grandecosmetics.com/
23.227.38.65301 Moved Permanently 0 B IP 23.227.38.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: grandecosmetics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 19 Mar 2023 08:19:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 136
X-Sorting-Hat-ShopId: 9890234434
X-Storefront-Renderer-Rendered: 1
Location: https://grandecosmetics.com/
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 9890234434
X-ShardId: 136
Vary: Accept
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
X-Request-ID: 93c252e1-fbbe-4a15-a3b6-b2d6a932cb8b
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hd1KgBdebfBYpseqh3IkAjIvng5duiXHwGaABgtXevXwm5WHMeRGG%2FeLCn8iAZjBFCPTXYmkZs4aoXsZVB1iJMRsw3Agh23AkTrdGwm5Aqf4xYiOumRUfvKXI2Pb6tm%2B8fT5dUE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: processing;dur=7, db;dur=3, asn;desc="50304", edge;desc="OSL", country;desc="NO", pageType;desc="index", cfRequestDuration;dur=199.000120
Server: cloudflare
CF-RAY: 7aa449db9efcb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2634
Expires: Sun, 19 Mar 2023 09:03:00 GMT
Date: Sun, 19 Mar 2023 08:19:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9239
Expires: Sun, 19 Mar 2023 10:53:05 GMT
Date: Sun, 19 Mar 2023 08:19:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3880
Expires: Sun, 19 Mar 2023 09:23:46 GMT
Date: Sun, 19 Mar 2023 08:19:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Mar 2023 08:14:45 GMT
content-type: application/json
age: 261
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vQP5pSXbDyqu3IZXWo+4EMN3Sej9lqvbPUzobcyhAEvPJJ0u0tTesPld1DJiC2gKhwhoYm+Cng3GyD+bGhipuQ==
x-amz-request-id: KV0S13S9TSWS0HZT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 07:58:11 GMT
age: 1255
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 08:19:06 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Mar 2023 08:14:32 GMT
age: 274
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2797
Expires: Sun, 19 Mar 2023 09:05:44 GMT
Date: Sun, 19 Mar 2023 08:19:07 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0098/9023/4434/files/italy.png?v=1642518184
23.227.60.200200 OK 1.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/italy.png?v=1642518184
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 77ffbcbc716e5ec665d53235f655152c
6a63f7f1efdaf1c80849a7aee05afaf76638bec4
b0917e5123242e6f8d8bc579779312b7effd3011dd6bfc65970ba2b23ba07ba9
GET /s/files/1/0098/9023/4434/files/italy.png?v=1642518184 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 1164
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/italy.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: d51272ab-af6b-48ed-b8dd-4e449bd5f531
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 26 Aug 2022 05:09:20 GMT
cf-cache-status: HIT
age: 7382827
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uTXgbShsM1vjSqwvjT15m4z5V7DOsVL4%2FIkvJZsJggPPf%2FlU1qAdZk8dMl3Qspik4qifXRqbVXn8eVAArPF4ltlt9I1vNww7tc3ElkM9lWL%2B6QC%2B3Obvt36Jzrfci8Il9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=69.622, imageryFetch;dur=54.155, imageryProcess;dur=14.852;desc="image", cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 7aa449e31a48b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/france.png?v=1642517953
23.227.60.200200 OK 1.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/france.png?v=1642517953
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 12c36bcfeb9dcfadb0bcb99cd0bbf826
10e52a6ba656b5aee24fb907be55191266ed76b6
91f5512b70bde36ac07087bef4cd3777fb11874b51618d97c0c25733ebb9ab19
GET /s/files/1/0098/9023/4434/files/france.png?v=1642517953 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 1228
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/france.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 082baaa5-5c0a-447c-a130-aafaf6343e2d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 25 Aug 2022 23:16:11 GMT
cf-cache-status: HIT
age: 2604663
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c2YoGXUNxeiZwg6t1REggQ%2FtLErYkWtzyEgXoArwr0Vvuuys0y2ha44lhMJppQFGeS9K96wTN7%2FuhzWdZxq0pIZGsvjZl2BbvxUafZX9hDGMe57oMtUtPKKFniwaiVwroQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.630, imageryFetch;dur=41.512, imageryProcess;dur=16.446;desc="image", cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 7aa449e31a46b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0500/6340/9318/files/canada-flag.png?v=1632912726
23.227.60.200200 OK 10 kB URL HTTP/2 cdn.shopify.com/s/files/1/0500/6340/9318/files/canada-flag.png?v=1632912726
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash aaa0f7884330dd80559cb7ece4e2221a
6fb4aaa2be8917b29e11920ea76da630c4c4dc74
744901923db002e74bfb97b3c14f4359d74ab3cefa3574f5416e5cd0aa3ee0b4
GET /s/files/1/0500/6340/9318/files/canada-flag.png?v=1632912726 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 10442
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0500/6340/9318/files/canada-flag.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5fc62dde-ef20-4a75-9227-8555db705e62
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 26 Aug 2022 03:11:54 GMT
cf-cache-status: HIT
age: 347120
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dVNhiXdiku0nwhI%2FSKOdUnxo6SGSBC0mgGS6dDnEGBfpB%2B5LMQXt%2Fjchr9v0gxSjWgCy%2F9qkxfnISS65r3%2B8w0U%2B9TUeIcgyhdNWdqmvbPhs0Os0AOtL%2BjQBlD7uvDGRiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=114.380, imageryFetch;dur=71.488, imageryProcess;dur=42.343;desc="image", cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 7aa449e31a44b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/united-kingdom_c75f1507-f4c5-4698-bd35-cf47b47e68d6.png?v=1631615379
23.227.60.200200 OK 11 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/united-kingdom_c75f1507-f4c5-4698-bd35-cf47b47e68d6.png?v=1631615379
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6731017a318c57978bc17d5dffc123bf
4cca82b8f44289a2d1abaa0bb5fcabe5268c44fd
ae2c62fe68cb5388a262663152d1549de34e7b0493ae46109de0dd1624d1548f
GET /s/files/1/0098/9023/4434/files/united-kingdom_c75f1507-f4c5-4698-bd35-cf47b47e68d6.png?v=1631615379 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 11266
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/united-kingdom_c75f1507-f4c5-4698-bd35-cf47b47e68d6.png>; rel="canonical"
source-length: 12158
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 128f33f6-d571-4df6-94db-9761c9a60d51
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Tue, 14 Feb 2023 21:57:33 GMT
cf-cache-status: HIT
age: 2604663
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mTDshak0HxI0ksdsd3Stg0jZvocrHa%2FyCQB2jMzkv%2FW7YmALdH1pZ2eA5nWJggzvsyjfhYweSsyh6Ys4R0hA2zd9alY4yFpZSbiz9WcAkuUifZTXuPX43rF3nFnDAzvFuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=98.863, imageryFetch;dur=56.923, imageryProcess;dur=40.866;desc="image", cfRequestDuration;dur=15.000105
server: cloudflare
cf-ray: 7aa449e31a43b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.252.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.252.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CD25P40cxIZL7kguomtAuQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V7YuRM/f75CzsFM7Fbva/AClBp0=
cdn.shopify.com/s/files/1/0098/9023/4434/files/germany.png?v=1642518184
23.227.60.200200 OK 1.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/germany.png?v=1642518184
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash a3e2af8c578ac8f0603fe398a874eb12
97fd59ec97dd486fe875d2d7065c9165b4aed287
08070e9cd9545f33c468d6e082ebfca1aff5d33e0a1f665d2cb9986dcbefe2fc
GET /s/files/1/0098/9023/4434/files/germany.png?v=1642518184 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 1078
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/germany.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0f224b97-6c21-471d-affc-2dab3a43ccd5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 26 Aug 2022 05:06:08 GMT
cf-cache-status: HIT
age: 4795024
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FVQI2C%2FBinFBmQhhCRDPGsomIe6gbQjgBnLP8mMnfLyntRgMVpC9p8rJFgnyjZX6ztFuZTciIGjkx4c6yN%2Fjz9cThi4tz86Oq57GvVHNTIOlnVMihvISqr9dzbHnoN4dmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=104.367, imageryFetch;dur=80.793, imageryProcess;dur=22.810;desc="image", cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 7aa449e31a4ab521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/united-states-of-america.png?v=1631615379
23.227.60.200200 OK 1.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/united-states-of-america.png?v=1631615379
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash b9f895193a42206f9ff79388670edb06
66931f7547def7b075f159d30941c7e391ce4013
f07d6b0ad9282b81c6ee11417cab78fb5553a13288f5fde38c9fc85257f5a890
GET /s/files/1/0098/9023/4434/files/united-states-of-america.png?v=1631615379 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 1570
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/united-states-of-america.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 817812bc-c11b-494f-b833-d10daadf598a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 25 Aug 2022 22:59:38 GMT
cf-cache-status: HIT
age: 195255
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YRT51%2FQmq9riSeyOHxCekYiCCGmazRF8KkOuIXd7VofZblhn9jPvdonL2R71wc7yEACoVOdJ4HmnxiXm%2Ft7OgSWRzm51XhZ0l4ty89Ku8FJMD6rUkrB0F6Fu5Loz9IZp3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=94.129, imageryFetch;dur=67.977, imageryProcess;dur=25.575;desc="image", cfRequestDuration;dur=19.999981
server: cloudflare
cf-ray: 7aa449e31a42b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/netherlands.png?v=1642518184
23.227.60.200200 OK 1.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/netherlands.png?v=1642518184
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9d8864bf309721c8bcf087e71d2a8954
59062677d837692dda404bef47c904ed9ff3675e
ca63cf25e3356da4c06408a7d80d24b58aefc221ef8d6bdf629ca8af6f6ff484
GET /s/files/1/0098/9023/4434/files/netherlands.png?v=1642518184 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/webp
content-length: 1212
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/netherlands.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 2fe2566a-06ec-4976-b275-427193e57fef
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 24 Aug 2022 19:35:57 GMT
cf-cache-status: HIT
age: 1932641
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yobAoEnC0P9IK4O%2BlxB6jWs74CjB7UwP7doNEzkEh8QREuRI7XWznxm5Fru5TcHZsv4snfrdieep7EWjOHszBlrYqsnt7mHhtWa3pKEiDd00z26D%2FmB4kqNba%2BysSjFGuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=81.654, imageryFetch;dur=49.135, imageryProcess;dur=31.945;desc="image", cfRequestDuration;dur=15.999794
server: cloudflare
cf-ray: 7aa449e31a4bb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_78c8e0be-5d30-4582-b4a1-2f47dd754a34_200x100.png?v=1629908927
23.227.60.200200 OK 5.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_78c8e0be-5d30-4582-b4a1-2f47dd754a34_200x100.png?v=1629908927
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash e9886336053675893a0281b24b0c1333
cd63bd3639032acbe61e55bdf0b5216b07e233fe
480fbcc22b82407f601f790f131557383ac41a7d5189a27405da3ddd24802e81
GET /s/files/1/0098/9023/4434/files/Untitled-1_78c8e0be-5d30-4582-b4a1-2f47dd754a34_200x100.png?v=1629908927 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/avif
content-length: 5395
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_78c8e0be-5d30-4582-b4a1-2f47dd754a34_200x100.png>; rel="canonical"
source-length: 46859
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 4522f506-d6c0-4309-98f9-a04be5b381b3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 11:53:35 GMT
cf-cache-status: HIT
age: 58504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IAC4Cbu9FxXy53B2LKcboXhFPMeJuuy39MLGFy%2FusWoS28Y3z9W3y%2BPiLg1z7Ewdb0aDpe1hmdLiVrt0wlGi4NvhKJVhVX%2F61AE4HZsAv74fozXQDnjrWzTVpZbraC2w3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=459.808, imageryFetch;dur=48.807, imageryProcess;dur=409.894;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7aa449e32a69b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_1817202a-e82a-4f24-b1c1-3a8333e0b074_200x100.png?v=1629908929
23.227.60.200200 OK 5.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_1817202a-e82a-4f24-b1c1-3a8333e0b074_200x100.png?v=1629908929
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash e9886336053675893a0281b24b0c1333
cd63bd3639032acbe61e55bdf0b5216b07e233fe
480fbcc22b82407f601f790f131557383ac41a7d5189a27405da3ddd24802e81
GET /s/files/1/0098/9023/4434/files/Untitled-1_1817202a-e82a-4f24-b1c1-3a8333e0b074_200x100.png?v=1629908929 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/avif
content-length: 5395
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/Untitled-1_1817202a-e82a-4f24-b1c1-3a8333e0b074_200x100.png>; rel="canonical"
source-length: 46859
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: ef4d7ac2-b41d-4ba0-9619-e94a3ba94c37
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 03:52:16 GMT
cf-cache-status: HIT
age: 3714330
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=daWwegbHej%2Fqe7rklnZ7gRPsET2qBZhrtKjupQm0yQTc2zz1JH6hamYZaR1XNz5u6Wk0xX7yDAkg%2BAcb44x%2F4PPS4HfKAl5jhCOnCv3z%2Bs5VUnr%2BfMacsQS7N73lqjhiTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=456.323, imageryFetch;dur=70.306, imageryProcess;dur=385.087;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7aa449e32a6cb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/tik-tok.png?v=140471969259232114621674624524
23.227.60.200200 OK 697 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/tik-tok.png?v=140471969259232114621674624524
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ed301a4ff5f2498981850bb579b7e362
73d3b7b9ad74fb2d135e74214e5b9cd23dc867c1
30b5084c780b3aac9256047a315bd098c94d7a719ecdd29b4fde358b76dfbf0d
GET /s/files/1/0098/9023/4434/t/195/assets/tik-tok.png?v=140471969259232114621674624524 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/png
content-length: 697
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/tik-tok.png>; rel="canonical"
source-length: 589
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 64ccb593-ee0a-4e58-9094-19604c90c216
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Wed, 25 Jan 2023 05:28:52 GMT
cf-cache-status: HIT
age: 4576358
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wfq1pLUipNCx8EI2gAI3mXUVow2SoaJIwURJolJ7vGsn66FDjMtlgzu4RXJcLpSlEEFIM%2F5XJDo3x%2FCXQoQrn8UNSqEXW2AHoLAVCZ1p8hnCQ6LObRCrlkwoJV1svvc8IQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=108.263, imageryFetch;dur=72.023, imageryProcess;dur=34.922;desc="image", cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 7aa449e32a6fb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d0fabd58c2eab32cc3855f073e412f77
afae50771a7f0cdc11a8a19181557eec1aeb530d
86471f397f5eac04a6c271353444f2e324e4862bb539c00deb1eea475db9ff3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86471F397F5EAC04A6C271353444F2E324E4862BB539C00DEB1EEA475DB9FF3E"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3415
Expires: Sun, 19 Mar 2023 09:16:02 GMT
Date: Sun, 19 Mar 2023 08:19:07 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 37cad346bf9c7582600ca9e3cd8f9252
9021fcfa670921097bb9e71b10e07e8ae42443ae
fd83195c6e32d99ad1c76db3d4431ee060bd077ac738f090851138c5a8986340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/icons.png?v=181880065751625169041674624524
23.227.60.200200 OK 9.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/icons.png?v=181880065751625169041674624524
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 969fc149d75545713b48eddacb9e8fbd
418dc54dbe953b4ef29e3319b74090f965bb55d4
17a287db9779a85176aeea6d303fdd069e65a8db0388f9a8dd704dbda806f6fe
GET /s/files/1/0098/9023/4434/t/195/assets/icons.png?v=181880065751625169041674624524 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/avif
content-length: 9431
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/icons.png>; rel="canonical"
source-length: 54912
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 9df6c03a-31a4-4e26-a512-d373128d664a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 03:40:39 GMT
cf-cache-status: HIT
age: 1932641
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cY2TPkBitzff3tKB%2BqYUUnN2tQETd8KOOe%2BaS7x8Mv%2FUGoilFO5r8Wir4wUNk6L3%2FyWCmUNmdyUZQc0wrZ19qIuW9pfQRD%2FzLR3qqouJ75QFSxmGvuGaiBgC%2ByavMSfvQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=433.175, imageryFetch;dur=50.925, imageryProcess;dur=380.849;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 7aa449e3eb5ab521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tag.wknd.ai/4261/i.js
34.120.253.250200 OK 5.9 kB IP 34.120.253.250:0
File type C source, ASCII text, with very long lines (16921)
Hash 942558aed052253319e14fef61b62cbc
543fb4a478b61907bafe1b34011ba62dd56084b0
02e536588d2270869bfb670aca085ec641797e23dde1b428ff3c798e101d939c
GET /4261/i.js HTTP/1.1
Host: tag.wknd.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
content-length: 5879
timing-allow-origin: *
x-region: us-central1
access-control-allow-origin: *
link: <https://assets.bounceexchange.com>; rel=dns-prefetch, <https://events.bouncex.net>; rel=dns-prefetch, <https://data.cdnbasket.net>; rel=dns-prefetch, <https://page.cdnbasket.net>; rel=dns-prefetch, <https://view.cdnbasket.net>; rel=dns-prefetch, <https://ids.cdnwidget.com>; rel=dns-prefetch, <https://u.cdnwidget.com>; rel=dns-prefetch, <https://pix.cdnwidget.com>; rel=dns-prefetch, <https://api.bounceexchange.com>; rel=preconnect, <https://pd.cdnwidget.com>; rel=preconnect
content-encoding: gzip
x-envoy-upstream-service-time: 1
via: 1.1 google
date: Sun, 19 Mar 2023 03:14:07 GMT
age: 18300
etag: fa598e4e0dd8ed
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=60
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.mailmunch.co/app/v1/site.js
54.230.111.117200 OK 8.4 kB URL HTTP/2 a.mailmunch.co/app/v1/site.js
IP 54.230.111.117:0
File type ASCII text, with very long lines (26047), with no line terminators
Hash 8a01642da793347d65b80c16f0acd341
9735099600d717268cd8079b19c9a20cf91a5415
c88fb2ea15a2e9000dabbeacaeb7d930cc2d01892a5893036d19c3c02bbe501b
GET /app/v1/site.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 8416
date: Sun, 19 Mar 2023 03:03:27 GMT
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Fri, 17 Mar 2023 11:53:53 GMT
etag: "8a01642da793347d65b80c16f0acd341"
x-amz-server-side-encryption: AES256
cache-control: max-age=172800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VIEdm3ggWBJBmQmy0p6xx6IqfqDpG0fp-Q7aIy0HIz4_yckK1lvC7w==
age: 18941
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/combine-js.js?v=139695108330947921361674624524
23.227.60.200200 OK 25 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/combine-js.js?v=139695108330947921361674624524
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (51843)
Hash 9a5244a492e33121612537278924ceba
9ae4e17a66915f4c9452dc629d4baea89e967c6a
c64b72eacfc1ca355bd32216c014e8e471e1c9629006fb4f81e87d88c0650df0
GET /s/files/1/0098/9023/4434/t/195/assets/combine-js.js?v=139695108330947921361674624524 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/combine-js.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3923e571-f7cb-4ab7-b670-11c4681f3494
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:44:32 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=krTwZt7ethCA7c%2BIgnw9vJcrN0CFedTwE64IIF2TkntxUs4lJnYKeXAuKa5PS%2FixedHsk92CNzkufN03aXqXaqsghZGPTPCLVzPnGD1h7bAMMkH9zGe1E4LJBRD5Y9G2bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=95.855, imageryFetch;dur=83.947, cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 7aa449e32a70b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 19c14f58184c7e690016123d3ef7a534
2c72fde2182255e717fb88abf38f3d4cdfdefafd
cdac56c85e414c7934436cc5347cdf356ad82b3fbfd2e6bac40a4156382442ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/klaviyo.js?company_id=N8s8sW
151.101.194.133200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=N8s8sW
IP 151.101.194.133:0
File type ASCII text, with very long lines (2904)
Hash 70f2a991eb421e8584db354365bf4bf9
82906ef0d5abfd427ad51406ec6a751ed0464e7b
6d20e97e3d1e186d33d63783e0d2f353853300e23d5cdd70d803965e76c9c8c1
GET /onsite/js/klaviyo.js?company_id=N8s8sW HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-security-policy-report-only: object-src 'none'; frame-ancestors 'self'; script-src 'strict-dynamic' 'unsafe-eval'; base-uri 'none'
content-type: application/javascript
etag: W/"8a9691d4b662b1fd1ae3a153e9b61c8f"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118427
x-served-by: cache-lga21925-LGA, cache-bma1661-BMA
x-cache: HIT, HIT
x-cache-hits: 13, 1
x-timer: S1679213948.566130,VS0,VE1
vary: Accept-Encoding
content-length: 1033
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
IP 142.250.74.3:0
Hash 37a2362f4f366f2cdca17b95d9aee878
080d9e3b690f3ae6a094e9c25aacc2590c0fb347
f0ec430ea68bde1f18404beff0aa06d2b25cc30e4bcd5772bddb18f0e138988e
POST /s/gts1d4/m7DjimJpnjI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
amaicdn.com/preorder2/common.js
172.66.40.178200 OK 149 kB URL HTTP/2 amaicdn.com/preorder2/common.js
IP 172.66.40.178:0
File type Unicode text, UTF-8 text, with very long lines (65336), with no line terminators
Size 149 kB (148874 bytes)
Hash 8a8d38145281ee4a4a0f7b957c6a0a6b
c7e6f03ad49b6c1655fd865fdcd7c17398c1435e
05fd8af2f5424c2efc3c4f0ba781eac7b1789ae44144336af224a9252f405542
GET /preorder2/common.js HTTP/1.1
Host: amaicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: application/x-javascript
content-length: 148874
last-modified: Wed, 15 Mar 2023 07:57:22 GMT
etag: "8a8d38145281ee4a4a0f7b957c6a0a6b"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EFuS27RqQoVAkUQD5r9ezagyLn5qTy1fZsqqAHEZ8V5sBsvPwoCRag==
cache-control: max-age=259200
cf-cache-status: HIT
age: 248
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s0HzZK4%2F6ZyZRxALRWQkwwPrX3H40EXqpteWaJjb63grolzXJmcP0AunIoym4CVUSlRkZQm08TRTzNulc%2BywstQkBWpJy2b3jl44NDT431jRh0Sp%2F7t06kTaFi8P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449e45a401c12-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-966742208
142.250.74.72200 OK 66 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-966742208
IP 142.250.74.72:0
File type ASCII text, with very long lines (4737)
Hash afc5153fe12b01c7ae3a65e0b41ddb30
1b11743862ef5628917e8f9b78153e654a500b7d
4374272daa001ce442845874b69fdcbdc5545ec8a3e7e13a3fb4d80bc9425a1f
GET /gtag/js?id=AW-966742208 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 19 Mar 2023 08:19:07 GMT
expires: Sun, 19 Mar 2023 08:19:07 GMT
cache-control: private, max-age=900
last-modified: Sun, 19 Mar 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66375
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeTRAoeAAAAACKeCUlhSkXvVTIwv0_OgDTqgYsa
142.250.74.164200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeTRAoeAAAAACKeCUlhSkXvVTIwv0_OgDTqgYsa
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 49c2a0a14a6726ad6fb181193101253e
78d56b9d4fb063f91df995a36cbdb41c2ddd42ec
e14535a0ef64f936f525e8da8d9d5d0139983d3a6c4403a3b5aee3e2aa2ad568
GET /recaptcha/api.js?render=6LeTRAoeAAAAACKeCUlhSkXvVTIwv0_OgDTqgYsa HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 19 Mar 2023 08:19:07 GMT
date: Sun, 19 Mar 2023 08:19:07 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
IP 142.250.74.3:0
Hash 37a2362f4f366f2cdca17b95d9aee878
080d9e3b690f3ae6a094e9c25aacc2590c0fb347
f0ec430ea68bde1f18404beff0aa06d2b25cc30e4bcd5772bddb18f0e138988e
POST /s/gts1d4/m7DjimJpnjI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WPNHLMK
142.250.74.72200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WPNHLMK
IP 142.250.74.72:0
File type ASCII text, with very long lines (26644)
Hash 5f7a74a4128ce822be323c90fe00c59e
a615cb770bdecaeb94438adb54cfa843c846435c
1606cb4d3e1021067e4aa2d24ef99d451b1b5f75aa7635ec224e9d4f3fbabd1e
GET /gtm.js?id=GTM-WPNHLMK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 19 Mar 2023 08:19:07 GMT
expires: Sun, 19 Mar 2023 08:19:07 GMT
cache-control: private, max-age=900
last-modified: Sun, 19 Mar 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d0fabd58c2eab32cc3855f073e412f77
afae50771a7f0cdc11a8a19181557eec1aeb530d
86471f397f5eac04a6c271353444f2e324e4862bb539c00deb1eea475db9ff3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86471F397F5EAC04A6C271353444F2E324E4862BB539C00DEB1EEA475DB9FF3E"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3415
Expires: Sun, 19 Mar 2023 09:16:02 GMT
Date: Sun, 19 Mar 2023 08:19:07 GMT
Connection: keep-alive
asset.fwcdn3.com/js/storyblock.js
34.111.196.223200 OK 471 B URL HTTP/2 asset.fwcdn3.com/js/storyblock.js
IP 34.111.196.223:0
Hash 37cad346bf9c7582600ca9e3cd8f9252
9021fcfa670921097bb9e71b10e07e8ae42443ae
fd83195c6e32d99ad1c76db3d4431ee060bd077ac738f090851138c5a8986340
GET /js/storyblock.js HTTP/1.1
Host: asset.fwcdn3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fIvLNHT25RuNFuyNqzZYJsq1qI719G2kbelC6Ug3llyobTn4nrnVROf0J75jRKJOQzptV56NHDY=
x-amz-request-id: WKG4SQ09M0S28T5W
x-amz-server-side-encryption: AES256
x-amz-meta-env: prod
x-amz-version-id: null
accept-ranges: none
server: AmazonS3
via: 1.1 google
content-encoding: br
content-length: 99805
x-amz-storage-class: INTELLIGENT_TIERING
date: Sat, 18 Mar 2023 21:03:37 GMT
age: 40530
last-modified: Thu, 16 Mar 2023 17:21:02 GMT
etag: W/"0cbf0813320656e341c908db618ed214"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=3600
x-cache-hit: hit
access-control-allow-origin: *
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
IP 142.250.74.3:0
Hash e419bde2cc8bfb6de7f5df4e8b59b07d
fb6b20ddd164f50f4ddd13a711254b4583c4ac8a
2a59b515618bee24752c0baac0b76a3675c29517fc921d3c53ab7e358995aff3
POST /s/gts1d4/lqQUgBRobO4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
IP 142.250.74.3:0
Hash e419bde2cc8bfb6de7f5df4e8b59b07d
fb6b20ddd164f50f4ddd13a711254b4583c4ac8a
2a59b515618bee24752c0baac0b76a3675c29517fc921d3c53ab7e358995aff3
POST /s/gts1d4/lqQUgBRobO4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe99fbfafe932798d008a24a9e6083c5
f4525c21f1da0a2c15ae3c36598d0e243bea4f32
7042c657b1b57b5a441341628450ea07042994316089b30653df49a8ded66fe2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
142.250.74.3200 OK 7.7 kB URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/m7DjimJpnjI
IP 142.250.74.3:0
Hash 59e34bf0fbba75f33fd897c211d45682
21aac337ba6af4419e44d76f671231379af3585c
c0c3a5afdb76c9ac1c339d66fcc4ae56dc5954f9d740a4ef347f7faf5895b46b
POST /s/gts1d4/m7DjimJpnjI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/GlamourAbsolute-regular.woff2
23.227.60.200200 OK 24 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/GlamourAbsolute-regular.woff2
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 24520, version 1.0\012- data
Hash d9c4836bf0b6c3cddfd0ca19395be7d8
82793af92a8375b5b3d452b42cdf4679c33af9a6
e5355f44343457009f8a7e76985ec4b8697f563d49c792239bf86b8b8b866c42
GET /s/files/1/0098/9023/4434/t/195/assets/GlamourAbsolute-regular.woff2 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: font/woff2
content-length: 24520
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/GlamourAbsolute-regular.woff2>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1eee0f68-8e37-45de-9b8c-ce3c6fc5cd7d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Wed, 25 Jan 2023 05:36:05 GMT
cf-cache-status: HIT
age: 88925
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HBWQ3%2BLdYMLMJ%2F44dZfMHesiq29ocVwXmBIzmna2v9I3KLJYUyxvYfOtDofWfx5HFS%2Bxy4KSbYuiGcoXZiAGrdijCYrDFKfgYA4Jk13vpEyGe3hd%2FcW9%2FWLqgahaIwcrTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=36.478, imageryFetch;dur=36.120, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7aa449e579f5b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
asset.fwcdn2.com/js/fwn.js
34.160.100.207200 OK 145 kB URL HTTP/2 asset.fwcdn2.com/js/fwn.js
IP 34.160.100.207:0
File type ASCII text, with very long lines (65303)
Size 145 kB (144822 bytes)
Hash 543e0cb6841df8d6106674eeebf33fa5
7285c5db56307d1fedf5bc94067896df1edf390e
7c9eeaddf3e8b3562e5e1a6e7019837e66fc507a28fb16cd9ce46f580cbb1124
GET /js/fwn.js HTTP/1.1
Host: asset.fwcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +t/RFwEvWU3O06X1dtWZvOWBz1cvw/jlvI0NPDGYU5ogYvdxZ6LgEKV47EQGWUPThN25HMtWPDY=
x-amz-request-id: 4CQBAHXVWFNQT1ZW
x-amz-server-side-encryption: AES256
x-amz-meta-env: prod
x-amz-version-id: null
accept-ranges: none
server: AmazonS3
via: 1.1 google
content-encoding: br
content-length: 144822
x-amz-storage-class: INTELLIGENT_TIERING
date: Sat, 18 Mar 2023 21:07:57 GMT
age: 40270
last-modified: Thu, 16 Mar 2023 17:20:47 GMT
etag: W/"2ad5b890f2b2979a250fb77fa92162a4"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=3600
x-cache-hit: hit
access-control-allow-origin: *
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
asset.fwcdn2.com/js/integrations/shopify.js
34.160.100.207200 OK 8.6 kB URL HTTP/2 asset.fwcdn2.com/js/integrations/shopify.js
IP 34.160.100.207:0
File type ASCII text, with very long lines (24878)
Hash 9cdf610bcfefdaec8f9b460c1970dbfa
f34d762d7b69bbf01c5e14937fa72aaf4875774f
b7fb51f2fa6d7e9142eb94dd615898bcfc256481c1214020103245e873165ea9
GET /js/integrations/shopify.js HTTP/1.1
Host: asset.fwcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +vCSws0bzRAGSNoqWbl5L18IGYA4f9V91KY1Q7pHtUVas4QO8LPLoWQqcfbMrC+hNxiu8F/GSnE=
x-amz-request-id: 4CQC21ERKPVW1CV6
x-amz-server-side-encryption: AES256
x-amz-meta-env: prod
x-amz-version-id: null
accept-ranges: none
server: AmazonS3
via: 1.1 google
content-encoding: br
content-length: 8593
date: Sat, 18 Mar 2023 21:07:57 GMT
age: 40270
last-modified: Thu, 16 Mar 2023 17:23:22 GMT
etag: W/"d138c7149d92a6770abef3242cca8f3d"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=3600
x-cache-hit: hit
access-control-allow-origin: *
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
23.227.60.200200 OK 16 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32755)
Hash 66569f6c9d36b15cd001eb82d70b97b3
468cd17d0f95e69c5fc7c488229258727cbf6506
4b8bbcd047c1ec8bf4c1edb5eb4862a1103074b0dad7149193059b3fba61af6a
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ed06de73-a325-4a6e-a32d-a7536186930e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:37:29 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhfCqaabwjwx1Yrq2rZDMGN3SGBjUkYyCzX75DgzkgiKuly4qWKd8RH%2BVL1ogjRREv2RngBYj6ue1dwDhmQ0dmcZU44PRLtYRw%2FagSRCn9qKTVnC%2F4nS6PlNDr%2BZHLXujw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=24.283, imageryFetch;dur=24.092, cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 7aa449e33e9cb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/lqQUgBRobO4
IP 142.250.74.3:0
Hash e419bde2cc8bfb6de7f5df4e8b59b07d
fb6b20ddd164f50f4ddd13a711254b4583c4ac8a
2a59b515618bee24752c0baac0b76a3675c29517fc921d3c53ab7e358995aff3
POST /s/gts1d4/lqQUgBRobO4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0098/9023/4434/files/envelope_f40fa1b8-3570-4d87-900b-544e25b5862a.svg?10498
23.227.60.200200 OK 20 kB URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/files/envelope_f40fa1b8-3570-4d87-900b-544e25b5862a.svg?10498
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash afef74aa6a0b5faaf24897298afe674d
184e51ce3ede1e9632d1a1fa689d5496bfb1acff
a867661cec082fce1e9f50bdc3e8b89ad250939f460c8d8589d6b4d27fa5534d
GET /s/files/1/0098/9023/4434/files/envelope_f40fa1b8-3570-4d87-900b-544e25b5862a.svg?10498 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/files/envelope_f40fa1b8-3570-4d87-900b-544e25b5862a.svg>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3068bec2-b73c-4cda-a057-5a4f8846907c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 04:52:17 GMT
cf-cache-status: HIT
age: 17705594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=voTHsU1L0WpBhQ9Rqa4k0Czg7PkSL%2FSdxrzUCpIsR9rEFcE%2F4KcVAxbwMuAq6Pcfmd%2FLKkJFQhqoz3ZpdctVcdfEQHZbZ6YXE1idJasEOFVKm1BSFTr9CaFm7KoTrZinFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=83.849, imageryFetch;dur=81.766, imageryProcess;dur=0.122;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 7aa449e32a6eb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/century_gothic/centurygothic_n7.9c88796e9511a086b9c0038824e3fcaa4e104f7d.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=e10a1c1044c9586e8f43420cb64d3eba782780e553af68d21cc3e50d055512f3
185.146.173.20200 OK 18 kB URL HTTP/2 fonts.shopifycdn.com/century_gothic/centurygothic_n7.9c88796e9511a086b9c0038824e3fcaa4e104f7d.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=e10a1c1044c9586e8f43420cb64d3eba782780e553af68d21cc3e50d055512f3
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 18444, version 1.26214\012- data
Hash 891ca43139c9622fcaee066da16c38cd
9c88796e9511a086b9c0038824e3fcaa4e104f7d
40075034549eec86c743172b67c5135a75fcca2e020c875b7c49fb8885d23045
GET /century_gothic/centurygothic_n7.9c88796e9511a086b9c0038824e3fcaa4e104f7d.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=e10a1c1044c9586e8f43420cb64d3eba782780e553af68d21cc3e50d055512f3 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: font/woff2
content-length: 18444
cf-ray: 7aa449e5dcf1b51d-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2084935
cache-control: max-age=2629800, immutable
last-modified: Thu, 23 Feb 2023 05:09:48 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/century_gothic/centurygothic_n7.9c88796e9511a086b9c0038824e3fcaa4e104f7d.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: c6069a10-a3c1-4bc7-84db-3c48f807baea
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Blr9iec1hD8KalUPvG9QWeXYnU3r1UXp4F2EktbRjuwYz43SY4NZVHLOCbwbTgClrjIHqwrolmURGWcXlQmvy53Y6uVJ1U2rRtpz%2Bs5b9olaQ1mKAPu0wWxhqpdSLwmtvzIU7E2E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=42.640, imageryFetch;dur=42.286, cfRequestDuration;dur=6.999969, cfRequestDuration;dur=14.999866
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/century_gothic/centurygothic_i4.057018ca8ff3e7e0367ab50107a08a8a1691315e.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=19f9fe15ac2ccecf25e7a088f854cccdcfeee5ede8d397b63342bfcf8c939ba1
185.146.173.20200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/century_gothic/centurygothic_i4.057018ca8ff3e7e0367ab50107a08a8a1691315e.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=19f9fe15ac2ccecf25e7a088f854cccdcfeee5ede8d397b63342bfcf8c939ba1
IP 185.146.173.20:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19704, version 1.13107\012- data
Hash 35f4adf0ec3223626190f1a306218c66
057018ca8ff3e7e0367ab50107a08a8a1691315e
0b05491a995c64a1c2cde1a4ef5e10b3011ae94149e044eb3a5d07a2ae6651ea
GET /century_gothic/centurygothic_i4.057018ca8ff3e7e0367ab50107a08a8a1691315e.woff2?h1=Z3JhbmRlY29zbWV0aWNzLmNvbQ&hmac=19f9fe15ac2ccecf25e7a088f854cccdcfeee5ede8d397b63342bfcf8c939ba1 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://cdn.shopify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: font/woff2
content-length: 19704
cf-ray: 7aa449e5ccecb51d-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2084805
cache-control: max-age=2629800, immutable
last-modified: Thu, 23 Feb 2023 05:09:53 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/century_gothic/centurygothic_i4.057018ca8ff3e7e0367ab50107a08a8a1691315e.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 5eb8061c-5969-4582-85d1-02a151bfbef8
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1jpHmxlN0lMlSrQ1hcHknAW0NbMHMWJYexONgBoGJN4vI%2BeoPJwUM1TzqkqB666XLB58WiqGpMVKzdLQVR%2FqePCO3AG%2Ff18fDzG%2FGqGpFlKd3jlcDQUR72UVushfm2Wv5hdXfvm%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=98.780, imageryFetch;dur=98.243, cfRequestDuration;dur=9.000063, cfRequestDuration;dur=16.999960
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.a398eea4a85cd392979d.js?cb=1
151.101.194.133200 OK 8.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.a398eea4a85cd392979d.js?cb=1
IP 151.101.194.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash 40e03d956e7fa87b24341d6e03970673
51a99a8381bd7461a65fa2c7de718d62be6c0245
a23710435d90c81589c5c6949bba0cf0d04f31c9c5e2551bfeba8e98e35cc38a
GET /onsite/js/runtime.a398eea4a85cd392979d.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BbT6t1STiKuQIb3/E0Ao+z7Y9ufpRdFISpYUFhDlLRB63Ef6IkhRpP5aSqGv/JMOBbqN/ICCCvQ=
x-amz-request-id: JFBWCW9AMKCV7DM7
last-modified: Thu, 16 Mar 2023 18:47:57 GMT
etag: "faac328f579a3b907242c266535d8c66"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: fQV7gTS4urpgK3pEgGqrEyhuvA_Qb_Wv
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21962-LGA, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 48725
vary: Accept-Encoding
content-length: 8049
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
151.101.194.133200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP 151.101.194.133:0
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21935-LGA, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 314573
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.80429e339af3fcaca0a2.js?cb=1
151.101.194.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.80429e339af3fcaca0a2.js?cb=1
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (36302), with no line terminators
Hash 1f4a8b3cc5d9516ddbb6779e09f210f2
d83b0f2dc4586e18490945f9d3f5fd0c9b09d5bd
56913ddecdb0e07f9698d0c75b61a035956204f6b7beb4fb7105311603b1f57f
GET /onsite/js/sharedUtils.80429e339af3fcaca0a2.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FcUOBd1x4BRDGBb3N8AGNw7tytw32zuaVF2+VZJCkd2hRPscxoVEcn1BRuKbJ27APVkE4NI6i9U=
x-amz-request-id: V0SAT6YQJ3HFN8BT
last-modified: Tue, 14 Feb 2023 19:56:55 GMT
etag: "b9cda3bb647627fe16ebe1fb30ed1cb6"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: LxIbmSik0USPoxnrKXu8uEB5hQp2zxJS
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21979-LGA, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 43976
vary: Accept-Encoding
content-length: 14031
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.d3dcfa145c2fcbd427cb.js?cb=1
151.101.194.133200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.d3dcfa145c2fcbd427cb.js?cb=1
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (34806), with no line terminators
Hash d9d1532c04561b32b3cd1ae1f87b845c
3d1eaccd587dc9c0fe11d9d633761e25599fab8f
98036a4aac894b9fffab3f9ed29cbd303f663f9a01013e3ed9a2c5b96ff20844
GET /onsite/js/signup_forms.d3dcfa145c2fcbd427cb.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3iRbFZOnrI6gBo+fAMo5sA43Welb6hRy4MXszKwZkWa8BM2sqt/069NjT5TMCqzkLKBrOKsi5oE=
x-amz-request-id: B1AB1SE3W6ECFCJ0
last-modified: Mon, 13 Feb 2023 16:10:21 GMT
etag: "e4bd60bcc72d914b5c15b8ceaf0ddd85"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Kq54_YmL669JgtKh5nPyHVYran4K8p0d
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21965-LGA, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 32, 30313
vary: Accept-Encoding
content-length: 11491
X-Firefox-Spdy: h2
player.vimeo.com/video/794923683?byline=0&portrait=0&badge=0
162.159.128.61200 OK 5.7 kB URL HTTP/1.1 player.vimeo.com/video/794923683?byline=0&portrait=0&badge=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13040)
Hash 2cd9f053d9fe041307dca167829506da
643122e870356c89268f55ea2cb013dad78599d3
6dc7f6ad8d8f432371ef25997093448a02a88c761bb0facfe173ea5d92114d2e
GET /video/794923683?byline=0&portrait=0&badge=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:19:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://*.hivestreaming.com/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src https://edge-assets.wirewax.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://*.ci.vimeows.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
Expires: Fri, 15 Dec 1985 19:30:00 GMT
Link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Host: player-backend-d78498f69-wgtxd
X-Player-Backend: g
X-Xss-Protection: 1; mode=block
Via: 1.1 google, 1.1 varnish
Age: 0
X-Served-By: cache-bma1628-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679213948.781165,VS0,VE146
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=zgqOgCK99gtA7dfMcbjgsb.Bpc2EoToJu25eSmk8FeE-1679213947-0-AdA/PvYgzbZ7Qa02/GinMb/qjqVOLG+a/VadMT/zchhIRq/0jBl2weJiCTSAdJGXx8mKaCcZ5bziwewVAS1TjEM=; path=/; expires=Sun, 19-Mar-23 08:49:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7aa449e58b7e1bfa-OSL
Content-Encoding: gzip
static-tracking.klaviyo.com/onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1
151.101.66.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1
IP 151.101.66.133:0
File type ASCII text, with very long lines (28233), with no line terminators
Hash 725f8fee7631a0e15b68e9e6de4adf1d
17571126c536627299051e321e66309ffd33a82f
f6d5c76c429813991c8f2a6c6f378e6ba30cc49c93ed715d3875c18529912c0f
GET /onsite/js/fender_analytics.78381ec829aa8f411002.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1RakVCQTsKI6XkUyxa0Jh3adTg48BykQWVXeageTlHBKSVEAZYsfyXz5aekaHxxZ547fIr6Xets=
x-amz-request-id: VA29B2Z1WF4W3XJK
last-modified: Fri, 10 Feb 2023 19:40:42 GMT
etag: "181805fcd2e6608d4d0f89a2dc37b132"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: oJgIy_W6Xb8PYtvCrWd1YxpO_.rqcTy7
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21983-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 45396
vary: Accept-Encoding
content-length: 10911
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.282ca34262b9e8dae5e7.js?cb=1
151.101.66.133200 OK 1.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.282ca34262b9e8dae5e7.js?cb=1
IP 151.101.66.133:0
File type ASCII text, with very long lines (3976), with no line terminators
Hash 5eda8b126ab52ae025da74d55397d418
3bcccc18d453d871434795273aed82174f6ff6db
c365fe7fc9c10a98018203142416d5c1722905ed4d88a5d3623c408bf1745541
GET /onsite/js/static.282ca34262b9e8dae5e7.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IsBdksLFXoHaE08mSP9Q/unvkZZ4u5rGG1QGI3Z7CjBBT323K6sbBWqRK2TiQ+B1FZfPfP0qPLc=
x-amz-request-id: ARV9Q5KH9D6F9T48
last-modified: Fri, 17 Mar 2023 14:10:05 GMT
etag: "3abcf1335d1ac12d73abe723370d80d0"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rUOWJdhD2d96CD1VeToQj7MyVD8Jji9k
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:07 GMT
age: 118433
x-served-by: cache-lga21973-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 51534
vary: Accept-Encoding
content-length: 1841
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 44b69e64b12c8d5524421684e7db674e
f80282831b8d89ade923c43bf56376a1447f921a
7cb75080548c77d203209e509a90e2c2f3f06147d9851dbe45ff4e853516bd8c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:19:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2023 06:44:39 GMT
Expires: Sun, 26 Mar 2023 06:44:38 GMT
Etag: "f80282831b8d89ade923c43bf56376a1447f921a"
Cache-Control: max-age=598530,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aa449e5be47fab4-OSL
a.mailmunch.co/app/v1/styles.css
54.230.111.117200 OK 2.3 kB URL HTTP/2 a.mailmunch.co/app/v1/styles.css
IP 54.230.111.117:0
File type ASCII text, with very long lines (21666), with no line terminators
Hash 6156cce047eb2feb3b14d4eb267cfbdb
8073ae079df89091131d9c4eaacbc3bab827a171
7cd065c9b8c421e7f74a096d955df258de59181ed6c4527811bebb0cd06a6ad5
GET /app/v1/styles.css HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2274
date: Sat, 18 Mar 2023 10:52:25 GMT
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Fri, 17 Mar 2023 11:53:57 GMT
etag: "6156cce047eb2feb3b14d4eb267cfbdb"
x-amz-server-side-encryption: AES256
cache-control: max-age=172800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3fondFymeuMSdLqbnIsk-az0IaFboITDkDZUs231R5f2z4m-QDwH3A==
age: 77204
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
142.250.74.106200 OK 1.9 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (3767)
Hash f9b0a6ccf63849513ebde70fafd08d0f
f89ba1ccdb6c6303636388ce40bcb730f5968faf
23188e6c4e8d363d08a602777354ee946570d88a7b72371fdff90a17a725f571
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 13 Mar 2023 19:26:53 GMT
expires: Tue, 12 Mar 2024 19:26:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 478334
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
23.227.60.200200 OK 32 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32761)
Hash fef9509f9bfcae6aa1ec11fda64f0cc1
e0c9569a94ec6c06a6cddcdfa4edab00123ba466
1e4b722743b1e5bbd9f8fb796a1b8f3c4e3f5c7f84ebc7a6a638204f1b9c4ba8
GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e156ca16-e800-4a1f-af2d-3c4cf35516c4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:29:07 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TPg%2BRpC8GzZAxh3JigvyxXQrtFqLBii7wpUiGnzNau1kHUpvoaTWNSJnLn0RXZQPE8BklOnOR3gxtkCkXvTQ3Ne%2F%2Fee7WW4FKQWJo10VaP%2BH9%2Bc%2BGoslyautqRULs%2FHAxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=29.192, imageryFetch;dur=29.035, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 7aa449e33ea8b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 44b69e64b12c8d5524421684e7db674e
f80282831b8d89ade923c43bf56376a1447f921a
7cb75080548c77d203209e509a90e2c2f3f06147d9851dbe45ff4e853516bd8c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:19:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2023 06:44:39 GMT
Expires: Sun, 26 Mar 2023 06:44:38 GMT
Etag: "f80282831b8d89ade923c43bf56376a1447f921a"
Cache-Control: max-age=598529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aa449e81ff5fab4-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 558ad337bc7ecbb36f3bd2d5c9945472
f57b51683579c5b5ed50d3796c82df66f0b8c845
591f21d9d91b63cf0d8cbcf47a08a1261fd1819ad821b481c9b9a379e500f056
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "591F21D9D91B63CF0D8CBCF47A08A1261FD1819AD821B481C9B9A379E500F056"
Last-Modified: Fri, 17 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3563
Expires: Sun, 19 Mar 2023 09:18:31 GMT
Date: Sun, 19 Mar 2023 08:19:08 GMT
Connection: keep-alive
forms.mailmunch.co/sites/722058
52.204.242.176200 OK 3.1 kB URL HTTP/1.1 forms.mailmunch.co/sites/722058
IP 52.204.242.176:0
Hash 408038276806c82060d9d301700f4f3d
ccba6e51cb6af9f1306fedc3ab05e2c112dc6d92
c6426a12d0ac7b710f1df0c5dd51c5418acb18673343e03d900146b7ddc2bd51
GET /sites/722058 HTTP/1.1
Host: forms.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-MM-Form-Tool, X-MM-Coupons
Access-Control-Expose-Headers: X-MM-Comp-Tracking, X-MM-EU-Continent, X-MM-T
Content-Type: application/json; charset=utf-8
Content-Length: 130
Etag: W/"82-aohSWuDYjBEzlxLKdyEiRTMCfno"
Vary: Accept-Encoding
Date: Sun, 19 Mar 2023 08:19:08 GMT
Via: 1.1 vegur
analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 0315597028802fbc81ea829093ff7d7d
d0f1d8243437546f785338f1694187f28d09012d
6c4ede99d8b8d80ac7ab7ea334b13e68c2eec85360facfdaf76905b0e09ccbc6
GET /i18n/pixel/static/main.MTE3ZGZjMmFkMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230221145349D8F9ABDB8DC3C0D68208
x-tt-trace-host: 01bb469d8a759a907b671c89f934679301bb550c3c66d911ef5acdfa9e308af0040737830cc9d03386c3307ac1b95412f7159ab1382b9e54de53eca4dd9d96a5ba540c63d2f8c43290a3140f13d58bb5ddd96d222444a5043bdcd754420e1624e1
content-encoding: gzip
date: Sun, 19 Mar 2023 08:19:08 GMT
content-length: 66240
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 30be4732
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/N8s8sW/full-forms
151.101.194.133200 OK 8.6 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/N8s8sW/full-forms
IP 151.101.194.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f0370fe9b445abe4cb195bae812d7699
7ecd8cd520cd5c580f602e34a1a6dc504e4cd983
ceb32d2c53389486daacf835afc3c4a7d4e80f15412376dd4e55a02f5e0cc8d3
GET /forms/api/v6/N8s8sW/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rw0yKMzO+7pmLdtUdZ2qwFD6Gd28w0I9Y9U4CoC4A0RktcKspmnC4SZaUyO+59nbffBV3M/Fa00=
x-amz-request-id: 06KHF98ZPHQ34BFQ
last-modified: Tue, 07 Feb 2023 15:27:17 GMT
etag: "2fdf3dc64c59faf46e8a6de02069bc1a"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/N8s8sW custom-fonts/N8s8sW
x-amz-version-id: fe86D38fiOONex1psWizlUCdZyZC84ih
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:08 GMT
via: 1.1 varnish
age: 2251486
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1679213948.399728,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 8587
X-Firefox-Spdy: h2
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=N8s8sW
151.101.130.133200 OK 711 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=N8s8sW
IP 151.101.130.133:0
File type JSON data\012- , ASCII text, with very long lines (711), with no line terminators
Hash 03105c501915f868a830b4467f54466b
75dfb701d91b9671f608d299121b5aa75889df00
272c6efe5873853b6695151ee344aad6486ea8ef7dabe62972c1990c5f0e42dd
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=N8s8sW HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-security-policy-report-only: frame-ancestors 'self'; base-uri 'none'; script-src 'strict-dynamic' 'unsafe-eval'; object-src 'none'
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:08 GMT
age: 2259851
x-served-by: cache-bos4663-BOS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 3503, 1
vary: Cookie
strict-transport-security: max-age=900
content-length: 711
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Sun, 19 Mar 2023 08:55:17 GMT
Date: Sun, 19 Mar 2023 08:19:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Sun, 19 Mar 2023 08:55:17 GMT
Date: Sun, 19 Mar 2023 08:19:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8797d11-0587-421b-bfe0-8621f2e6a8be.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8797d11-0587-421b-bfe0-8621f2e6a8be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eda887ce6aad02ab7605ffd54b736c2
4de17a25e8c0155e60ac08df41fcdd13f321a35f
d6ed571fc493fadc069b2191475face34d57823820b9e7d63d13eeeddb5ad6aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8797d11-0587-421b-bfe0-8621f2e6a8be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5417
x-amzn-requestid: 377c2c60-47d3-4b30-91be-bb249e8c4bb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wY4FZnIAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd2-7bd4ba134f3e30e245cd42b9;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: N9rQpzTIX08gOe1EPVXjJU1spE1hPigBZ99BSsGr7axgrsb-w4FPJw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1f41b5f27f3ec2e93db2155dbc56900c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:45:46 GMT
etag: "4de17a25e8c0155e60ac08df41fcdd13f321a35f"
content-type: image/jpeg
age: 38002
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834645cc-a32c-47ac-a12f-235778429d48.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834645cc-a32c-47ac-a12f-235778429d48.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 082117af513213d5b43e25c97b2b2ed6
f7f8151a3827455579613bf12a3e45c049fb2e33
bb31257b2410493e8ab481ce3f2a3215c7ca5af9702319afbafc17b988d5bde1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F834645cc-a32c-47ac-a12f-235778429d48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7432
x-amzn-requestid: eadf4a39-81bf-4e09-b9e4-45e3c9592996
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_w2HEzSoAMFTxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e8d-099b5c3d32d7d7300266dd95;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: geY0kRQBa0RwG_aW9n_18KoQrJNNNR3zRMKkmsA2OOXQHGkEE4N0Qw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:03:39 GMT
age: 36929
etag: "f7f8151a3827455579613bf12a3e45c049fb2e33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 916a27eee94b9be1c268cd17c11c4824
4530492308074d7f4f7f888593149377e70ee561
a7aeaf49047efb11e4cd8b72bd2e00b4afdfe461b5be50d88c343ffbf3d3ca45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7842
x-amzn-requestid: 1e67e821-8a98-4e42-9a06-6f01a272a257
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BootuGD2oAMF68g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640cee57-6431323d0aebdf1741a61604;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:10:47 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: XmH5ERkxT5ZZIQWRnVXMdd_2u4RCvU_h5vxmRsbuvX-sosOkZWhREw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 17:07:21 GMT
age: 54707
etag: "4530492308074d7f4f7f888593149377e70ee561"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 04:25:44 GMT
age: 14004
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
saa.wooly.com/wooly-analytics.js?token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhY2Nlc3NUb1VzZXJJZCI6IjEwMTY4NTYiLCJzZXNzaW9uVXNlcklkIjoiMTAxNjg1NiIsInJpZ2h0SWQiOiIyMyIsImFjY2Vzc0lkIjoiNiIsIm5iZiI6MTYwNTAzMjg1MiwiZXhwIjoxNjA1MDM2NDUyLCJpYXQiOjE2MDUwMzI4NTJ9.kXkmYKbbZkAMxj-8EQmyltpTRk2dz7GQArnESywB5VA
13.107.238.53200 OK 14 kB URL HTTP/2 saa.wooly.com/wooly-analytics.js?token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhY2Nlc3NUb1VzZXJJZCI6IjEwMTY4NTYiLCJzZXNzaW9uVXNlcklkIjoiMTAxNjg1NiIsInJpZ2h0SWQiOiIyMyIsImFjY2Vzc0lkIjoiNiIsIm5iZiI6MTYwNTAzMjg1MiwiZXhwIjoxNjA1MDM2NDUyLCJpYXQiOjE2MDUwMzI4NTJ9.kXkmYKbbZkAMxj-8EQmyltpTRk2dz7GQArnESywB5VA
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash f9211b242f210be4dd17f301f0934e30
46572937bc9b6a623460763d18f2f3e1f4d0be4e
80bb62609c01f24f1abe1fac4aaacf9c61d6a4202231d30a1231b60c70daacde
GET /wooly-analytics.js?token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhY2Nlc3NUb1VzZXJJZCI6IjEwMTY4NTYiLCJzZXNzaW9uVXNlcklkIjoiMTAxNjg1NiIsInJpZ2h0SWQiOiIyMyIsImFjY2Vzc0lkIjoiNiIsIm5iZiI6MTYwNTAzMjg1MiwiZXhwIjoxNjA1MDM2NDUyLCJpYXQiOjE2MDUwMzI4NTJ9.kXkmYKbbZkAMxj-8EQmyltpTRk2dz7GQArnESywB5VA HTTP/1.1
Host: saa.wooly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age:3600
content-type: text/javascript
content-encoding: gzip
vary: Accept-Encoding
x-cache: TCP_MISS
x-azure-ref-originshield: 0e8UWZAAAAABRJIZpW5HeQajGol63bKzVQU1TMDRFREdFMTgxMQBiN2U5NTNhMi01OGExLTQ5ZmItODBiZi02OWQxOWY4YWY4MDk=
x-azure-ref: 0e8UWZAAAAAAexiOkYnapT6SzgOj8bKekU1ZHMjBFREdFMDUxNwBiN2U5NTNhMi01OGExLTQ5ZmItODBiZi02OWQxOWY4YWY4MDk=
date: Sun, 19 Mar 2023 08:19:07 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07289211ce045b31693c7bb59c06f338
210abec1182bb94b9d0e48827ecb8023611c4489
808b7bfa4b75cfb91e003d6375802da7d2719de29d4f64776dea57992b7632c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5311
x-amzn-requestid: 3e000f36-3e2a-4008-950b-2e9f83306e51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_w3eFmtIAMF7EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e95-1b9e4cc8033920ea365de22f;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D-ozN3h77HmOeQlqbHfQ5U-L26pifGyxPwnvJuwtRsfS2paMlt4eWg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:45:47 GMT
age: 38001
etag: "210abec1182bb94b9d0e48827ecb8023611c4489"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 681bc25d1e648965a9374cc7da238fd5
bb973302d1b656e343013fe741d0d54bfe33b15e
2d381181d954e35610fb06daba8df86d7abb4b823e87de97276e0bd81af03669
GET /i18n/pixel/static/identify_cab4d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302211453357ED32E9CB4A234CC4054
x-tt-trace-host: 015ddd7329836f23ed04aa0dd6eae000e61dfb35b73ddd0ea6d3f361692c7f8399f836da754548664a9d56a317cca937197d586aef26ea8efc3380c784f4b6030804835a6b84edf6ba964a401008dbe475da2a7be38cb7b795f8af41aeb5068142
content-encoding: gzip
content-length: 30779
date: Sun, 19 Mar 2023 08:19:08 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 30be48b3
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.21.16/css/player.css
151.101.246.109200 OK 21 kB URL HTTP/2 f.vimeocdn.com/p/4.21.16/css/player.css
IP 151.101.246.109:0
File type ASCII text, with very long lines (65494)
Hash 69ae17958c0c5fd065020794617969ad
24a15d79936a420f868e4aa14bcba13ed202f7d8
f08d7e202a3dcb8c0758fd501bf4072070d6fe958925048813ce5d7429748b15
GET /p/4.21.16/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:08 GMT
age: 221378
x-served-by: cache-iad-kcgs7200075-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 121743
x-timer: S1679213949.634575,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20918
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 776
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023031908190828611A981003C4FD6B33
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a0369cb24960fbb841c43ba74fe9e2bf4ea65de991908c48e6fb90852be837b4c8a25a503fde1f78d01500bfbb7325eb913f95ec89b4e2d767a23f849a0b70454
expires: Sun, 19 Mar 2023 08:19:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:19:08 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=21, cdn-cache; desc=MISS, edge; dur=3, origin; dur=121
x-origin-response-time: 121,23.36.79.13
x-akamai-request-id: 30be48c3
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash c4ef8f79e414366c4ac932d539edbe5e
54bd658c1a7b6d7ffdd2345d960dbaf56103299c
2b552776fb08f71c6d1684f31cabb56b4860e9ddc4c226dc4a2a151145ff0785
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137007
Date: Sun, 19 Mar 2023 08:19:08 GMT
Etag: "64162acd-1d7"
Expires: Mon, 20 Mar 2023 22:22:35 GMT
Last-Modified: Sat, 18 Mar 2023 21:19:09 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AL4pHT47cMStCaku0IWH4ApYEc0_8n5NTqAyKnEAmyNed0gff2mhWg==
Age: 3806
f.vimeocdn.com/p/4.21.16/js/player.module.js
151.101.246.109200 OK 122 kB URL HTTP/2 f.vimeocdn.com/p/4.21.16/js/player.module.js
IP 151.101.246.109:0
File type Unicode text, UTF-8 text, with very long lines (65444)
Size 122 kB (121635 bytes)
Hash 5cfe085575112896dd9b51ff5f9fd846
353fefa90b6b61acec92b231a4dd6c71c8b44f2a
e6eaa9064d4ff7c3adb68b78a80f55beffc0cfe92d733182e7c9631e713580ea
GET /p/4.21.16/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:08 GMT
age: 221378
x-served-by: cache-iad-kjyo7100103-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 57, 122601
x-timer: S1679213949.697750,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 121635
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.21.16/js/vendor.module.js
151.101.246.109200 OK 93 kB URL HTTP/2 f.vimeocdn.com/p/4.21.16/js/vendor.module.js
IP 151.101.246.109:0
File type ASCII text, with very long lines (65456)
Hash af652c860cd115b600894690b53856c0
ec15942cb32fd3f5143597a60c98de630c9a1374
a6cff997ac402a8a589ee918ee5afa6aaf0e51c7b62fab9b3ac0e3e065725a35
GET /p/4.21.16/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:08 GMT
age: 221379
x-served-by: cache-iad-kiad7000156-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 61, 129146
x-timer: S1679213949.875099,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 92652
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 18 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
Hash a91dc5f8797ebb92d8a6eba0947290a1
76fc8632019609ecdc7eb36d495f8c31c5a73ae7
01058c1c8516927a1db2bfccd818f5fd99dde378cbb6567b9c8edb747bd3c1ad
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13327
server: CloudFront
date: Sun, 19 Mar 2023 08:19:08 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Mon, 20 Mar 2023 06:33:04 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k3H7rWNGw4zt9LhYK4iq4nrjnQaAM7i8xGGh50ZGCXweP2qeuqbF3Q==
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C0PUF6J54DV2QEK5F0FG&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C0PUF6J54DV2QEK5F0FG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2373)
Hash ea3dac7d3eac7be0730d979ab642ebbb
5b6a52d418c986af1b6c7e6abe8e4a21a0df2a23
00a35848db7a65a41729a013a7619e7f4e29a3db5bbc096c9ae629340f819e7f
GET /i18n/pixel/events.js?sdkid=C0PUF6J54DV2QEK5F0FG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230319081908A3B767B86EA9D396F6CA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf609f4b4e4a15cb784589c3c3b4546dc8257602e12087df12920105317c9b4f2469d50acf47b933f293bfdd60d39c49e2e87ec6b2909a3aac3ee535b14af478bdc87fecb5a8a2aeb5dc1700780756eb7e516be1d3c535dba1d7f8c1d7f8c7f71838
content-encoding: gzip
content-length: 1160
x-origin-response-time: 5,23.48.249.191
x-akamai-request-id: 3993937a.30be4b86
expires: Sun, 19 Mar 2023 08:19:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:19:08 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
vary: Accept-Encoding
set-cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-48-249-191.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=5, inner; dur=3
x-parent-response-time: 108,23.36.79.13
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash 1f9309140ece4bd8c80993a992fa3a7c
df65dba2abc43961b102387e464227f536302b87
a6ead01939dcf57a24294e8dbad3286268f9fe718957980b20656dcec098721f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3568
Cache-Control: max-age=127420
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Etag: "64160649-2d7"
Expires: Mon, 20 Mar 2023 19:42:49 GMT
Last-Modified: Sat, 18 Mar 2023 18:43:21 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 727
shop.pe/widget/widget_async.js
35.227.244.1301 Moved Permanently 178 B URL HTTP/2 shop.pe/widget/widget_async.js
IP 35.227.244.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: text/html
content-length: 178
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash 1f9309140ece4bd8c80993a992fa3a7c
df65dba2abc43961b102387e464227f536302b87
a6ead01939dcf57a24294e8dbad3286268f9fe718957980b20656dcec098721f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4935
Cache-Control: max-age=128787
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Etag: "64160649-2d7"
Expires: Mon, 20 Mar 2023 20:05:36 GMT
Last-Modified: Sat, 18 Mar 2023 18:43:21 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 727
shop.app/pay/session?v=1&token=0a960b88-9db7-45b9-83bb-2a3771253743&shop_id=9890234434
23.227.38.33200 OK 18 B URL HTTP/2 shop.app/pay/session?v=1&token=0a960b88-9db7-45b9-83bb-2a3771253743&shop_id=9890234434
IP 23.227.38.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c07fe8d0c031632d49b937f7b64cc318
b50ff5d4241ed1d437505098707c289683f62acf
9b5179ea2a77fe69b294fbd2ed504eacbfbe048ede58967b43af2ca537144b1f
GET /pay/session?v=1&token=0a960b88-9db7-45b9-83bb-2a3771253743&shop_id=9890234434 HTTP/1.1
Host: shop.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: application/json; charset=utf-8
content-length: 18
x-sorting-hat-podid: -1
access-control-allow-origin: https://grandecosmetics.com
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-frame-options: DENY
x-robots-tag: noindex
vary: Accept, Origin, Accept-Encoding
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' 'unsafe-inline' blob: https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifysvc.com https://hcaptcha.com https://*.hcaptcha.com; img-src 'self' https:; font-src 'self' https://cdn.shopify.com https://cdn.shopifycloud.com; object-src 'none'; frame-src 'self' https://*.shopifycs.com https://pay.shopify.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com
set-cookie: _pay_session=mqKwOI%2Fd1rUmRENTEvlakRq6prnEcqEJtevleAdUPu9rUOgqoBez5xQrYVNNUtf%2FRAMr4s87aQJFbsFpnzNujp7EG3hamazDsGjsRyWtNUkORJv4BRnAGwHi6w4SSJT0f6bceB%2F7R8MQNlGUgBytyS%2FXLU8X3swfLhh9ajX%2BXb24UPpdEVwScJ0aEoUfhf1X2quKkQ%3D%3D--TCBH4rMBqz0IjfkP--qPedNwyo5mCEAN%2FhoJtYEg%3D%3D; path=/; secure; HttpOnly
x-request-id: 571c2e1c-631f-4ccb-8ba1-b07ab6b9c696
x-runtime: 0.006412
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AhdjgXXF2uABUFuHJXIGJQG%2FPaN3cnSwPTVtmph3X6x%2FW0fMyxil4Am8Ze3PP5UQprOsGbn4fjYdphQEUnFTXjQPWC66qNWRR7VelfFKIUJOTGx35r96L4nz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=164.999962
server: cloudflare
cf-ray: 7aa449ededf7b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMw.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMw.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash b0c033e38e683d5bb8cf50f20c17e343
d4c6295615300005d7d1e54a0b5bf59b1f7cb2aa
e9158d539109318ab244d8864611d2cfbf201db3259c626226a0a6d8f41bf77d
GET /i18n/pixel/static/main.MTE3ZGZjMmFkMw.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302211453347ED32E9CB4A234CC4041
x-tt-trace-host: 015ddd7329836f23ed04aa0dd6eae000e61dfb35b73ddd0ea6d3f361692c7f8399f836da754548664a9d56a317cca937195dc95c83de1e9f9f526d64cc51df8ad8f355f76861be7964059d4919789a838aa215ca9873633ef23e07543ac879f050
content-encoding: gzip
content-length: 69118
date: Sun, 19 Mar 2023 08:19:09 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=12
x-akamai-request-id: 30be4ec3
X-Firefox-Spdy: h2
asset.fwcdn3.com/js/embed-feed.js
34.111.196.223200 OK 1.8 kB URL HTTP/2 asset.fwcdn3.com/js/embed-feed.js
IP 34.111.196.223:0
Hash 223f0008baf5cb478472dc14ad438aa2
c774288f857afcf365b29f93ad458f080d04f4d0
091458f3083a04467c63b28eece830bbeffbc03392334582d7bf2c30b0c88453
GET /js/embed-feed.js HTTP/1.1
Host: asset.fwcdn3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: isFsfl/7PnVAjl/FnZvUeuIQptQgKneKtNuVga2JXwHl+MJGp/qI1jil7my7HhWk+jq5S93gG/w=
x-amz-request-id: WKGEE2MBS483ZEY2
x-amz-server-side-encryption: AES256
x-amz-meta-env: prod
x-amz-version-id: null
accept-ranges: none
server: AmazonS3
via: 1.1 google
content-encoding: br
content-length: 124823
x-amz-storage-class: INTELLIGENT_TIERING
date: Sat, 18 Mar 2023 21:03:37 GMT
age: 40530
last-modified: Thu, 16 Mar 2023 17:20:40 GMT
etag: W/"96787c42a6aee6480a9c8147a680a97a"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=3600
x-cache-hit: hit
access-control-allow-origin: *
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
104.22.1.204200 OK 177 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP 104.22.1.204:0
File type Unicode text, UTF-8 text, with very long lines (65512), with no line terminators
Size 177 kB (176626 bytes)
Hash cb8e2a4b30dd2f64572348e101bd7925
0ad2c356aeb6f463b80925c94fc63ac6e03cdcc8
b227e6cd289201e5f0f8987a16dae234e5a57ae1d84bca5fe9a66fbe93ef9716
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:08 GMT
content-type: text/javascript
x-guploader-uploadid: ADPycdulTSmHhTfuInty-qe_n5yFYLo5K_UG5WkzgH_AnjzVGy1k3CwU8SvyeY73JujHOKf8rM2wuhLeOixh7qk-w7hkFQ
cache-control: no-cache
expires: Mon, 18 Mar 2024 08:17:13 GMT
last-modified: Thu, 16 Mar 2023 16:22:51 GMT
etag: W/"991e4f6e85ee57b09ce4515b1b24a831"
x-goog-generation: 1678983771807394
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 482650
x-goog-meta-goog-reserved-file-mtime: 1678983686
x-goog-hash: crc32c=piKUIQ==, md5=mR5PboXuV7Cc5FFbGySoMQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: HIT
age: 115
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449ecef02069b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 580 B IP 142.250.74.3:0
File type gzip compressed data, max speed, from Unix\012- data
Hash 522f6d8dbe385be671af7a2208e6c8c8
4439d9e590c200086dd3524f8da19f184fdc44dc
b733b4ae17a5b6f988a1e6dfbbafa6f8dd641401e98ec554a229352c4d075951
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.afterpay.com/afterpay-1.x.js
104.18.80.2200 OK 65 kB URL HTTP/2 js.afterpay.com/afterpay-1.x.js
IP 104.18.80.2:0
File type ASCII text, with very long lines (65463)
Hash f0f549ee04bf0f9022256f72ba5fbd02
f095ad71618d06b4517bb6d26d981c0eadb7b011
c998a6f12c363a4ec1541cba9311287d8007e09802c449fabcb0c74c6c6665d4
GET /afterpay-1.x.js HTTP/1.1
Host: js.afterpay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: __cf_bm=fhPhn2mko1rURmR__ngFK6JyHcfjyDsi7dh2JM6u0Ro-1679213947-0-AZApTml3Wc6rb49v98Z2dIvRtSKiyId651Nl1H3WdTxw+xiRB+gb/N0m5qxSj/WlXEFkFF6zttmpAZYP8GSmBYI23dzlU/tfgN7ywi73/lnB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: text/javascript
x-amz-id-2: 3uInbKAys/k0OQ+K8MhSqpT8nhGQZy3EigaiuomfAlWSKfnLPnyDmI/eLosE0F2qOvMeVOtag+E=
x-amz-request-id: KNB65T18HPZCP01S
last-modified: Tue, 28 Feb 2023 01:13:39 GMT
etag: W/"4a78be36cfb08c0eb9703bf20032d5d7"
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 343
expires: Sun, 19 Mar 2023 09:19:09 GMT
cache-control: public, max-age=3600
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7aa449edaffdb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
google.com/pagead/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1
142.250.74.46200 OK 108 B URL HTTP/2 google.com/pagead/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1
IP 142.250.74.46:0
File type gzip compressed data, max speed, from Unix\012- data
Hash ac74ad19f9d5d41f64245a385a06d400
d826c9f4a75f379d525232bf6f341304e1f26c9e
10a7d30255ff0981164da206fa8a8ea68544672c87c30a11a0cddd4d4f57a442
POST /pagead/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1 HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 19 Mar 2023 08:19:09 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
google.com/ccm/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1
142.250.74.46204 No Content 0 B URL HTTP/2 google.com/ccm/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/form-data/966742208?gtm=45be33f0&hn=www.googleadservices.com&auid=2122493360.1679213952&em=tv.1 HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://grandecosmetics.com
date: Sun, 19 Mar 2023 08:19:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tools.luckyorange.com/core/lo.js?site-id=522b64ef
54.230.111.107200 OK 4.3 kB URL HTTP/2 tools.luckyorange.com/core/lo.js?site-id=522b64ef
IP 54.230.111.107:0
File type ASCII text, with very long lines (11708), with no line terminators
Hash 92348ac7e2644c515ebd0fd597e3823e
d553824437acb29ad7ec95b2cb911ec5a6948c5d
6f12b7dacd562d1f484f75002affb92c49fe603a09e15626448ef056ef40d405
GET /core/lo.js?site-id=522b64ef HTTP/1.1
Host: tools.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4324
last-modified: Tue, 07 Mar 2023 18:48:11 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Mar 2023 07:53:40 GMT
cache-control: max-age=3600
etag: "92348ac7e2644c515ebd0fd597e3823e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: olm3KRQP5aRLR-kfF-oDNeyFJ6z9dyzOn04upqGqRpiVg9AbOP9pwQ==
age: 1530
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
23.38.200.197200 OK 484 B IP 23.38.200.197:0
File type ASCII text, with very long lines (1095), with no line terminators
Hash 6e628a3f3eb4614d91617bfc9d4267a9
53131b67d1c933a30908db15fd31dfc14667dff1
b73babbf31eb0dc83fc1ea9b69901a130d14973843fa343825d23756789b189c
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "6e628a3f3eb4614d91617bfc9d4267a9"
x-amz-server-side-encryption: AES256
cache-control: max-age=7200
content-encoding: br
accept-ranges: bytes
content-type: application/javascript
content-length: 484
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 657e225fbd809f16e51b4997847e5710
28b88c58a006257deb72f43ea236d0a513081847
f37f7d971e2f36b0d260965c8ab09863cffc87cfc3d561c40c3d72c9c207eae5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 14632d58f00907c27bb986ee95790c8f
b16eeaee45cf727e5e17588887c4030645e05c49
682c43f278df56045a30928216563e4686d1dbc7523f5312b5c2bbf26394f698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Etag: "64167f0e-1d7"
Last-Modified: Sun, 19 Mar 2023 06:38:03 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7c8dfa805163cbe39595d31e72da716e
34a2c4ac208f5f9d77302b67f556203d539388d7
874fcb1c9736686213758fa8009b9569d1d068ccd760461476c37d7e01fcebaa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 1263815ed17b39fe126dae8ec858a460
3adcc6013e6fbb39373c927d95ce8e6242a2595e
21b0827f23d68296eb3e0bfd689496a60dc6e59962a0c1a4281823a17ce1681b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2746
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Last-Modified: Sun, 19 Mar 2023 07:33:23 GMT
Server: ECAcc (ska/F73A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 19 Mar 2023 07:53:25 GMT
expires: Sun, 19 Mar 2023 09:53:25 GMT
cache-control: public, max-age=7200
age: 1544
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.246.109200 OK 985 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.246.109:0
File type ASCII text, with very long lines (1839)
Hash 0541e0ff8702adadfd34ee8c298afbdf
c10da432fdb8736622c8c1fb7708b2599cae882c
967903be4f14e85fe685577417cf83d53b5363e5f02baa3b2242c19a7030b652
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:09 GMT
age: 92515
x-served-by: cache-iad-kiad7000106-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 41696
x-timer: S1679213950.832628,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 985
X-Firefox-Spdy: h2
cdn.attn.tv/grandecosmetics/dtag.js
54.230.111.28200 OK 31 kB URL HTTP/2 cdn.attn.tv/grandecosmetics/dtag.js
IP 54.230.111.28:0
File type ASCII text, with very long lines (58529)
Hash 25187fd62dd91ef366f6e03b1fad0242
79d637e3972c5479ffab7ec7e0809c33b33d0609
4852c81a1d27f4d33b9a3e8958b59e7dcb27c9c2ce5c34377b6f1060953bd10b
GET /grandecosmetics/dtag.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 13 Oct 2022 18:34:02 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: yVoux9oLAuJXd.Di2g2mZBwRDOrHWbaP
server: AmazonS3
content-encoding: gzip
date: Sun, 19 Mar 2023 08:19:09 GMT
cache-control: public, max-age=120
etag: W/"63c4cecbb2ce1cd4f81112bb139c451b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0BTDW7igjuYWRPdlLBK9chEIfkGlFKYcBonG7snZLN_zs3u1xPlveQ==
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
142.250.74.35200 OK 180 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
IP 142.250.74.35:0
Size 180 kB (180426 bytes)
Hash 28dee1dde1c0ceca78e0d55ead1e2ed4
795f2b224a9016b4a70b64e1cc2e8806812708d0
32fa8a07850f30276dd8370f10d85c1147feb50a8f80ad65fce21bf439081676
GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164678
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 11:44:52 GMT
expires: Thu, 14 Mar 2024 11:44:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Mar 2023 02:02:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 333257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/966742208/?random=1679213952588&cv=11&fst=1679213952588&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgrandecosmetics.com%2F&tiba=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&auid=2122493360.1679213952&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4
142.250.74.2200 OK 1.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/966742208/?random=1679213952588&cv=11&fst=1679213952588&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgrandecosmetics.com%2F&tiba=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&auid=2122493360.1679213952&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4
IP 142.250.74.2:0
File type ASCII text, with very long lines (2705), with no line terminators
Hash d175af78769ee6a42d929e953fc80869
640fffaaaabe853d609e6e8f8b91a59ca76bed20
4f049106174a8245c5d315e21a60340aa3a8b0a819af04cf48d2df4665784c6e
GET /pagead/viewthroughconversion/966742208/?random=1679213952588&cv=11&fst=1679213952588&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgrandecosmetics.com%2F&tiba=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&auid=2122493360.1679213952&data=event%3Dpage_view%3Becomm_pagetype%3Dhome&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 19 Mar 2023 08:19:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1254
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 19-Mar-2023 08:34:09 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
54.230.111.56200 OK 905 B URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (559)
Hash 5c9dc407cff7271ac6eb12f76ca5b245
6ec5200bb8c7d4fc6420bf9f1a5ef1d9ff42f616
2bba6380b4101ae88f37e9eb04e0fd40bfda09572741cda29421d0819f7c95de
GET /widget/widget_async.js HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 905
date: Sun, 19 Mar 2023 07:51:09 GMT
last-modified: Thu, 23 Feb 2023 17:42:08 GMT
etag: "5c9dc407cff7271ac6eb12f76ca5b245"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600, public
content-encoding: gzip
x-amz-meta-mtime: 1677174126.51
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x493o5yp4KjBoriLT8zqLUtk_PCm5iVCIk3Vkui68lyVrAnvZj_pdg==
age: 1680
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.208200 OK 9.6 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.208:0
Hash d3abefb9f127e8fd8eea1b5e6213092a
2eba47b8c702b70cd6d757abcc9ace1af8baec92
20a57861419cb54b19154a2505638a653697c0ccb555f435c2567082f59a2cac
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "qnbLQo87mD/KmvsyZTIxlQ=="
expires: Sun, 26 Mar 2023 08:19:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 14632d58f00907c27bb986ee95790c8f
b16eeaee45cf727e5e17588887c4030645e05c49
682c43f278df56045a30928216563e4686d1dbc7523f5312b5c2bbf26394f698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6064
Cache-Control: max-age=160833
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Etag: "64167f0e-1d7"
Expires: Tue, 21 Mar 2023 04:59:42 GMT
Last-Modified: Sun, 19 Mar 2023 03:18:38 GMT
Server: ECAcc (ska/F77E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7c8dfa805163cbe39595d31e72da716e
34a2c4ac208f5f9d77302b67f556203d539388d7
874fcb1c9736686213758fa8009b9569d1d068ccd760461476c37d7e01fcebaa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 73af20327f0f4938b7c375ac8a34466a
e108c5c8cd69ca4d7c3441bc2806e2a44eea6056
d23a6378cdd4c7f9ba0924e4d11fdb96267bdfacd7faa4c060d0a6cd2eefcff5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1&z=500544769
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1&z=500544769
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1&z=500544769 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 19 Mar 2023 08:19:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1600941610-2822e80f9ccb2de80a4c1972030a8314731900fbbfc8768d3444dcdb64e419d5-d?mw=640&mh=360
151.101.246.109200 OK 19 kB URL HTTP/2 i.vimeocdn.com/video/1600941610-2822e80f9ccb2de80a4c1972030a8314731900fbbfc8768d3444dcdb64e419d5-d?mw=640&mh=360
IP 151.101.246.109:0
File type ISO Media, AVIF Image\012- data
Hash 9c6daec53b9567c3643a4c887c7f16b7
45b4f430fdd0fe24c043b8054a4a175ddfbddcef
547701e5ba6523b66007ebd8751b84bd7b55db2b5bc0353d6c36f5a89dedf8a6
GET /video/1600941610-2822e80f9ccb2de80a4c1972030a8314731900fbbfc8768d3444dcdb64e419d5-d?mw=640&mh=360 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 9c6daec53b9567c3643a4c887c7f16b7
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-rd2m
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:09 GMT
age: 422673
x-served-by: cache-dfw-kdfw8210101-DFW, cache-hel1410034-HEL
x-cache: miss, HIT, MISS
x-cache-hits: 9, 0
x-timer: S1679213950.843743,VS0,VE126
vary: Accept
content-length: 19256
X-Firefox-Spdy: h2
amaicdn.com/preorder2/common.css
172.66.40.178200 OK 3.1 kB URL HTTP/2 amaicdn.com/preorder2/common.css
IP 172.66.40.178:0
File type ASCII text, with very long lines (15895)
Hash 0b7eb8b60c3d773c15bbfbe86924a396
8581176f25c4b6db7e62fa5aa35aa2e9dc3d82dd
63bfd6d68cbd60be02f50c561586fe9df34d5131e84b8f51711ef0ec7770c9bf
GET /preorder2/common.css HTTP/1.1
Host: amaicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: text/css
content-length: 3108
last-modified: Wed, 15 Mar 2023 07:56:49 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
etag: "0b7eb8b60c3d773c15bbfbe86924a396"
x-cache: RefreshHit from cloudfront
via: 1.1 a5c04d58f00191264a6aa8b5ba453fc4.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: DK3ZM7xSXAvu3qqh7luRFhypoS9Crv_1qF3GdZ2AG6zp5aESbWOMnw==
cache-control: max-age=259200
cf-cache-status: HIT
age: 250
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2FzKQdd8loJ8L7TZEh4B3ZYDFIdKw8ARGbAjmDvzC8zCLaqXPtcSy0j8R0I6SnjEYqTEhoyjKUp84WcvOUmkvqxjJbpIsVJNBLM%2BvKzr%2FAuDy%2BwgtednPdemwI06"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449f38aaf1c12-OSL
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
23.227.60.200200 OK 5.1 kB URL HTTP/2 cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13977)
Hash 3e3326b2558e61593e2657adb3b4118c
376af14fc7ffe1a6f93ebc11b0ead6a53f91af00
9510156679dc7f69281e73f6cbd4c4c0e2b87936849ddb701c42abe7e39b443b
GET /shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1800, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e3d0466e-7fe6-42c6-b353-aa79a990e725
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sun, 19 Mar 2023 08:01:57 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X3YUZNftrttOo4UnaDGyTBEeBu5C3D%2FaVxEcHnuksl1ZW9G37dHORvspZk5xxl90HzGYAev6O3mLHy8%2FznkUTnLsGq08P6OCmehIS4JtBWDVnsh7DOoC1XartzX7ekVKJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.321, imageryFetch;dur=23.194, cfRequestDuration;dur=125.999928
server: cloudflare
cf-ray: 7aa449ed9d85b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget.css?v=99cf079
54.230.111.56200 OK 13 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.css?v=99cf079
IP 54.230.111.56:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 114109ae20f61e5bb77c00a0377731a5
51cdc18e03c72cbfaaa86da3c56666ac58432102
ca46083d1ac484efda0e946c9b12f954018aacdb3b709210eb4f4c90a2c40f03
GET /widget/widget.css?v=99cf079 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
content-length: 13404
date: Thu, 09 Mar 2023 05:24:06 GMT
last-modified: Thu, 23 Feb 2023 17:42:09 GMT
etag: "114109ae20f61e5bb77c00a0377731a5"
x-amz-server-side-encryption: AES256
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
cache-control: max-age=2592000, public
x-amz-meta-uid: 0
content-encoding: gzip
x-amz-meta-mtime: 1677174125.06
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3sguqPKLR8XqwRzhSVV3gWQjBQobBtwgU0urKJoA3BNt7o3AImIcRw==
age: 874505
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 7cb51329398be6ce70bdb39dbbeb79b2
3900b3def2b6611ae886c9ee59409c404d2d01b6
0ec7b3c8650decaaae6f8b687a3c0ae168b9c133ed7fa420d0ffa0a66aa6e966
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3026
Cache-Control: max-age=166836
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6416a260-1d7"
Expires: Tue, 21 Mar 2023 06:39:46 GMT
Last-Modified: Sun, 19 Mar 2023 05:49:20 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
staticw2.yotpo.com/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.js
95.101.97.70200 OK 792 B URL HTTP/2 staticw2.yotpo.com/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.js
IP 95.101.97.70:0
Hash e3cd771d943ebfd77bde1cacf5f0ae06
e743a05759e457d3f7bffb54011907d551b7d104
1a64ed8e64d322aa94bfa76ee40f4527f135e207095d1f4a579206d3852adf69
GET /cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.js HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-ratelimit-remaining-minute: 4999
x-ratelimit-limit-minute: 5000
ratelimit-remaining: 4999
ratelimit-limit: 5000
ratelimit-reset: 51
correlation-id: 79c9a51e-9b4a-42c7-bcdf-7646db207534
x-kong-upstream-latency: 56
x-kong-proxy-latency: 8
cache-control: public, max-age=10763
date: Sun, 19 Mar 2023 08:19:09 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=10, origin; dur=161, ak_p; desc="466448_1611674802_136081364_17151_3376_17_0";dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5246371da20c1b2f99a2664195e602d6
be06e0566508fd4dbfab4995a1ef487423448178
35ae83b7835a478895d5c1a3cf634c6b98bcec6cfa7f63e3993534772622c778
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:19:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 22:04:07 GMT
Expires: Thu, 23 Mar 2023 22:04:06 GMT
Etag: "be06e0566508fd4dbfab4995a1ef487423448178"
Cache-Control: max-age=394495,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aa449f4aa3efab4-OSL
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 6a701c1ad85413bf830e7a9c6dc0db18
c9bfd181d53a47a796104583316d327af1fdf29d
4756c439925b0023910443611619b4a5a36b5b00644beaad41e83b19b3e98c13
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "64162698-1d7"
Last-Modified: Sun, 19 Mar 2023 06:52:57 GMT
Server: ECAcc (nya/1C5E)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7K3779OQHtgw2GZZqCQUryJMOuJopldMvyto0gwpc3yzILR8jKEw9g==
Age: 5173
addstrap-ui.addshoppers.com/1.3.7/cs_addstrap.css
35.190.71.216200 OK 7.0 kB URL HTTP/2 addstrap-ui.addshoppers.com/1.3.7/cs_addstrap.css
IP 35.190.71.216:0
File type ASCII text, with very long lines (42657)
Hash a73b0577de39e37c8d965f5a2ed26dd4
d7bb985ed0e851a603f61f7838ad5f503a55ff6b
c1d1bf120474a3eea8b2b8886297936ab7eebca213a82d7951f7a4ab6c66bd0d
GET /1.3.7/cs_addstrap.css HTTP/1.1
Host: addstrap-ui.addshoppers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvkYFU2XmoWEd6xEEWKlMhDYpgt4zavJtB1O1TmwNGb4GKMQWc-bZ07IxLZaql2-FKSPKiASrrUEWyamME6VxyIVQ
x-goog-generation: 1652278205569317
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7018
content-encoding: gzip
x-goog-hash: crc32c=u+kkCg==, md5=pzsFd94543yNll9aLtJt1A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 7018
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Tue, 21 Feb 2023 18:03:09 GMT
expires: Wed, 21 Feb 2024 18:03:09 GMT
cache-control: no-transform
age: 2211361
last-modified: Wed, 11 May 2022 14:10:05 GMT
etag: "a73b0577de39e37c8d965f5a2ed26dd4"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 7cb51329398be6ce70bdb39dbbeb79b2
3900b3def2b6611ae886c9ee59409c404d2d01b6
0ec7b3c8650decaaae6f8b687a3c0ae168b9c133ed7fa420d0ffa0a66aa6e966
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4682
Cache-Control: max-age=168492
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6416a260-1d7"
Expires: Tue, 21 Mar 2023 07:07:22 GMT
Last-Modified: Sun, 19 Mar 2023 05:49:20 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
events.attentivemobile.com/e?v=4.17.4_33ae067b5c&pd=https%3A%2F%2Fgrandecosmetics.com%2F&u=2f4a341c52ca4b92ad69fc0d5a63e8db&c=grandecosmetics&ceid=XV9<=1679213953659&tag=modern&cs=3941613839&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1679213953667
172.64.144.208200 OK 0 B URL HTTP/2 events.attentivemobile.com/e?v=4.17.4_33ae067b5c&pd=https%3A%2F%2Fgrandecosmetics.com%2F&u=2f4a341c52ca4b92ad69fc0d5a63e8db&c=grandecosmetics&ceid=XV9<=1679213953659&tag=modern&cs=3941613839&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1679213953667
IP 172.64.144.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /e?v=4.17.4_33ae067b5c&pd=https%3A%2F%2Fgrandecosmetics.com%2F&u=2f4a341c52ca4b92ad69fc0d5a63e8db&c=grandecosmetics&ceid=XV9<=1679213953659&tag=modern&cs=3941613839&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1679213953667 HTTP/1.1
Host: events.attentivemobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: image/png
content-length: 0
set-cookie: tpc_id=f231ef12-7d51-4d18-8869-16890f04ec8c; Path=/; Domain=attentivemobile.com; Max-Age=63113904; Expires=Tue, 18 Mar 2025 19:57:34 GMT; Secure; SameSite=None
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-expose-headers: Set-Cookie, X-Count, X-Token
x-envoy-upstream-service-time: 10
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7aa449f44c26b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash 03d7edadfd9db18d44bbdc1b232322dc
a74047983b8575f56071acc01f5c9cda3bc2a655
1d71ec99f9f6e51db961ce2a3c21f020509318fdfa32183b561883ea872e2ef5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6365
Cache-Control: max-age=96723
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "64158374-2d7"
Expires: Mon, 20 Mar 2023 11:11:13 GMT
Last-Modified: Sat, 18 Mar 2023 09:25:08 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 727
region1.analytics.google.com/g/collect?v=2&tid=G-2XEDNFVVE4>m=45je33f0&_p=658828999&_gaz=1&cid=987267493.1679213953&ul=en-us&sr=1280x1024&_s=1&sid=1679213953&sct=1&seg=0&dl=https%3A%2F%2Fgrandecosmetics.com%2F&dt=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-2XEDNFVVE4>m=45je33f0&_p=658828999&_gaz=1&cid=987267493.1679213953&ul=en-us&sr=1280x1024&_s=1&sid=1679213953&sct=1&seg=0&dl=https%3A%2F%2Fgrandecosmetics.com%2F&dt=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2XEDNFVVE4>m=45je33f0&_p=658828999&_gaz=1&cid=987267493.1679213953&ul=en-us&sr=1280x1024&_s=1&sid=1679213953&sct=1&seg=0&dl=https%3A%2F%2Fgrandecosmetics.com%2F&dt=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://grandecosmetics.com
date: Sun, 19 Mar 2023 08:19:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.curalate.com/v1/error-logging/log?errortype=fanreelexception&error=TypeError:%20can%27t%20access%20property%20%22innerHTML%22,%20document.getElementById(...)%20is%20null&width=1280&dimensions=1024%20x%201280
34.195.179.207200 OK 40 B URL HTTP/2 api.curalate.com/v1/error-logging/log?errortype=fanreelexception&error=TypeError:%20can%27t%20access%20property%20%22innerHTML%22,%20document.getElementById(...)%20is%20null&width=1280&dimensions=1024%20x%201280
IP 34.195.179.207:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ce7ce086ed9e26b3e96036b8628eedd
906dbabdef61bc9737300a925709cfe47baa7446
8c700f9438f87c8d50583c7d7e193a806018cc0d000bd75d8c9a1cce69fc698a
POST /v1/error-logging/log?errortype=fanreelexception&error=TypeError:%20can%27t%20access%20property%20%22innerHTML%22,%20document.getElementById(...)%20is%20null&width=1280&dimensions=1024%20x%201280 HTTP/1.1
Host: api.curalate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: application/json; charset=utf-8
content-length: 40
access-control-allow-methods: POST
access-control-max-age: 1000
access-control-allow-origin: *
server: Finatra
content-encoding: gzip
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1
108.177.14.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1
IP 108.177.14.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2XEDNFVVE4&cid=987267493.1679213953>m=45je33f0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://grandecosmetics.com
date: Sun, 19 Mar 2023 08:19:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
18.210.229.244/is
18.210.229.244200 OK 32 B IP 18.210.229.244:0
File type ASCII text, with no line terminators
Hash e01e866f5166852d80a0bd320ab65c6a
01b822fd178ea291a08c3739053c062d39f79d9e
1e5e318094a52d92326e395bc53f6f7d3932e17440620dbf125e69e5e87811f7
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 18.210.229.244
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
amaicdn.com/preorder2/store/a4f8d2e5e645517b5b117c053e7de704.js?1676449196
172.66.40.178200 OK 2.2 kB URL HTTP/2 amaicdn.com/preorder2/store/a4f8d2e5e645517b5b117c053e7de704.js?1676449196
IP 172.66.40.178:0
File type ASCII text, with very long lines (8705)
Hash c5fa7c8f1e54bc6fce8be66b5c7d2629
3ebb23e8bacad23faa6b324f7bb590aee82864f8
acbcbb3b1151b88004b0b0f0caa07f05202a7e2c82d028ab21ba77ad62476c00
GET /preorder2/store/a4f8d2e5e645517b5b117c053e7de704.js?1676449196 HTTP/1.1
Host: amaicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: application/x-javascript
content-length: 2156
last-modified: Wed, 15 Feb 2023 08:19:56 GMT
etag: "c5fa7c8f1e54bc6fce8be66b5c7d2629"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DHW32dKzW3QBMRqIQocnbh4ZaLM0dZcyfpQroH_UOc3OLZ3cWtcZ1g==
cache-control: max-age=259200
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5yVDuTkH4mxhoCJy%2BCjwTheMWGJZSxV5L800VPocw%2Bt2zxgrAOscEq1w%2B6kv01hbEXeUxiuebT5NO9ab12xin6Q5QGiOGu78Gb0ZU0EA56i27Ogtrvq5rsnYPXH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449f37aa51c12-OSL
X-Firefox-Spdy: h2
amaicdn.com/preorder2/store/a4f8d2e5e645517b5b117c053e7de704.css?1676449196
172.66.40.178200 OK 499 B URL HTTP/2 amaicdn.com/preorder2/store/a4f8d2e5e645517b5b117c053e7de704.css?1676449196
IP 172.66.40.178:0
Hash 6ca85f79d8eed615b03583bfe74b3ed3
0e4b58e0ca60b1979b401efe604ce32d39386e32
caf5a7f0ccaef26e53188b3ddb2cd35f9e89fa2f0b14fd48fd207549d9c31f29
GET /preorder2/store/a4f8d2e5e645517b5b117c053e7de704.css?1676449196 HTTP/1.1
Host: amaicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: text/css
content-length: 499
last-modified: Wed, 15 Feb 2023 08:19:56 GMT
etag: "6ca85f79d8eed615b03583bfe74b3ed3"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 797e08d987207122bff536abc6502d6c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: svjS50UUQ5GOTBTGrCW-NiurXwWP70cHYEzm85ggGfZGbfU6CmQcWg==
cache-control: max-age=259200
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k0WbNQURwNA4L8pfAaNlSi0QfIu7Pa9DG%2FV3fg673gNaeXlAylXMMeZV0zfKcHHN0Tki8AIIebZTU%2FZK71SlIiFssBtcFn1P15sMh3ODzGjvnHA4p0VeioQaLqhL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449f38aac1c12-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/dzJAsmEe9WY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/dzJAsmEe9WY
IP 142.250.74.3:0
Hash 4253ff888cab5c1ec3eb165115fe2e66
76adcdd838a9a74ee116e81f6bbb57b12dfb68f9
784cd8b4ca142bcd0e38052d5f7df58004b90071a4e1bf4b20f9cdde949f977d
POST /s/gts1d4/dzJAsmEe9WY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
staticw2.yotpo.com/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.css?widget_version=2023-03-09_07-47-32
95.101.97.70200 OK 39 kB URL HTTP/2 staticw2.yotpo.com/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.css?widget_version=2023-03-09_07-47-32
IP 95.101.97.70:0
File type ASCII text, with very long lines (65436)
Hash fb887050b37ac1b7bd0a8145a77ab75e
f2324a7d7828ce909f014b4e2d91582c4cc65149
b204aa6b7909f608e36d66f39a0ff1356f5bdcd7d31e2cde64571f76cc619558
GET /cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.css?widget_version=2023-03-09_07-47-32 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
etag: W/"fb887050b37ac1b7bd0a8145a77ab75e"
x-request-id: 2408942ac86868d86fe11228bab5a555
x-runtime: 0.100973
access-control-allow-headers: *
content-length: 39253
cache-control: public, max-age=10743
date: Sun, 19 Mar 2023 08:19:10 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=200, origin; dur=205, ak_p; desc="466448_1611674802_136081966_40478_3099_8_0";dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:48:03 GMT
expires: Fri, 15 Mar 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 210667
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:56:42 GMT
expires: Fri, 15 Mar 2024 17:56:42 GMT
cache-control: public, max-age=31536000
age: 224548
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=8156c782d15825d2571f225aa1e6684acb2a5ec41679213947
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=8156c782d15825d2571f225aa1e6684acb2a5ec41679213947
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=8156c782d15825d2571f225aa1e6684acb2a5ec41679213947 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1284
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 19 Mar 2023 08:19:10 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
staticw2.yotpo.com/assets/open_sans.css
95.101.97.70200 OK 3.8 kB URL HTTP/2 staticw2.yotpo.com/assets/open_sans.css
IP 95.101.97.70:0
Hash 630066142348bba975db5438042790ff
bf787a666aa74781cb0dd4a7afcbe4654794054f
600e30d1e96043920f289c3467b89913c3b5f07141955dc77757af5a861ff71f
GET /assets/open_sans.css HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staticw2.yotpo.com/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/widget.css?widget_version=2023-03-09_07-47-32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 216
last-modified: Mon, 13 Mar 2023 13:40:55 GMT
etag: "640f27e7-d8"
content-encoding: gzip
cache-control: max-age=604800
expires: Sun, 26 Mar 2023 08:19:10 GMT
date: Sun, 19 Mar 2023 08:19:10 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466448_1611674802_136082547_14_3028_13_0";dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9520b927d849797b47dca4e7b21da7d0
36dc0167b4f844737b584302d9da175a22e3ae6c
c77a593c3ea42f344d9c41e3605ea7b486e2faaac6f3f07b5f4ebe4786b36d74
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=122104
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6415e5f1-1d7"
Expires: Mon, 20 Mar 2023 18:14:14 GMT
Last-Modified: Sat, 18 Mar 2023 16:25:21 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KWfzGMGtk1ZkHFarx2H_Ey31hP6iE-y0KvCvt5zSLorS3kEZRCgdrg==
Age: 6533
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9520b927d849797b47dca4e7b21da7d0
36dc0167b4f844737b584302d9da175a22e3ae6c
c77a593c3ea42f344d9c41e3605ea7b486e2faaac6f3f07b5f4ebe4786b36d74
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121480
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6415e5f1-1d7"
Expires: Mon, 20 Mar 2023 18:03:50 GMT
Last-Modified: Sat, 18 Mar 2023 16:25:21 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vPZn7FsDdSg8d2TFxB_axRXhpDnMaxErPepHx9gKwRn2LlXv4Iu6Xg==
Age: 5909
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9520b927d849797b47dca4e7b21da7d0
36dc0167b4f844737b584302d9da175a22e3ae6c
c77a593c3ea42f344d9c41e3605ea7b486e2faaac6f3f07b5f4ebe4786b36d74
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 19 Mar 2023 08:19:10 GMT
Last-Modified: Sun, 19 Mar 2023 08:12:23 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cFemG3g7BlPFgt-lUEIRE5DGYEa16WQUlBl84rGxtVA4w7bt1jFyJg==
Age: 407
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9520b927d849797b47dca4e7b21da7d0
36dc0167b4f844737b584302d9da175a22e3ae6c
c77a593c3ea42f344d9c41e3605ea7b486e2faaac6f3f07b5f4ebe4786b36d74
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120296
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6415e5f1-1d7"
Expires: Mon, 20 Mar 2023 17:44:06 GMT
Last-Modified: Sat, 18 Mar 2023 16:25:21 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hrcvxd7ATR5YnQkfy-m-mP6M08zXqUsNqWDIWQ3YEN3c5BfVIcMFIg==
Age: 4725
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9520b927d849797b47dca4e7b21da7d0
36dc0167b4f844737b584302d9da175a22e3ae6c
c77a593c3ea42f344d9c41e3605ea7b486e2faaac6f3f07b5f4ebe4786b36d74
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120296
Date: Sun, 19 Mar 2023 08:19:10 GMT
Etag: "6415e5f1-1d7"
Expires: Mon, 20 Mar 2023 17:44:06 GMT
Last-Modified: Sat, 18 Mar 2023 16:25:21 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u3HwdcFYJMyhBEfLIoWp2VO_6bksxLeIk23SqECvlhPC6BpkIVe4KQ==
Age: 4725
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 825
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: _ttp=2NE0UKlDOe3jYDHRfxgMvAoN3tl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023031908191026FCE6746B29B7870C01
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b5f61840b4c728167be39bb05edd854ca0140f84eb4cd9ca0fe060e27eef5971b56f3e78efaa5e882a98f2dd3aa54283d458ef6fa54e97301e3db31d7878e1f445a0a5301c224e02ea3ebe393ff28e4216
x-origin-response-time: 16,23.218.220.137
x-akamai-request-id: ac776ab.30be5c37
expires: Sun, 19 Mar 2023 08:19:10 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:19:10 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2-47081134) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=16, inner; dur=14
x-parent-response-time: 118,23.36.79.13
X-Firefox-Spdy: h2
staticw2.yotpo.com/web-fonts/opensans/v34/open-sans-v34-vietnamese_latin-ext_latin_hebrew_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2
95.101.97.70200 OK 56 kB URL HTTP/2 staticw2.yotpo.com/web-fonts/opensans/v34/open-sans-v34-vietnamese_latin-ext_latin_hebrew_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2
IP 95.101.97.70:0
File type Web Open Font Format (Version 2), TrueType, length 56348, version 1.0\012- data
Hash 441a81103fda7f9c3b41cffd77d8c65c
3a2d883b3fc09a347376088e206f5e0fd17aab72
52a27a6a1c1821efdf20d91ece59d5f29ba3ba28cc8480e2f73f3007216e7729
GET /web-fonts/opensans/v34/open-sans-v34-vietnamese_latin-ext_latin_hebrew_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://staticw2.yotpo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: bzcmQ7FXm5tzQBhO+F4SJuaw3h3x2NKd+hlKv55T0biz8KeXg5NUJ/UhYuFLSF1oMuNolRHH35L7+z2rYg/N1Q==
x-amz-request-id: KTTX7JAK683F09Z2
last-modified: Fri, 10 Feb 2023 00:12:43 GMT
etag: "441a81103fda7f9c3b41cffd77d8c65c"
x-amz-version-id: 10jOtCmlC8NvC0thTY.qnKnKp0whsbP2
accept-ranges: bytes
content-type: font/woff2
server: AmazonS3
content-length: 56348
cache-control: max-age=31536000
expires: Mon, 18 Mar 2024 08:19:10 GMT
date: Sun, 19 Mar 2023 08:19:10 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466448_1611674802_136082808_18_3417_12_0";dur=1
env: PRODUCTION
access-control-max-age: 31536000
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/dzJAsmEe9WY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/dzJAsmEe9WY
IP 142.250.74.3:0
Hash 4253ff888cab5c1ec3eb165115fe2e66
76adcdd838a9a74ee116e81f6bbb57b12dfb68f9
784cd8b4ca142bcd0e38052d5f7df58004b90071a4e1bf4b20f9cdde949f977d
POST /s/gts1d4/dzJAsmEe9WY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.19.188.97200 OK 8.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.19.188.97:0
File type ASCII text, with very long lines (26237)
Hash 5cfe6e7c620c540ce793517ea6ab70ce
060716263902f949959961d571ed852b88860cff
6ca1026b6121df8226a60f5608e52d71d5d32a77d9ee116014828e296a046d6e
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: application/javascript
content-length: 8618
content-encoding: gzip
content-md5: XP5ufGIMVAznk1F+pqtwzg==
last-modified: Thu, 16 Mar 2023 20:14:04 GMT
etag: 0x8DB265AFDA5E2A0
x-ms-request-id: 22e2ddd5-a01e-00f1-485c-580975000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 58106
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa449f9386ab4eb-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/c187e588-47f3-477e-bd9d-e2df634f2743/c187e588-47f3-477e-bd9d-e2df634f2743.json
104.19.188.97200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/c187e588-47f3-477e-bd9d-e2df634f2743/c187e588-47f3-477e-bd9d-e2df634f2743.json
IP 104.19.188.97:0
File type JSON data\012- , ASCII text, with very long lines (3702), with no line terminators
Hash bf81089f402cf224f9de6441d2b60663
7663b5cd5ea2287313d27dfa10bbe52c08d6455c
98f6bd225f1d0ec1cef13dae6a6885e2064272c58caf19b23bc867ac1ffb17a0
GET /consent/c187e588-47f3-477e-bd9d-e2df634f2743/c187e588-47f3-477e-bd9d-e2df634f2743.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/x-javascript
content-length: 1457
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: v4EIn0As8iT53mRB0rYGYw==
last-modified: Tue, 28 Sep 2021 14:03:38 GMT
etag: 0x8D98288C4F228E2
x-ms-request-id: ee187d2b-901e-00bd-2fb3-4ace6a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Mon, 20 Mar 2023 08:19:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa449f999e41c12-OSL
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/playlists/g4030g/feeds?page_size=10
3.33.246.75200 OK 0 B URL HTTP/2 fireworkapi1.com/embed/v2/playlists/g4030g/feeds?page_size=10
IP 3.33.246.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /embed/v2/playlists/g4030g/feeds?page_size=10 HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: PUT, PATCH, DELETE
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMQmibkit2B271JtC
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/channels/grandecosmetics
3.33.246.75200 OK 0 B URL HTTP/2 fireworkapi1.com/embed/v2/channels/grandecosmetics
IP 3.33.246.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /embed/v2/channels/grandecosmetics HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: PUT, PATCH, DELETE
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMQse7Y0CIqnEWHIB
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/playlists/oP94ag/feeds?page_size=10
3.33.246.75200 OK 0 B URL HTTP/2 fireworkapi1.com/embed/v2/playlists/oP94ag/feeds?page_size=10
IP 3.33.246.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /embed/v2/playlists/oP94ag/feeds?page_size=10 HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: PUT, PATCH, DELETE
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMQttDsfM3VLo2CaC
X-Firefox-Spdy: h2
fireworkadservices1.com/api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web
3.33.246.75200 OK 0 B URL HTTP/2 fireworkadservices1.com/api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web
IP 3.33.246.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web HTTP/1.1
Host: fireworkadservices1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: PUT, PATCH, DELETE
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMQwqcAAmdei6ZgUD
X-Firefox-Spdy: h2
fireworkadservices1.com/api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web
3.33.246.75200 OK 0 B URL HTTP/2 fireworkadservices1.com/api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web
IP 3.33.246.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web HTTP/1.1
Host: fireworkadservices1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: PUT, PATCH, DELETE
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMRHRpdZj1Xx0xf2E
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/channels/grandecosmetics
3.33.246.75200 OK 667 B URL HTTP/2 fireworkapi1.com/embed/v2/channels/grandecosmetics
IP 3.33.246.75:0
File type JSON data\012- , ASCII text, with very long lines (1282), with no line terminators
Hash ad6a6a4199c37d23c0c16c1c679a8638
0836197dee540986dc2761abde1120717a41c2aa
0a5841592f3568ac80d18c69be6a3a961b248c3b7877bcb32e7521d8cfc5d2b7
GET /embed/v2/channels/grandecosmetics HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
content-type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 667
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-encoding: gzip
content-security-policy: default-src 'none';
server: Cowboy
vary: accept-encoding
x-request-id: F03EMRRtt-gg3-4W6THB
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/playlists/g4030g/feeds?page_size=10
3.33.246.75200 OK 16 kB URL HTTP/2 fireworkapi1.com/embed/v2/playlists/g4030g/feeds?page_size=10
IP 3.33.246.75:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65397), with no line terminators
Hash 39af26567e5e107bc8cf016da0d90187
d9614529ced1313431cb5a91565af0ecc66f1692
4cb807f69ab81b5f6e0dc717b61c53807bb67e6007d3dfa9a8ae3384bc49d2aa
POST /embed/v2/playlists/g4030g/feeds?page_size=10 HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
content-type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 16003
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-encoding: gzip
content-security-policy: default-src 'none';
server: Cowboy
vary: accept-encoding
x-request-id: F03EMRMPhCjPhMFodzYC
X-Firefox-Spdy: h2
fireworkadservices1.com/api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web
3.33.246.75200 OK 2 B URL HTTP/2 fireworkadservices1.com/api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web
IP 3.33.246.75:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /api/ad_setting?playlist_id=oP94ag&ad_target_platform=desktop_web HTTP/1.1
Host: fireworkadservices1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Content-Type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMRWqTKpqUjsAsIlB
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/playlists/oP94ag/feeds?page_size=10
3.33.246.75200 OK 95 B URL HTTP/2 fireworkapi1.com/embed/v2/playlists/oP94ag/feeds?page_size=10
IP 3.33.246.75:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d6a60d6a0d25b16483af726b9bcdf7cd
0aa7b1fbb7ff6935f2160e4a0cae5b7ef92965d8
31f445653d777c07a8066c61667fd6c7a971e3fb6ea1b999cbe1eb21e50407bc
POST /embed/v2/playlists/oP94ag/feeds?page_size=10 HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
content-type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 95
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMRT3neP2r0EEQWSC
X-Firefox-Spdy: h2
fireworkadservices1.com/api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web
3.33.246.75200 OK 2 B URL HTTP/2 fireworkadservices1.com/api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web
IP 3.33.246.75:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /api/ad_setting?playlist_id=g4030g&ad_target_platform=desktop_web HTTP/1.1
Host: fireworkadservices1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Content-Type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none';
server: Cowboy
x-request-id: F03EMRspdR4qBHy6SbtD
X-Firefox-Spdy: h2
staticw2.yotpo.com/batch/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/yotpo_site_reviews
95.101.97.70200 OK 2.8 kB URL HTTP/2 staticw2.yotpo.com/batch/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/yotpo_site_reviews
IP 95.101.97.70:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (43895), with no line terminators
Hash d752a542b5b6675198645dbae01f5d57
f887631c6c968c4be62d557705e0507eb137f582
4f0cfc9aa6843ea4979de70ce5532d63bd0d6e010e0af706b1010549bad66a6e
POST /batch/cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR/yotpo_site_reviews HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 914
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
etag: W/"d752a542b5b6675198645dbae01f5d57"
x-request-id: f03910e81d5d95a704fac3dd05bb80c9
x-runtime: 0.039518
access-control-allow-headers: *
content-length: 2835
cache-control: public, max-age=10800
date: Sun, 19 Mar 2023 08:19:11 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=10, origin; dur=139, ak_p; desc="466448_1611674802_136083135_14962_1657_8_0";dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: https://grandecosmetics.com
X-Firefox-Spdy: h2
fireworkapi1.com/embed/v2/channels/grandecosmetics
3.33.246.75200 OK 663 B URL HTTP/2 fireworkapi1.com/embed/v2/channels/grandecosmetics
IP 3.33.246.75:0
File type JSON data\012- , ASCII text, with very long lines (1282), with no line terminators
Hash c4c26aca4db89a50cfacd809373a90f4
784c93b28cbc5619caa48a5aabfb6db6b04eadaf
4ab708f160473ff9489b56a1aec275d5830763227a5c06e25b60f1429b3cfe44
GET /embed/v2/channels/grandecosmetics HTTP/1.1
Host: fireworkapi1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
content-type: application/json
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json; charset=utf-8
content-length: 663
access-control-allow-credentials: true
access-control-allow-origin: https://grandecosmetics.com
cache-control: max-age=0, private, must-revalidate
content-encoding: gzip
content-security-policy: default-src 'none';
server: Cowboy
vary: accept-encoding
x-request-id: F03EMR5DZySeWrq6lr4D
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/vendors~ClientStore.e95745514b016f9bd495.js
151.101.66.133200 OK 22 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/vendors~ClientStore.e95745514b016f9bd495.js
IP 151.101.66.133:0
File type ASCII text, with very long lines (64287)
Hash af195e9a979874f487993a3486b3885d
b4eff937e6fd30a374f5465e3a1d7b965c3b1b87
31cddc39b503e2d8a0e641d641b42619ab76545fdce4e7a6a6485f7edf4e00bf
GET /onsite/js/vendors~ClientStore.e95745514b016f9bd495.js HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: yo9SGdKefGUszdxIQ69QowCvt8UuTHN+A5Zv0BeO/9OUyE5oLWVFRnTjeJ5U8jlKt9vbN0ac1Nw=
x-amz-request-id: GZ55GEA39KBFFA71
last-modified: Fri, 03 Feb 2023 17:28:45 GMT
etag: "a8e4b33e6846d735c5d4c653a8bd4d82"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: CTXOza082dMZfjfe.EjxS8Q_urvRD31p
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118436
x-served-by: cache-lga21937-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8611
vary: Accept-Encoding
content-length: 22125
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/ClientStore.1a1b654c04531a4be9fa.js
151.101.66.133200 OK 24 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/ClientStore.1a1b654c04531a4be9fa.js
IP 151.101.66.133:0
Hash 6b6218a36f07cb5f2333f11024c0393d
5722178de2e69efa6930d8a91e965d7245e49beb
bb04d15340ea4976f19c00722a1f546a97bc3011f6c902c4944088bc37424b26
GET /onsite/js/ClientStore.1a1b654c04531a4be9fa.js HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: t0qrYMPuoJnMnhciIuReCZF5gH516CZdA+d0RxcSBxf+IXk+gWKk5+0+bMZlgQUy3tsuC+vMDh4=
x-amz-request-id: 641AB5M3AZJTWHVA
last-modified: Thu, 16 Mar 2023 15:08:15 GMT
etag: "5866bdfc8f97938c86a723f18b27af8f"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ZueRU4JIlZwPcGL.bRUYM.w9DUsudXor
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118437
x-served-by: cache-lga13625-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 18, 8654
vary: Accept-Encoding
content-length: 23298
X-Firefox-Spdy: h2
cdn.attn.tv/growth-tag-assets/client-configs/grandecosmetics.attn.tv.js
54.230.111.28200 OK 0 B URL HTTP/2 cdn.attn.tv/growth-tag-assets/client-configs/grandecosmetics.attn.tv.js
IP 54.230.111.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /growth-tag-assets/client-configs/grandecosmetics.attn.tv.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 0
last-modified: Mon, 17 Dec 2018 20:59:49 GMT
content-encoding:
x-amz-version-id: kGJjc2HxNgGNuk_7UqP1h9o.liqWLb8I
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Mar 2023 00:10:49 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A9STIqznlwn44b0XXqgteSx-28-4lvaFP2z6iMxAeJAT25vaBRkrZA==
age: 29327
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/532.dd9a1df84d96cf83ca19.css
151.101.66.133200 OK 1.7 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/532.dd9a1df84d96cf83ca19.css
IP 151.101.66.133:0
File type ASCII text, with very long lines (6145)
Hash 0dc1c7a389b78ca81cb988e822f60b27
46b51d1f25d7fd5801faf6fade531a522ebcf959
173dfa0bd0f19b6527e56113ebe3e9b56602cdde00eb79c8b589a64e128be82a
GET /onsite/js/532.dd9a1df84d96cf83ca19.css HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jtucqzmrYtlgWrpq9clIFvB2PaRjWdWN5dy5Nscxi2Ya+HgwhgANvQwoIbBV5nmO8yGFIjL/8Wk=
x-amz-request-id: WFP87PVA506CZAPP
last-modified: Wed, 17 Aug 2022 17:44:03 GMT
etag: "a178d611a5a0600884426f0e16e9f9e4"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: RkiQqM98M60WhQqw5YfZS.AnEeHh.cVG
content-type: text/css
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118437
x-served-by: cache-lga21982-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8768
vary: Accept-Encoding
content-length: 1654
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
151.101.66.133200 OK 118 B URL HTTP/2 static-tracking.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
IP 151.101.66.133:0
File type ASCII text, with no line terminators
Hash 7e1daf71c0a5eb4afc60cf0e925b3fd5
998c71e49a91365ddde644ebb3f68fce6e09feee
a518c1897cae587b892837b44e33c1f4f6247663ab3ab838a193bd73f3b84cfb
GET /onsite/js/styles.22c2b11c5e8fc57b054a.js HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GicLJBPgRlNnM9orqayKLK422V3CblLdZm43CoTuv6vv8PzUjNR6AeJmfTPLvsL26Gis66+5xXE=
x-amz-request-id: W6SZNSGEP15F73PM
last-modified: Mon, 23 Jan 2023 23:39:50 GMT
etag: "181cb819470277818fa669b08c54fba7"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: U9mjGRX.phFwbDudSfzAIyB1cs0tp_28
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118436
x-served-by: cache-lga13622-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8763
vary: Accept-Encoding
content-length: 118
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
151.101.66.133200 OK 3.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
IP 151.101.66.133:0
File type Unicode text, UTF-8 text, with very long lines (11557), with no line terminators
Hash 759fe340b25d1df040ba2dcd71dac270
8d69511d05fe080ff071e7b85d246fb5fb6dc23a
3fd331517c2760b605933cbdb6db4dc5550728499e612db84de5c2ad10200bb5
GET /onsite/js/vendors~Render.70ff401011c5901815b0.js HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: qZaCsaPQBrlzEeC16PbN05cwXrU0P7bYYmLi38zQc4Dg15rPXzkbmOYQEtvaN5saUjr82HCyRSc=
x-amz-request-id: FREAHAK5B0GMFATY
last-modified: Tue, 24 Jan 2023 16:25:42 GMT
etag: "6050cb7857ea2cda4fbbd931d3a27604"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: TAUsxioJxBq4aOeMAnjtWsjMfzIOQpU0
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118437
x-served-by: cache-lga21939-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8776
vary: Accept-Encoding
content-length: 3837
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/Render.4cb2e8562d81dab2a31f.js
151.101.66.133200 OK 29 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/Render.4cb2e8562d81dab2a31f.js
IP 151.101.66.133:0
File type ASCII text, with very long lines (19251)
Hash c11e33abb80ba1c5ee2088a092c8a1a9
2d04218fdf2f731d64ce05aa32d40bf513a4422b
f23b7bcd95f05d6b08c6f396a27aaad5ec926a1c9571491c67c7c142bd727f66
GET /onsite/js/Render.4cb2e8562d81dab2a31f.js HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: buHnTskbpwqqtt2WZavwNqVjwYk1xjBGvbIIrhFvSgDu9G2++lvNhu0csbYsB0R5nrDinBN8BnU=
x-amz-request-id: CV60WXJR6Z78BT60
last-modified: Thu, 16 Mar 2023 18:47:57 GMT
etag: "e025421b16be79fa08d861773c89a1b2"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: qN1h11MroR3ObdhPuOrwPojKM1ihSp7i
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:11 GMT
age: 118436
x-served-by: cache-lga21971-LGA, cache-bma1672-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 8820
vary: Accept-Encoding
content-length: 28696
X-Firefox-Spdy: h2
grandecosmetics.attn.tv/unrenderedCreative?v=4.17.4&r=&id=2f4a341c52ca4b92ad69fc0d5a63e8db&pv=1&l=https%3A%2F%2Fgrandecosmetics.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms
104.18.37.231204 No Content 0 B URL HTTP/2 grandecosmetics.attn.tv/unrenderedCreative?v=4.17.4&r=&id=2f4a341c52ca4b92ad69fc0d5a63e8db&pv=1&l=https%3A%2F%2Fgrandecosmetics.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms
IP 104.18.37.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unrenderedCreative?v=4.17.4&r=&id=2f4a341c52ca4b92ad69fc0d5a63e8db&pv=1&l=https%3A%2F%2Fgrandecosmetics.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms HTTP/1.1
Host: grandecosmetics.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://grandecosmetics.com
Content-Length: 29
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 19 Mar 2023 08:19:11 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
x-envoy-upstream-service-time: 12
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7aa449fdd997b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/en.build.json
104.22.0.204200 OK 47 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP 104.22.0.204:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash ac7a7378743454150169a564c3e9337f
bb085e343fe46cb92734f8614202fb548ed25ba2
e10ec63cb3034b3518755586547e65a10a29605be95658728f82b5bea4ee4c10
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json
x-guploader-uploadid: ADPycduy6VuBnBZb5VOIp2woQejm7pk_YjlBSGziCyrjSa0YJfySrv9q5BOHpOebguHrT6WwGbyA-VuVkpoea6OOTcYEKpoZRXR7
x-goog-generation: 1678983699799139
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 244609
x-goog-meta-goog-reserved-file-mtime: 1678983644
x-goog-hash: crc32c=3jItvA==, md5=yhKgVPDCqUpoqYHja6MnxA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 18 Mar 2024 08:19:11 GMT
cache-control: public, max-age=3600
last-modified: Thu, 16 Mar 2023 16:21:39 GMT
etag: W/"ca12a054f0c2a94a68a981e36ba327c4"
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449fdced6b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=bbf7e2b
54.230.111.56200 OK 3.8 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=bbf7e2b
IP 54.230.111.56:0
File type ASCII text, with very long lines (577)
Hash f159124a1b7dc95942a7fea7a371fb09
49b1579cec39afd0e82f9a2f4cd9822b9b60b310
be790cec60b6ef318783fca45a3932173c5cdd105db09fbcd1eeff3a2a876250
GET /widget/triggerRunner.js?v=bbf7e2b HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3812
date: Thu, 23 Feb 2023 17:43:43 GMT
last-modified: Thu, 23 Feb 2023 17:42:10 GMT
etag: "f159124a1b7dc95942a7fea7a371fb09"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1677174126.48
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QO2tSAGLisrjodB2c6aT6dZ5J-seAKsvkmEsE0XLLF3p7pBf23bZnw==
age: 2039729
X-Firefox-Spdy: h2
script.hotjar.com/modules.e8a3d1a16d3ae98012cf.js
54.230.111.44200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.e8a3d1a16d3ae98012cf.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (50842)
Hash dcf3a7ce85da1a4b1e561e0ffdaada66
4962d86ef0ad6965f791d0ded4bce07658bd4be2
56e3d41fae7cd8cf239dafbee15237a13c3e8375357ac64c84902b322bf10a48
GET /modules.e8a3d1a16d3ae98012cf.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68657
date: Fri, 17 Mar 2023 11:28:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "dcf3a7ce85da1a4b1e561e0ffdaada66"
last-modified: Fri, 17 Mar 2023 11:27:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nVu3iXsdq_vXRhoCedIcKhKyZR4hc14xVAiDYq-uA5nnc0sJAWhacA==
age: 161464
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 30bf52b1b6d1f5b40a4ac6413c4a91b5
03b1dafaabbd85c19ed6f2350a72be3f06448b07
5a960b72c67586d6cdd944b8019bfc95ad4925d54888df201c6ead72e20bcb5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A960B72C67586D6CDD944B8019BFC95AD4925D54888DF201C6EAD72E20BCB5E"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3643
Expires: Sun, 19 Mar 2023 09:19:54 GMT
Date: Sun, 19 Mar 2023 08:19:11 GMT
Connection: keep-alive
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.144.98200 OK 234 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.144.98:0
Hash dfafaabcd667c27b77adaec38905e115
d6f9d0a7bf747db210462d0aa637a1b59fe400cc
d965d6e2e208d1838a332cb68483e46a8b081b6126cb59f1afcaaf0818ffbe6b
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:11 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7aa449fe6c110b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 660 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, from Unix\012- data
Hash d97e9c68b8fbdc70017283cce319fed2
92b769473da88077963ef0b6e04f787ff1722eeb
1496323906eab339d6259e86ba58456993a9c790be02be616db3ab440ca4ef0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A960B72C67586D6CDD944B8019BFC95AD4925D54888DF201C6EAD72E20BCB5E"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3643
Expires: Sun, 19 Mar 2023 09:19:54 GMT
Date: Sun, 19 Mar 2023 08:19:11 GMT
Connection: keep-alive
ct.pinterest.com/user/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1679213955620&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1679213955620&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1679213955620&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5qaGlOR1l3WTJJdFlUSTFaUzAwTm1RMExUa3pNRE10TWpneVptRTNNMll4TmpnMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://grandecosmetics.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1615597490251266
date: Sun, 19 Mar 2023 08:19:12 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1679213951.c2b7de52
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213955622&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213955622&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213955622&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1tRm1NemcwTm1ZdE1HSTBZeTAwWkdSakxUa3dNR010TWpJMU56TTVObVF3T0RVMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://grandecosmetics.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1124262434752044
date: Sun, 19 Mar 2023 08:19:12 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1679213951.c2b7de55
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
telemetrics.klaviyo.com/v1/metric
54.230.111.28204 No Content 0 B URL HTTP/2 telemetrics.klaviyo.com/v1/metric
IP 54.230.111.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/metric HTTP/1.1
Host: telemetrics.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 416
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 19 Mar 2023 08:19:12 GMT
x-amzn-requestid: 43b179a9-cee8-4561-ac9d-c840c4456384
access-control-allow-origin: *
x-amz-apigw-id: CBPMBGr2IAMFUOg=
x-amzn-trace-id: Root=1-6416c57f-72fee2f3550cb4ec39842f23;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U0MNeef16iGvg6mIf_m8yMB_RzJsINM9N7xN3iv31IJCTS9EARYXeQ==
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash a2b96b0a4287caf3d0f7823fd59a99db
4693a0688fd779c1cb9f9970e13d0ba6e5b87042
059973e9eadfa12798681738d6cb1eb6436028e2ad056ecf7e129b4045c51c99
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93362
Date: Sun, 19 Mar 2023 08:19:12 GMT
Etag: "641576d6-1d7"
Expires: Mon, 20 Mar 2023 10:15:14 GMT
Last-Modified: Sat, 18 Mar 2023 08:31:18 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BLwd7sgIo1Yq8glnLRR0wK4BRwRIL0KsTrMqWjwm4ERREWS2ML4OaA==
Age: 6236
p.yotpo.com/i?e=pv&page=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213954846&tid=034058&vp=1280x939&ds=1280x3865&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
3.121.105.142200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=pv&page=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213954846&tid=034058&vp=1280x939&ds=1280x3865&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
IP 3.121.105.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=pv&page=Serums%2C%20Cosmetics%20%26%20Haircare%2C%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213954846&tid=034058&vp=1280x939&ds=1280x3865&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=383a4757-bdc4-4bf8-7578-99ee8045a916; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Mon, 20 Mar 2023 08:19:12 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/1757778?s=0.25&r=0.20060497106598607
54.230.111.91204 No Content 110 kB URL HTTP/2 vc.hotjar.io/sessions/1757778?s=0.25&r=0.20060497106598607
IP 54.230.111.91:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110260 bytes)
Hash 2b5d56f869c9bb9757268dd2aa3e25fa
26af673effbaf966e868fd42732c3f43a683fcbf
9bebd4041418abc0ea3e39b8ade66b317832cc0e5e947b122659657ad5f03ba7
GET /sessions/1757778?s=0.25&r=0.20060497106598607 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sun, 19 Mar 2023 08:19:12 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f3_H2c-12280dHUUxRFS31bPgYuce00bs46jdZCptYcdh8BJ8fdzjQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 30bf52b1b6d1f5b40a4ac6413c4a91b5
03b1dafaabbd85c19ed6f2350a72be3f06448b07
5a960b72c67586d6cdd944b8019bfc95ad4925d54888df201c6ead72e20bcb5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A960B72C67586D6CDD944B8019BFC95AD4925D54888DF201C6EAD72E20BCB5E"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Sun, 19 Mar 2023 09:19:54 GMT
Date: Sun, 19 Mar 2023 08:19:12 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 8fd932b507a1a9974d9606c3482590aa
0becb1c566025a21a67271860a6c531bffcae7fd
95755323bd928d04e6fe31ce2e530c91fd7ebc2d41cb76ea9b093e9c0ef8e299
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1665
Cache-Control: max-age=104593
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:12 GMT
Etag: "6415b490-1d7"
Expires: Mon, 20 Mar 2023 13:22:25 GMT
Last-Modified: Sat, 18 Mar 2023 12:54:40 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
settings.luckyorange.com/522b64ef
34.107.203.234200 OK 149 B URL HTTP/2 settings.luckyorange.com/522b64ef
IP 34.107.203.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c9ba09c214a7b2f53514e10a501f2362
b7e50d8983cc0abb7eb17eccfa1236babcda7be1
5041dc9a8e77ae16f70ce8765fd2c3b77853cbd4dd69bfb2cce58772702bab48
OPTIONS /522b64ef HTTP/1.1
Host: settings.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-lucky-referrer,x-lucky-uid
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://grandecosmetics.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Access-Control-Allow-Origin,Authorization,Content-Type,X-Lucky-Uid,X-Lucky-Site-Id,X-Lucky-Impersonate,X-Lucky-Session-Id,X-Lucky-Referrer
access-control-max-age: 86400
date: Sun, 19 Mar 2023 08:19:12 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.e2m02.amazontrust.com/
54.230.80.227200 OK 280 B URL HTTP/1.1 ocsp.e2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 92ac4d8253162491159155ededc27a8c
9f039c4fde8f71ac6fb01dcfaa7ee88094b9471e
6e3c533b2af449c2b6ddf36f214b08e2f7d7710f6ece161e9fd755c52e127da6
POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103380
Date: Sun, 19 Mar 2023 08:19:12 GMT
Etag: "6415af0a-118"
Expires: Mon, 20 Mar 2023 13:02:12 GMT
Last-Modified: Sat, 18 Mar 2023 12:31:06 GMT
Server: ECAcc (bsa/EB4C)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FoLo1yT-DLKPd9bqUiLU3V4Lzg8NYp9tGF0fRe-wySA3SAEKIOkOGg==
Age: 1867
mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=false&fp_dyn=true&flash=false
54.228.71.178200 OK 19 kB URL HTTP/1.1 mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=false&fp_dyn=true&flash=false
IP 54.228.71.178:0
File type ASCII text, with very long lines (1056)
Hash 4b6353186325ae9f33a93930beba712c
654c649cc865862007fedc22c4cb920086de0a2d
91dbeb9e2e30b330415db7cce0f2498dae60ae35815f643af40ab1b122add553
GET /general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=false&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 08:19:12 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=Rqe8zEdTFsepm7o4wSD+P9Rh0RzErDSp154oUt2ogx8=;Path=/;Expires=Mon, 18-Mar-2024 08:19:12 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
in.hotjar.com/api/v2/client/sites/1757778/visit-data?sv=6
108.128.76.168200 OK 95 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1757778/visit-data?sv=6
IP 108.128.76.168:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 039d32f7359c34eee13f02bae640eff7
7550a24e404da6c533fa8597113eec17a6d55f4c
1874a3ed03bfe4289ca3a8cc3c495a498033ddb248a6fbdcdce02e70065eca54
POST /api/v2/client/sites/1757778/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 147
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
staticw2.yotpo.com/assets/yotpo-widget-font.woff?version=2023-03-09_07-47-32
95.101.97.70200 OK 12 kB URL HTTP/2 staticw2.yotpo.com/assets/yotpo-widget-font.woff?version=2023-03-09_07-47-32
IP 95.101.97.70:0
File type Web Open Font Format, TrueType, length 12288, version 1.0\012- data
Hash 652f1f8f7ffd92a8fc5b8b1ea66dcca3
e79b5a779aa32ecb953d7c182744653b577b6000
ded3cc824f7bd6d490d247ad247bc13cd3205f3dca15e6afa78610dc8a4d1143
GET /assets/yotpo-widget-font.woff?version=2023-03-09_07-47-32 HTTP/1.1
Host: staticw2.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://staticw2.yotpo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 12288
last-modified: Mon, 13 Mar 2023 13:40:55 GMT
etag: "640f27e7-3000"
accept-ranges: bytes
cache-control: max-age=604800
expires: Sun, 26 Mar 2023 08:19:12 GMT
date: Sun, 19 Mar 2023 08:19:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466448_1611674802_136085140_17_3344_8_0";dur=1
env: PRODUCTION
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&cb=36438051172972360term%3Dvalue&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1
34.210.219.79200 OK 1.1 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&cb=36438051172972360term%3Dvalue&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1
IP 34.210.219.79:0
File type ASCII text, with very long lines (2082)
Hash 5e93909f9468e51e8059bb2cd3a70efe
f8965f468575090b1e231b6b275fc90d5a718ed9
fbdad2e6bb5e70ac1cea7ffa58c27a1a75d290f5e9de34bcec35ee560afd4f81
GET /st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&cb=36438051172972360term%3Dvalue&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=baf4e40c-c62e-11ed-b381-430ec427b846;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=9e018eb
54.230.111.56200 OK 48 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=9e018eb
IP 54.230.111.56:0
File type ASCII text, with very long lines (778)
Hash 8854cd3d6fbde5453cc2a5e779fa7193
78d0e534a18346b5325e2eeaa11f9f13705cc988
d4300fea3ab7546f3496ba6a7ddd0300aa4f68c3834024dba41f606f03894542
GET /widget/widget.js?v=9e018eb HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 48293
date: Thu, 23 Feb 2023 17:43:44 GMT
last-modified: Thu, 23 Feb 2023 17:42:08 GMT
etag: "8854cd3d6fbde5453cc2a5e779fa7193"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1677174124.5
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cYmqlKI0YT5VxOduj9Cddixg6EabRdUEUe225F2pikBuwD6GH-8VvA==
age: 2039729
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=326035469;rf=0;a=p-xsRSg4KGH-uW4;url=https%3A%2F%2Fgrandecosmetics.com%2F;uht=2;fpan=1;fpa=P0-12931719-1679213953751;pbc=;ns=0;ce=1;qjs=1;qv=757f3135-20230316172511;cm=;gdpr=0;ref=;d=grandecosmetics.com;dst=0;et=1679213955683;tzo=0;ogl=type.website%2Ctitle.Serums%252C%20Cosmetics%20%26%20Haircare%252C%20%26%20More%2Cdescription.Grande%20Cosmetics%252C%20home%20of%20GrandeLASH-MD%252C%20believes%20in%20powerful%20haircare%252C%20serums%20%26%2Cimage.http%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Logo%2Cimage%3Asecure_url.https%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Log%2Curl.https%3A%2F%2Fgrandecosmetics%252Ecom%2F%2Csite_name.Grande%20Cosmetics%20;ses=96496292-dbb3-442e-8a0f-7f367c363ed6
91.228.74.208200 OK 240 B URL HTTP/2 pixel.quantserve.com/pixel;r=326035469;rf=0;a=p-xsRSg4KGH-uW4;url=https%3A%2F%2Fgrandecosmetics.com%2F;uht=2;fpan=1;fpa=P0-12931719-1679213953751;pbc=;ns=0;ce=1;qjs=1;qv=757f3135-20230316172511;cm=;gdpr=0;ref=;d=grandecosmetics.com;dst=0;et=1679213955683;tzo=0;ogl=type.website%2Ctitle.Serums%252C%20Cosmetics%20%26%20Haircare%252C%20%26%20More%2Cdescription.Grande%20Cosmetics%252C%20home%20of%20GrandeLASH-MD%252C%20believes%20in%20powerful%20haircare%252C%20serums%20%26%2Cimage.http%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Logo%2Cimage%3Asecure_url.https%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Log%2Curl.https%3A%2F%2Fgrandecosmetics%252Ecom%2F%2Csite_name.Grande%20Cosmetics%20;ses=96496292-dbb3-442e-8a0f-7f367c363ed6
IP 91.228.74.208:0
File type gzip compressed data, max speed, from Unix\012- data
Hash db0dc2f65b017fc1b79f32dc57827b91
dfdcc9a6a90ad7a3462236fae9526e2e312acbbd
8c99cbe8ba5b42e8c433daf9536b1ed8089a33a2335c4a96c961ad5908dca391
GET /pixel;r=326035469;rf=0;a=p-xsRSg4KGH-uW4;url=https%3A%2F%2Fgrandecosmetics.com%2F;uht=2;fpan=1;fpa=P0-12931719-1679213953751;pbc=;ns=0;ce=1;qjs=1;qv=757f3135-20230316172511;cm=;gdpr=0;ref=;d=grandecosmetics.com;dst=0;et=1679213955683;tzo=0;ogl=type.website%2Ctitle.Serums%252C%20Cosmetics%20%26%20Haircare%252C%20%26%20More%2Cdescription.Grande%20Cosmetics%252C%20home%20of%20GrandeLASH-MD%252C%20believes%20in%20powerful%20haircare%252C%20serums%20%26%2Cimage.http%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Logo%2Cimage%3Asecure_url.https%3A%2F%2Fcdn%252Eshopify%252Ecom%2Fs%2Ffiles%2F1%2F0098%2F9023%2F4434%2Ft%2F195%2Fassets%2FGrandCosmetics-Log%2Curl.https%3A%2F%2Fgrandecosmetics%252Ecom%2F%2Csite_name.Grande%20Cosmetics%20;ses=96496292-dbb3-442e-8a0f-7f367c363ed6 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6416c580-aef3d-59a8d-b9248; expires=Thu, 18-Apr-2024 08:19:12 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
p.yotpo.com/i?e=se&se_ca=carousel&se_ac=loaded&se_la=review&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInJldmlld19pZCI6WyIxNjc1Mzc0NjAiLCIxNjcyNzA1NDciLCIxNjA3NjIwNjgiLCIxNTk1OTc0MzkiLCI0MTYyNjg5MjgiLCIyNDIzMjQ4NjAiLCIyMTc1NDU1MjYiLCIxNzEzODM2NTIiLCIxNjg4OTc3NjkiXSwiY291bnRfcmV2aWV3cyI6OSwicGl4ZWxfaWQiOiI5NjAyODQxNy0yMmU1LTRhNDAtYTE2Ny0zYzUwNWFjOTE2MjAifQ&dtm=1679213956327&tid=615685&vp=1280x939&ds=1280x3522&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
3.121.105.142200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=se&se_ca=carousel&se_ac=loaded&se_la=review&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInJldmlld19pZCI6WyIxNjc1Mzc0NjAiLCIxNjcyNzA1NDciLCIxNjA3NjIwNjgiLCIxNTk1OTc0MzkiLCI0MTYyNjg5MjgiLCIyNDIzMjQ4NjAiLCIyMTc1NDU1MjYiLCIxNzEzODM2NTIiLCIxNjg4OTc3NjkiXSwiY291bnRfcmV2aWV3cyI6OSwicGl4ZWxfaWQiOiI5NjAyODQxNy0yMmU1LTRhNDAtYTE2Ny0zYzUwNWFjOTE2MjAifQ&dtm=1679213956327&tid=615685&vp=1280x939&ds=1280x3522&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
IP 3.121.105.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=se&se_ca=carousel&se_ac=loaded&se_la=review&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInJldmlld19pZCI6WyIxNjc1Mzc0NjAiLCIxNjcyNzA1NDciLCIxNjA3NjIwNjgiLCIxNTk1OTc0MzkiLCI0MTYyNjg5MjgiLCIyNDIzMjQ4NjAiLCIyMTc1NDU1MjYiLCIxNzEzODM2NTIiLCIxNjg4OTc3NjkiXSwiY291bnRfcmV2aWV3cyI6OSwicGl4ZWxfaWQiOiI5NjAyODQxNy0yMmU1LTRhNDAtYTE2Ny0zYzUwNWFjOTE2MjAifQ&dtm=1679213956327&tid=615685&vp=1280x939&ds=1280x3522&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=fbf130af-d51a-4c75-5d56-b465bb95be84; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Mon, 20 Mar 2023 08:19:12 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679213955622
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679213955622
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2614409706572&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1679213955622 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1191711648539349
date: Sun, 19 Mar 2023 08:19:12 GMT
akamai-grn: 0.274f2417.1679213952.c2b7ed84
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
mpsnare.iesnare.com/5.6.0/logo.js
54.228.71.178200 OK 419 B URL HTTP/1.1 mpsnare.iesnare.com/5.6.0/logo.js
IP 54.228.71.178:0
File type ASCII text, with very long lines (377)
Hash e0aa52de815db7a67a78fd3fe114c520
3a3d2b8488a0d728e72ed5e824c142ad6a66b8e0
0936aeb6c09cead1825dffa795aaeceb312608b76b80ba701c64eabef3c80670
GET /5.6.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 08:19:12 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Mon, 18 Mar 2024 08:19:12 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
www.facebook.com/tr/?id=1849967485222865&ev=PageView&dl=https%3A%2F%2Fgrandecosmetics.com%2F&rl=&if=false&ts=1679213956116&sw=1280&sh=1024&v=2.9.99&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1679213956115.291488578&it=1679213953815&coo=false&eid=f8f39772-1B04-48C4-33F0-6AC30302ADC6&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1849967485222865&ev=PageView&dl=https%3A%2F%2Fgrandecosmetics.com%2F&rl=&if=false&ts=1679213956116&sw=1280&sh=1024&v=2.9.99&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1679213956115.291488578&it=1679213953815&coo=false&eid=f8f39772-1B04-48C4-33F0-6AC30302ADC6&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1849967485222865&ev=PageView&dl=https%3A%2F%2Fgrandecosmetics.com%2F&rl=&if=false&ts=1679213956116&sw=1280&sh=1024&v=2.9.99&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1679213956115.291488578&it=1679213953815&coo=false&eid=f8f39772-1B04-48C4-33F0-6AC30302ADC6&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 19 Mar 2023 08:19:12 GMT
X-Firefox-Spdy: h2
mpsnare.iesnare.com/time.mp3?nocache=0.11946276085969376
54.228.71.178206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.11946276085969376
IP 54.228.71.178:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.11946276085969376 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 19 Mar 2023 08:19:12 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
p.yotpo.com/i?e=se&se_ca=carousel&se_ac=loaded&se_la=has_reviews&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213956432&tid=168308&vp=1280x939&ds=1280x3744&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
3.121.105.142200 OK 35 B URL HTTP/2 p.yotpo.com/i?e=se&se_ca=carousel&se_ac=loaded&se_la=has_reviews&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213956432&tid=168308&vp=1280x939&ds=1280x3744&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F
IP 3.121.105.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /i?e=se&se_ca=carousel&se_ac=loaded&se_la=has_reviews&se_va=cKKcrEVRwtGJhFBxO37D0SaInGg2Oaw6HdKFGxOR&cx=eyJwdl91dWlkIjozMTQ3ODQ0OTQsInBpeGVsX2lkIjoiOTYwMjg0MTctMjJlNS00YTQwLWExNjctM2M1MDVhYzkxNjIwIn0&dtm=1679213956432&tid=168308&vp=1280x939&ds=1280x3744&vid=1&duid=ee330b95e61301b7&p=web&tv=js-0.13.2&fp=3963981668&aid=onsite_v2&lang=en-US&cs=UTF-8&tz=Etc%2FUTC&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fgrandecosmetics.com%2F HTTP/1.1
Host: p.yotpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: image/gif
content-length: 35
server: nginx
set-cookie: pixel=d20b75b1-084f-44d0-7454-3ba9de9f03f0; Path=/; Domain=yotpo.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
expires: Mon, 20 Mar 2023 08:19:12 GMT
cache-control: max-age=86400, private
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
IP 142.250.74.3:0
Hash 286bac7a767fb9ae95bdd976e8c4ba13
0fed5294c4f64f51333c094822cd96e0176ca7a0
cb5272e7ee0364d12e9bad61d5c2bc26aa7180a23c27fabfc62d7ed841d44dbd
POST /s/gts1d4/7CBwa7UM8Ao HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p2.fwpixel.com/trk/system:page_load
54.189.81.57200 OK 829 B URL HTTP/2 p2.fwpixel.com/trk/system:page_load
IP 54.189.81.57:0
Hash a4ee37654a6b6c4fb4f8b0eee432a703
9a5038d03a446761181d9cd3b680341cf9d3ec6e
571930d7470def564ebd3bcfbb7a0744772f67754e5dfd614fcc71f011337bc8
POST /trk/system:page_load HTTP/1.1
Host: p2.fwpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------4480268551265344362181870652
Content-Length: 719
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:08 GMT
content-type: text/plain
server: openresty
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2022/5/18/1652895258-tukapovy/transcoded/240/upload.jpg.62.jpg
34.117.19.225200 OK 11 kB URL HTTP/2 cdn4.fireworktv.com/medias/2022/5/18/1652895258-tukapovy/transcoded/240/upload.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash 364144b424b7e865ce0f0b1c78af2786
5d9a576b31e5ffd4b4755fcfd58d4c5268fba49d
a55f6fe10bfdb6f80410a9c001c201d33698ea2848325c4bcc435210f2be965c
GET /medias/2022/5/18/1652895258-tukapovy/transcoded/240/upload.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2oXG+ZaO9N57XEGqwE40awoFVJEGTw826CRkNl23AxoRnDAAFitXXHF8gQ2CU6wFNzmt2428MGY=
x-amz-request-id: RA5WSRKABGFZWSTK
x-amz-version-id: JDL5M_nChWElgYv0vjr6aWmKAx19qeAG
server: AmazonS3
content-length: 10908
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:50 GMT
age: 64463
last-modified: Sat, 05 Nov 2022 13:37:22 GMT
etag: "364144b424b7e865ce0f0b1c78af2786"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642678-uzmitypv/transcoded/240/lashh.jpg.62.jpg
34.117.19.225200 OK 14 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642678-uzmitypv/transcoded/240/lashh.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash 09d1004f6048ae545dca65605eb3f79d
533adcbb078d915616bf76fd8acb8f91ec606ee2
3d5e5586939f70643d031de2ed34fb4e0134b049ef069dd8b659aa4bcdc39450
GET /medias/2023/2/17/1676642678-uzmitypv/transcoded/240/lashh.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bcCDuFS84B2uQOOw5kfge8dvBY008tR+kRqCMpPBQnN8BAfIOt/OgGMqXmtxGzqfYDHqGS7IsPs=
x-amz-request-id: AB8JQBBN0MY8CTJS
x-amz-version-id: bx64coT1Dmq60o57axxeBP3g0b2HGwIL
server: AmazonS3
content-length: 14547
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:48 GMT
age: 64465
last-modified: Fri, 17 Feb 2023 14:06:24 GMT
etag: "09d1004f6048ae545dca65605eb3f79d"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
p2.fwpixel.com/trk/feed:create_embed_instance
54.189.81.57200 OK 13 kB URL HTTP/2 p2.fwpixel.com/trk/feed:create_embed_instance
IP 54.189.81.57:0
Hash 50e3ee066d1cdef1a522713467014bff
2904fe27bdc5ab018027fbf94236b1673f0e0d29
7253ef13be591f9bd31dc14dc83fdb52faa2145fadbe5e618cbaf5abfb144125
POST /trk/feed:create_embed_instance HTTP/1.1
Host: p2.fwpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------43415389510638215452400419124
Content-Length: 1163
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:12 GMT
content-type: text/plain
server: openresty
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
IP 142.250.74.3:0
Hash 286bac7a767fb9ae95bdd976e8c4ba13
0fed5294c4f64f51333c094822cd96e0176ca7a0
cb5272e7ee0364d12e9bad61d5c2bc26aa7180a23c27fabfc62d7ed841d44dbd
POST /s/gts1d4/7CBwa7UM8Ao HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.acsbapp.com/cache/app/grandecosmetics.com/config.json
104.22.0.204200 OK 591 B URL HTTP/2 cdn.acsbapp.com/cache/app/grandecosmetics.com/config.json
IP 104.22.0.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5241295f4b37a422ea54d05521db76a3
a5d7d2c400d5bd51eaa0c18c8e716e7d9c3ad348
97748391353d6f97fd2979dc38b2764e776549efcd27fd656fb7661aa50ca078
GET /cache/app/grandecosmetics.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:09 GMT
content-type: application/json
x-guploader-uploadid: ADPycduauEZRqW3XemlFAjwUKN19t2LlBe6_1N8WCkC1q-et0LBlX91CqrwvCFd_f6hGLnKByKT9NzkoW30DEKBj8YrYFA
x-goog-generation: 1675864629220781
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 163
x-goog-hash: crc32c=rQBbZQ==, md5=UqZulE0Rb4GrNwArZTXbTg==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 18 Mar 2024 08:19:09 GMT
cache-control: no-cache
last-modified: Wed, 08 Feb 2023 13:57:09 GMT
etag: W/"52a66e944d116f81ab37002b6535db4e"
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449f28edeb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
IP 142.250.74.3:0
Hash 286bac7a767fb9ae95bdd976e8c4ba13
0fed5294c4f64f51333c094822cd96e0176ca7a0
cb5272e7ee0364d12e9bad61d5c2bc26aa7180a23c27fabfc62d7ed841d44dbd
POST /s/gts1d4/7CBwa7UM8Ao HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn4.fireworktv.com/medias/2022/12/12/1670871953-oghtczpr/transcoded/240/Snaptik.app_7174142552315022635.jpg.62.jpg
34.117.19.225200 OK 5.5 kB URL HTTP/2 cdn4.fireworktv.com/medias/2022/12/12/1670871953-oghtczpr/transcoded/240/Snaptik.app_7174142552315022635.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash c874d01b7382aee1b0dc540ff071aec5
a54d018707b8c6667541ab567876bcb62ca2efa5
195b969a45acb15397ac40ddba686483d474fa6caade9796dd3429e45c7968dc
GET /medias/2022/12/12/1670871953-oghtczpr/transcoded/240/Snaptik.app_7174142552315022635.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: D5bstc1vbe/mVMnqLxqAPygBTKhcg9FuO0mQi97h9lkOfiznggFh3Ldbe+Y1EwwGspWG37yk5vs=
x-amz-request-id: RA5P9WEV1QX7YAKN
x-amz-version-id: qDuUmHTBaPS8gpcGeerWnSTjA4V.B1Ud
server: AmazonS3
content-length: 5481
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:50 GMT
age: 64463
last-modified: Mon, 12 Dec 2022 19:10:10 GMT
etag: "c874d01b7382aee1b0dc540ff071aec5"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_263507365a
54.230.111.28200 OK 41 kB URL HTTP/2 cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_263507365a
IP 54.230.111.28:0
Hash d8e6050d88bcd583ec99ba7df744fb77
0e2dc060d310f1c6f7daada1066f95e1f24009ef
d406611f535984391b3498062e25f82a5104bf65f87be7edb8ba6def2d93dd70
GET /tag/4-latest/unified-tag.js?v=4-latest_263507365a HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Wed, 08 Mar 2023 16:17:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: AH5gZeU.6nC_4eeePlrZrHqq_cReUAXy
server: AmazonS3
content-encoding: gzip
date: Sun, 19 Mar 2023 08:17:18 GMT
cache-control: public, max-age=300
etag: W/"8b5a507ac3a40a333e8baf263df2307a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kEva_NF2k8bzWDW5ZGXQvJD7AnYGBGGHm4yQBtPwQLcP3PXlvxskeg==
age: 111
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642423-xbofnawc/transcoded/240/SaveInsta.App-3033213469458874028.jpg.62.jpg
34.117.19.225200 OK 12 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642423-xbofnawc/transcoded/240/SaveInsta.App-3033213469458874028.jpg.62.jpg
IP 34.117.19.225:0
Hash 7b5e234dcabcb1e5341f6418d1371422
528e8182fb4cb38d820abecb559299900e223118
cddf400c387031639f78e17fb6fafe29c66a66592de71dc20f69156a0d1a7056
GET /medias/2023/2/17/1676642423-xbofnawc/transcoded/240/SaveInsta.App-3033213469458874028.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GkQXrfWxgczFhjG0pZs5LQHEvd2ROfoU3R5XZmcSQYnQ7jguW2HCogPqcItWFlEFmInA4Kof/FE=
x-amz-request-id: 60E1ZED37QNAM6DG
x-amz-version-id: ZHhXjif3uJt4ZKfp75oEz310lBjYKYtt
server: AmazonS3
content-length: 10588
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:49 GMT
age: 64464
last-modified: Fri, 17 Feb 2023 14:04:41 GMT
etag: "2540b5c1fe4197dae096d8e04ae8d93e"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642621-glmhoewr/transcoded/240/SaveInsta.App-3031703636681834473.jpg.62.jpg
34.117.19.225200 OK 6.9 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642621-glmhoewr/transcoded/240/SaveInsta.App-3031703636681834473.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash fe0315fb67752548ab7eb8c15c9f2f53
412fdfe2bfd98fc930da0d472cdd5a82e6b95c80
35e5c77ee81c05ab9e685a15acfc5d4a26f61fcf32e6ac0fbee3db0b585d8a0d
GET /medias/2023/2/17/1676642621-glmhoewr/transcoded/240/SaveInsta.App-3031703636681834473.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Y7uTLuwBmVDv/DZWA7o4iX36mJnkKBBS4l2wfYgjDrEkMA4WtY54x9VpIgoYyz10uNIi2BfngYc=
x-amz-request-id: AB8QN7VKVJPFW95V
x-amz-version-id: aCfwgd8aq0u6IVOVeS4_qy5p.BOIuT9m
server: AmazonS3
content-length: 6908
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:48 GMT
age: 64465
last-modified: Fri, 17 Feb 2023 14:06:24 GMT
etag: "fe0315fb67752548ab7eb8c15c9f2f53"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642528-lykwarix/transcoded/240/lash.jpg.62.jpg
34.117.19.225200 OK 11 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642528-lykwarix/transcoded/240/lash.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash fdae8a8397b5850034a28eff4196a7a0
6bff7a9801ae5b28502b78cc1615043a6b77a43e
630ccae11fb9ca995b8e990bba3fb2944a6f07ba1377957c406bac8a64418a9b
GET /medias/2023/2/17/1676642528-lykwarix/transcoded/240/lash.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jt8M6amoxgVtrUlJOc5rgVn4SpwKrxcvUG6JTnILtFXLr0rf3ZKhkjJD/H9rCONM84phYrh6VOE=
x-amz-request-id: 60E6H0ZEBBG85BWF
x-amz-version-id: 927g3b_I_6znoVk12PHi95xua5R990Ae
server: AmazonS3
content-length: 11272
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:49 GMT
age: 64464
last-modified: Fri, 17 Feb 2023 14:04:41 GMT
etag: "fdae8a8397b5850034a28eff4196a7a0"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642587-lgxkhzje/transcoded/240/SaveInsta.App-3023039502326463054.jpg.62.jpg
34.117.19.225200 OK 10 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642587-lgxkhzje/transcoded/240/SaveInsta.App-3023039502326463054.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash 365da9a0afde487c45f716d9ff3487d2
6d70fe2a075a1f91b7026e3431049901f300bacf
23e4abcb8b3545d68cc2f3343ef5a508dc8a927cab23aecfa739e2904ecf7db2
GET /medias/2023/2/17/1676642587-lgxkhzje/transcoded/240/SaveInsta.App-3023039502326463054.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XSNLzmtIQpiRXDcPpnOJxL0nbn3/Q972DZo8eWQtwrsc3dZ4sboyvZtJ4cGYo60+SFUqDa5pxyM=
x-amz-request-id: 60E1JRW2BXS3C5BC
x-amz-version-id: zs8geNR.ePyy4WxdGxR6I.3ummjtUzCP
server: AmazonS3
content-length: 10474
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:49 GMT
age: 64464
last-modified: Fri, 17 Feb 2023 14:04:41 GMT
etag: "365da9a0afde487c45f716d9ff3487d2"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn4.fireworktv.com/medias/2023/2/17/1676642499-nsteicdx/transcoded/240/Snaptik.app_7198573991857016110.jpg.62.jpg
34.117.19.225200 OK 12 kB URL HTTP/2 cdn4.fireworktv.com/medias/2023/2/17/1676642499-nsteicdx/transcoded/240/Snaptik.app_7198573991857016110.jpg.62.jpg
IP 34.117.19.225:0
File type JPEG image data, baseline, precision 8, 240x426, components 3\012- data
Hash f1c2973dfe342d051a8acaad1316a143
9deeca02dffa44cb162451459d963be1e4b5de75
59eddfea57566ffaeffb5af1de12e12c31eed0a390f9bcd1bfa3d2306965b0d2
GET /medias/2023/2/17/1676642499-nsteicdx/transcoded/240/Snaptik.app_7198573991857016110.jpg.62.jpg HTTP/1.1
Host: cdn4.fireworktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mxncD4kX9mGxJz78DvAw6c3lJH6ASN6CL5xD1Ebars/dJMM6o3DFmCuhd7mSYLj3pLM58md0sro=
x-amz-request-id: 60E5KEFHE6TK2514
x-amz-version-id: diz6vlDOkgb00Ag5O8UvycNxd2OMZgSB
server: AmazonS3
content-length: 11789
via: 1.1 google
date: Sat, 18 Mar 2023 14:24:49 GMT
age: 64464
last-modified: Fri, 17 Feb 2023 14:04:41 GMT
etag: "f1c2973dfe342d051a8acaad1316a143"
content-type: image/jpeg
cache-control: max-age=3600,public
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-response-policy: cross-origin
x-cache-hit: hit
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/7CBwa7UM8Ao
IP 142.250.74.3:0
Hash 286bac7a767fb9ae95bdd976e8c4ba13
0fed5294c4f64f51333c094822cd96e0176ca7a0
cb5272e7ee0364d12e9bad61d5c2bc26aa7180a23c27fabfc62d7ed841d44dbd
POST /s/gts1d4/7CBwa7UM8Ao HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:19:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p2.fwpixel.com/trk/feed:create_embed_instance
54.189.81.57200 OK 2 B URL HTTP/2 p2.fwpixel.com/trk/feed:create_embed_instance
IP 54.189.81.57:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /trk/feed:create_embed_instance HTTP/1.1
Host: p2.fwpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------14971246563847014751249270471
Content-Length: 1184
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:13 GMT
content-type: text/plain
server: openresty
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
X-Firefox-Spdy: h2
gs.mountain.com/gs
52.12.117.226200 OK 144 B IP 52.12.117.226:0
File type ASCII text, with no line terminators
Hash 7b0e2815e3ad4006eb63f54ec9ac098e
80063d29d2c900f95f068de831993ed20d20f104
f3332e78c250bb57ded5debb47e782123dc7f855be145215fbeeb2d7b9873d2f
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: guid=baf4e40c-c62e-11ed-b381-430ec427b846
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 19 Mar 2023 08:19:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
a.mailmunch.co/app/v1/popover.js
54.230.111.117200 OK 2.3 kB URL HTTP/2 a.mailmunch.co/app/v1/popover.js
IP 54.230.111.117:0
File type ASCII text, with very long lines (9035), with no line terminators
Hash d502d88dc4ee031c3ae1003ca035f133
c0192c79356b4f30491f14641ab912e4928c480b
247c91d2627670483a9034806cd49cd6856a84bcdb275d58bfc8acc9d6077898
GET /app/v1/popover.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 2274
date: Fri, 17 Mar 2023 14:00:58 GMT
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Fri, 17 Mar 2023 11:53:53 GMT
etag: "d502d88dc4ee031c3ae1003ca035f133"
x-amz-server-side-encryption: AES256
cache-control: max-age=172800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oobXx8byB6Vl7I6fjWC6oCtQCHHCafqb6ZQff7C3debYqfYoBerTyw==
age: 152296
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.23.0/otBannerSdk.js
104.19.188.97200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.23.0/otBannerSdk.js
IP 104.19.188.97:0
File type ASCII text, with very long lines (65455)
Hash 8e831c90babc06d12e9c3f0d1ffe1754
d052191ba087fc50429671a2d03b406a063eb5e0
5b8795b54d160c8cd4e629b4d2b134960efb93a536caf2b130bac3f45bd6bb8e
GET /scripttemplates/6.23.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: application/javascript
content-length: 76366
content-encoding: gzip
content-md5: joMckLq8BtEunD8NH/4XVA==
last-modified: Thu, 02 Sep 2021 03:11:58 GMT
etag: 0x8D96DBF6CBEE741
x-ms-request-id: 86ee2344-c01e-0100-7f6c-c49eb3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 15091
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa44a0d1a7fb4eb-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/c187e588-47f3-477e-bd9d-e2df634f2743/95603745-8925-4d17-a507-a566c4b19353/en.json
104.19.188.97200 OK 17 kB URL HTTP/2 cdn.cookielaw.org/consent/c187e588-47f3-477e-bd9d-e2df634f2743/95603745-8925-4d17-a507-a566c4b19353/en.json
IP 104.19.188.97:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash 707162e29ed70e0514058a00605cb29d
f2fcf4de9a045bdc84857cf47c9badd89f751860
f941ca4b8316e12e1669ceb9de99bdab60141f8d6e6173f9bc68508587b20ac4
GET /consent/c187e588-47f3-477e-bd9d-e2df634f2743/95603745-8925-4d17-a507-a566c4b19353/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: application/x-javascript
content-length: 16999
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: cHFi4p7XDgUUBYoAYFyynQ==
last-modified: Tue, 28 Sep 2021 14:03:50 GMT
etag: 0x8D98288CC1D045D
x-ms-request-id: 6879c5cb-f01e-0084-4e89-2a8ece000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Mon, 20 Mar 2023 08:19:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa44a0f48f61c12-OSL
X-Firefox-Spdy: h2
a.mailmunch.co/user_data/landing_pages/1577961947117-10.png
54.230.111.117200 OK 48 kB URL HTTP/2 a.mailmunch.co/user_data/landing_pages/1577961947117-10.png
IP 54.230.111.117:0
File type PNG image data, 529 x 536, 8-bit/color RGBA, non-interlaced\012- data
Hash a184cce826344f561b325a8c3c1e9e70
0ab30fad343c9363405c90644dcacc9c59c2e127
1ee9a50655a65e1340e34bbe187466a8c7f6feddc16fc1e280b74a6538522042
GET /user_data/landing_pages/1577961947117-10.png HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 47772
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Thu, 02 Jan 2020 10:45:52 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 18 Mar 2023 22:29:17 GMT
etag: "a184cce826344f561b325a8c3c1e9e70"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RvjmuSCJQYpV8y_zCSK_-hX2avLrIHwrBwl7ABoB1C_3tURlnrTgPA==
age: 35397
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1&cb=1679213952576953&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1679213953674
34.210.219.79200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1&cb=1679213952576953&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1679213953674
IP 34.210.219.79:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-56034392-1&ga_client_id=987267493.1679213953&shpt=Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-56034392-1%22%2C%22ga_client_id%22%3A%22987267493.1679213953%22%2C%22shpt%22%3A%22Serums%20Cosmetics%20%26%20Haircare%20%26%20More%20%E2%80%93%20Grande%20Cosmetics%22%2C%22dcm_cid%22%3A%221679213953.1%22%2C%22dcm_gid%22%3A%22795688310.1679213954%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1679213953.1&dcm_gid=795688310.1679213954&dxver=4.0.0&shaid=34102&plh=https%3A%2F%2Fgrandecosmetics.com%2F&shcq=0&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Cshopify%3Dtrue&shpic=1&cb=1679213952576953&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1679213953674 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Cookie: guid=baf4e40c-c62e-11ed-b381-430ec427b846
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=baf4e40c-c62e-11ed-b381-430ec427b846;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 14
server: istio-envoy
connection: close
transfer-encoding: chunked
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:17:58 GMT
expires: Thu, 14 Mar 2024 13:17:58 GMT
cache-control: public, max-age=31536000
age: 327676
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Mar 2023 00:08:41 GMT
expires: Wed, 13 Mar 2024 00:08:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 461433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.mailmunch.co/forms-cache/722058/settings-1679141999.json
54.230.111.117200 OK 4.0 kB URL HTTP/2 a.mailmunch.co/forms-cache/722058/settings-1679141999.json
IP 54.230.111.117:0
Hash 342e8670d836409440126cc87e344ea9
09d60a8625e953e4d9c2fdab4956fed256d157fa
c1d3b5f5c8df2d5bd8a9db15c87adc9b22ef4023c47afda38f817cf315e7ae72
GET /forms-cache/722058/settings-1679141999.json HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 18 Mar 2023 12:21:28 GMT
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Sat, 18 Mar 2023 12:20:10 GMT
etag: W/"26af707bdcd6c8a0ff315644684b5d8a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556952
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5ZVkd7_QVxjTulPH-Q-iIIZmX8ezU6fp1XxQOTZwCpuMt_LhkVpvrA==
age: 71864
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.23.0/assets/v2/otPcTab.json
104.19.188.97200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.23.0/assets/v2/otPcTab.json
IP 104.19.188.97:0
File type JSON data\012- , ASCII text, with very long lines (35524)
Hash 14eccb487b531768e6f203609528e009
ceaac9742d2810b5eb55c21a159f20f9ff93deb9
7c14071683101f505f4ec3fa7dbde9ab319dd3805479fb82bc247333522ab545
GET /scripttemplates/6.23.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: application/json
content-length: 11901
content-encoding: gzip
content-md5: FOzLSHtTF2jm8gNglSjgCQ==
last-modified: Thu, 02 Sep 2021 03:11:53 GMT
etag: 0x8D96DBF6A2632D5
x-ms-request-id: 03a9a3c9-601e-00ce-2a14-55bea9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa44a1049a11c12-OSL
X-Firefox-Spdy: h2
a.mailmunch.co/forms-cache/722058/1038647/index-1626833585.html
54.230.111.117200 OK 48 kB URL HTTP/2 a.mailmunch.co/forms-cache/722058/1038647/index-1626833585.html
IP 54.230.111.117:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32792)
Hash 44d6ba0e25bf1e064cf33f98de3e751a
49b4470b4cdf15e046f690182325c6bd9b555524
0acd76c8ba418a00503d830d87e12597199c95ffaa88cea50bafb32bdb18f4c3
GET /forms-cache/722058/1038647/index-1626833585.html HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 09 Mar 2023 05:22:13 GMT
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Wed, 21 Jul 2021 02:13:13 GMT
etag: W/"251af9754f94e9dcbcd6f523ced2aa82"
cache-control: max-age=31556952
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e4E3I09SzByvZIh92zVcX6d0BpwKw5aIwvYFi0T4H8g_Chj0sditZw==
age: 874622
X-Firefox-Spdy: h2
ocsp.e2m02.amazontrust.com/
54.230.80.227200 OK 278 B URL HTTP/1.1 ocsp.e2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 11ce638af5fbd819c519746e7ec4d9e5
84ea4a16054395d4ffb94d9922d7896ce39ab1b2
5629c43e01c95108fd0180743123fa92993d644695683762787ce33cf3e5c43e
POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 278
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 19 Mar 2023 08:19:14 GMT
Last-Modified: Sun, 19 Mar 2023 06:43:17 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jdvs2ae8UOTNcXsfG7ROyIJUaEGrLC-iT5DiZl6puIuMrlOymaSz-w==
Age: 5757
wsp6.hotjar.com/api/v2/client/ws
99.81.94.78101 Switching Protocols 0 B URL HTTP/1.1 wsp6.hotjar.com/api/v2/client/ws
IP 99.81.94.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: wsp6.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://grandecosmetics.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Q5pl7A2pd3FuJ5cZXfOStw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 19 Mar 2023 08:19:14 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j5ADrY1bdY/P59kVYtUR+kbHbOI=
Sec-WebSocket-Extensions: permessage-deflate
content.hotjar.io/
34.248.28.1200 OK 56 B IP 34.248.28.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b65388c62450d1dda188bd8d5ce89a50
747db70dcc8af17405b1a9746a6ca45c4c607fb4
c16112920f1fc42331e8ef90ba27cbe15204212ebbb15b4cfcd1304b015a6fee
POST / HTTP/1.1
Host: content.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 445116
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: application/json
content-length: 56
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213958141&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%2C%22pin_unauth%22%3A%22dWlkPU5qaGlOR1l3WTJJdFlUSTFaUzAwTm1RMExUa3pNRE10TWpneVptRTNNMll4TmpnMA%22%2C%22aem_fn%22%3A%22dd6f465f6810e92c01cf36d8272b2181ac54f825365184ef4255b27ef917677b%22%2C%22aem_eligible_list%22%3A%5B%22fn%22%2C%22ln%22%5D%2C%22aem_ln%22%3A%221f62becb1363bc86f7c3bf1f35196457b2d01ba085946a374854b4727f98df29%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213958141&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%2C%22pin_unauth%22%3A%22dWlkPU5qaGlOR1l3WTJJdFlUSTFaUzAwTm1RMExUa3pNRE10TWpneVptRTNNMll4TmpnMA%22%2C%22aem_fn%22%3A%22dd6f465f6810e92c01cf36d8272b2181ac54f825365184ef4255b27ef917677b%22%2C%22aem_eligible_list%22%3A%5B%22fn%22%2C%22ln%22%5D%2C%22aem_ln%22%3A%221f62becb1363bc86f7c3bf1f35196457b2d01ba085946a374854b4727f98df29%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%22f8f39772-1B04-48C4-33F0-6AC30302ADC6%22%7D&tid=2614409706572&cb=1679213958141&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%220a960b88-9db7-45b9-83bb-2a3771253743%22%2C%22pin_unauth%22%3A%22dWlkPU5qaGlOR1l3WTJJdFlUSTFaUzAwTm1RMExUa3pNRE10TWpneVptRTNNMll4TmpnMA%22%2C%22aem_fn%22%3A%22dd6f465f6810e92c01cf36d8272b2181ac54f825365184ef4255b27ef917677b%22%2C%22aem_eligible_list%22%3A%5B%22fn%22%2C%22ln%22%5D%2C%22aem_ln%22%3A%221f62becb1363bc86f7c3bf1f35196457b2d01ba085946a374854b4727f98df29%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fgrandecosmetics.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228b1025ba%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1710869174077683
date: Sun, 19 Mar 2023 08:19:15 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZaVVd0a04wTktlWXJ4dEVCbWFDKzUzWkdXU21kaklEbnV2OHMyb2k0aWJrUzU0S0U4aWQ3b3N0TVplbjVROWZFallMekJORitkbjhjWkMwQytnOUtzblp2WWduNWhUaUVOTkp4SnJ0bktqQT0maCtNa1RHclVIK2d3dnhsYXNqU2xkd3JUc09jPQ=="; Expires=Mon, 18 Mar 2024 08:19:15 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1679213955.c2b82500
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
analytics.getshogun.com/collector.js?shop=grande-cosmetics.myshopify.com
151.101.194.133200 OK 19 kB URL HTTP/2 analytics.getshogun.com/collector.js?shop=grande-cosmetics.myshopify.com
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (61502), with no line terminators
Hash 5e35962874257349b9bd3af0fa39c50f
1dfc7ecbaecc67a925d1d0f1a9369682b8595f0f
7ab5e0eab5ac7be9c3c7e1403d334e6db26c41b46d2aeff84baa64f4f747a280
GET /collector.js?shop=grande-cosmetics.myshopify.com HTTP/1.1
Host: analytics.getshogun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Cowboy
content-type: text/javascript; charset=utf-8
last-modified: Fri, 02 Sep 2022 14:52:45 GMT
via: 1.1 vegur, 1.1 varnish, 1.1 varnish
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:19:15 GMT
age: 3772
x-served-by: cache-lga21953-LGA, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 17865, 35
x-timer: S1679213956.555576,VS0,VE0
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
content-length: 18643
X-Firefox-Spdy: h2
grandecosmetics.com/
23.227.38.65200 OK 0 B IP 23.227.38.65:0
GET / HTTP/1.1
Host: grandecosmetics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 136
x-sorting-hat-shopid: 9890234434
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=871940e7-233c-4f61-8096-2e0107e8f8f4; path=/; expires=Sun, 19 Mar 2023 08:49:06 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Tue, 19 Mar 2024 08:19:07 GMT; secure; HttpOnly; SameSite=Lax
localization=US; path=/; expires=Tue, 19 Mar 2024 08:19:07 GMT; SameSite=Lax
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22US%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=grandecosmetics.com; path=/; expires=Mon, 20 Mar 2023 08:19:07 GMT; SameSite=Lax
_y=0a960b88-9db7-45b9-83bb-2a3771253743; Expires=Mon, 18-Mar-24 08:19:07 GMT; Domain=grandecosmetics.com; Path=/; SameSite=Lax
_s=cce2663f-509c-46dc-a508-37556000ed9b; Expires=Sun, 19-Mar-23 08:49:07 GMT; Domain=grandecosmetics.com; Path=/; SameSite=Lax
_shopify_y=0a960b88-9db7-45b9-83bb-2a3771253743; Expires=Mon, 18-Mar-24 08:19:07 GMT; Domain=grandecosmetics.com; Path=/; SameSite=Lax
_shopify_s=cce2663f-509c-46dc-a508-37556000ed9b; Expires=Sun, 19-Mar-23 08:49:07 GMT; Domain=grandecosmetics.com; Path=/; SameSite=Lax
_orig_referrer=; Expires=Sun, 02-Apr-23 08:19:07 GMT; Domain=grandecosmetics.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F; Expires=Sun, 02-Apr-23 08:19:07 GMT; Domain=grandecosmetics.com; Path=/; HttpOnly; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
etag: cacheable:d022de4999c8247c35cf14eaf8b0c0e8
x-alternate-cache-key: cacheable:08bab6a656f53c8ced9792e948601e66
content-encoding: gzip
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 9890234434
x-shardid: 136
vary: Accept
content-language: en
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 9558c800-337a-4405-8523-9d383e309c88
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FIVsWntYf3ED9DREzN1t02M5UggLb2kEWJiH7mbZ3Jf0u5ZiJ2L%2BV70Z5hrx0n1HUqPKnlV5E9fzUDSTmO1U3gie2ijRZZjebLlU2cQvUWgCYJ5pXs8yD3%2BN%2BUAjyBiScYvEjnA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aa449dd5ae5b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=700, db;dur=43, parse;dur=11, render;dur=86, asn;desc="50304", edge;desc="OSL", country;desc="NO", theme;desc="Prod - Grande Cosmetics + Hide controls + mntn", pageType;desc="index", cfRequestDuration;dur=782.999754, earlyhints
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/api.jquery-e94e010e92e659b566dbc436fdfe5242764380e00398907a14955ba301a4749f.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d343dcfa-9241-482a-b775-ca365155d126
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:32:13 GMT
cf-cache-status: HIT
age: 485212
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NNk%2BrtNoMRP%2BIn1YvsP4VqWAntGHic%2BVb8vOTSiSZpIahw0HnK9tLx8R7mNfhxDDRABqepkNlBD4aeDdkCdTJZS0bY%2BAMpf7t6cOfd56MP8cHS46EFZQ50tMkqcGsrmDMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=21.936, imageryFetch;dur=21.760, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7aa449e32a72b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/themes_support/option_selection-9f517843f664ad329c689020fb1e45d03cac979f64b9eb1651ea32858b0ff452.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/themes_support/option_selection-9f517843f664ad329c689020fb1e45d03cac979f64b9eb1651ea32858b0ff452.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/themes_support/option_selection-9f517843f664ad329c689020fb1e45d03cac979f64b9eb1651ea32858b0ff452.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/themes_support/option_selection-9f517843f664ad329c689020fb1e45d03cac979f64b9eb1651ea32858b0ff452.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 31f0ad18-234a-4c5c-ae3d-5ab7a4537628
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:55:41 GMT
cf-cache-status: HIT
age: 483806
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=polpTumD2Wb89DlQNj0R5xrZRLgT%2FrhXpmfV6oAb%2BdA9kXEPhnaL4G5SOjEaSyDzQELYhwo0Y6oT65bEqfr12xp%2BXsAzkTWeSuRJWWgK7kR3EgHpzu%2B8UWNHm0RHgVxR4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=25.273, imageryFetch;dur=25.031, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7aa449e32a68b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/lazysizes.js?v=62480953726719776521674624524
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/lazysizes.js?v=62480953726719776521674624524
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0098/9023/4434/t/195/assets/lazysizes.js?v=62480953726719776521674624524 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/lazysizes.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 08abe315-a07e-49c4-9b2c-7af664f006e2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:45:54 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fxdk2Qvz5xG%2BblgTluLNSnUK0nSyw8c01ZbTBbxPDJU0JUx8D0j9GqIgf6kXG7bFq8sKUAHEC13xYS%2FeyROdnsmnhjYFN0lReikaAm%2BWqFf1aqxRMz3glPZLChKpkWXloQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=87.878, imageryFetch;dur=82.691, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 7aa449e33a7fb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d116tqlcqfmz3v.cloudfront.net/grande-864/isotope.js
54.230.245.101200 OK 0 B URL HTTP/2 d116tqlcqfmz3v.cloudfront.net/grande-864/isotope.js
IP 54.230.245.101:0
GET /grande-864/isotope.js HTTP/1.1
Host: d116tqlcqfmz3v.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 27031
last-modified: Wed, 09 Oct 2019 20:24:45 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Mar 2023 08:19:07 GMT
etag: "1d50c4a31cc3f0aceca7054a89035212"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8_4G8kL7zSwzuHnWOtQWTUFUVZgX3DgYqi9q98KTAQBLO4hr9gYJPw==
age: 3200
X-Firefox-Spdy: h2
cdn.acsbapp.com/apps/app/dist/media/logomono.svg
104.22.0.204200 OK 0 B URL HTTP/2 cdn.acsbapp.com/apps/app/dist/media/logomono.svg
IP 104.22.0.204:0
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdtK0uxOVbeju_ybS7g6Ed0vnRh5WTgstYVAiCyylJomGvUGjemss6baCRdd6mMlfCaO2PaEP1eUUDr-TYzCJj7k4GyLDXUl
x-goog-generation: 1676551749898280
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4105
x-goog-meta-goog-reserved-file-mtime: 1676551711
x-goog-hash: crc32c=WqbZUg==, md5=0PBCUjoZi+w5efnpuOdTpA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
expires: Mon, 18 Mar 2024 07:58:30 GMT
cache-control: no-cache
age: 1244
last-modified: Thu, 16 Mar 2023 16:22:52 GMT
etag: W/"d0f042523a198bec3979f9e9b8e753a4"
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa44a0d4aedb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.23.0/assets/otCommonStyles.css
104.19.188.97200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.23.0/assets/otCommonStyles.css
IP 104.19.188.97:0
GET /scripttemplates/6.23.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:14 GMT
content-type: text/css
content-md5: Ye6OeZcNyuFoWog7CYs00A==
last-modified: Thu, 02 Sep 2021 03:12:05 GMT
x-ms-request-id: 1ccfd7bd-701e-0034-65cf-07774e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa44a1049a41c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.attn.tv/grandecosmetics/dtag.js?shop=grande-cosmetics.myshopify.com
54.230.111.28200 OK 0 B URL HTTP/2 cdn.attn.tv/grandecosmetics/dtag.js?shop=grande-cosmetics.myshopify.com
IP 54.230.111.28:0
GET /grandecosmetics/dtag.js?shop=grande-cosmetics.myshopify.com HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 13 Oct 2022 18:34:02 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: yVoux9oLAuJXd.Di2g2mZBwRDOrHWbaP
server: AmazonS3
content-encoding: gzip
date: Sun, 19 Mar 2023 08:19:09 GMT
cache-control: public, max-age=120
etag: W/"63c4cecbb2ce1cd4f81112bb139c451b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nGokGmH7lvHd5cYeL7PYq-6w4RtkaV-4RDzoibaUzcqSxmCZ0sBP9Q==
age: 7
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/new-custom.scss.css?v=51314589525529981901674804749
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/new-custom.scss.css?v=51314589525529981901674804749
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0098/9023/4434/t/195/assets/new-custom.scss.css?v=51314589525529981901674804749 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/new-custom.scss.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ec729d2f-f6f1-4494-8a94-e92392ab17ba
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 16:47:00 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sey8%2BAmx5dhpJNzbXNj1gEyTK6iSrGTZXP0RhEbd44d%2BXd18IBRF6HhOgSvoT8tivQW1Kqiuz45F79hKyUSSD40cG3luLej9IW5Eg4uoPfmbMoS1SCt7tJq0cdYoW3U1AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=437.550, imageryFetch;dur=89.131, imageryProcess;dur=345.337;desc="scss", cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 7aa449e3eb59b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn-redirector.glopal.com/common/js/webinterpret-loader.js?shop=grande-cosmetics.myshopify.com
188.114.97.1200 OK 0 B URL HTTP/2 cdn-redirector.glopal.com/common/js/webinterpret-loader.js?shop=grande-cosmetics.myshopify.com
IP 188.114.97.1:0
GET /common/js/webinterpret-loader.js?shop=grande-cosmetics.myshopify.com HTTP/1.1
Host: cdn-redirector.glopal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:15 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 7aa44a161e3d0b49-OSL
age: 812837
cache-control: public, max-age=2592000
last-modified: Thu, 09 Mar 2023 22:31:58 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ahVJGzoiIf8NwWwlxT8aGCPmT9R0ebWJySlwzaZnyiIiax1TbxGXQ2daCceFueMcnbFSDDXaMuHDW1hAL65gZ67QoQgbXG9vDUVC2XX4V3FZVWGowhYJ6KoWv5AKiVm74mdPWuEPlMorZSGD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grandecosmetics.com
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c7571cfa-8da0-4cb5-be68-ec88c33d7086
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:24:27 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2Fa1w560bw6exIr7fcHTExsDJJgnZbCf%2BGI1THYPlaP4tDgCCFKzBWoPer8Sc2FNUBSi%2B8kQDewrg%2FTgqTR0M2XZpGs1wrwFag2KGBorZ1cTwRSKHXx19flfBtgKsCD%2Fgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=21.216, imageryFetch;dur=20.927, cfRequestDuration;dur=85.000038
server: cloudflare
cf-ray: 7aa449e32e8eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/style.scss.css?v=55794640838384001081679057418
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/style.scss.css?v=55794640838384001081679057418
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0098/9023/4434/t/195/assets/style.scss.css?v=55794640838384001081679057418 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/style.scss.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 727d438b-35ab-467d-a922-a4cdb91b8a6c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 17 Mar 2023 12:50:31 GMT
cf-cache-status: HIT
age: 120561
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OuVJSx83gestLq3TMnKCt8kS1Z4Z9kovl1ubIwy1X%2BHYhIQS53Q4sh7jd2ff9LKnuwNbI5Bt5peXHXt1aaZILqDK4%2FGJFN5%2Fu0U4sXzqR1IDNpXSQ46go9Tufpo%2FZxuMxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=8194.565, imageryFetch;dur=71.477, imageryProcess;dur=8066.313;desc="scss", cfRequestDuration;dur=72.999954
server: cloudflare
cf-ray: 7aa449e31a41b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edge.curalate.com/sites/grandecosmetics-1cup2r/site/latest/site.min.js
104.18.27.211200 OK 0 B URL HTTP/2 edge.curalate.com/sites/grandecosmetics-1cup2r/site/latest/site.min.js
IP 104.18.27.211:0
GET /sites/grandecosmetics-1cup2r/site/latest/site.min.js HTTP/1.1
Host: edge.curalate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: application/javascript
x-amz-id-2: S+qEvV/i69GAqi/8TtrC/BwTmwoKbqPr0mDITLPIc5xftVZwjevKHa7F/b0tJ86yhc+2u3FlNQY=
x-amz-request-id: XFHHQNGBJ7W65HQ3
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 May 2022 11:55:49 GMT
etag: W/"92dacfa5331c49a8a1aa65c24cbc2795"
cache-control: max-age=1800,s-maxage=1800
x-amz-version-id: .ovwhm9TQL6vv70DVz5dCxwkyGi4_7Hg
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa449f1ee810b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1757778.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1757778.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-1757778.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 19 Mar 2023 08:19:09 GMT
cache-control: max-age=60
etag: W/01321311f6c11ae6c3122992198645ab
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M6dW0EGGX-3iJrZa6CiFeaMEYWM6oEkfF0ThKpWKEKC8eEbNJ6lTuQ==
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/custom-min.css?v=89355924326489499601674624524
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/custom-min.css?v=89355924326489499601674624524
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0098/9023/4434/t/195/assets/custom-min.css?v=89355924326489499601674624524 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/custom-min.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a73f5a47-762b-4f6b-becc-8def186009b1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:27:46 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fY5b0qsQUDSDGe79KLGbt%2FMJHWVRYo9eZ5evN8K%2FVZ9QKgD4Cqo4YyncqXHznb6Ga4iCU7vDAio2V%2FFGLRWFBjwhDP7yc0Pz23oKXAa4dNp0qPesQYsXJP9fomBfCsQ6YQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=91.514, imageryFetch;dur=89.526, cfRequestDuration;dur=30.999899
server: cloudflare
cf-ray: 7aa449e33a75b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/shop.bkp.js?v=19324693543885775091674624936
23.227.60.200200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/shop.bkp.js?v=19324693543885775091674624936
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0098/9023/4434/t/195/assets/shop.bkp.js?v=19324693543885775091674624936 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:07 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0098/9023/4434/t/195/assets/shop.bkp.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: abc9c0de-3ba2-48da-bd56-5cd058023f06
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:29:11 GMT
cf-cache-status: HIT
age: 471255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BGs0A4ALDDYWDmHkpgyYkV9x8K5VUE7vXJlWvpKJHXF9PWaTzG%2B00N9V6ie%2BizJpf%2B6ma%2B2ki7nH7cP%2Fy8CgJemAmNsIYEWj36V9pokP9Yk67wAuzKTN8fI9oqYn6G4R0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=131.781, imageryFetch;dur=95.430, cfRequestDuration;dur=18.999815
server: cloudflare
cf-ray: 7aa449e3db45b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
grandecosmetics.attn.tv/d/?attn_vid=2f4a341c52ca4b92ad69fc0d5a63e8db
104.18.37.231200 OK 0 B URL HTTP/2 grandecosmetics.attn.tv/d/?attn_vid=2f4a341c52ca4b92ad69fc0d5a63e8db
IP 104.18.37.231:0
GET /d/?attn_vid=2f4a341c52ca4b92ad69fc0d5a63e8db HTTP/1.1
Host: grandecosmetics.attn.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grandecosmetics.com/
Origin: https://grandecosmetics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 08:19:10 GMT
content-type: application/json
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7aa449f44df7b4fa-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap
IP 142.250.74.74:0
GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grandecosmetics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 19 Mar 2023 08:19:11 GMT
date: Sun, 19 Mar 2023 08:19:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2