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bb55b1044454d0db2324a4af956cd51
5aa34545aa2274453b301c74a083034273177cbd
fb7fa8b91ff7374ac6be2df05e1e98194f2adf3ce728b02a66323993145975ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7405
x-amzn-requestid: 9865b715-ff9b-498d-95b3-c728fd3430be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPt7E46oAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc658-78b66faf317a7aaf689de782;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:36:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: MOdi4IjE6ooc_bhXhjI2pikpJfBxxg7kS8qHmvDRZD169vLef4FKYw==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:42:31 GMT
age: 64596
etag: "5aa34545aa2274453b301c74a083034273177cbd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type gzip compressed data, from Unix\012- data
Hash ff10b6a964a1f10a351adf6fd71e90b1
f27b9530aed75f1ca90cbc9d3befa391395d9e77
06b3b1f445ba837d865550ae50e23be325c000c0088961244ab391ecb693992c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 06:10:34 GMT
age: 34113
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d6ed667dad0c17b3f1697f6ad5f1dd2
9eff2b1900bc9788dfbff11fce69cc7c944b1fc1
ec0f7b928c7efd46d2679477acd9f3bf0b335f31b9739c4e925b23bd5cd16a05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8385
x-amzn-requestid: 7b1e47a8-7adb-48d9-9b0e-036305a77957
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xbmGJsoAMF-5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641562b0-2e4e7a3b14bfce4210def298;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:05:20 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 61beGZuZOIgOsG91c3VjhfcAEk4jwLQ1wyZ8OufNOLMkPwRSCcHo7Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 04:34:28 GMT
age: 39879
etag: "9eff2b1900bc9788dfbff11fce69cc7c944b1fc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d733019c5326d4617096c74ae22fdffd
72bc0b2a19ca257ac974460f81af47fcfa2fee24
6746fcedbf4aad5c94582162e343d160fdc7d127bae807d1a97a9d7a231c9a70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: bf32e1c8-cac1-4f04-abe6-fba2e9e824f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK89vHbyoAMFc7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa857-5d84ed861375c4ba04a2ae30;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:51 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 60VbucTVJnuo0rLzrTvbdbQOIMQmhDMQT8st-Y49_plnM_akqw_V4w==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 07:14:47 GMT
age: 30260
etag: "72bc0b2a19ca257ac974460f81af47fcfa2fee24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6cdbc190c56cfc889845d881cf88fed4
106075aa275beeaa40d4fa0587c3cee93b763bcf
5959109c9d987617bdcbb6e1ca8553d970b365390140906d41ff9a84462f1b2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4970
x-amzn-requestid: d55dee06-0562-4a17-8109-595ec62cc440
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHzHu2IAMFgfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-2f3b14aa47db00ba68b963b8;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ypBVMdGLEmHeFdKuIcGWPOXwDKy2hwIlTCudH7oKauDUUqNnzvVCBg==
via: 1.1 ec27e2bbc77d9805bead471453d2094c.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 22:25:11 GMT
age: 62036
etag: "106075aa275beeaa40d4fa0587c3cee93b763bcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2806&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=13ee53b4-2343-b641-c84d-056d2e6ed2e6&widget_id=147ce056-e1f1-42ae-8e33-95f9865d63c8&instance_id=comp-l7q0y4u3&src=42&evid=642&tts=2805&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586051
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2806&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=13ee53b4-2343-b641-c84d-056d2e6ed2e6&widget_id=147ce056-e1f1-42ae-8e33-95f9865d63c8&instance_id=comp-l7q0y4u3&src=42&evid=642&tts=2805&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586051
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2806&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=13ee53b4-2343-b641-c84d-056d2e6ed2e6&widget_id=147ce056-e1f1-42ae-8e33-95f9865d63c8&instance_id=comp-l7q0y4u3&src=42&evid=642&tts=2805&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586051 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2808&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=642&tts=2808&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586062
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2808&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=642&tts=2808&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586062
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2808&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=642&tts=2808&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586062 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/pa?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2814&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=76&evid=1109&pid=rofwe&pn=1&viewer=TB&pt=static&pa=editor&pti=rofwe&uuid=e25e5de0-8628-41d1-8370-fef8d6989d6b&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586073
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/pa?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2814&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=76&evid=1109&pid=rofwe&pn=1&viewer=TB&pt=static&pa=editor&pti=rofwe&uuid=e25e5de0-8628-41d1-8370-fef8d6989d6b&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586073
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pa?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2814&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=76&evid=1109&pid=rofwe&pn=1&viewer=TB&pt=static&pa=editor&pti=rofwe&uuid=e25e5de0-8628-41d1-8370-fef8d6989d6b&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723586073 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sar=1280x1002&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&sr=1280x1024&st=2&ts=1943&tts=2828&url=https%3A%2F%2Fwww.heidimaunder.com%2F&v=1.11982.0&vid=f560eb82-0305-4561-9475-1a214dbcce85&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147|1&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&wor=1280x1024&wr=1280x939&_brandId=wix
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sar=1280x1002&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&sr=1280x1024&st=2&ts=1943&tts=2828&url=https%3A%2F%2Fwww.heidimaunder.com%2F&v=1.11982.0&vid=f560eb82-0305-4561-9475-1a214dbcce85&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147|1&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&wor=1280x1024&wr=1280x939&_brandId=wix
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=miss,miss_miss&dc=84µPop=fastly_g&et=33&event_name=page%20interactive&is_cached=false&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=131be200-f210-4308-b95d-a1d73122a3a4&pid=rofwe&pn=1&sar=1280x1002&sessionId=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&siterev=133-__siteCacheRevision__&sr=1280x1024&st=2&ts=1943&tts=2828&url=https%3A%2F%2Fwww.heidimaunder.com%2F&v=1.11982.0&vid=f560eb82-0305-4561-9475-1a214dbcce85&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147|1&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&wor=1280x1024&wr=1280x939&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.heidimaunder.com
Content-Length: 1031
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:07 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 55941b78811e105c8d365f2f81f77e7b
2cc6d86a303460c37779d37c999443fd21137db1
7687d6bf4044f62bcac69ccf105b4a4263933abef9baa5b99ead5e55ba28c831
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 10:24:53 GMT
Expires: Thu, 30 Mar 2023 10:24:52 GMT
Etag: "2cc6d86a303460c37779d37c999443fd21137db1"
Cache-Control: max-age=498943,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad0014f3edd1c0e-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 3f048920a2cfb71b7cb1fb2d195b788d
04fbb21632f47d0001a0aabb49a153468ca78884
b4dff34d5a5e4b3dba67e7ec4e458a5a1db2d0c3527008f72533978b946d7731
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 00:05:25 GMT
Expires: Fri, 31 Mar 2023 00:05:24 GMT
Etag: "04fbb21632f47d0001a0aabb49a153468ca78884"
Cache-Control: max-age=548175,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad0014e99f0b4ff-OSL
frog.wix.com/bolt-performance
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.heidimaunder.com
Content-Length: 1559
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bolt-performance
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bolt-performance
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.heidimaunder.com
Content-Length: 7121
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
app.visitor-analytics.io/empty_widget.html?pageId=masterPage&compId=comp-l7q0y4u3&viewerCompId=comp-l7q0y4u3&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=1&height=1&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
136.243.146.200200 OK 327 B URL HTTP/1.1 app.visitor-analytics.io/empty_widget.html?pageId=masterPage&compId=comp-l7q0y4u3&viewerCompId=comp-l7q0y4u3&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=1&height=1&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
IP 136.243.146.200:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 848c8eaf631f7d4bf45f4fc198142822
9512d944a20bd0b9bb11717cbf30ad2edb69be62
5d1c213f2a4b4e46ef841557fd94c2ac476702378de9ea254dda6c5b9683b63b
GET /empty_widget.html?pageId=masterPage&compId=comp-l7q0y4u3&viewerCompId=comp-l7q0y4u3&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=1&height=1&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927 HTTP/1.1
Host: app.visitor-analytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.11.2
Date: Fri, 24 Mar 2023 15:39:08 GMT
Content-Type: text/html
Last-Modified: Thu, 23 Mar 2023 11:22:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"641c365c-1f5"
Content-Encoding: gzip
frog.wix.com/bpm
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3844
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 3f048920a2cfb71b7cb1fb2d195b788d
04fbb21632f47d0001a0aabb49a153468ca78884
b4dff34d5a5e4b3dba67e7ec4e458a5a1db2d0c3527008f72533978b946d7731
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 00:05:25 GMT
Expires: Fri, 31 Mar 2023 00:05:24 GMT
Etag: "04fbb21632f47d0001a0aabb49a153468ca78884"
Cache-Control: max-age=548175,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad0014f2dccb4eb-OSL
loadbalancer.visitor-analytics.io/worker?pageId=masterPage&compId=tpaWorker_50&viewerCompId=tpaWorker_50&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&endpointType=worker&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
94.130.41.13200 OK 4.9 kB URL HTTP/2 loadbalancer.visitor-analytics.io/worker?pageId=masterPage&compId=tpaWorker_50&viewerCompId=tpaWorker_50&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&endpointType=worker&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
IP 94.130.41.13:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4893), with no line terminators
Hash 4b2e7e8c98742c4b5df514e8b204bbb9
992bb2904eec00b74eb7bb635a3f3ba16ce6140e
9248d0c2ae1b247f92d93d6b41939ba7f2a8ea504e60f0d6ca70c3270f09fff7
GET /worker?pageId=masterPage&compId=tpaWorker_50&viewerCompId=tpaWorker_50&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&endpointType=worker&instance=4ma33ZF1EzdDgIU7aNPILyLlR6Wa143pF24iTGTbZX0.eyJpbnN0YW5jZUlkIjoiZjRjOGM2NjctNGVjMC00NmU3LWI4M2ItZWIzYTM4ZTczODhlIiwiYXBwRGVmSWQiOiIxM2VlNTNiNC0yMzQzLWI2NDEtYzg0ZC0wNTZkMmU2ZWQyZTYiLCJzaWduRGF0ZSI6IjIwMjMtMDMtMjRUMTU6Mzk6MDYuMDQ0WiIsImRlbW9Nb2RlIjpmYWxzZSwiYWlkIjoiZjU2MGViODItMDMwNS00NTYxLTk0NzUtMWEyMTRkYmNjZTg1Iiwic2l0ZU93bmVySWQiOiJlMjVlNWRlMC04NjI4LTQxZDEtODM3MC1mZWY4ZDY5ODlkNmIifQ¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927 HTTP/1.1
Host: loadbalancer.visitor-analytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.10.3
date: Fri, 24 Mar 2023 15:39:08 GMT
content-type: text/html
content-length: 4893
last-modified: Tue, 10 May 2022 11:28:12 GMT
etag: "627a4c4c-131d"
accept-ranges: bytes
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fingerprintjs2/2.1.0/fingerprint2.min.js
104.17.24.14200 OK 9.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fingerprintjs2/2.1.0/fingerprint2.min.js
IP 104.17.24.14:0
File type Unicode text, UTF-8 text, with very long lines (29406), with no line terminators
Hash 11d57574d2c5f98e81228adb0ae699fe
76cf8f636c633fecd5b2f4a2083d7b218e03fed5
c1a31ace2c4824b3281d8dd8c8e1ed49dc588a8b37ba6a258b052b27f79b59b6
GET /ajax/libs/fingerprintjs2/2.1.0/fingerprint2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 9392
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5c-72e4"
last-modified: Mon, 04 May 2020 16:10:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5519387
expires: Wed, 13 Mar 2024 15:39:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kL9mwEWZt1htYe8GI0nXZR5zw6t6d%2BO%2FW%2FPKwcWLl79NASVWJqR9ZfMvVnRjBkvgKe7HbNE0FdbbT3yz%2Fllr5QDnwiINVQPr0wQOQbqWuhlLo%2FPOO3eHquvg34fDUBvesNzvcHnU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ad001513b2cb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
frog.wix.com/fed?appName=instagram-business&src=72&evid=14&session_id=b2720f4c-cea9-44fb-babc-21b961942d7b&_=0.6507216136970515&is_rollout=false
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/fed?appName=instagram-business&src=72&evid=14&session_id=b2720f4c-cea9-44fb-babc-21b961942d7b&_=0.6507216136970515&is_rollout=false
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fed?appName=instagram-business&src=72&evid=14&session_id=b2720f4c-cea9-44fb-babc-21b961942d7b&_=0.6507216136970515&is_rollout=false HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://instafeed.codev.wixapps.net
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://instafeed.codev.wixapps.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c14c580e4f5ae668e2545d12f922a196
93fb79c2e856e9be9c6a7f73383a41f0fc22ccf0
608348d047d605569e933d00e46acb929b4fc4a0412aaaae445e5dd6fb7c72a2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 15:39:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 11:50:00 GMT
Expires: Fri, 31 Mar 2023 11:49:59 GMT
Etag: "93fb79c2e856e9be9c6a7f73383a41f0fc22ccf0"
Cache-Control: max-age=590450,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad001513b410b61-OSL
frog.wix.com/fed
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fed HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 345
Origin: https://instafeed.codev.wixapps.net
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://instafeed.codev.wixapps.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash faf63ecde141cb5027a3067f127b6adb
da1ac8e1403b3b0999e281ef62d49fb12ca66c29
d9b75a1b2c92399b1fe2f122d1314894335ec72a6f236e56dd2ba4e18ac196ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9B75A1B2C92399B1FE2F122D1314894335EC72A6F236E56DD2BA4E18AC196AC"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Fri, 24 Mar 2023 16:30:45 GMT
Date: Fri, 24 Mar 2023 15:39:08 GMT
Connection: keep-alive
frog.wix.com/wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1107&_lv=2.0.985%7CC&evid=317&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597180
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1107&_lv=2.0.985%7CC&evid=317&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597180
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1107&_lv=2.0.985%7CC&evid=317&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597180 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://instafeed.codev.wixapps.net
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://instafeed.codev.wixapps.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3931&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=643&tts=3931&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597224
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3931&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=643&tts=3931&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597224
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ugc-viewer?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=3931&_lv=2.0.985%7CC&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_siteMemberId=undefined&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&appId=14635256-b183-1c71-a4d2-f55179b80e8a&widget_id=14635280-8c8d-5346-b643-691f84f48973&instance_id=comp-l7a5bj6i&src=42&evid=643&tts=3931&pid=rofwe&pn=1&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723597224 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:08 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
visits.visitor-analytics.io/api/wix/websites/f4c8c667-4ec0-46e7-b83b-eb3a38e7388e/settings
167.233.8.77200 OK 110 B URL HTTP/2 visits.visitor-analytics.io/api/wix/websites/f4c8c667-4ec0-46e7-b83b-eb3a38e7388e/settings
IP 167.233.8.77:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 8f9411517c69ad9f765e03c31dc79ca8
2f2434b04e070f5e7c6eebc30988be5d07271875
9c595c23ad19b6d92e05bcca4b574bc7049fd518b35366eefe3735119de1de42
GET /api/wix/websites/f4c8c667-4ec0-46e7-b83b-eb3a38e7388e/settings HTTP/1.1
Host: visits.visitor-analytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://loadbalancer.visitor-analytics.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: https://loadbalancer.visitor-analytics.io
vary: Origin, Accept-Encoding
content-type: application/json; charset=utf-8
date: Fri, 24 Mar 2023 15:39:09 GMT
x-envoy-upstream-service-time: 9
content-encoding: gzip
server: istio-envoy
X-Firefox-Spdy: h2
instafeed.codev.wixapps.net/api/facebook/getUser
52.5.90.251200 OK 570 B URL HTTP/2 instafeed.codev.wixapps.net/api/facebook/getUser
IP 52.5.90.251:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (717), with no line terminators
Hash fc831bbaea367a922d178308b810c711
8e516043c14dc5dd47a0d145cb7894ba65f6a404
522165283d7730cc85e80a6c148ab77be05bbc96a9fa811b065287afb228c50e
GET /api/facebook/getUser HTTP/1.1
Host: instafeed.codev.wixapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-instagram-token: 46e74bf061bb0a3623ee078a26f4cb6d88592a552c4937ef7ef2d7c8791cc288f7b9e13792830b1994119ae19f9f3f67266527fa8eedbd7437c48d2fd8528d8c89056e78953a674d54764cd9209df1dfbc2995d7aa10f1154132ae519efff65341029df6007ad883c6cb68d4b5f3ddab32bfe54c1d17bdf3c73c06493fc8dbbc5ad30e1676d1d6b664dfa4ba7ec4d7ad7aeb5cb0889428f7c42c84465b728e5269bd68894e3e9396545bc5e867e24c57eab887613a45e1c094fcb334831c5770
x-instagram-expires-in: 1672456826038
x-instagram-user-id: 17841435255761239
x-wix-comp-id: comp-l7a5bj6i
x-wix-instance-id: 7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9
x-is-business-app: true
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
Cookie: AWSALBCORS=U3zysVbdJ0x61Rg1t/v25byRNshqJV6UooapoA4WYUtOoA6RuUXIhvi7TwAz35p3s1aX3WvriUq1rV180yeCTyVBGl85KSdbGByLXOMU1NUTDnVqrp076UkbBm4m; bSession=f4bf2199-6e97-439d-9270-3e3a42a18147|1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:09 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=XSqThS2qlS2auvh7yQKtSpT++mGds9Olfqy0LvYFsP6Q1CdjU0S3xjXmMd2QHtpSxXzqxcVGkCFumpFpuCRDKHOuBV8PGoQdia9VvHCLoOvrtHi7nP7NLl6WbnCh; Expires=Fri, 31 Mar 2023 15:39:09 GMT; Path=/
AWSALBCORS=XSqThS2qlS2auvh7yQKtSpT++mGds9Olfqy0LvYFsP6Q1CdjU0S3xjXmMd2QHtpSxXzqxcVGkCFumpFpuCRDKHOuBV8PGoQdia9VvHCLoOvrtHi7nP7NLl6WbnCh; Expires=Fri, 31 Mar 2023 15:39:09 GMT; Path=/; SameSite=None; Secure
server: nginx/1.17.9
vary: Accept-Encoding
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
etag: W/"2d5-CHzpxOb/txAr3EgAiRJLvQ"
content-encoding: gzip
X-Firefox-Spdy: h2
frog.wix.com/wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1695&_lv=2.0.985%7CC&evid=307&type=business&user_id=17841435255761239&account_type=BUSINESS&app_type=business&followers_count=1764&source=API&api_description=&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723602971
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1695&_lv=2.0.985%7CC&evid=307&type=business&user_id=17841435255761239&account_type=BUSINESS&app_type=business&followers_count=1764&source=API&api_description=&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723602971
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wixlabs-ugc?_msid=131be200-f210-4308-b95d-a1d73122a3a4&_appId=14635256-b183-1c71-a4d2-f55179b80e8a&_instanceId=0b3fe913-73eb-4637-b9cb-5fc408775e56&_siteOwnerId=e25e5de0-8628-41d1-8370-fef8d6989d6b&_siteMemberId=&_visitorId=f560eb82-0305-4561-9475-1a214dbcce85&_viewMode=site&_bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&src=63&comp_id=comp-l7a5bj6i&hosting=wixlabs-ugc&isBusinessApp=true&_brandId=wix&_siteBranchId=undefined&_ms=1695&_lv=2.0.985%7CC&evid=307&type=business&user_id=17841435255761239&account_type=BUSINESS&app_type=business&followers_count=1764&source=API&api_description=&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16796723602971 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://instafeed.codev.wixapps.net
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:09 GMT
server: nginx
access-control-allow-origin: https://instafeed.codev.wixapps.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/fed
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fed HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 819
Origin: https://instafeed.codev.wixapps.net
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:09 GMT
server: nginx
access-control-allow-origin: https://instafeed.codev.wixapps.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2169
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Last-Modified: Fri, 24 Mar 2023 15:03:02 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4304
Cache-Control: max-age=145660
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Expires: Sun, 26 Mar 2023 08:06:50 GMT
Last-Modified: Fri, 24 Mar 2023 06:55:06 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2169
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Last-Modified: Fri, 24 Mar 2023 15:03:02 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2169
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Last-Modified: Fri, 24 Mar 2023 15:03:02 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4950
Cache-Control: max-age=146306
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Expires: Sun, 26 Mar 2023 08:17:36 GMT
Last-Modified: Fri, 24 Mar 2023 06:55:06 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0854027bc01d25e99e93db0dbbc3b596
0a6bd41680f5da89b950e2f87b56cc55d0ae76e6
87b0a13be62bae9699b213e0319a6a50cbbdb4043faadc251537de2f8aa37cf0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4950
Cache-Control: max-age=146306
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:39:10 GMT
Etag: "641d494a-1d7"
Expires: Sun, 26 Mar 2023 08:17:36 GMT
Last-Modified: Fri, 24 Mar 2023 06:55:06 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
scontent-iad3-2.cdninstagram.com/v/t51.29350-15/336500297_1642277146224029_33505776200985448_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IIv7L_HFTMAAX9CNck_&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBizAN5n4YmURaANA2A5t-u59R_4sbyyMpyv-fwhFD4sA&oe=642277E5
157.240.229.63200 OK 122 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.29350-15/336500297_1642277146224029_33505776200985448_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IIv7L_HFTMAAX9CNck_&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBizAN5n4YmURaANA2A5t-u59R_4sbyyMpyv-fwhFD4sA&oe=642277E5
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1800, components 3\012- data
Size 122 kB (121552 bytes)
Hash 8728e1c34ca21fa63f8805279294e452
7478a9e24cb875bcf68118b050053743aea344e5
ad2b32b82fe2668d8855ea443e159bc2faacfb497f658b442bc5ac04c9847c5f
GET /v/t51.29350-15/336500297_1642277146224029_33505776200985448_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IIv7L_HFTMAAX9CNck_&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBizAN5n4YmURaANA2A5t-u59R_4sbyyMpyv-fwhFD4sA&oe=642277E5 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Sat, 18 Mar 2023 09:41:41 GMT
content-type: image/jpeg
x-needle-checksum: 1341534924
content-digest: adler32=1341534924
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 121552
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.29350-15/332473461_5678549628922089_4629439568336808765_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=cGJ5jRTTsAQAX_xlOsQ&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfB1Rj9GgLoo9U5H4zK7YBwINDSCmfI-yjZXT2v47RzTSA&oe=6422A638
157.240.229.63200 OK 245 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.29350-15/332473461_5678549628922089_4629439568336808765_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=cGJ5jRTTsAQAX_xlOsQ&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfB1Rj9GgLoo9U5H4zK7YBwINDSCmfI-yjZXT2v47RzTSA&oe=6422A638
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1160x1152, components 3\012- data
Size 245 kB (244618 bytes)
Hash 03b68828635f5b0b4f415c6cee3f8206
3d3f5e1fff40afe838d66682d61f6cf0257dbb65
8937a473c2cf2dbd085c2efeebc7e057c7ca0f93c74b34c74370c6b2df8635b6
GET /v/t51.29350-15/332473461_5678549628922089_4629439568336808765_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=cGJ5jRTTsAQAX_xlOsQ&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfB1Rj9GgLoo9U5H4zK7YBwINDSCmfI-yjZXT2v47RzTSA&oe=6422A638 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Wed, 08 Mar 2023 07:08:00 GMT
content-type: image/jpeg
x-needle-checksum: 3458131207
content-digest: adler32=3458131207
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 244618
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.29350-15/328575488_6054167444629755_8567358104561932162_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Rknmat9PAxgAX-OkG-Z&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfCAlfaUwyA6LKluOEgaF1drVk7EXzYzgiPuVXovmdtiIw&oe=64228D52
157.240.229.63200 OK 284 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.29350-15/328575488_6054167444629755_8567358104561932162_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Rknmat9PAxgAX-OkG-Z&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfCAlfaUwyA6LKluOEgaF1drVk7EXzYzgiPuVXovmdtiIw&oe=64228D52
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 994x1765, components 3\012- data
Size 284 kB (283601 bytes)
Hash e473af5d6d6e77a26e3de5ad119d3d4c
2ccebd8d4dee11fb0b2fb47e4c1e9752d67539ce
744a1bab45eec099a1f0c727e00517479fc2ef6c172cc9912038b06cfce48306
GET /v/t51.29350-15/328575488_6054167444629755_8567358104561932162_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Rknmat9PAxgAX-OkG-Z&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfCAlfaUwyA6LKluOEgaF1drVk7EXzYzgiPuVXovmdtiIw&oe=64228D52 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Fri, 03 Mar 2023 10:53:25 GMT
content-type: image/jpeg
x-needle-checksum: 3318681816
content-digest: adler32=3318681816
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 283601
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
instafeed.codev.wixapps.net/api/settings/config
52.5.90.251200 OK 228 kB URL HTTP/2 instafeed.codev.wixapps.net/api/settings/config
IP 52.5.90.251:0
Size 228 kB (228343 bytes)
Hash 071b891dde63dec65948aa9c3a8d1556
7391b78cdf15dd814b91fcd3936f17caeb918f00
5676ac18516b11aa7dfdcccfad8a55285250d475c44a55a083182ec2c0111f0d
GET /api/settings/config HTTP/1.1
Host: instafeed.codev.wixapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-instagram-token: undefined
x-instagram-expires-in: undefined
x-instagram-user-id: undefined
x-wix-comp-id: comp-l7a5bj6i
x-wix-instance-id: 7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9
x-is-business-app: true
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
Cookie: AWSALBCORS=H7zYxrIhxIcF399NgoI38U+n8CCfrbxAiM2bCzQPqKH8AED3C7xCw/jTUOH2YYEyF+xFTJJZtHsLCO9RGiIwUpCjFEJTibS9zKPHjuSmMxCMREkpiik1hvcCNC2V; bSession=f4bf2199-6e97-439d-9270-3e3a42a18147|1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:08 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=NJ1yMSCRj04bfJ2X0ERryIsVfkL8YnmeEz574d6+WRq+QFWsNmX938TUW9nkZ93sW8ePXM0TJ+PbOzu7OqjG5GjxGbKzdqy/UCl406WgxDyCRzOMYikyS2/rWjKT; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/
AWSALBCORS=NJ1yMSCRj04bfJ2X0ERryIsVfkL8YnmeEz574d6+WRq+QFWsNmX938TUW9nkZ93sW8ePXM0TJ+PbOzu7OqjG5GjxGbKzdqy/UCl406WgxDyCRzOMYikyS2/rWjKT; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/; SameSite=None; Secure
server: nginx/1.17.9
vary: Accept-Encoding
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
etag: W/"114-v4g2OrmqJqn8UB6Uea2EFQ"
content-encoding: gzip
X-Firefox-Spdy: h2
scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334781956_1245474766398704_6729957141732295900_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=1Cpeaorbu94AX_u66DW&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfD8HqVGJw1u0b1FW0TxfeBqsSedresotIJGI-jifbWArw&oe=6421D6CF
31.13.66.63200 OK 244 kB URL HTTP/2 scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334781956_1245474766398704_6729957141732295900_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=1Cpeaorbu94AX_u66DW&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfD8HqVGJw1u0b1FW0TxfeBqsSedresotIJGI-jifbWArw&oe=6421D6CF
IP 31.13.66.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1233x1300, components 3\012- data
Size 244 kB (243880 bytes)
Hash 54704eecb94637223aafe0844d95f694
e0db935f5940f6cd7a5ec9639b3b5d633001a623
ff9f7b554de408a136d174b275a686b3c284e227bf65c0d9833010a8a6033fef
GET /v/t51.29350-15/334781956_1245474766398704_6729957141732295900_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=1Cpeaorbu94AX_u66DW&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfD8HqVGJw1u0b1FW0TxfeBqsSedresotIJGI-jifbWArw&oe=6421D6CF HTTP/1.1
Host: scontent-iad3-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Mon, 13 Mar 2023 08:59:53 GMT
content-type: image/jpeg
x-needle-checksum: 637233001
content-digest: adler32=637233001
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 243880
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334530042_584641530353462_5570247716123454160_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=fYJ5L68IDt4AX8IE94K&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAUyh1Kfk4SJZfvFllSHb080_X646At5dFmP8kWVWqdAA&oe=64221ABB
31.13.66.63200 OK 266 kB URL HTTP/2 scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334530042_584641530353462_5570247716123454160_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=fYJ5L68IDt4AX8IE94K&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAUyh1Kfk4SJZfvFllSHb080_X646At5dFmP8kWVWqdAA&oe=64221ABB
IP 31.13.66.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1800, components 3\012- data
Size 266 kB (265942 bytes)
Hash 7ea2062d91b0ed093fa44b79eed1f679
92d29d8221881a9be6d106f07d0e5191fdcc501a
58e193d147748bc048208879a4268e0dd977782303d36bef2a3aeda8de1c96f9
GET /v/t51.29350-15/334530042_584641530353462_5570247716123454160_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=fYJ5L68IDt4AX8IE94K&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAUyh1Kfk4SJZfvFllSHb080_X646At5dFmP8kWVWqdAA&oe=64221ABB HTTP/1.1
Host: scontent-iad3-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Thu, 16 Mar 2023 08:24:35 GMT
content-type: image/jpeg
x-needle-checksum: 4007192955
content-digest: adler32=4007192955
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 265942
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334631316_5884061898297793_4642565968249996229_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=C5-rM5O_LgYAX8_Jdnx&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAynDVW76Wf2AqMsqcWA3WEMwCmDWs-KAfeqkxtpI37Qw&oe=6422D698
31.13.66.63200 OK 163 kB URL HTTP/2 scontent-iad3-1.cdninstagram.com/v/t51.29350-15/334631316_5884061898297793_4642565968249996229_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=C5-rM5O_LgYAX8_Jdnx&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAynDVW76Wf2AqMsqcWA3WEMwCmDWs-KAfeqkxtpI37Qw&oe=6422D698
IP 31.13.66.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1169x911, components 3\012- data
Size 163 kB (163081 bytes)
Hash 33d558c490e60ce2382a26345f9adc33
1526b6ef6b0c8a64f8960a075efdc9663b26575a
09c67835229dc661411868bf3d5b1f9a097952dada731be72d67b10abfc8e4ac
GET /v/t51.29350-15/334631316_5884061898297793_4642565968249996229_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=C5-rM5O_LgYAX8_Jdnx&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfAynDVW76Wf2AqMsqcWA3WEMwCmDWs-KAfeqkxtpI37Qw&oe=6422D698 HTTP/1.1
Host: scontent-iad3-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Fri, 10 Mar 2023 21:31:32 GMT
content-type: image/jpeg
x-needle-checksum: 2293838646
content-digest: adler32=2293838646
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 163081
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.cdninstagram.com/v/t51.29350-15/335775657_122222820809896_3635238340294244019_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=l1OATV7kjJoAX9om9ZY&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBe9TCnJt-4RvayECA6-ujrR0LVhQC0xE-R_fFbZCp_LA&oe=64227D81
31.13.66.63200 OK 307 kB URL HTTP/2 scontent-iad3-1.cdninstagram.com/v/t51.29350-15/335775657_122222820809896_3635238340294244019_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=l1OATV7kjJoAX9om9ZY&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBe9TCnJt-4RvayECA6-ujrR0LVhQC0xE-R_fFbZCp_LA&oe=64227D81
IP 31.13.66.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1316x1397, components 3\012- data
Size 307 kB (307068 bytes)
Hash 73e921ecdfe2a4d3ff35c6dc86a02641
7656bfaddd976f77714a943e01cd2b2f3678b04e
810c1f413204e7f9e0cdfbe52bcb2490530485b7d1461acd6b5bb49ac99fc0c6
GET /v/t51.29350-15/335775657_122222820809896_3635238340294244019_n.jpg?_nc_cat=109&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=l1OATV7kjJoAX9om9ZY&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBe9TCnJt-4RvayECA6-ujrR0LVhQC0xE-R_fFbZCp_LA&oe=64227D81 HTTP/1.1
Host: scontent-iad3-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Tue, 14 Mar 2023 08:37:01 GMT
content-type: image/jpeg
x-needle-checksum: 65152958
content-digest: adler32=65152958
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 307068
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.cdninstagram.com/v/t51.29350-15/337161198_156423370671538_8835887709718564106_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=QhLBhOjX1nwAX98iLl1&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBoQeQic52Oclrr904T8aP43rKJOEelRXe631Al2nax-A&oe=6421F4D2
31.13.66.63200 OK 455 kB URL HTTP/2 scontent-iad3-1.cdninstagram.com/v/t51.29350-15/337161198_156423370671538_8835887709718564106_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=QhLBhOjX1nwAX98iLl1&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBoQeQic52Oclrr904T8aP43rKJOEelRXe631Al2nax-A&oe=6421F4D2
IP 31.13.66.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1452, components 3\012- data
Size 455 kB (454851 bytes)
Hash 158be6e1621cf5b211a735fd76a06fb4
90ca16c4cd35fe63e74513dd87cad8dfb232557f
2e3f8278bbde0320e2bb90259030e276642bdae89d62cd84f6ea9ac89217ddc3
GET /v/t51.29350-15/337161198_156423370671538_8835887709718564106_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=QhLBhOjX1nwAX98iLl1&_nc_ht=scontent-iad3-1.cdninstagram.com&edm=AEQ6tj4EAAAA&oh=00_AfBoQeQic52Oclrr904T8aP43rKJOEelRXe631Al2nax-A&oe=6421F4D2 HTTP/1.1
Host: scontent-iad3-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 23 Mar 2023 09:22:36 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 417749950
x-needle-checksum: 499639554
content-digest: adler32=499639554
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 454851
x-fb-trip-id: 1718053925
date: Fri, 24 Mar 2023 15:39:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
frog.wix.com/bpm?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&ts=5467&tsn=6354&dc=84µPop=fastly_g&caching=miss%2Cmiss_miss&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&st=2&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=rofwe&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11982.0&_brandId=wix&_siteBranchId=undefined&_ms=6354&_lv=2.0.985%7CC&_mt_instance=8Rc0bmh3INGR6EG7qNjm1eX6snFAx9rQLDY1dX54wVc.eyJpbnN0YW5jZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0IiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsInNpdGVPd25lcklkIjoiZTI1ZTVkZTAtODYyOC00MWQxLTgzNzAtZmVmOGQ2OTg5ZDZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16796723621446&tti=2324&tbt=155&iframes=3&screens=2&countScripts=34&startTimeScripts=1777&durationScripts=1078&mttfbScripts=16&attfbScripts=15&cssResourcesScripts=&tbdScripts=409293&countImages=5&startTimeImages=2084&durationImages=2263&mttfbImages=307&attfbImages=304&cssResourcesImages=&tbdImages=112424&countFonts=4&startTimeFonts=1806&durationFonts=49&mttfbFonts=23&attfbFonts=22&cssResourcesFonts=&tbdFonts=113643&entryType=loaded&duration=2358&ttlb=1591&dcl=1893&transferSize=89618&decodedBodySize=427323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&ssrDuration=708&ssrTimestamp=1679672346474&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1
3.208.11.48204 No Content 0 B URL HTTP/2 frog.wix.com/bpm?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&ts=5467&tsn=6354&dc=84µPop=fastly_g&caching=miss%2Cmiss_miss&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&st=2&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=rofwe&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11982.0&_brandId=wix&_siteBranchId=undefined&_ms=6354&_lv=2.0.985%7CC&_mt_instance=8Rc0bmh3INGR6EG7qNjm1eX6snFAx9rQLDY1dX54wVc.eyJpbnN0YW5jZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0IiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsInNpdGVPd25lcklkIjoiZTI1ZTVkZTAtODYyOC00MWQxLTgzNzAtZmVmOGQ2OTg5ZDZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16796723621446&tti=2324&tbt=155&iframes=3&screens=2&countScripts=34&startTimeScripts=1777&durationScripts=1078&mttfbScripts=16&attfbScripts=15&cssResourcesScripts=&tbdScripts=409293&countImages=5&startTimeImages=2084&durationImages=2263&mttfbImages=307&attfbImages=304&cssResourcesImages=&tbdImages=112424&countFonts=4&startTimeFonts=1806&durationFonts=49&mttfbFonts=23&attfbFonts=22&cssResourcesFonts=&tbdFonts=113643&entryType=loaded&duration=2358&ttlb=1591&dcl=1893&transferSize=89618&decodedBodySize=427323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&ssrDuration=708&ssrTimestamp=1679672346474&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1
IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm?_msid=131be200-f210-4308-b95d-a1d73122a3a4&vsi=a134e473-27ed-4df1-bdf4-a350e1403927&_av=thunderbolt-1.11982.0&isb=false&ts=5467&tsn=6354&dc=84µPop=fastly_g&caching=miss%2Cmiss_miss&session_id=dcf5ff50-ec4f-48ff-b4cf-b2011df1ddd2&st=2&url=https%3A%2F%2Fwww.heidimaunder.com%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=rofwe&isServerSide=false&is_lightbox=false&is_cached=false&is_sav_rollout=0&is_dac_rollout=0&v=1.11982.0&_brandId=wix&_siteBranchId=undefined&_ms=6354&_lv=2.0.985%7CC&_mt_instance=8Rc0bmh3INGR6EG7qNjm1eX6snFAx9rQLDY1dX54wVc.eyJpbnN0YW5jZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0IiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsInNpdGVPd25lcklkIjoiZTI1ZTVkZTAtODYyOC00MWQxLTgzNzAtZmVmOGQ2OTg5ZDZiIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16796723621446&tti=2324&tbt=155&iframes=3&screens=2&countScripts=34&startTimeScripts=1777&durationScripts=1078&mttfbScripts=16&attfbScripts=15&cssResourcesScripts=&tbdScripts=409293&countImages=5&startTimeImages=2084&durationImages=2263&mttfbImages=307&attfbImages=304&cssResourcesImages=&tbdImages=112424&countFonts=4&startTimeFonts=1806&durationFonts=49&mttfbFonts=23&attfbFonts=22&cssResourcesFonts=&tbdFonts=113643&entryType=loaded&duration=2358&ttlb=1591&dcl=1893&transferSize=89618&decodedBodySize=427323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=f4bf2199-6e97-439d-9270-3e3a42a18147%7C1&ssrDuration=708&ssrTimestamp=1679672346474&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:11 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
frog.wix.com/bpm
3.208.11.48204 No Content 0 B IP 3.208.11.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1653
Origin: https://www.heidimaunder.com
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Mar 2023 15:39:11 GMT
server: nginx
access-control-allow-origin: https://www.heidimaunder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
instafeed.codev.wixapps.net/links-api/media/count?ids=17999193178671472,18200360158217986,17979086840027906,17945656934597717,17977474861922129,17989511887857063,17947203635588633,17977011886908931,17988368581859088,17878752950779571,17997279970728585,17963233217485828,17987653330863857,17985379855821902,17993679460692244,17895824171762372,17979038209975696,17978084014861282,17937847490492812,17850509822916686,17974651604042731,17953579319248735,18050563534376058,17967374249143813,17895520952745909&links=https:%2F%2Fwww.instagram.com%2Fp%2FCqIF6jcrg0V%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCqATOOQLFnt%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp7PmGFLmxs%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp1-G08LAK4%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpw1b-yr66j%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpuT3K_LHGx%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpn6nlFBRKI%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCphOvycLZaF%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCpUL6PVjB-u%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpQjD6vBCL3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpOqGqJBtEJ%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpHaDcIL4Ky%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpCr-Xmr1A3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo_9NsDLLmb%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo3btITB4z8%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo1rSmurALq%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCon6dt_hh51%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoVbowpBEVW%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoUPYFoLbBV%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoRozimr5qK%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoInv3Rhtqh%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoIm-xQB0i0%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCn5W-KAh8gS%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnxaAyJBsJz%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnn0f0qLA5e%2F&compId=comp-l7a5bj6i&isTemplate=false
52.5.90.251200 OK 0 B URL HTTP/2 instafeed.codev.wixapps.net/links-api/media/count?ids=17999193178671472,18200360158217986,17979086840027906,17945656934597717,17977474861922129,17989511887857063,17947203635588633,17977011886908931,17988368581859088,17878752950779571,17997279970728585,17963233217485828,17987653330863857,17985379855821902,17993679460692244,17895824171762372,17979038209975696,17978084014861282,17937847490492812,17850509822916686,17974651604042731,17953579319248735,18050563534376058,17967374249143813,17895520952745909&links=https:%2F%2Fwww.instagram.com%2Fp%2FCqIF6jcrg0V%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCqATOOQLFnt%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp7PmGFLmxs%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp1-G08LAK4%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpw1b-yr66j%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpuT3K_LHGx%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpn6nlFBRKI%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCphOvycLZaF%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCpUL6PVjB-u%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpQjD6vBCL3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpOqGqJBtEJ%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpHaDcIL4Ky%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpCr-Xmr1A3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo_9NsDLLmb%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo3btITB4z8%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo1rSmurALq%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCon6dt_hh51%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoVbowpBEVW%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoUPYFoLbBV%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoRozimr5qK%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoInv3Rhtqh%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoIm-xQB0i0%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCn5W-KAh8gS%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnxaAyJBsJz%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnn0f0qLA5e%2F&compId=comp-l7a5bj6i&isTemplate=false
IP 52.5.90.251:0
GET /links-api/media/count?ids=17999193178671472,18200360158217986,17979086840027906,17945656934597717,17977474861922129,17989511887857063,17947203635588633,17977011886908931,17988368581859088,17878752950779571,17997279970728585,17963233217485828,17987653330863857,17985379855821902,17993679460692244,17895824171762372,17979038209975696,17978084014861282,17937847490492812,17850509822916686,17974651604042731,17953579319248735,18050563534376058,17967374249143813,17895520952745909&links=https:%2F%2Fwww.instagram.com%2Fp%2FCqIF6jcrg0V%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCqATOOQLFnt%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp7PmGFLmxs%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCp1-G08LAK4%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpw1b-yr66j%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpuT3K_LHGx%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpn6nlFBRKI%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCphOvycLZaF%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCpUL6PVjB-u%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpQjD6vBCL3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpOqGqJBtEJ%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpHaDcIL4Ky%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCpCr-Xmr1A3%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo_9NsDLLmb%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo3btITB4z8%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCo1rSmurALq%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCon6dt_hh51%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoVbowpBEVW%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoUPYFoLbBV%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoRozimr5qK%2F,https:%2F%2Fwww.instagram.com%2Freel%2FCoInv3Rhtqh%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCoIm-xQB0i0%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCn5W-KAh8gS%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnxaAyJBsJz%2F,https:%2F%2Fwww.instagram.com%2Fp%2FCnn0f0qLA5e%2F&compId=comp-l7a5bj6i&isTemplate=false HTTP/1.1
Host: instafeed.codev.wixapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-instagram-token: 46e74bf061bb0a3623ee078a26f4cb6d88592a552c4937ef7ef2d7c8791cc288f7b9e13792830b1994119ae19f9f3f67266527fa8eedbd7437c48d2fd8528d8c89056e78953a674d54764cd9209df1dfbc2995d7aa10f1154132ae519efff65341029df6007ad883c6cb68d4b5f3ddab32bfe54c1d17bdf3c73c06493fc8dbbc5ad30e1676d1d6b664dfa4ba7ec4d7ad7aeb5cb0889428f7c42c84465b728e5269bd68894e3e9396545bc5e867e24c57eab887613a45e1c094fcb334831c5770
x-instagram-expires-in: 1672456826038
x-instagram-user-id: 17841435255761239
x-wix-comp-id: comp-l7a5bj6i
x-wix-instance-id: 7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9
x-is-business-app: true
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
Cookie: AWSALBCORS=k25dvGcZuZu6dxU0aBq76aWOi5eOoX9m3At3uo2urqOIeRMcvhiku5pxhmnmFwg58iwTL5HFf1JTH4/XkN9KQg29zIokKrwXvZbIS/0VgUqzocsKxsDh9ohnETou; bSession=f4bf2199-6e97-439d-9270-3e3a42a18147|1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:10 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=9+vIwoQW3UhzmZ0xdMVolNjWEI0IRCDe6tUVPmjcVfxuYKMExCuhhDKrnJPr2T5QMtrlS6tq4Q5syEkD8mO3ZD1muDgNJhukf2wIsCavS69H48UWnDeTFR3pBt86; Expires=Fri, 31 Mar 2023 15:39:10 GMT; Path=/
AWSALBCORS=9+vIwoQW3UhzmZ0xdMVolNjWEI0IRCDe6tUVPmjcVfxuYKMExCuhhDKrnJPr2T5QMtrlS6tq4Q5syEkD8mO3ZD1muDgNJhukf2wIsCavS69H48UWnDeTFR3pBt86; Expires=Fri, 31 Mar 2023 15:39:10 GMT; Path=/; SameSite=None; Secure
server: nginx/1.17.9
vary: Accept-Encoding
access-control-allow-origin: *
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
etag: W/"9ac-QDKF60etdmMYoGpzx1V7hzm60f4"
content-encoding: gzip
X-Firefox-Spdy: h2
visits.visitor-analytics.io/worker-log
167.233.8.77201 Created 0 B URL HTTP/2 visits.visitor-analytics.io/worker-log
IP 167.233.8.77:0
ASN #24940 Hetzner Online GmbH
POST /worker-log HTTP/1.1
Host: visits.visitor-analytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 597
Origin: https://loadbalancer.visitor-analytics.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 201 Created
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: https://loadbalancer.visitor-analytics.io
vary: Origin, Accept-Encoding
content-type: application/json; charset=utf-8
date: Fri, 24 Mar 2023 15:39:09 GMT
x-envoy-upstream-service-time: 284
content-encoding: gzip
server: istio-envoy
X-Firefox-Spdy: h2
www.heidimaunder.com/_api/v2/dynamicmodel
34.149.87.45200 OK 0 B URL HTTP/2 www.heidimaunder.com/_api/v2/dynamicmodel
IP 34.149.87.45:0
Analyzer Verdict Alert fortinet Phishing
GET /_api/v2/dynamicmodel HTTP/1.1
Host: www.heidimaunder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.heidimaunder.com/
Connection: keep-alive
Cookie: XSRF-TOKEN=1679672345|m77FPkBZ0fCF; ssr-caching=cache#desc=miss#varnish=miss_miss#dc#desc=fastly_g
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
strict-transport-security: max-age=3600
x-wix-request-id: 1679672345.96489382825119697
age: 0
set-cookie: hs=-1759621184; Path=/; Domain=www.heidimaunder.com; HTTPOnly
svSession=97ee1dba4868152cb6a41f4a758a2acd3074c7bb7ec255c930f151e8bb9fa1fd7a97778fe28be74455bbcd11ca3a1fac1e60994d53964e647acf431e4f798bcd94e5b06fd1ff8ce96ae0c0da5891b88d93b6702568451f1b1d818781563cc4b7c2aca197f56749d576e014ead19cc3615aa809b36a2ac945101aeea88824dc1e6fbc00955c4211670e168e3044e0ad60; Max-Age=63158399; Expires=Mon, 24 Mar 2025 15:39:05 GMT; Path=/; Domain=www.heidimaunder.com; Secure; HTTPOnly; SameSite=None
cache-control: private,no-cache,no-store
x-content-type-options: nosniff
content-encoding: br
server: Pepyaka/1.19.10
accept-ranges: bytes
date: Fri, 24 Mar 2023 15:39:06 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
vary: Accept-Encoding
server-timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_g
x-seen-by: yvSunuo/8ld62ehjr5B7kA==,GXNXSWFXisshliUcwO20NQ1aV/eYQaI5OrqNssi0Z4KcQ+eyqHMCU9gQb2xhgDF/,qquldgcFrj2n046g4RNSVBKUaXHrucSLmP/C0nqrtU9YgeUJqUXtid+86vZww+nL,2d58ifebGbosy5xc+FRaljAA+ts1GrGJ2+fwTXHxzXRfpXmfKgEzK+1pu/fOpeiO3QpI/ucnHvfrUjeESIoVeqOWQWG3263GY4h6T8zwdak=,2UNV7KOq4oGjA5+PKsX47PeE4JkJeK48Oko5cEfOjJRYgeUJqUXtid+86vZww+nL,7npGRUZHWOtWoP0Si3wDp7WuSH68sZSiNuj4ZnGbshE=,xTu8fpDe3EKPsMR1jrheEKkaEDB2KTBht+rMhX26k9c=,9y9YchCOVZDNGbMpBN9NeoGj/s0sgoD5sPxbI5283OG+bxNomFCLUFpxUa5h4A9cBFNjNRTmQgt5BwMmIVG00A==
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/js-md5@0.7.2/src/md5.min.js
185.244.209.62200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/npm/js-md5@0.7.2/src/md5.min.js
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
GET /npm/js-md5@0.7.2/src/md5.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 15:39:08 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.7.2
x-jsd-version-type: version
etag: W/"27c1-yr8Ul5yO7eG/3f+rk3svEN4s3AY"
content-encoding: br
cache: HIT, HIT
x-cached-since: 2023-03-14T12:14:45+00:00, 2023-03-14T12:17:13+00:00
x-id: am3-up-gc88, osix-up-gc4
x-nginx: nginx-be, nginx-be
X-Firefox-Spdy: h2
www.heidimaunder.com/
34.149.87.45200 OK 0 B IP 34.149.87.45:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.heidimaunder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://static.parastorage.com/>; rel=preconnect; crossorigin;,<https://static.parastorage.com/>; rel=preconnect;,<https://static.wixstatic.com/>; rel=preconnect; crossorigin;,<https://static.wixstatic.com/>; rel=preconnect;,<https://siteassets.parastorage.com>; rel=preconnect; crossorigin;,
x-wix-request-id: 1679672345.5959826033515541
content-language: en-US
strict-transport-security: max-age=3600
age: 0
set-cookie: XSRF-TOKEN=1679672345|m77FPkBZ0fCF; Path=/; Domain=www.heidimaunder.com; Secure; SameSite=None
ssr-caching=cache#desc=miss#varnish=miss_miss#dc#desc=fastly_g; max-age=20
cache-control: private,max-age=0,must-revalidate
x-content-type-options: nosniff
content-encoding: br
server: Pepyaka/1.19.10
accept-ranges: bytes
date: Fri, 24 Mar 2023 15:39:05 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
vary: Accept-Encoding
server-timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_g
x-seen-by: yvSunuo/8ld62ehjr5B7kA==,GXNXSWFXisshliUcwO20NYMupe6WQf6MVMrzEUOojIKJa2mGRLQO0OBkxAD68MQG,qquldgcFrj2n046g4RNSVKgcQ1THjb6B0pY8+X3A5SZYgeUJqUXtid+86vZww+nL,2d58ifebGbosy5xc+FRaln3IsqgzHAu9ILgGyi3D7H/JNdBfPt/RY4qVFG5LJ7883QpI/ucnHvfrUjeESIoVeg2Qalwc8tNYAwDTWiBduXg=,2UNV7KOq4oGjA5+PKsX47F5BsGrV9wopHJr0QwUp44Wa46R9xNIlpQ4eUPYpBuqs,7npGRUZHWOtWoP0Si3wDpw1wmR8v3iHU/pyGyiJHHXY=,9y9YchCOVZDNGbMpBN9NepFmcmggyBBaY1LJNrGfc+fOQFmcnC43KlBB9x5mX9stWIHlCalF7YnfvOr2cMPpyw==,xTu8fpDe3EKPsMR1jrheEHzGZn1inO/aZ5aOpNKCRT8=,xTu8fpDe3EKPsMR1jrheEL+uiF644vPtYe3KkD9ZgMI=,LoUK8/saGAmOxZWtpubo2jp2va9EVn4JJGDkGJvarOLe0oPN5hPKPXWiL1cyNqcfUd/7lRfHu6um5ok9nW/OKw==,xTu8fpDe3EKPsMR1jrheEL+uiF644vPtYe3KkD9ZgMI=,xTu8fpDe3EKPsMR1jrheEB2cLDxDGaE3ILB10flR1L4=,/a5ccLSK1HEmwPNg/x6OulmFNxhOf3NaT9RtSvnecx069Q+fjUmQONKGNIJKasERz+q4L1PynOVUhoobDSks+A==
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
52.5.90.251200 OK 0 B URL HTTP/2 instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
IP 52.5.90.251:0
GET /ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927 HTTP/1.1
Host: instafeed.codev.wixapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.heidimaunder.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:08 GMT
content-type: text/html
set-cookie: AWSALB=H7zYxrIhxIcF399NgoI38U+n8CCfrbxAiM2bCzQPqKH8AED3C7xCw/jTUOH2YYEyF+xFTJJZtHsLCO9RGiIwUpCjFEJTibS9zKPHjuSmMxCMREkpiik1hvcCNC2V; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/
AWSALBCORS=H7zYxrIhxIcF399NgoI38U+n8CCfrbxAiM2bCzQPqKH8AED3C7xCw/jTUOH2YYEyF+xFTJJZtHsLCO9RGiIwUpCjFEJTibS9zKPHjuSmMxCMREkpiik1hvcCNC2V; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/; SameSite=None; Secure
server: nginx/1.17.9
last-modified: Thu, 02 Feb 2023 08:52:19 GMT
vary: Accept-Encoding
etag: W/"63db79c3-2408"
content-encoding: gzip
X-Firefox-Spdy: h2
instafeed.codev.wixapps.net/api/data/getUser
52.5.90.251200 OK 0 B URL HTTP/2 instafeed.codev.wixapps.net/api/data/getUser
IP 52.5.90.251:0
GET /api/data/getUser HTTP/1.1
Host: instafeed.codev.wixapps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-instagram-token: undefined
x-instagram-expires-in: undefined
x-instagram-user-id: undefined
x-wix-comp-id: comp-l7a5bj6i
x-wix-instance-id: 7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9
x-is-business-app: true
Connection: keep-alive
Referer: https://instafeed.codev.wixapps.net/ig_business_app?pageId=rofwe&compId=comp-l7a5bj6i&viewerCompId=comp-l7a5bj6i&siteRevision=133&viewMode=site&deviceType=desktop&locale=en&tz=Australia%2FSydney®ionalLanguage=en&width=799&height=676&instance=7_K2nIML5ZaabSySm22AHAevNjt2kdUsAqgDLmquvc4.eyJpbnN0YW5jZUlkIjoiMGIzZmU5MTMtNzNlYi00NjM3LWI5Y2ItNWZjNDA4Nzc1ZTU2IiwiYXBwRGVmSWQiOiIxNDYzNTI1Ni1iMTgzLTFjNzEtYTRkMi1mNTUxNzliODBlOGEiLCJtZXRhU2l0ZUlkIjoiMTMxYmUyMDAtZjIxMC00MzA4LWI5NWQtYTFkNzMxMjJhM2E0Iiwic2lnbkRhdGUiOiIyMDIzLTAzLTI0VDE1OjM5OjA2LjA0NFoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6ImY1NjBlYjgyLTAzMDUtNDU2MS05NDc1LTFhMjE0ZGJjY2U4NSIsImJpVG9rZW4iOiIxODI0MGIxMy04MWZiLTA1M2YtMDA5Ni1mZTEzMzk1NWZkZjIiLCJzaXRlT3duZXJJZCI6ImUyNWU1ZGUwLTg2MjgtNDFkMS04MzcwLWZlZjhkNjk4OWQ2YiJ9¤cy=AUD¤tCurrency=AUD&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22bsi%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%2C%22BSI%22%3A%22f4bf2199-6e97-439d-9270-3e3a42a18147%7C1%22%7D&vsi=a134e473-27ed-4df1-bdf4-a350e1403927
Cookie: AWSALBCORS=H7zYxrIhxIcF399NgoI38U+n8CCfrbxAiM2bCzQPqKH8AED3C7xCw/jTUOH2YYEyF+xFTJJZtHsLCO9RGiIwUpCjFEJTibS9zKPHjuSmMxCMREkpiik1hvcCNC2V; bSession=f4bf2199-6e97-439d-9270-3e3a42a18147|1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:39:09 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=U3zysVbdJ0x61Rg1t/v25byRNshqJV6UooapoA4WYUtOoA6RuUXIhvi7TwAz35p3s1aX3WvriUq1rV180yeCTyVBGl85KSdbGByLXOMU1NUTDnVqrp076UkbBm4m; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/
AWSALBCORS=U3zysVbdJ0x61Rg1t/v25byRNshqJV6UooapoA4WYUtOoA6RuUXIhvi7TwAz35p3s1aX3WvriUq1rV180yeCTyVBGl85KSdbGByLXOMU1NUTDnVqrp076UkbBm4m; Expires=Fri, 31 Mar 2023 15:39:08 GMT; Path=/; SameSite=None; Secure
server: nginx/1.17.9
vary: Accept-Encoding
x-powered-by: Express
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
etag: W/"292-bLrkvJn26YLrpqBsKGe9XQ"
content-encoding: gzip
X-Firefox-Spdy: h2