clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
23.227.38.32200 OK 16 kB URL User Request GET HTTP/2 clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
IP 23.227.38.32:443
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (5505)
Hash af7d5e42c7020939d7885a29551819c2
03c714c6e48ccf63cef73fa4590a95b94281667e
7bee460374a0af2ccc9d87635900a34dfdbe1a95c2a8d3dd2fe6e6877b7b9980
GET /56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
vary: Accept-Encoding
x-frame-options: DENY
x-shopid: 56349720736
x-shardid: 224
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: _shopify_essential=:AY8a7FEwAAEALyUlSFxZ0QymEFSgkiiYdzWpRcWrJgUxXJvLIviAUY7zD3YXwAhESeAojrsmgAfTuOvVKvv3a8QzRb2Fh-taAHXSm277c-VIjAYe2UlSCzlc1S8qldJUF9UmPVJSTmpNogq9MnfnrlhfXl7Vyw==:; path=/; Max-Age=31536000; secure; HttpOnly
_cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; domain=clearstem.com; path=/; expires=Sat, 27 Apr 2024 15:00:46 GMT; SameSite=Lax
x-request-id: 1f92b659-06a7-4c78-bd34-37e266c61b5b-1714143645
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=56349720736&source%5Buuid%5D=1f92b659-06a7-4c78-bd34-37e266c61b5b-1714143645
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=56349720736&source%5Buuid%5D=1f92b659-06a7-4c78-bd34-37e266c61b5b-1714143645
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U63k5tI5DdgDU%2BnVpS06GPTtNq7L%2BTuJXgfpM6IlY9b2qJ6uklxYgg0sv9deYVyVIL%2F6UNn6tE%2FcT%2FgOGp6EYR8wcVXnV%2FXkFMhLTfNOa4WmmOWeMzUzvXGoMAyrXgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=491, cfRequestDuration;dur=671.999931
server: cloudflare
cf-ray: 87a771b8b93a9294-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/56349720736/assets/139610718433/checkout_stylesheet/v2-ltr-2021-01-25-b27910274fbf14f125c1a98e7fcabcbd-17840
23.227.60.200200 OK 44 kB URL GET HTTP/2 cdn.shopify.com/app/services/56349720736/assets/139610718433/checkout_stylesheet/v2-ltr-2021-01-25-b27910274fbf14f125c1a98e7fcabcbd-17840
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 135a1e8a0e58d776ab9fcdd4731c612d
d4314afb1206b988a6c39bf6f5345028e7f7648d
c19c616002d6c374856752db1da647f77050393053e5c0b3e853e26f7d9d688e
GET /app/services/56349720736/assets/139610718433/checkout_stylesheet/v2-ltr-2021-01-25-b27910274fbf14f125c1a98e7fcabcbd-17840 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: text/css; charset=utf-8
content-length: 44042
access-control-allow-origin: *
cache-control: max-age=31556952, public
content-encoding: br
link: <https://cdn.shopify.com/app/services/56349720736/assets/139610718433/checkout_stylesheet/v2-ltr-2021-01-25-b27910274fbf14f125c1a98e7fcabcbd-17840>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 57015652-4fdf-42b5-8e58-13b9268f1f06-1714051475
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Thu, 25 Apr 2024 13:24:39 GMT
cf-cache-status: HIT
age: 61335
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFEfVQntSSLdXV6olZOw9FR9bwlHPlQ4jJd2pBMRHDI0HkwkdRaui5Dfz7GPi5vdYpBkBymwzqz4orOFgeUG6M5sixjZg9FA9rqFt4BCSsSU9VZ5TbdRzX1BxSj%2B5kf2gQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=3625, imagery;dur=3765.069, imageryFetch;dur=3737.759, cfRequestDuration;dur=16.999722
server: cloudflare
cf-ray: 87a771bf080856c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc/authenticate?key=8bd3189c8127416be713490485ffafe2&syclid=650f1292-859c-40b1-82fe-a7b9fb6faac6
23.227.38.32302 Found 288 kB URL User Request GET HTTP/2 clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc/authenticate?key=8bd3189c8127416be713490485ffafe2&syclid=650f1292-859c-40b1-82fe-a7b9fb6faac6
IP 23.227.38.32:443
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Size 288 kB (288104 bytes)
Hash a60fa1926bdf2181ca7131bdcd1d6799
eefbe2407f6a969369b329ca6b0f6c6f95e74362
fc9c8c49f411d7f4d188f8aaffc84536f993fc8038c669d7607ef82d6dd19fb4
GET /56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc/authenticate?key=8bd3189c8127416be713490485ffafe2&syclid=650f1292-859c-40b1-82fe-a7b9fb6faac6 HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 15:00:45 GMT
content-type: text/html; charset=utf-8
location: https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
x-frame-options: DENY
x-shopid: 56349720736
x-shardid: 224
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en-US
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; domain=clearstem.com; path=/; expires=Sat, 27 Apr 2024 15:00:45 GMT; SameSite=Lax
_tracking_consent=%7B%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22m%22%3A%22%22%2C%22a%22%3A%22%22%2C%22p%22%3A%22%22%2C%22s%22%3A%22%22%7D%7D%2C%22region%22%3A%22NO03%22%2C%22v%22%3A%222.1%22%7D; Expires=Sat, 26-Apr-25 15:00:45 GMT; Domain=clearstem.com; Path=/; SameSite=Lax
_tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; Expires=Sat, 26-Apr-25 15:00:45 GMT; Domain=clearstem.com; Path=/; SameSite=Lax
x-request-id: 0e6897d5-f0ce-43e9-b513-6ac5e450b527-1714143645
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=56349720736&source%5Buuid%5D=0e6897d5-f0ce-43e9-b513-6ac5e450b527-1714143645
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=56349720736&source%5Buuid%5D=0e6897d5-f0ce-43e9-b513-6ac5e450b527-1714143645
x-dc: gcp-europe-north1,gcp-us-central1,gcp-us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5EdWetHqyEsR1d4%2BebHJ0STq1dU%2FW8sQYSJwgx7NlKtwntRGMbzKX5A%2FHrrNzq%2FDPmGSRqDRopvxZ4yyrd0HuRY%2F0tHX2xyLQsd3k4KwWQPY%2FwY3X%2F0kjacHwqOxZbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=114, cfRequestDuration;dur=289.000034
server: cloudflare
cf-ray: 87a771b6bd0b9294-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0563/4972/0736/files/MINDBODYSKIN_2_small.png?v=1711751637
23.227.60.200200 OK 2.7 kB URL GET HTTP/2 cdn.shopify.com/s/files/1/0563/4972/0736/files/MINDBODYSKIN_2_small.png?v=1711751637
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type RIFF (little-endian) data, Web/P image
Hash 14dcb6fae4b1a2e35fceabe9bacd526d
8975a78ed2f6672fe01555e5218557e68b0c874f
53b89d4b46312d78fd7c7723ab90d40ead5e943be00b6f8a94272d85157a90b3
GET /s/files/1/0563/4972/0736/files/MINDBODYSKIN_2_small.png?v=1711751637 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: image/webp
content-length: 2710
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0563/4972/0736/files/MINDBODYSKIN_2_small.png>; rel="canonical"
source-length: 1326011
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: c49ef93e-5f21-4e9e-86b8-2dc5e1241300-1711754053
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 29 Mar 2024 23:14:13 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l8RR4%2FlgfBHqQUjv%2F5uDrXcpzpqEOeVtDwthSjossjj3CDvEm9juuK2Z7KoSRGgBwhBplbXOHq8HUisGPuWLRwvBe5l4ZsLjtU7lGWCupN9glUHYGSwis%2Bau%2BQYSzuRY3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=351.738, imageryFetch;dur=33.296, imageryProcess;dur=317.462;desc="image", cfRequestDuration;dur=45.999765
server: cloudflare
cf-ray: 87a771bf080c56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0563/4972/0736/files/BLACK_LOGO_b05c7c95-d260-4af2-8665-95beaa2a47ba.png?17840
23.227.60.200200 OK 9.3 kB URL GET HTTP/2 cdn.shopify.com/s/files/1/0563/4972/0736/files/BLACK_LOGO_b05c7c95-d260-4af2-8665-95beaa2a47ba.png?17840
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type RIFF (little-endian) data, Web/P image
Hash 93d93763aca1e3568b3c17e9b16d4bd5
86338de1de61a80de89f4d92264ee1912835b9e3
3de61c6cd39dab3a91c52e21fa36b333ca85afd9eb96703d5d38d9d860d0cd4a
GET /s/files/1/0563/4972/0736/files/BLACK_LOGO_b05c7c95-d260-4af2-8665-95beaa2a47ba.png?17840 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: image/webp
content-length: 9282
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0563/4972/0736/files/BLACK_LOGO_b05c7c95-d260-4af2-8665-95beaa2a47ba.png>; rel="canonical"
source-length: 18181
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0b5b46ef-6f97-41e6-9884-6811f0608576-1714051475
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Thu, 25 Apr 2024 13:24:36 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AX7ZsSgMumbcoCPNpd5YnD3b1YRggUTq7w8HTBOVRCno385uYS1E3jYD2OgiS%2BuDNg9yaQTdrz13szX2779j7Fo3m88gSSBak0lM3jyd1ZEEa6Cq3hRPHAY%2F6goXwicYUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=207.880, imageryFetch;dur=56.633, imageryProcess;dur=126.546;desc="image", cfRequestDuration;dur=58.999777
server: cloudflare
cf-ray: 87a771bf080e56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WCC62PP
142.250.74.168200 OK 116 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WCC62PP
IP 142.250.74.168:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (42585)
Size 116 kB (115619 bytes)
Hash 387dd8b632194e487ebcb17569418b46
1b0a58ddf09169c1c005839ec08b1060fcfc3f2a
422d251cddbc858d4ee4ad805decb5fb0edabfe0eb3e9d72a26b08e1e58586ae
GET /gtm.js?id=GTM-WCC62PP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 15:00:46 GMT
expires: Fri, 26 Apr 2024 15:00:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 115619
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/events.js
34.120.58.162200 OK 13 kB URL GET HTTP/2 shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/events.js
IP 34.120.58.162:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectshopify-gtm-suite.getelevar.com
FingerprintAB:DE:7D:48:DD:D6:59:38:FE:D0:56:56:A0:89:90:55:11:83:59:9E
ValiditySat, 13 Apr 2024 23:41:09 GMT - Sat, 13 Jul 2024 00:35:03 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (35625), with no line terminators
Hash 6375111a747e2e45fafab06e9d055074
ab8bd71841ef985228b98b791b5f846c4cb5d8ed
fac3cad662259058d484a459b6a5f3100ef79ece11fc0c44a101668b30f35f2a
GET /shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/events.js HTTP/1.1
Host: shopify-gtm-suite.getelevar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPozneEJEpoZsMRNJZdXosTWvfYJiAv6qnEHr17FKkheyi-3OWX-JSFUQ9esm9Ijchr-FLo
x-goog-generation: 1695688365626811
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12681
content-encoding: gzip
x-goog-hash: crc32c=PUUjaQ==, md5=PKkosmEy/TjNJgTjxPld2g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 12681
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Origin, Access-Control-Allow-Origin
server: UploadServer
date: Fri, 26 Apr 2024 05:58:02 GMT
expires: Sat, 26 Apr 2025 05:58:02 GMT
cache-control: no-transform
last-modified: Tue, 26 Sep 2023 00:32:45 GMT
etag: "3ca928b26132fd38cd2604e3c4f95dda"
content-type: text/javascript
age: 32564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopify-init.blackcrow.ai/js/core/clearstem-skincare.js?shopify_app_version=1.0.159&shop=clearstem-skincare.myshopify.com
54.230.111.43200 OK 0 B URL GET HTTP/2 shopify-init.blackcrow.ai/js/core/clearstem-skincare.js?shopify_app_version=1.0.159&shop=clearstem-skincare.myshopify.com
IP 54.230.111.43:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.blackcrow.ai
FingerprintB8:36:69:72:2C:2E:90:3F:65:51:FE:DE:D5:38:9B:14:52:AE:AE:70
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 10 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/core/clearstem-skincare.js?shopify_app_version=1.0.159&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: shopify-init.blackcrow.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 0
date: Fri, 26 Apr 2024 14:22:33 GMT
last-modified: Fri, 26 Apr 2024 14:22:14 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
cache-control: max-age=600
x-amz-version-id: TdakWYa6v3QlfQWlILWxNEUgnMeXBIPd
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h0hbVqyMOYNKnru5wFcysOfqumTvWfkfK9HYUiu-MH39s0yhQKuPCQ==
age: 2295
x-robots-tag: noindex
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/56349720736/javascripts/checkout_countries/139610718433/en-US/countries-c950c00c8ee74a13250cb9057e7734bc7683e7f3-0.js?version=2021-01-25
23.227.60.200200 OK 30 kB URL GET HTTP/2 cdn.shopify.com/app/services/56349720736/javascripts/checkout_countries/139610718433/en-US/countries-c950c00c8ee74a13250cb9057e7734bc7683e7f3-0.js?version=2021-01-25
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type Unicode text, UTF-8 text, with very long lines (62575)
Hash 87f56aa6b734408630232370bfd3e918
14422d8428c374368e062379ae03c81783479d4b
29a97f5fcd512695257100d1576fabecc2f194519b6374439148760f64037b2e
GET /app/services/56349720736/javascripts/checkout_countries/139610718433/en-US/countries-c950c00c8ee74a13250cb9057e7734bc7683e7f3-0.js?version=2021-01-25 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 29595
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
content-language: en-US
link: <https://cdn.shopify.com/app/services/56349720736/javascripts/checkout_countries/139610718433/en-US/countries-c950c00c8ee74a13250cb9057e7734bc7683e7f3-0.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: cb4601be-dfb1-4eba-bf70-5c4b7619bbb6-1714143646
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 26 Apr 2024 15:00:37 GMT
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pr8P8i5MkMQoPLfcBQ03ccK9Uq5ew1wLMcyHUr6gWI%2BQrY178dzgOZq40%2FNnv%2BtPzhWAW6ENxrk9y3FEWfffV9Q8Fe%2BXAZDNaRkHKzY3taz%2FpK8IWTcYU1fuRYqtoV2g%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=743, imagery;dur=777.554, imageryFetch;dur=758.914, cfRequestDuration;dur=995.999813
server: cloudflare
cf-ray: 87a771bf2d587131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/gtm-suite.js
34.120.58.162200 OK 18 kB URL GET HTTP/3 shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/gtm-suite.js
IP 34.120.58.162:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectshopify-gtm-suite.getelevar.com
FingerprintAB:DE:7D:48:DD:D6:59:38:FE:D0:56:56:A0:89:90:55:11:83:59:9E
ValiditySat, 13 Apr 2024 23:41:09 GMT - Sat, 13 Jul 2024 00:35:03 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (60095), with no line terminators
Hash 2c6f489ee1677aa3ef9daa549139148a
1fb436992a41f1e5e08084101cefe729810d22fb
85fbcaeaf675a7b441a752a6432477c74effa35963e6b6524446c1f5ef79614d
GET /shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/gtm-suite.js HTTP/1.1
Host: shopify-gtm-suite.getelevar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpMYFN8ZaK71Li6c1dVw9pELq3dDkcZ6u44PIG-DSHNxdvJviBpLfHo7vzmU9fQFG0thfcUoVDf5g
x-goog-generation: 1695688344801895
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18449
content-encoding: gzip
x-goog-hash: crc32c=YD06aw==, md5=1mfZHMUC9UhVKyKLAheqWg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 18449
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Origin, Access-Control-Allow-Origin
server: UploadServer
date: Fri, 26 Apr 2024 06:30:43 GMT
expires: Sat, 26 Apr 2025 06:30:43 GMT
cache-control: no-transform
last-modified: Tue, 26 Sep 2023 00:32:24 GMT
etag: "d667d91cc502f548552b228b0217aa5a"
content-type: text/javascript
age: 30604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/fingerprint.js
34.120.58.162200 OK 241 B URL GET HTTP/3 shopify-gtm-suite.getelevar.com/shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/fingerprint.js
IP 34.120.58.162:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectshopify-gtm-suite.getelevar.com
FingerprintAB:DE:7D:48:DD:D6:59:38:FE:D0:56:56:A0:89:90:55:11:83:59:9E
ValiditySat, 13 Apr 2024 23:41:09 GMT - Sat, 13 Jul 2024 00:35:03 GMT
File type JavaScript source, ASCII text, with very long lines (316), with no line terminators
Hash 55512fe06d538d1728fc9709dc8cb8ad
83aca4f96ccd8f7c825f176946dd9865762d80c1
7c52d5e5bddd42d53c199594f8e4bc76abc2cbf68e8b27a3692a30e5092c4231
GET /shops/fd090dd0287268a25b0c941e028f4ff2496ea034/3.8.3/fingerprint.js HTTP/1.1
Host: shopify-gtm-suite.getelevar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPoNUpHp0X52WFdeC_IkbrjV4dPEKvcomeaE3aN1MhEhw9DaVKV3gvp1j3ym45Ca6zUSMSu1KSN-2w
x-goog-generation: 1695688344803540
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 241
content-encoding: gzip
x-goog-hash: crc32c=zQKI2Q==, md5=2/rHHCOfmEqsjkPTqzeDkw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 241
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Origin, Access-Control-Allow-Origin
server: UploadServer
date: Fri, 26 Apr 2024 06:30:44 GMT
expires: Sat, 26 Apr 2025 06:30:44 GMT
cache-control: no-transform
last-modified: Tue, 26 Sep 2023 00:32:24 GMT
etag: "dbfac71c239f984aac8e43d3ab378393"
content-type: text/javascript
age: 30603
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-LNH1QN2KJM&l=dataLayer&cx=c
142.250.74.168200 OK 103 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-LNH1QN2KJM&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (13416)
Size 103 kB (103345 bytes)
Hash 6bc578da2e8d6b76966d10849e15abf5
e980277d0b873c4aab2b38d3f942e292400eeb15
6556dc6e8212c036a00cffb62fc84673e0a3655d2b71fc386795facd593da798
GET /gtag/js?id=G-LNH1QN2KJM&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 15:00:47 GMT
expires: Fri, 26 Apr 2024 15:00:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
shop.pe/widget/widget_async.js
35.227.244.1 162 B URL shop.pe/widget/widget_async.js
IP 35.227.244.1:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 26 Apr 2024 15:00:47 GMT
content-type: text/html
content-length: 162
location: https://d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.shopify.com/s/trekkie.storefront.88baf04046928b6edf6574afd22dbd026cc7d568.min.js
23.227.60.200200 OK 24 kB URL GET HTTP/3 cdn.shopify.com/s/trekkie.storefront.88baf04046928b6edf6574afd22dbd026cc7d568.min.js
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash c3999c98269ec4ac712b82e92127a956
5d33a61af1fdb7d79c068d1bedc3f962984391f9
a26474c44436a2dee51f7d857c42b873a3d0e20e47919cc4e6c62a73e49c59fb
GET /s/trekkie.storefront.88baf04046928b6edf6574afd22dbd026cc7d568.min.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:47 GMT
content-type: text/javascript
content-length: 23934
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31536000
content-encoding: br
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/trekkie.storefront.88baf04046928b6edf6574afd22dbd026cc7d568.min.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 50abee8d-cbd6-4c42-a0bf-7b071832e38a-1712951696
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 12 Apr 2024 19:54:56 GMT
cf-cache-status: HIT
age: 1191946
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yCH3tmzsYRH7w2ZJ5oXysVUmL%2FEgIbvFUk2AGFdzUi1fYWzE3By3OaNR4MdRM7ge6QxG9MwFzi7lA4Ha7CiGKI5Mu4LdclKiqpqU5xv01xJvqsuKure4BxYBP6sikOm8Rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=185.821, imageryFetch;dur=159.873, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 87a771c7d82756c7-OSL
alt-svc: h3=":443"; ma=86400
cdn.shopify.com/wpm/b62cf46f4w0b3aa4f8pd4b3b9bcmd2934107m.js
23.227.60.200200 OK 28 kB URL GET HTTP/3 cdn.shopify.com/wpm/b62cf46f4w0b3aa4f8pd4b3b9bcmd2934107m.js
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 7c322d85edf98481b196eab2550a19da
d80d2bcd72d290c20160fd25c192f80282c24e8d
613aac6e999f286b5e80414c486dc0e1aa4575a9166aec31d586e6856843ce89
GET /wpm/b62cf46f4w0b3aa4f8pd4b3b9bcmd2934107m.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-type: text/javascript
content-length: 27483
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
link: <https://cdn.shopify.com/wpm/b62cf46f4w0b3aa4f8pd4b3b9bcmd2934107m.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 016b1490-e879-494a-88b9-e2983378a3a2-1714142876
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 26 Apr 2024 14:47:56 GMT
cf-cache-status: HIT
age: 759
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eXT%2FiaR3NxQvwj7XG8x3ACI8zXMEqwitZFEOMKEyyeEbLKAh%2FsXQ709dKmNkcEDGvGGBrkFpFOZ0MmbzM%2FE7yvwn3nNsVAcNiz9f7xKhmC%2FTfZwUjOgF2r2dze7TAuh%2Big%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=73.893, imageryFetch;dur=39.837, cfRequestDuration;dur=20.999908
server: cloudflare
cf-ray: 87a771c7d82f56c7-OSL
alt-svc: h3=":443"; ma=86400
j.northbeam.io/ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js
35.190.125.58200 OK 34 kB URL GET HTTP/2 j.northbeam.io/ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js
IP 35.190.125.58:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectj.northbeam.io
Fingerprint8A:71:01:CA:21:4C:86:04:B4:75:9B:37:0C:D6:86:96:46:0C:DD:D5
ValidityFri, 08 Mar 2024 14:50:13 GMT - Thu, 06 Jun 2024 15:43:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65473)
Hash c8eafe3c47c8267e9076f4b1c37bb174
630c56fe72b720477ce812400d8f4498bbf9faa8
84f79354fc849fcc22f20a6146f5d041bb389eb389f59df7cf03246307405f14
GET /ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js HTTP/1.1
Host: j.northbeam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPq-UCXsPRctVl0iyiKFPdjMyfNfzI4drKSsC7NW3sxZelnOJckI8LjcnWxVBVtXWVoNCmA
x-goog-generation: 1710529254405386
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 34444
content-encoding: gzip
x-goog-hash: crc32c=L2nsJA==, md5=kxzDdu0rQAwfW2dnhn4SuA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 34444
server: UploadServer
date: Fri, 26 Apr 2024 15:00:48 GMT
expires: Fri, 26 Apr 2024 15:01:48 GMT
cache-control: no-cache, max-age=60
last-modified: Fri, 15 Mar 2024 19:00:54 GMT
etag: "931cc376ed2b400c1f5b6767867e12b8"
content-type: application/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
j.northbeam.io/ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js
35.190.125.58200 OK 34 kB URL GET HTTP/2 j.northbeam.io/ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js
IP 35.190.125.58:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectj.northbeam.io
Fingerprint8A:71:01:CA:21:4C:86:04:B4:75:9B:37:0C:D6:86:96:46:0C:DD:D5
ValidityFri, 08 Mar 2024 14:50:13 GMT - Thu, 06 Jun 2024 15:43:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65473)
Hash c8eafe3c47c8267e9076f4b1c37bb174
630c56fe72b720477ce812400d8f4498bbf9faa8
84f79354fc849fcc22f20a6146f5d041bb389eb389f59df7cf03246307405f14
GET /ota-sp/ac656b75-a78c-49dd-b210-a4c492e3a509.js HTTP/1.1
Host: j.northbeam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPodmiz-7AwLPOuKvVogvVn3GyCDMLH411ENJZ5OPR-UhB1Y9yoj6mVz6igu3Ve4UFOIABLG0QY37Q
x-goog-generation: 1710529254405386
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 34444
content-encoding: gzip
x-goog-hash: crc32c=L2nsJA==, md5=kxzDdu0rQAwfW2dnhn4SuA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 34444
server: UploadServer
date: Fri, 26 Apr 2024 15:00:48 GMT
expires: Fri, 26 Apr 2024 15:01:48 GMT
cache-control: no-cache, max-age=60
last-modified: Fri, 15 Mar 2024 19:00:54 GMT
etag: "931cc376ed2b400c1f5b6767867e12b8"
content-type: application/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
clearstem.com/a/elevar?source_url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc
23.227.38.32204 No Content 0 B URL POST HTTP/3 clearstem.com/a/elevar?source_url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/elevar?source_url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: application/json
Content-Length: 638
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FEwAAEALyUlSFxZ0QymEFSgkiiYdzWpRcWrJgUxXJvLIviAUY7zD3YXwAhESeAojrsmgAfTuOvVKvv3a8QzRb2Fh-taAHXSm277c-VIjAYe2UlSCzlc1S8qldJUF9UmPVJSTmpNogq9MnfnrlhfXl7Vyw==:; _gcl_au=1.1.1281313967.1714143647
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 Apr 2024 15:00:48 GMT
content-type: text/html
cf-ray: 87a771c73a19929e-CPH
cf-cache-status: DYNAMIC
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
set-cookie: secure_customer_sig=; path=/; expires=Sat, 26 Apr 2025 15:00:47 GMT; secure; HttpOnly; SameSite=Lax
_shopify_essential=:AY8a7FG7AAEAYmcS0u2FPHI9PYPJsWJoRw5x_EOOrJmI9tBBk1_SewgrDOFZK0CPtVaiWY-b7Js2AcVpnP45FFjYnPXWOuEM7VwqwlsjyT55XeoR7DACNw7yyvbj2Ugn0ZYIOJqp6ZTM7zae96reHMtFj2I8rQ==:; path=/; Max-Age=31536000; secure; HttpOnly; SameSite=Lax
x-cloud-trace-context: 40d30fa7fa79efcfc8925f1eba70c9b0
x-request-id: 5656e9e1-83c8-4eb0-a4af-e88c6d075731-1714143647
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eb2cuvjhxBNW%2BUNpaVMJqxElAZnfApN2iojACtYuVZ7xtIeO6bt8RJDSIl5UANReJMHsamxwl05bFZGlbZzuZ07bRF%2BqKLObg7adS32R3Z%2Bip%2BGOW82tZPr8%2FwDOPoY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: cfRequestDuration;dur=144.000053, cfRequestDuration;dur=256.000042
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
143.204.55.54 1.2 kB URL d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
IP 143.204.55.54:0
File type JavaScript source, ASCII text, with very long lines (541)
Hash 35e9e8b57931e4c628ecd253130c488b
0bb60f149f7544f1f93c67224abdc7a4b4697038
a0181247a5b7be659e4ff5bf3135ad0e40446b84cb5064eb5d9982735fee335b
GET /widget/widget_async.js HTTP/1.1
Host: d2mjzob2nc713b.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1192
last-modified: Wed, 24 Apr 2024 17:14:25 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-meta-mtime: 1713978863.67
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 14:22:32 GMT
cache-control: max-age=3600, public
etag: "484f387da6a7d4eb76e437aad8296008"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Cdu6_u6SnZovkx_TEWpreR1HVLTDBfBBiBVh0JFHo86LgCi6ux_7WA==
age: 2302
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.237200 OK 13 kB IP 204.79.197.237:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99
ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (46429), with no line terminators
Hash 72bca04fd669eb89fc65d59052d0fc00
27e60aef86f0cb1b2f6b6ed9df9a4e3ba88efd21
823804a7807864b44093a3843788f4cd076e89cf4a6fdeb8d153ae5c2c2df721
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3C36AD344AA143E4A439D910723BA00A Ref B: OSL30EDGE0108 Ref C: 2024-04-26T15:00:48Z
date: Fri, 26 Apr 2024 15:00:48 GMT
X-Firefox-Spdy: h2
j.northbeam.io/vendor/nb-sp.min.js
35.190.125.58200 OK 33 kB URL GET HTTP/3 j.northbeam.io/vendor/nb-sp.min.js
IP 35.190.125.58:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectj.northbeam.io
Fingerprint8A:71:01:CA:21:4C:86:04:B4:75:9B:37:0C:D6:86:96:46:0C:DD:D5
ValidityFri, 08 Mar 2024 14:50:13 GMT - Thu, 06 Jun 2024 15:43:06 GMT
File type JavaScript source, ASCII text, with very long lines (65473)
Hash 60e0f253944f0e7c2553f7cc1a018153
86b6522240a51c48101c60800d9ae9c4b236f87d
823dbeaa78950c6bece89b8e845853afd2d7215b04f96552f45769b6742de291
GET /vendor/nb-sp.min.js HTTP/1.1
Host: j.northbeam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPqVCu0092iJIu0APeRl5zYGSvfb3yD4dQp8BcHWZKCBuzZ3_jhgJeCqn_IhaTn0whfVAI4cxoHchA
x-goog-generation: 1678149145707502
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 33375
content-encoding: gzip
x-goog-hash: crc32c=D+5jJg==, md5=KZE5N9CK0oQ6DfdN2VuiTQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 33375
server: UploadServer
date: Fri, 26 Apr 2024 14:49:54 GMT
expires: Fri, 26 Apr 2024 15:49:54 GMT
cache-control: public, max-age=3600
age: 654
last-modified: Tue, 07 Mar 2023 00:32:25 GMT
etag: "29913937d08ad2843a0df74dd95ba24d"
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
23.227.38.32200 OK 0 B URL POST HTTP/3 clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 205
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEAYmcS0u2FPHI9PYPJsWJoRw5x_EOOrJmI9tBBk1_SewgrDOFZK0CPtVaiWY-b7Js2AcVpnP45FFjYnPXWOuEM7VwqwlsjyT55XeoR7DACNw7yyvbj2Ugn0ZYIOJqp6ZTM7zae96reHMtFj2I8rQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://clearstem.com
access-control-max-age: 86400
x-request-id: e047d957-5500-4376-b129-507be882c45c
x-robots-tag: noindex
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2BDdvHKOeXFhadRTUyJB3jLR9KIjiOkXRJvHbwtxgrfkqKNt94bMUkWW2kwxLupa3HmodrSRlPENmoOjDGBTJsl7B3bx00so8OvFjDoxG6gaigrNIjr4NzP7GRnXrzc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=151.999950
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771c94dde929e-CPH
clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
23.227.38.32200 OK 0 B URL POST HTTP/3 clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 241
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEAYmcS0u2FPHI9PYPJsWJoRw5x_EOOrJmI9tBBk1_SewgrDOFZK0CPtVaiWY-b7Js2AcVpnP45FFjYnPXWOuEM7VwqwlsjyT55XeoR7DACNw7yyvbj2Ugn0ZYIOJqp6ZTM7zae96reHMtFj2I8rQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://clearstem.com
access-control-max-age: 86400
x-request-id: 1778521c-5f8f-47ca-94e6-72798aa53e9a
x-robots-tag: noindex
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MMf4JPLavY8itVksLop1GSA3wWydFKTqpZArHMtRR%2BVibSYOQkkgMg67aFIygfkyu5q6iPQNvEoyrgU6wXa6byhkF%2BVwBgjjiBW%2FvS5Iqi5fY0xtUExUvN1wDuXVL9A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=151.000023
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771c95e00929e-CPH
events.attentivemobile.com/e?v=4.32.1_31901f86a2&pd=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&u=89cc5a1d6120449693a4d6b9145828e4&c=clearstem&ceid=T4W<=1714143648209&tag=modern&cs=2913004516&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1714143648217
172.64.148.35200 OK 0 B URL POST HTTP/2 events.attentivemobile.com/e?v=4.32.1_31901f86a2&pd=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&u=89cc5a1d6120449693a4d6b9145828e4&c=clearstem&ceid=T4W<=1714143648209&tag=modern&cs=2913004516&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1714143648217
IP 172.64.148.35:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectattentivemobile.com
FingerprintCD:C1:A1:49:E7:41:CD:B2:82:85:DE:C0:81:2F:DB:7D:3F:A7:C8:8A
ValidityFri, 26 Apr 2024 02:53:52 GMT - Fri, 24 May 2024 18:19:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /e?v=4.32.1_31901f86a2&pd=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&u=89cc5a1d6120449693a4d6b9145828e4&c=clearstem&ceid=T4W<=1714143648209&tag=modern&cs=2913004516&t=v&r=&m=%7B%22source%22%3A%22a%22%7D&cb=1714143648217 HTTP/1.1
Host: events.attentivemobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
x-envoy-upstream-service-time: 2
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771c9ed3e56ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
23.227.38.32200 OK 0 B URL POST HTTP/3 clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 414
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEA1RpRWk5OoVBUDJF8jGpHl1BzVQmuR8X0g7wFwsWF4CZyHCAadPwa7PFJNmQs_8M9PlHKWR4FASNdzCQIfjUSkjWLON_vkKWXj774_RELe-XtF1avNIh2oFEABxxmR3G2kaqbuOuMO3YL37d1pQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4; __attentive_cco=1714143648214; _nb_sp_ses.2e66=*; _nb_sp_id.2e66=2e0c5d0c-97be-46f2-bdcd-89cee6115da9.1714143648.1.1714143648.1714143648.11cc66b2-dacf-4cb8-b835-d4be9d6dd458; cart_currency=USD; _uetsid=c41571b003dd11efb7ad9779c52609c5; _uetvid=c415a9b003dd11efa8f31f434abd8343
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://clearstem.com
access-control-max-age: 86400
x-request-id: 656faf5d-00c7-4fb6-8dc1-9ce12bdce2f2
x-robots-tag: noindex
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A9KIZrzz%2FMf7uwrC8P07IIv%2FSCTeUu%2BXKd%2Bn7qIZR2pX3Bvo1lDy1IRZcRCPRMgXgXCLpvhO0pWtw5HXVu%2BK3AdOx1iVN5Vd3VscWdQEPg4mszPiFRg%2Fjqddeq2LY28%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=164.000034
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771cae8a7929e-CPH
i.clearstem.com/nb-collector
23.227.153.18200 OK 0 B URL OPTIONS HTTP/1.1 i.clearstem.com/nb-collector
IP 23.227.153.18:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjecti.clearstem.com
Fingerprint8A:E2:C7:EA:76:AC:04:B7:0E:21:8B:A4:D7:0E:A3:AA:84:85:50:7D
ValidityFri, 15 Mar 2024 17:00:31 GMT - Thu, 13 Jun 2024 17:00:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /nb-collector HTTP/1.1
Host: i.clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 26 Apr 2024 15:00:48 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://clearstem.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Max-Age: 5
X-Robots-Tag: noindex
i.clearstem.com/nb-collector
23.227.153.18200 OK 2 B URL OPTIONS HTTP/1.1 i.clearstem.com/nb-collector
IP 23.227.153.18:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjecti.clearstem.com
Fingerprint8A:E2:C7:EA:76:AC:04:B7:0E:21:8B:A4:D7:0E:A3:AA:84:85:50:7D
ValidityFri, 15 Mar 2024 17:00:31 GMT - Thu, 13 Jun 2024 17:00:30 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /nb-collector HTTP/1.1
Host: i.clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: application/json; charset=UTF-8
Content-Length: 2022
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _gcl_au=1.1.1281313967.1714143647; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 26 Apr 2024 15:00:48 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Set-Cookie: _nb_sp_cookie=ed72a3a5-1aff-4005-a781-e9ba3c01d27d; Expires=Sat, 26 Apr 2025 15:00:48 GMT; Path=/; Secure; HttpOnly; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: https://clearstem.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
cdn.attn.tv/growth-tag-assets/client-configs/T4W.js
143.204.55.59200 OK 0 B URL GET HTTP/2 cdn.attn.tv/growth-tag-assets/client-configs/T4W.js
IP 143.204.55.59:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.attn.tv
FingerprintFA:F1:AA:15:48:7D:8F:61:2A:11:39:78:5A:97:D5:38:B2:1C:D8:9A
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /growth-tag-assets/client-configs/T4W.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 0
last-modified: Mon, 17 Dec 2018 20:59:49 GMT
content-encoding:
x-amz-version-id: kGJjc2HxNgGNuk_7UqP1h9o.liqWLb8I
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 07:26:09 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: En4DZxiPRzZZMR2KeGNG_trdO9HumOMtzexm5lqR4HXIRijpEvQMrQ==
age: 27284
X-Firefox-Spdy: h2
clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
23.227.38.32200 OK 0 B URL POST HTTP/3 clearstem.com/.well-known/shopify/monorail/unstable/produce_batch
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1110
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEA1RpRWk5OoVBUDJF8jGpHl1BzVQmuR8X0g7wFwsWF4CZyHCAadPwa7PFJNmQs_8M9PlHKWR4FASNdzCQIfjUSkjWLON_vkKWXj774_RELe-XtF1avNIh2oFEABxxmR3G2kaqbuOuMO3YL37d1pQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4; __attentive_cco=1714143648214; _nb_sp_ses.2e66=*; _nb_sp_id.2e66=2e0c5d0c-97be-46f2-bdcd-89cee6115da9.1714143648.1.1714143648.1714143648.11cc66b2-dacf-4cb8-b835-d4be9d6dd458; cart_currency=USD; _uetsid=c41571b003dd11efb7ad9779c52609c5; _uetvid=c415a9b003dd11efa8f31f434abd8343
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://clearstem.com
access-control-max-age: 86400
x-request-id: 7b28c450-dc0b-401c-bbe5-1cc8b423904a
x-robots-tag: noindex
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XDljTLAE31LYWslBXhk2Af8uYNHgCbL6sRTMbEcbKUXOFmHZGKWJWTPT3dvuPP9IGWMmqLTFXhwUvbq1bj1fQUAFql8maVgbPXz%2FSB%2FyJUGZ2Rla%2Fx4LdmAtC8YbIVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=169.999838
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771cc5b0c929e-CPH
clearstem.attn.tv/unrenderedCreative?v=4.32.1&r=&id=89cc5a1d6120449693a4d6b9145828e4&pv=1&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&w=1280&h=1024&ss_ref=ORGANIC&f=2
104.18.43.135204 No Content 0 B URL POST HTTP/2 clearstem.attn.tv/unrenderedCreative?v=4.32.1&r=&id=89cc5a1d6120449693a4d6b9145828e4&pv=1&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&w=1280&h=1024&ss_ref=ORGANIC&f=2
IP 104.18.43.135:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectattn.tv
Fingerprint20:F9:EA:E8:98:AE:71:8D:06:DE:09:67:08:2B:53:EC:14:8D:1B:92
ValidityThu, 25 Apr 2024 19:15:05 GMT - Fri, 24 May 2024 18:34:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unrenderedCreative?v=4.32.1&r=&id=89cc5a1d6120449693a4d6b9145828e4&pv=1&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&w=1280&h=1024&ss_ref=ORGANIC&f=2 HTTP/1.1
Host: clearstem.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 29
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 26 Apr 2024 15:00:49 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
x-envoy-upstream-service-time: 23
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771cd8dbb7127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
d2mjzob2nc713b.cloudfront.net/widget/triggerRunner.js?v=53f4a9a
143.204.55.54200 OK 3.9 kB URL GET HTTP/2 d2mjzob2nc713b.cloudfront.net/widget/triggerRunner.js?v=53f4a9a
IP 143.204.55.54:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (547)
Hash 53f4a9a3a00cfeeaf6aac6443e8faed3
d3b9927272ca4a44b0263c19af44b5c547377af6
45fdcedbeb833ea40206c98dfcbfa73842f72d53f166a26b47ecc3b01a55286d
GET /widget/triggerRunner.js?v=53f4a9a HTTP/1.1
Host: d2mjzob2nc713b.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3876
date: Wed, 24 Apr 2024 17:14:44 GMT
last-modified: Wed, 24 Apr 2024 17:14:25 GMT
etag: "2b6c6e55404c24e9cff7e3333208a19a"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1713978863.65
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RpyJOzLNBJyrEH-EkVbr725uhQFhhtcQPhn3Sv-m5MZOaXF3eCd-sw==
age: 164766
X-Firefox-Spdy: h2
d2mjzob2nc713b.cloudfront.net/widget/widget.js?v=98a90e9
143.204.55.54200 OK 50 kB URL GET HTTP/2 d2mjzob2nc713b.cloudfront.net/widget/widget.js?v=98a90e9
IP 143.204.55.54:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (778)
Hash 98a90e99ee59f64971e16821fbf48eff
a5e513285def5f800ec1163fc31fd2ca121d1536
80852e4ab3b038c9d6a976531364dcba44523d57fa406c398f8c8871a5979a14
GET /widget/widget.js?v=98a90e9 HTTP/1.1
Host: d2mjzob2nc713b.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 50177
date: Wed, 24 Apr 2024 17:14:45 GMT
last-modified: Wed, 24 Apr 2024 17:14:25 GMT
etag: "6f2ccdd9ace3365afb4f57b92a5d87a5"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1713978861.84
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: byrS8cq_5Ic04bU48sqwcONNkRwxuFTMy2eqkssD0GD4tqUmPbXbOQ==
age: 164765
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&r=<=3110&evt=pageLoad&sv=1&rn=987607
204.79.197.237204 No Content 0 B URL GET HTTP/2 bat.bing.com/action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&r=<=3110&evt=pageLoad&sv=1&rn=987607
IP 204.79.197.237:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99
ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&r=<=3110&evt=pageLoad&sv=1&rn=987607 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2CFB17046A7C6D5E1CAD03696B896CAF; domain=.bing.com; expires=Wed, 21-May-2025 15:00:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 95357F4CB54F4D15ACA56188946E7280 Ref B: OSL30EDGE0108 Ref C: 2024-04-26T15:00:49Z
date: Fri, 26 Apr 2024 15:00:49 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/343002239.js
204.79.197.237204 No Content 0 B URL GET HTTP/2 bat.bing.com/p/action/343002239.js
IP 204.79.197.237:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99
ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/343002239.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CC69474094DA4E08825F0CE2C77F1CFA Ref B: OSL30EDGE0108 Ref C: 2024-04-26T15:00:49Z
date: Fri, 26 Apr 2024 15:00:49 GMT
X-Firefox-Spdy: h2
cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_ab9a7d39ea
143.204.55.59200 OK 44 kB URL GET HTTP/2 cdn.attn.tv/tag/4-latest/unified-tag.js?v=4-latest_ab9a7d39ea
IP 143.204.55.59:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.attn.tv
FingerprintFA:F1:AA:15:48:7D:8F:61:2A:11:39:78:5A:97:D5:38:B2:1C:D8:9A
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 67cfa3f813722bf0e1dbc94f83e901c5
808f7175d84997499530cd110e501256733b060c
858563779f05bc10aff276f7217a7561f01f73d631b5ab55a5a7cffefd3f38a1
GET /tag/4-latest/unified-tag.js?v=4-latest_ab9a7d39ea HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 26 Apr 2024 14:59:15 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 26 Apr 2024 14:57:05 GMT
etag: W/"67cfa3f813722bf0e1dbc94f83e901c5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
x-amz-version-id: dNR66USjElWFcqLEN7v49TGfISEE9REg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xxHjZpW1BYYk98mV25jxb-ORqoWpRVNVRjbb_s9yq2Ig2w-XoYuULw==
age: 94
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/destination?id=AW-778395671&l=dataLayer&cx=c
142.250.74.168200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=AW-778395671&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (4179)
Hash 304211e72f2de363cc03f8210f87b056
d99483377150343edf2ec6b7eea3c63ad423c540
8eb330ee9edc97fe7c16d962084e6be316d54adc39c095f0310400fdb935bc9d
GET /gtag/destination?id=AW-778395671&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 15:00:49 GMT
expires: Fri, 26 Apr 2024 15:00:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80962
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.getcarro.com/script-tags/all/nb-101920173500.js?shop=clearstem-skincare.myshopify.com
54.230.111.54200 OK 647 B URL GET HTTP/2 cdn.getcarro.com/script-tags/all/nb-101920173500.js?shop=clearstem-skincare.myshopify.com
IP 54.230.111.54:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.getcarro.com
Fingerprint29:0B:73:8D:1E:36:F5:7C:05:EC:D3:3F:12:CB:46:9C:25:48:89:8B
ValiditySat, 21 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 534bb39761d44878dc735375075d36b6
63ef0e84ea4f125c644241c0ac08fef15544aa25
a59e968e20f2b7c0530574846ca9ed7e3ab6d81711c26beb9665c54afca0aae2
GET /script-tags/all/nb-101920173500.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: cdn.getcarro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 647
last-modified: Tue, 20 Oct 2020 00:36:01 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 03:25:23 GMT
etag: "534bb39761d44878dc735375075d36b6"
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BvdGk5QLaIUNr0tmKTcXNOAJHn-Awowqi6tkD-GeyCnQ143NkgUdcw==
age: 43614
vary: Origin
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-83ced323738e20d8fa253cebfacec51a3ad103d8bfeb275d3d312d29490f9265.js
23.227.60.200200 OK 7.7 kB URL GET HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-83ced323738e20d8fa253cebfacec51a3ad103d8bfeb275d3d312d29490f9265.js
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type ASCII text, with very long lines (19890), with no line terminators
Hash 0f56531c658c720f54dc58a083e94b09
8effcf5880b70dff995c3970ef5a8856c5ceedd2
83ced323738e20d8fa253cebfacec51a3ad103d8bfeb275d3d312d29490f9265
GET /shopifycloud/shopify/assets/shop_qr-83ced323738e20d8fa253cebfacec51a3ad103d8bfeb275d3d312d29490f9265.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-83ced323738e20d8fa253cebfacec51a3ad103d8bfeb275d3d312d29490f9265.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 58af526f-f382-4c44-a23e-508c2d83df55-1710505939
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 15 Mar 2024 12:32:19 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OFe1IHIMTP5XoXhSSlkW%2B7UN9IlQXRuxWdBgzVoWxcw70DOi6QsYAbwEdAm0Wx1IjZprt1xm8PsV%2BL%2FIiQNZDkKShH%2Fi%2Bqv4Q56LaIHqIy0vTzVfxRUC7%2Fbf0%2BNX4e2z4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=28.679, imageryFetch;dur=27.043, cfRequestDuration;dur=49.000025
server: cloudflare
cf-ray: 87a771bf0d467131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/proxy/1dde7762be14860956bbb54fad8f525ed7c5f1eb2f2317be33239dc139bd1795/repeat-optin-snippet.netlify.app/snippet.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
23.227.60.200200 OK 6.5 kB URL GET HTTP/3 cdn.shopify.com/proxy/1dde7762be14860956bbb54fad8f525ed7c5f1eb2f2317be33239dc139bd1795/repeat-optin-snippet.netlify.app/snippet.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (21191)
Hash 4d525aa634750a2af8af14c6d09c4fb7
e757d479ad59cf1ee7cafff88b1dbc80e081fa8c
1d2c165e5daf0e733f54b5bbb4ecc6e44f7fc81382dd12e09a60238d9c3859fb
GET /proxy/1dde7762be14860956bbb54fad8f525ed7c5f1eb2f2317be33239dc139bd1795/repeat-optin-snippet.netlify.app/snippet.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript; charset=utf-8
content-length: 6536
access-control-allow-origin: *
cache-control: public, max-age=600
cache-status: "Netlify Edge"; hit
content-disposition: attachment
content-encoding: br
content-security-policy: default-src 'none'; sandbox;
link: <https://cdn.shopify.com/proxy/1dde7762be14860956bbb54fad8f525ed7c5f1eb2f2317be33239dc139bd1795/repeat-optin-snippet.netlify.app/snippet.js>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4bbcb781-57c2-4ad1-aed0-0f11bd1792ba-1714143239
x-xss-protection: 1; mode=block
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 26 Apr 2024 14:53:59 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o3NhSmHopcn4KamCbRJ6zHK50XJ%2BNtyUS%2FUf9gQb037CX2A60R40GJHFNY1PTMk5BvUh%2FD7scHgzc6gKcjgg6rriIvF3pJnC99Vczn4a%2BNeDXOwI%2FpDAiO%2B1NOelpnNNGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=132.805, imageryFetch;dur=106.548, cfRequestDuration;dur=157.999992
server: cloudflare
cf-ray: 87a771d02ba456c7-OSL
alt-svc: h3=":443"; ma=86400
cdn.shopify.com/proxy/e5a048f80e5ba40e75973ecaff04445bf4b8d6115832d9cd96fa07baae2c9db9/help-center.gorgias.help/api/help-centers/loader.js?t=1701232701400&shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
23.227.60.200200 OK 1.1 kB URL GET HTTP/3 cdn.shopify.com/proxy/e5a048f80e5ba40e75973ecaff04445bf4b8d6115832d9cd96fa07baae2c9db9/help-center.gorgias.help/api/help-centers/loader.js?t=1701232701400&shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (2615), with no line terminators
Hash fecfb08ac6bdd35f6cda5531f621a8a5
642ffcd7a9847a4eec0ae83719591787932d0451
6ed3e51a1067d79cf37cf8b2de5def2664eb058d0f1f2352481b678bd4175bd5
GET /proxy/e5a048f80e5ba40e75973ecaff04445bf4b8d6115832d9cd96fa07baae2c9db9/help-center.gorgias.help/api/help-centers/loader.js?t=1701232701400&shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript; charset=utf-8
content-length: 1081
access-control-allow-origin: *
cache-control: public, max-age=600
content-disposition: attachment
content-encoding: br
content-security-policy: default-src 'none'; sandbox;
link: <https://cdn.shopify.com/proxy/e5a048f80e5ba40e75973ecaff04445bf4b8d6115832d9cd96fa07baae2c9db9/help-center.gorgias.help/api/help-centers/loader.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ae69efcf-0b18-46f3-8384-09b2dd1cf084-1714143560
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Fri, 26 Apr 2024 14:59:21 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=szuEyLPMHckdTOB%2Fw2wvkunkf%2B7Az2gxJiodr5%2B3TXnhy7oJlE5jDmfBRxJRWEC78Fy2WVTZSv9M6tr2wZNnkg2eTYRipKVpCmOWCrIu1Zn6vOjJSE7WwH4t72zWMXhU%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=69.859, imageryFetch;dur=59.630, cfRequestDuration;dur=177.999973
server: cloudflare
cf-ray: 87a771d03bbf56c7-OSL
alt-svc: h3=":443"; ma=86400
cdn.shopify.com/proxy/fb899354866de4c9a22d6296095eac6dccfe5c1efc16732418c315d467ee3d90/app.retention.com/shopify/reids.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
23.227.60.200200 OK 6.5 kB URL GET HTTP/3 cdn.shopify.com/proxy/fb899354866de4c9a22d6296095eac6dccfe5c1efc16732418c315d467ee3d90/app.retention.com/shopify/reids.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (24256), with no line terminators
Hash 6783a59f8119bfe74ea61b502fc472af
9fa35ae498151e965c0032cc6e59373de5429f8e
9d9c81d577b85ddd229673c267945e0fac5624ae67dd3f070c52fbed4d16542c
GET /proxy/fb899354866de4c9a22d6296095eac6dccfe5c1efc16732418c315d467ee3d90/app.retention.com/shopify/reids.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript
content-length: 6528
access-control-allow-origin: *
cache-control: public, max-age=600
content-disposition: attachment
content-encoding: br
content-security-policy: default-src 'none'; sandbox;
last-modified: Tue, 23 Apr 2024 21:01:38 GMT
link: <https://cdn.shopify.com/proxy/fb899354866de4c9a22d6296095eac6dccfe5c1efc16732418c315d467ee3d90/app.retention.com/shopify/reids.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a3e62337-c4e9-464f-8829-e6be50082da4-1713973314
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TD%2FmKI1YbDHajC9lxnqJMsGpmLuF%2BZ4NQOpmc%2FAWxoavZTdQsbvN3zO2V9pUg2LP%2BmPxoLc25v2ls4%2Ft7s0P6RRTFj6CjqM2NESQJwhZGD8xBVOi%2B1MSjxpUpZbDx5VTCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=210.150, imageryFetch;dur=170.606, cfRequestDuration;dur=170.000076
server: cloudflare
cf-ray: 87a771d04bcb56c7-OSL
alt-svc: h3=":443"; ma=86400
cdn.shopify.com/proxy/b23ff8ddc64f5dd325cc91431f27c197bf50f163cbe6af54205654645874dd22/api.goaffpro.com/loader.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
23.227.60.200200 OK 3.7 kB URL GET HTTP/3 cdn.shopify.com/proxy/b23ff8ddc64f5dd325cc91431f27c197bf50f163cbe6af54205654645874dd22/api.goaffpro.com/loader.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (13263), with no line terminators
Hash 2245af4441587aa732407010caadadcc
408fb026cf747cf9ca219c245892027fbc02e90f
41dc81f13d5eb78bd87a54a338f88cbf4251ca5734177567a3390dccb4c418e8
GET /proxy/b23ff8ddc64f5dd325cc91431f27c197bf50f163cbe6af54205654645874dd22/api.goaffpro.com/loader.js?shop=clearstem-skincare.myshopify.com&sp-cache-control=cHVibGljLCBtYXgtYWdlPTkwMA HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript; charset=utf-8
content-length: 3704
access-control-allow-origin: *
cache-control: public, max-age=600
content-disposition: attachment
content-encoding: br
content-security-policy: default-src 'none'; sandbox;
link: <https://cdn.shopify.com/proxy/b23ff8ddc64f5dd325cc91431f27c197bf50f163cbe6af54205654645874dd22/api.goaffpro.com/loader.js>; rel="canonical"
referrer-policy: same-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 567c2d8c-14e5-45fd-8a05-32317bc83a2d-1714143560
x-xss-protection: 1; mode=block
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 26 Apr 2024 14:59:20 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kh6AFNM90l2Cw4EhteV5COHf1pPjwmLXoBJunxYtKny%2FOolbAtgasgY9gwYpAYh0O%2F%2B3G5NODFMb%2FzOXii7GcR4OrLj6mtK3OYSbMl%2FnZVMSoyNDEurpsTXXHDbIMoA%2F1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=61.005, imageryFetch;dur=29.392, cfRequestDuration;dur=190.999985
server: cloudflare
cf-ray: 87a771d03bb556c7-OSL
alt-svc: h3=":443"; ma=86400
triplewhale-pixel.web.app/triplepx.js?shop=clearstem-skincare.myshopify.com
199.36.158.100200 OK 35 kB URL GET HTTP/2 triplewhale-pixel.web.app/triplepx.js?shop=clearstem-skincare.myshopify.com
IP 199.36.158.100:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B
ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 9bb5eebab6772367d858909b8200e4da
d689ccd4d37753ddd8b3f2f6dd25c98b2fa11cd7
5e17f2c10ead97c54a014aca29a4ee19c60bd4b6cbedba597edeccfab2fbdbb1
GET /triplepx.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: triplewhale-pixel.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, POST, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "960c1e6f80a6fa9c97a95700280878fc42945433bed687982a37a08e4ae10693-br"
last-modified: Thu, 18 Apr 2024 09:15:20 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 15:00:49 GMT
x-served-by: cache-hel1410029-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714143649.447060,VS0,VE181
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34665
X-Firefox-Spdy: h2
dx.mountain.com/spxtagconv/37201?shaid=37201&shop=clearstem-skincare.myshopify.com
44.209.137.118200 OK 1.3 kB URL GET HTTP/1.1 dx.mountain.com/spxtagconv/37201?shaid=37201&shop=clearstem-skincare.myshopify.com
IP 44.209.137.118:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, ASCII text, with very long lines (1254), with no line terminators
Hash 0955e96562740d8166bd7a863d174b12
f40acc52e2f753306b92f94a7dabab8ec7b57761
b7dbe94060105c638cb5b702400989983bc9b7885622edc37b32067f601f46c4
GET /spxtagconv/37201?shaid=37201&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-type: application/javascript;charset=utf-8
content-length: 1254
date: Fri, 26 Apr 2024 15:00:49 GMT
x-envoy-upstream-service-time: 1
be: spx-prod
server: istio-envoy
db.revoffers.com/v2/sync.html
54.230.111.30 7.5 kB URL db.revoffers.com/v2/sync.html
IP 54.230.111.30:0
File type JavaScript source, ASCII text, with very long lines (22923)
Hash f40e02ecc348410583a60c3edf12fbf2
eb5401477b9e43bb8f2296c1c114533a47e267e2
6f91420103cab3233281bcd46dbbbe802d38c74302e35b90c25f71ffbf2bc442
GET /v2/sync.html HTTP/1.1
Host: db.revoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
x-amz-meta-replication-status: COMPLETED
x-amz-meta-version-id: ClEhfN1beZ0DGX5CR382cUn6aKnO6wwI
last-modified: Wed, 11 Aug 2021 18:21:05 GMT
x-amz-version-id: THByu_v99LgUBzBs.T7l9nupDizZrVFN
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 09:44:09 GMT
etag: W/"1e4b6997a2a15a8ce2cdf859eae651aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3n2XYfhP_MkvZRwtg2mF9AbNPcuHOZOfri4SB-AqEIgaR-J3XHmieg==
age: 19207
X-Firefox-Spdy: h2
config.gorgias.chat/gorgias-chat-bundle.js?rev=4d0ba05f&appKey=01GYCC83JD8PXKQEKTBS2SSPRE
172.64.144.86200 OK 366 kB URL GET HTTP/2 config.gorgias.chat/gorgias-chat-bundle.js?rev=4d0ba05f&appKey=01GYCC83JD8PXKQEKTBS2SSPRE
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (33676)
Size 366 kB (366107 bytes)
Hash cc38e62a687b985be4cfa5e98ca78e9e
b99f0ba4ce7c0363d1e530924cb402babe52884d
7c5be9c3a550918cb5a58ddc79e6f3d291210a08dd84d4f05258ff0994f89fd7
GET /gorgias-chat-bundle.js?rev=4d0ba05f&appKey=01GYCC83JD8PXKQEKTBS2SSPRE HTTP/1.1
Host: config.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"8eabd-uZ8LpM58A2PR5TCSTLQCur5SiE0"
via: 1.1 google
cf-cache-status: HIT
age: 10948
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d34ebe1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
shopper.shop.pe/input.js
35.190.54.17200 OK 8.8 kB IP 35.190.54.17:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (16881)
Hash 392ae6de9bd06bc3ed6e39d4232ae552
a037aad1bcd1a39c92623c5adcea1a7890f022c5
620a97911c6964bfc7cfacf4df74b3ba598ef728f2117675d171e4c62d500add
GET /input.js HTTP/1.1
Host: shopper.shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPppy10YdSm3zCDQcSFvremUjYkbX2ZStZQS2TigZZbZXU6flR61fiJGS4q3aOn0G17heQIxydflmA
x-goog-generation: 1707842873418606
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8831
content-encoding: gzip
x-goog-hash: crc32c=mi0bhQ==, md5=0xF0XoMHewePpWbHehXZtQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 8831
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Fri, 26 Apr 2024 11:44:16 GMT
expires: Fri, 26 Apr 2024 15:44:16 GMT
cache-control: public, max-age=14400
age: 11794
last-modified: Tue, 13 Feb 2024 16:47:53 GMT
etag: "d311745e83077b078fa566c77a15d9b5"
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cached.rebuyengine.com/api/v1/user/config?shop=clearstem-skincare.myshopify.com
151.101.130.132200 OK 461 B URL GET HTTP/2 cached.rebuyengine.com/api/v1/user/config?shop=clearstem-skincare.myshopify.com
IP 151.101.130.132:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcached.rebuyengine.com
Fingerprint91:D4:DC:7F:1B:B8:3D:63:9D:FC:7A:70:8C:74:C8:64:63:EE:05:A5
ValidityTue, 05 Mar 2024 19:57:05 GMT - Mon, 03 Jun 2024 19:57:04 GMT
Hash f6b5ef3d839716ff6b04be7401853bf2
da1c5eb6a21a1e1116411f88914ad280f14bf251
875a539d2770a4f7a890f672cc1dd374b10ff889cb7695859e2d4ad0b3672c83
GET /api/v1/user/config?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: cached.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/json
access-control-allow-headers: Content-Type, X-Rebuy-User-Token, Rebuy-Api-Key
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-allow-private-network: true
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self';
cache-control: max-age=0, stale-while-revalidate=1800
content-encoding: br
accept-ranges: bytes
age: 1179
date: Fri, 26 Apr 2024 15:00:50 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714143650.244670,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 461
X-Firefox-Spdy: h2
db.revoffers.com/v2/_tr
54.230.111.30204 No Content 0 B IP 54.230.111.30:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.revoffers.com
FingerprintE9:B2:26:75:1D:B6:88:54:9F:6B:DD:A1:8F:03:5D:06:B1:8A:E7:69
ValidityMon, 18 Sep 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/_tr HTTP/1.1
Host: db.revoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 414
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 26 Apr 2024 15:00:50 GMT
set-cookie: vid=000Jq1Lv_79191db899_vvON; max-age=31536000; secure; SameSite=None
cache-control: no-store, no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-success: true
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VrmqDFY8ZL0oA3VQ3coa1Q5aVfN70VvtGtQLehY_RfUbhIcpE8B4ng==
X-Firefox-Spdy: h2
shop.pe/widget/conv/params?allow_referral=true&callback=AddShoppersWidget.Integration.pixels&value=99.30&orderid=2024-04-26T15%3A00%3A50.107Z¤cy=undefined&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&shortid=HJ4zdjAN&siteid=621d3db4bbf6c3450b3083d3&url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc&user_email=&custom_fields=%7B%7D&rand=66608&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer=
35.227.244.1200 OK 0 B URL GET HTTP/3 shop.pe/widget/conv/params?allow_referral=true&callback=AddShoppersWidget.Integration.pixels&value=99.30&orderid=2024-04-26T15%3A00%3A50.107Z¤cy=undefined&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&shortid=HJ4zdjAN&siteid=621d3db4bbf6c3450b3083d3&url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc&user_email=&custom_fields=%7B%7D&rand=66608&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer=
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/conv/params?allow_referral=true&callback=AddShoppersWidget.Integration.pixels&value=99.30&orderid=2024-04-26T15%3A00%3A50.107Z¤cy=undefined&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&shortid=HJ4zdjAN&siteid=621d3db4bbf6c3450b3083d3&url=https%253A%252F%252Fclearstem.com%252F56349720736%252Forders%252F0c4f5470a3b5ad736af6c52d17d869dc&user_email=&custom_fields=%7B%7D&rand=66608&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer= HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: addshoppers="2|1:0|10:1714143649|11:addshoppers|44:OTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI=|0bb4800af4614df053a96efe1c81287094f79f3c597679e1c60180467943c4cd"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/javascript
content-length: 0
data-regulation-gdpr-enforced: true
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH
set-cookie: addshoppers="2|1:0|10:1714143650|11:addshoppers|44:OTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI=|1f2f8c466d92b3e9d62f9600a671f19bdc7b918ee344263ab0e14711957ee99b"; expires=Thu, 21 Jan 2027 15:00:50 GMT; Path=/; SameSite=None; secure
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
backend-version: 47
access-control-allow-credentials: true
access-control-allow-origin: https://my.addshoppers.com
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
backend.getrepeat.io/api/v2/public/branding
52.20.78.240200 OK 0 B URL OPTIONS HTTP/1.1 backend.getrepeat.io/api/v2/public/branding
IP 52.20.78.240:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectbackend.getrepeat.io
Fingerprint89:ED:43:C3:DB:5B:50:CE:76:26:2A:65:6A:16:E9:26:42:ED:C3:60
ValidityMon, 18 Mar 2024 02:08:27 GMT - Sun, 16 Jun 2024 02:08:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/public/branding HTTP/1.1
Host: backend.getrepeat.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-repeat-origin
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 26 Apr 2024 15:00:49 GMT
Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714143650&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=jLftqrtcJhtQS2SAGgwP40X%2F4iXfs3R%2FInoE0cjzpNs%3D"}]}
Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714143650&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=jLftqrtcJhtQS2SAGgwP40X%2F4iXfs3R%2FInoE0cjzpNs%3D
Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 7200
Access-Control-Allow-Headers: content-type,x-repeat-origin
Transfer-Encoding: chunked
Via: 1.1 vegur
manage.safeopt.com/consent
35.227.244.1200 OK 0 B URL HEAD HTTP/2 manage.safeopt.com/consent
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerCentralNic Luxembourg Sàrl
Subject*.safeopt.com
FingerprintFB:DD:68:CA:D5:76:08:ED:20:07:29:10:12:8C:A3:43:96:A9:0D:61
ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 14 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /consent HTTP/1.1
Host: manage.safeopt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type, Data-Regulation-Gdpr-Enforced
access-control-allow-methods: HEAD, GET, POST
access-control-expose-headers: Data-Regulation-Gdpr-Enforced
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
data-regulation-gdpr-enforced: true
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
set-cookie: addshoppers="2|1:0|10:1714143650|11:addshoppers|44:YTE0MWI5YmVhN2YxNDIxODliOGJhMTM0ODU5ZmIxNmY=|37d56546341232ce097cb539f310af4da0047efda27ac748ab035d9a153f5a6a"; Domain=shop.pe; expires=Thu, 21 Jan 2027 15:00:50 GMT; Path=/; SameSite=None; Secure
addshoppers.com="2|1:0|10:1714143650|15:addshoppers.com|44:YTE0MWI5YmVhN2YxNDIxODliOGJhMTM0ODU5ZmIxNmY=|daabf79055114ad0d7532211b68bdc0175783df46d578ec9482e1c94d156f321"; Domain=shop.pe; expires=Thu, 21 Jan 2027 15:00:50 GMT; Path=/; SameSite=None; Secure
x-frame-options: deny
strict-transport-security: max-age=31536000; includeSubDomains
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cached.rebuyengine.com/api/v1/user/stylesheet?shop=clearstem-skincare.myshopify.com&cache_key=1713917354
151.101.130.132200 OK 2.5 kB URL GET HTTP/2 cached.rebuyengine.com/api/v1/user/stylesheet?shop=clearstem-skincare.myshopify.com&cache_key=1713917354
IP 151.101.130.132:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcached.rebuyengine.com
Fingerprint91:D4:DC:7F:1B:B8:3D:63:9D:FC:7A:70:8C:74:C8:64:63:EE:05:A5
ValidityTue, 05 Mar 2024 19:57:05 GMT - Mon, 03 Jun 2024 19:57:04 GMT
File type ASCII text, with very long lines (15311), with no line terminators
Hash 117679e696f5dbfc05808b0046c391a7
3e0c126419af0cc71b081d25c8ca00cb79d823f0
09bdcb56a7206c6a338932defe873e6d1a04e37d259624e2dd6209a91a82d77b
GET /api/v1/user/stylesheet?shop=clearstem-skincare.myshopify.com&cache_key=1713917354 HTTP/1.1
Host: cached.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=UTF-8
cache-control: max-age=31536000
access-control-allow-headers: Content-Type, X-Rebuy-User-Token, Rebuy-Api-Key
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-allow-private-network: true
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self';
content-encoding: br
accept-ranges: bytes
age: 836
date: Fri, 26 Apr 2024 15:00:50 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714143651.528228,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2515
X-Firefox-Spdy: h2
addshoppers.s3.amazonaws.com/customize/621d3db4bbf6c3450b3083d3/5a754eccad63433aad03edb1e9f4d878.js?_t=1676641836
52.217.200.201200 OK 142 B URL GET HTTP/1.1 addshoppers.s3.amazonaws.com/customize/621d3db4bbf6c3450b3083d3/5a754eccad63433aad03edb1e9f4d878.js?_t=1676641836
IP 52.217.200.201:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.s3.amazonaws.com
FingerprintDC:41:A6:3E:EE:32:6F:36:76:5A:EF:9D:17:AF:14:13:E3:05:C6:D1
ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 7d4e37b2319ad5113030041db2a668b4
718c75c700981c19acbebe5af66b84041c341a5a
f958f645b0e4a097cf11eb6565537c6b78f6d436691946c078922303c1cb3b82
GET /customize/621d3db4bbf6c3450b3083d3/5a754eccad63433aad03edb1e9f4d878.js?_t=1676641836 HTTP/1.1
Host: addshoppers.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 5f9ajvHEiWDYTV54G/kV6roi8mTSu6tKm3eQcnfzQsh6DmJltB1vhoW5CqjwsMCNsCJq9EsIaNU=
x-amz-request-id: 564YZJ24MP0279CC
Date: Fri, 26 Apr 2024 15:00:51 GMT
Last-Modified: Fri, 17 Feb 2023 13:50:37 GMT
ETag: "bfb64506354a9b06327306342bedbaa2"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=2592000, public
Content-Encoding: gzip
x-amz-version-id: ibgZma076YKVRn4MrRsOZio5XxnTJuC.
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 142
shop.pe/widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&rand=70840&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer=
35.227.244.1200 OK 679 B URL GET HTTP/3 shop.pe/widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&rand=70840&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer=
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
File type gzip compressed data, max speed, from Unix
Hash b521f49a9461bdcd09c64ff54a2ac8ea
512426e4ea85f53dead3d96f28eac5c3ce3ae5d6
f35d3a9649699ed60353bbe4131d24774f96e3482e4e28eaedfc32013648d341
GET /widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&rand=70840&cookie=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a&referer= HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: addshoppers="2|1:0|10:1714143649|11:addshoppers|44:OTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI=|0bb4800af4614df053a96efe1c81287094f79f3c597679e1c60180467943c4cd"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript
data-regulation-gdpr-enforced: true
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH
set-cookie: addshoppers="2|1:0|10:1714143649|11:addshoppers|44:OTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI=|0bb4800af4614df053a96efe1c81287094f79f3c597679e1c60180467943c4cd"; expires=Thu, 21 Jan 2027 15:00:49 GMT; Path=/; SameSite=None; secure
etag: W/"0c320f0b8fc22573c501424562e42eca67ee6644"
backend-version: 47
access-control-allow-credentials: true
access-control-allow-origin: https://my.addshoppers.com
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.rebuyengine.com/onsite/js/SmartBanner.js?id=015f5d41de71c7ecbce6
172.67.12.125200 OK 61 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/js/SmartBanner.js?id=015f5d41de71c7ecbce6
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (64134)
Hash 24e69bb7c3ec994a0e7867da6704f245
f5eee10d26becd5195ee7b5a2126d692d5e0010a
a52f45d73c7670b8230bfb24556a503de451af4137e993e4c36619a74f04dea1
GET /onsite/js/SmartBanner.js?id=015f5d41de71c7ecbce6 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=10800
etag: W/"d3a8308b275646a4465673d5c30769f3"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=7200
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PLYD9bnOPOeBR34fLfgq2cYs0uZ4JcqXNnHMf1PFGW4KGvwN4LDrw0Ki4mir26r1CethzDSArQG5vds601jg8OJG5cCgmTDdir%2BrxZtAJTsJ%2Bdabeq4IrUjFh9I49wAMyecMtIA1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d69eeb56a2-OSL
X-Firefox-Spdy: h2
alocdn.com/c/vn3d8u2u/a/xtarget/p.json
44.233.240.1302 Found 0 B URL GET HTTP/2 alocdn.com/c/vn3d8u2u/a/xtarget/p.json
IP 44.233.240.1:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoDaddy.com, Inc.
Subject*.alocdn.com
Fingerprint80:F7:15:35:96:74:42:85:D6:A7:B3:10:61:58:28:C1:7C:7C:C8:FE
ValiditySat, 03 Feb 2024 16:45:24 GMT - Sat, 22 Feb 2025 16:44:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/vn3d8u2u/a/xtarget/p.json HTTP/1.1
Host: alocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json
content-length: 0
location: https://alocdn.com/c/vn3d8u2u/a/xtarget/p.json?tdc=1&url=https%3A%2F%2Fclearstem.com%2F
access-control-allow-origin: https://clearstem.com
access-control-allow-credentials: true
cache-control: no-cache, no-store, must-revalidate, max-age=0
set-cookie: uuid=ceb7cf8b-2e89-4749-97d5-7ec556c9f305; Path=/; Domain=alocdn.com; Expires=Sat, 26-Apr-2025 15:00:50 GMT; Max-Age=31536000; Secure;SameSite=None
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Jetty(11.0.14)
X-Firefox-Spdy: h2
assets.gorgias.chat/build/static/js/690.95f8e9fb6cdb3632.js
172.64.144.86200 OK 3.0 kB URL GET HTTP/2 assets.gorgias.chat/build/static/js/690.95f8e9fb6cdb3632.js
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
Hash 58fcdd7e2acd18feeaead60483c95d4d
bb65a1388ce7f4adf3d6b8ad122171b5713b712a
967c1633b14f530a827eae964dbe0f13d8c4354f5d0110474ef43e5ee256330f
GET /build/static/js/690.95f8e9fb6cdb3632.js HTTP/1.1
Host: assets.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
x-guploader-uploadid: ABPtcPoemBdnGxrxRP8iJWnHilWhlyR2mXK6EyaCpX2WjQzZnYLqJO6t6fKfwA1ZGqIHQSBSKm2NhspwMDwjl_w_7j9bGEGmDsNe
x-goog-generation: 1698761234664607
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3031
x-goog-hash: crc32c=IfzvKQ==, md5=3lBXseojgY6nn0eM7YbcFQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Wed, 30 Oct 2024 14:26:44 GMT
cache-control: public, max-age=31536000, s-maxage=31536000
last-modified: Tue, 31 Oct 2023 14:07:14 GMT
etag: W/"de5057b1ea23818ea79f478ced86dc15"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13083768
server: cloudflare
cf-ray: 87a771d75aa61c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.rebuyengine.com/onsite/css/rebuy-flickity.min.css?build=1713979574
172.67.12.125200 OK 33 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/css/rebuy-flickity.min.css?build=1713979574
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
File type JavaScript source, ASCII text, with very long lines (65486)
Hash 67433fcd20b6dfa39f2142efe84477f7
c778e10473f6d7f79d5e4c3a27b3e454333da527
9ac62de33bc4bdc18c3a5ca9c4240b27819c87a267c83fb98bacef481800e66f
GET /onsite/css/rebuy-flickity.min.css?build=1713979574 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=10800
etag: W/"c5ccce035b6c0c7b4ae51a912fb48dbb"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=7200
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uMiGTjNkta3BfPpYoB%2B5UJNzrVUhtXXB8L5UGqKT%2FN%2FKl2JhfizprkmG%2F7ES1LqQdgJ39j6xCXR1%2Fx871mmOYOjKh22VlkXNCDlicCCrEU7EqFcPjD1gfBxxZuEFcJgfvx5y0BJy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d7c89956a2-OSL
X-Firefox-Spdy: h2
assets.privy.com/packs/js/755-abe14dc84751c419cb42.js
104.22.20.108200 OK 31 kB URL GET HTTP/2 assets.privy.com/packs/js/755-abe14dc84751c419cb42.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65454)
Hash adfdf52fbb6adaf4f7c54ac974af1122
2b671a29542980d1713ac9b786f1fbeabe07a673
9520b2cb671d613ff9f2ae92c8de2305abfc8ad6a24cd7ad5d89203c60aa8432
GET /packs/js/755-abe14dc84751c419cb42.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 31062
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714085006&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=1%2F4lKS%2BF8w%2BR3YwTaLM6l1Z6QdOJ7mrxlXqmg7habYg%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714085006&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=1%2F4lKS%2BF8w%2BR3YwTaLM6l1Z6QdOJ7mrxlXqmg7habYg%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HSMliAChpl_48_2oIua2QVl3CXSV09GZ2jf2-cMu9EqkLuwgHAn7ZQ==
age: 439
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fc4569d-OSL
X-Firefox-Spdy: h2
assets.privy.com/packs/js/908-000e1ac551df9d63c8a5.js
104.22.20.108200 OK 12 kB URL GET HTTP/2 assets.privy.com/packs/js/908-000e1ac551df9d63c8a5.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (39320)
Hash 547fe9a3eeb744daf9925f54f13aede8
05e2821a6c9ccfea405fc8236e3da5101c7eed9a
1769a9734402e1f653766fdbbcd4070dd8e93da30caebfd01dea5dc43ca648d6
GET /packs/js/908-000e1ac551df9d63c8a5.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 12381
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714091357&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=GcYJBSXSgY6I4TEtwzxfVcpDpBvzPNmf6eg3D%2B5Pm4c%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714091357&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=GcYJBSXSgY6I4TEtwzxfVcpDpBvzPNmf6eg3D%2B5Pm4c%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xw1BfS-TnhrrB7rQu2HTW8pu57nWO_lYCGYNySL6WtK7V8L1M1HtCg==
age: 439
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fca569d-OSL
X-Firefox-Spdy: h2
sdk.vyrl.co/loader-v2.js
143.204.55.39200 OK 12 kB IP 143.204.55.39:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.vyrl.co
Fingerprint64:B9:D7:C7:0B:AA:23:F2:D9:24:BB:70:7E:B8:9A:D3:F1:73:CA:7E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Sat, 01 Mar 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (19051)
Hash 0cf149318fcc3c6aa799fce070beeec3
e8e4acb606fb370fc7152fa16de12d5923cb0da9
c4c6edb0d4f50c8ac2a28a0ea43bb4f63f233f6744fccf9147ae5b9bd667df85
GET /loader-v2.js HTTP/1.1
Host: sdk.vyrl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
date: Fri, 26 Apr 2024 15:00:50 GMT
server: AmazonS3
etag: W/"b679ab15bdb566f5d4fa7109110fe032"
last-modified: Tue, 07 Feb 2023 01:46:45 GMT
cache-control: public, max-age=0, s-maxage=2
origin: Access-Control-Allow-Origin
samesite: lax
x-frame-options: SAMEORIGIN
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 37x-JCXJqMj6SZJcO1KNZVah97YfCTp2ON9KuzTiS4P5aMuzB1onkA==
X-Firefox-Spdy: h2
assets.privy.com/packs/js/legacy_widget-f682b83a3da7af3466c6.chunk.js
104.22.20.108200 OK 29 kB URL GET HTTP/2 assets.privy.com/packs/js/legacy_widget-f682b83a3da7af3466c6.chunk.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65438)
Hash 29be30703e522bf6db54f3953eda3bfc
3cc817d4ef6efd426c0da8fc98e8e3cdd48ac237
779a96b08f93b48f4bd9e9b410e658254037165414825f87ecf1fa7fc6d85016
GET /packs/js/legacy_widget-f682b83a3da7af3466c6.chunk.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 29160
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 b78539d5f13f3162976a6abc8783d3de.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714090021&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=U1M5iKhJFUaLs9JDcc34ArQaqvl8lPWAac3SC2wP%2Fkc%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714090021&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=U1M5iKhJFUaLs9JDcc34ArQaqvl8lPWAac3SC2wP%2Fkc%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: Ti63ZTwT4Ava9Tyqc0eKEn5hirvF7fkFlircsSanmIig4m2jonZI6A==
age: 46
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fcf569d-OSL
X-Firefox-Spdy: h2
app.octaneai.com/l9neqbg66j1o4m2i/utrk
104.22.35.242200 OK 30 kB URL POST HTTP/3 app.octaneai.com/l9neqbg66j1o4m2i/utrk
IP 104.22.35.242:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectoctaneai.com
Fingerprint1A:53:70:B9:11:DA:D9:2A:D5:56:08:96:86:4D:A0:CB:07:FE:F5:DE
ValidityThu, 11 Apr 2024 03:23:28 GMT - Wed, 10 Jul 2024 03:23:27 GMT
Hash 56c2f2beb278ea4a7debb214968ca5d3
12a6ccd624dee39bdda391a829f8980682aaaa2e
e44570d3514fbd8e8712a41a2107d457f33eb0cc61d3402436d5122217e060ad
POST /l9neqbg66j1o4m2i/utrk HTTP/1.1
Host: app.octaneai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 146
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://clearstem.com
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d69b6aabe4-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.privy.com/packs/js/modern_widget-c7cc89d08689e3e4672d.chunk.js
104.22.20.108200 OK 37 kB URL GET HTTP/2 assets.privy.com/packs/js/modern_widget-c7cc89d08689e3e4672d.chunk.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (19141)
Hash 8d55f3de9a3fdb459d78c8cbb1e5d485
8c27125b83d0f1a8102e283dbcbc74edfd26da8f
d5d88a37527dc665d91f832c74e645021a3c1086172c0a7dec314f55e8cdd5d5
GET /packs/js/modern_widget-c7cc89d08689e3e4672d.chunk.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 36791
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714084292&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QbUTxMU4HuPx%2FIUIwS0Sf2p0tHbsXw6%2BBDDs5AWsK7g%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714084292&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QbUTxMU4HuPx%2FIUIwS0Sf2p0tHbsXw6%2BBDDs5AWsK7g%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S-a1W2wHTC6bnjXiQV7oarYrgYyChFr88DR2Z8R5Wcr54p3TLXF85w==
age: 143
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d8a820569d-OSL
X-Firefox-Spdy: h2
assets.privy.com/packs/js/22-881e4038948c29739523.js
104.22.20.108200 OK 297 kB URL GET HTTP/2 assets.privy.com/packs/js/22-881e4038948c29739523.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (17636)
Size 297 kB (296631 bytes)
Hash 529b7d3eaa7af196a3f8ab33c163c4f1
2c9cb28c7c23347e869ff0d0441d0ea9a310bd91
ebff89b24c86a882d45e1c6ca27c6e5452af18c03b7e2602fa2231220c293705
GET /packs/js/22-881e4038948c29739523.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 296631
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714084292&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QbUTxMU4HuPx%2FIUIwS0Sf2p0tHbsXw6%2BBDDs5AWsK7g%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714084292&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QbUTxMU4HuPx%2FIUIwS0Sf2p0tHbsXw6%2BBDDs5AWsK7g%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ujqlp5EufPswFNbfUp-MY1TiYo0qngzEtjmX7ysYnBXiSERzoCbgJQ==
age: 143
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d87fd9569d-OSL
X-Firefox-Spdy: h2
api.config-security.com/event
34.149.60.135200 OK 2 B URL POST HTTP/2 api.config-security.com/event
IP 34.149.60.135:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectapi.config-security.com
FingerprintED:C0:8D:DC:BC:5C:FF:2B:29:DF:01:3C:E8:96:05:D2:27:B7:07:4D
ValiditySun, 07 Apr 2024 07:41:12 GMT - Sat, 06 Jul 2024 08:36:07 GMT
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /event HTTP/1.1
Host: api.config-security.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain
Content-Length: 947
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
x-tw-trace-id: 8e4133804b703f158db82b31f285a65d
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
vary: Accept-Encoding
date: Fri, 26 Apr 2024 15:00:50 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gorgias.win/assistant/configs/3164a0c6-5dda-468c-93c7-c458c87bf8ec?widget-app-id=12949
172.64.154.151200 OK 49 kB URL GET HTTP/2 gorgias.win/assistant/configs/3164a0c6-5dda-468c-93c7-c458c87bf8ec?widget-app-id=12949
IP 172.64.154.151:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.win
FingerprintE1:0F:3F:11:82:00:FE:B5:B3:3C:86:C2:1F:75:83:48:CF:BF:A5:3E
ValidityTue, 16 Apr 2024 19:06:10 GMT - Mon, 15 Jul 2024 19:06:09 GMT
File type gzip compressed data, from Unix
Hash 739ebaaeca042db7a0fbfd304e50222f
6a93d400fe1634ebbd104755ead551d87fe8f732
f3eae7593d072deb408b7633cbeda5e3a61cb203040a3f49606c87353659173c
GET /assistant/configs/3164a0c6-5dda-468c-93c7-c458c87bf8ec?widget-app-id=12949 HTTP/1.1
Host: gorgias.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://clearstem.com
vary: Origin, Accept-Encoding
cross-origin-opener-policy: same-origin
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-encoding: gzip
via: 1.1 google
last-modified: Fri, 26 Apr 2024 14:38:24 GMT
cf-cache-status: HIT
age: 462
server: cloudflare
cf-ray: 87a771d6bbec1c12-OSL
X-Firefox-Spdy: h2
alocdn.com/c/vn3d8u2u/a/xtarget/p.json?tdc=1&url=https%3A%2F%2Fclearstem.com%2F
44.233.240.1200 OK 2 B URL GET HTTP/2 alocdn.com/c/vn3d8u2u/a/xtarget/p.json?tdc=1&url=https%3A%2F%2Fclearstem.com%2F
IP 44.233.240.1:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoDaddy.com, Inc.
Subject*.alocdn.com
Fingerprint80:F7:15:35:96:74:42:85:D6:A7:B3:10:61:58:28:C1:7C:7C:C8:FE
ValiditySat, 03 Feb 2024 16:45:24 GMT - Sat, 22 Feb 2025 16:44:48 GMT
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /c/vn3d8u2u/a/xtarget/p.json?tdc=1&url=https%3A%2F%2Fclearstem.com%2F HTTP/1.1
Host: alocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clearstem.com
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: uuid=ceb7cf8b-2e89-4749-97d5-7ec556c9f305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://clearstem.com
access-control-allow-credentials: true
cache-control: no-cache, no-store, must-revalidate, max-age=0
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Jetty(11.0.14)
X-Firefox-Spdy: h2
gorgias.win/assistant/evaluations
172.64.154.151200 OK 2 B URL OPTIONS HTTP/2 gorgias.win/assistant/evaluations
IP 172.64.154.151:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.win
FingerprintE1:0F:3F:11:82:00:FE:B5:B3:3C:86:C2:1F:75:83:48:CF:BF:A5:3E
ValidityTue, 16 Apr 2024 19:06:10 GMT - Mon, 15 Jul 2024 19:06:09 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /assistant/evaluations HTTP/1.1
Host: gorgias.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/plain; charset=utf-8
content-length: 2
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://clearstem.com
access-control-allow-headers: content-type
cross-origin-opener-policy: same-origin
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d97e341c12-OSL
X-Firefox-Spdy: h2
app.octaneai.com/l9neqbg66j1o4m2i/shopify.js?x=INJ8rteNVxPqR7IA&shop=clearstem-skincare.myshopify.com
104.22.35.242200 OK 175 kB URL GET HTTP/2 app.octaneai.com/l9neqbg66j1o4m2i/shopify.js?x=INJ8rteNVxPqR7IA&shop=clearstem-skincare.myshopify.com
IP 104.22.35.242:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectoctaneai.com
Fingerprint1A:53:70:B9:11:DA:D9:2A:D5:56:08:96:86:4D:A0:CB:07:FE:F5:DE
ValidityThu, 11 Apr 2024 03:23:28 GMT - Wed, 10 Jul 2024 03:23:27 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (7626)
Size 175 kB (175233 bytes)
Hash 0ccf7a1d7e97f7706e585b84f8de2faa
bcd71b1b229bcf6aec4f7081e0ab6be9b9763ef8
ec4f57d6ce41c2a8548a80b70d28bffab1df0962aaa9537921491b2fff9655d7
GET /l9neqbg66j1o4m2i/shopify.js?x=INJ8rteNVxPqR7IA&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: app.octaneai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript;charset=UTF-8
cache-control: max-age=1800
cf-cache-status: HIT
age: 1192
last-modified: Fri, 26 Apr 2024 14:40:57 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d13faf930b-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
assets.privy.com/assets/widget-f7bedc88f5d7f36c2240bbbfdd34b1550a86336a959c1e8553e5604b955bb2da.css
104.22.20.108200 OK 25 kB URL GET HTTP/2 assets.privy.com/assets/widget-f7bedc88f5d7f36c2240bbbfdd34b1550a86336a959c1e8553e5604b955bb2da.css
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 6f359e2cef368e036e41c0a3a2c63abe
3df761aeed4b45a7d3d4ed532a08ec712f808367
d42da4af1d174eddcc7346586317d2815c9d03653f328c16b1018a4b7321fc42
GET /assets/widget-f7bedc88f5d7f36c2240bbbfdd34b1550a86336a959c1e8553e5604b955bb2da.css HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/css
content-length: 25091
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713838347&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=KBB0VAxmloq2XHw2tXapqUnq6Qy6rvRCjJfl3opEsTk%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713838347&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=KBB0VAxmloq2XHw2tXapqUnq6Qy6rvRCjJfl3opEsTk%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
last-modified: Mon, 10 Apr 2023 19:08:01 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 a9d277d5537378a86210119e10e6a2ea.cloudfront.net (CloudFront)
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: CNFZ7XkkYLIxvCOGm_dBVSvsUoPWiC2_83A4_qn3TWxgTLF77x5v_g==
age: 47
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771dc3d9f569d-OSL
X-Firefox-Spdy: h2
privymktg.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&tid=UA-20331028-1&t=pageview&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=19358981947494125
104.21.4.111302 Found 143 B URL GET HTTP/2 privymktg.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&tid=UA-20331028-1&t=pageview&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=19358981947494125
IP 104.21.4.111:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivymktg.com
Fingerprint11:D9:34:A7:A8:1A:70:46:D1:F3:26:0A:24:15:76:00:B2:57:7C:FB
ValidityWed, 24 Apr 2024 14:18:53 GMT - Tue, 23 Jul 2024 14:18:52 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cb7b8f439b04c00f4a2d78160ddfee8d
9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4
12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
GET /collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&tid=UA-20331028-1&t=pageview&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=19358981947494125 HTTP/1.1
Host: privymktg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/html
content-length: 143
location: https://google-analytics.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&tid=UA-20331028-1&t=pageview&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=19358981947494125
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSDTPEPZ9yc9nTJoElawJgG3BXIselaEG9RfG5Rz40kBUHP4oxrHFFjITc%2FX68cKvpUvOKm5AT8GjvsHcRt5zquiJCuTk0EIi515UektbLRN45KWgk9r0L%2BFtg1ByWlu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771dcd90256bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
e.dyn-rev.app/
142.250.74.115204 No Content 0 B IP 142.250.74.115:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjecte.dyn-rev.app
FingerprintE9:79:00:5F:0E:05:C1:4C:4B:5E:55:25:9D:6D:A8:06:7D:2A:52:45
ValiditySat, 23 Mar 2024 17:12:02 GMT - Fri, 21 Jun 2024 17:58:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: e.dyn-rev.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST
access-control-allow-headers: Content-Type
access-control-max-age: 3600
x-cloud-trace-context: fcf5a70aa9e264c19afff4e424572786
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/html
server: Google Frontend
content-length: 0
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmserifdisplay/v15/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
142.250.74.163200 OK 25 kB URL GET HTTP/2 fonts.gstatic.com/s/dmserifdisplay/v15/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 24768, version 1.0
Hash d797ca513ac2caf8a7f7d61dddd21258
f096086c03993d7db8333ac7f72115fd848c5a34
8b0ceabdff07806ce949c228d047d0824bca1bec4c3c3f83ac2cd077a24e55e5
GET /s/dmserifdisplay/v15/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:17:39 GMT
expires: Sat, 26 Apr 2025 06:17:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 17:45:35 GMT
content-type: font/woff2
age: 31392
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.163200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 14892, version 1.0
Hash 9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:19:22 GMT
expires: Sat, 26 Apr 2025 06:19:22 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
age: 31289
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11v8lInk-AFfrgQrvWXpdFg3KXxAMsKMbdN.119.woff2
142.250.74.163200 OK 30 kB URL GET HTTP/2 fonts.gstatic.com/s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11v8lInk-AFfrgQrvWXpdFg3KXxAMsKMbdN.119.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 29788, version 1.0
Hash 8fdea78e7f4f57ed1697fa84962d2f60
1bec6d8c103423aafd284c4523be325026ddf034
f779b4445544936d84083d7ee72b1bf1514f186cd057787049d6dc2da3b7bd03
GET /s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11v8lInk-AFfrgQrvWXpdFg3KXxAMsKMbdN.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:49:29 GMT
expires: Sat, 26 Apr 2025 06:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:07:55 GMT
content-type: font/woff2
age: 29482
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
142.250.74.163200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 14940, version 1.0
Hash a46fb7aae99225fdfd9d64b2b8b1063f
1ee50bf5985c1956dde1c06d9b1cec4645ddb92b
4b5816bbfc52587979139951355fe4048da02ce60e40cef8e4a1efb6cd396281
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:17:40 GMT
expires: Sat, 26 Apr 2025 06:17:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:46:07 GMT
content-type: font/woff2
age: 31391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11vwlBFgg.woff2
142.250.74.163200 OK 18 kB URL GET HTTP/2 fonts.gstatic.com/s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11vwlBFgg.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 17600, version 1.0
Hash 57e2ffd8405d0da3411ef3555b03acdf
f6fcebd7a3d2dc80b33af43fdaa20beb4a96a8fd
59f983c06988b1eefb00ee30b32724e466c10ef6089dc6ae4ee2064e3c17785c
GET /s/shipporiantique/v8/-F6qfid3KC8pdMyzR0qRyFUht11vwlBFgg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:28:41 GMT
expires: Sat, 26 Apr 2025 06:28:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:07 GMT
content-type: font/woff2
age: 30730
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
142.250.74.163200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 21904, version 1.0
Hash 27b2f94167bce460f3e669c52be7301e
de5636d6096f5a29f0764aa563c54f157b1f9de9
51c8eae79bf05bbcc1811da8cb56ff69d87d40bafdce8282fea8a43259b4afcb
GET /s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:17:40 GMT
expires: Sat, 26 Apr 2025 06:17:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 Jan 2024 23:15:04 GMT
content-type: font/woff2
age: 31391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cousine/v27/d6lIkaiiRdih4SpP_SQvzA.woff2
142.250.74.163200 OK 19 kB URL GET HTTP/2 fonts.gstatic.com/s/cousine/v27/d6lIkaiiRdih4SpP_SQvzA.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 18792, version 1.0
Hash cb67f11f90e7a52055e5876e08d94509
0db0d6c9cc613f7db0b6f9a957d6a41817b5fe94
2dae31af30bc604eba530152f1898b7a20c4ae5aa48467d6edf6f320a7cea020
GET /s/cousine/v27/d6lIkaiiRdih4SpP_SQvzA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:58:19 GMT
expires: Tue, 22 Apr 2025 13:58:19 GMT
cache-control: public, max-age=31536000
age: 349352
last-modified: Thu, 24 Aug 2023 17:56:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:08:31 GMT
expires: Sat, 26 Apr 2025 06:08:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 31940
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nytrng.com/iframe?vcp=4dd5h0np&as_id=94015665b7234c0080bdfabfae1a42eb
99.83.128.14200 OK 412 B URL GET HTTP/2 nytrng.com/iframe?vcp=4dd5h0np&as_id=94015665b7234c0080bdfabfae1a42eb
IP 99.83.128.14:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subjectnytrng.com
FingerprintD0:38:24:16:65:0A:8A:B3:18:FF:15:B3:48:A0:4D:7F:BC:4F:4F:BE
ValidityFri, 23 Feb 2024 00:00:00 GMT - Sun, 23 Mar 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (412), with no line terminators
Hash 6d87c14431da141d0c1756d6811a82db
5f3a2d897a00d08471a2178f9d34310c87203d6c
12cf47fe798e73364f8fcff399a0d5cefe16ea4b757aeb63c75ee5751cdff6b5
GET /iframe?vcp=4dd5h0np&as_id=94015665b7234c0080bdfabfae1a42eb HTTP/1.1
Host: nytrng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/html; charset=utf-8
content-length: 412
server: gunicorn
X-Firefox-Spdy: h2
e.dyn-rev.app/
142.250.74.115204 No Content 16 B IP 142.250.74.115:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjecte.dyn-rev.app
FingerprintE9:79:00:5F:0E:05:C1:4C:4B:5E:55:25:9D:6D:A8:06:7D:2A:52:45
ValiditySat, 23 Mar 2024 17:12:02 GMT - Fri, 21 Jun 2024 17:58:11 GMT
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST / HTTP/1.1
Host: e.dyn-rev.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: application/json; charset=utf-8
Content-Length: 214
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=utf-8
x-cloud-trace-context: 6d7758c112679bbc7ddc26b8b9bef26b
date: Fri, 26 Apr 2024 15:00:51 GMT
server: Google Frontend
content-length: 16
X-Firefox-Spdy: h2
rebuyengine.com/api/v2/analytics/event/bulk?cache_key=1713917354
104.22.33.205200 OK 0 B URL POST HTTP/2 rebuyengine.com/api/v2/analytics/event/bulk?cache_key=1713917354
IP 104.22.33.205:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectrebuyengine.com
Fingerprint2C:83:43:41:F0:65:39:B9:5C:78:79:2C:6E:96:2B:00:CE:2F:44:FA
ValidityMon, 25 Mar 2024 21:54:53 GMT - Sun, 23 Jun 2024 21:54:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/analytics/event/bulk?cache_key=1713917354 HTTP/1.1
Host: rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-rebuy-user-token
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 26 Apr 2024 15:00:51 GMT
access-control-allow-headers: Content-Type,Accept,X-Rebuy-User-Token
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
allow: OPTIONS, POST
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771ddb99f92c7-CPH
X-Firefox-Spdy: h2
cdn.nytrng.com/pl.2.2.min.js
143.204.55.42200 OK 0 B URL GET HTTP/2 cdn.nytrng.com/pl.2.2.min.js
IP 143.204.55.42:443
Requested by https://nytrng.com/iframe?vcp=4dd5h0np&as_id=94015665b7234c0080bdfabfae1a42eb
Certificate IssuerAmazon
Subject*.nytrng.com
Fingerprint73:CA:72:5C:14:CC:FD:30:A2:A1:BB:4B:A4:32:21:7D:4F:FA:11:C0
ValidityTue, 15 Aug 2023 00:00:00 GMT - Tue, 10 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pl.2.2.min.js HTTP/1.1
Host: cdn.nytrng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nytrng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
content-length: 0
date: Sun, 31 Mar 2024 10:46:13 GMT
last-modified: Wed, 31 Jul 2019 16:57:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UJF80Q6Z5NA75cv74f39vFvR97ZnQiajIC-VxE-dC53wuQm8isJkyw==
age: 2261678
X-Firefox-Spdy: h2
events.privy.com/v2/collect
104.22.21.108200 OK 47 B URL POST HTTP/2 events.privy.com/v2/collect
IP 104.22.21.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type gzip compressed data, from Unix
Hash a63a1a32f3560aadd4ea03437307909a
6720ccda3b90eaeed622c2444a6da60ac1c0591f
79c009b9213c5d285eb9c6949d8d1e2a78bead7095d995b114e602efdb89d96b
POST /v2/collect HTTP/1.1
Host: events.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 208
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/html
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714143651&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=Nwcv6g%2FqppPNzDkf%2BUkdLwg36YfgydFk7yL1iHTDYds%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714143651&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=Nwcv6g%2FqppPNzDkf%2BUkdLwg36YfgydFk7yL1iHTDYds%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
access-control-request-method: *
cache-control: no-cache
x-request-id: e823481c-b3d9-425b-a987-74c1c244581d
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771dc8d7256bb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,700,undefined%7CMontserrat:400,500%7CLora:400,500%7CSource+Sans+Pro:400,undefined%7CBitter:400,500
142.250.74.106200 OK 13 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Lato:300,400,700,undefined%7CMontserrat:400,500%7CLora:400,500%7CSource+Sans+Pro:400,undefined%7CBitter:400,500
IP 142.250.74.106:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File type gzip compressed data, max compression
Hash 247b41924d61afc725c08d687794585b
70a59d51803fae7dff618868f2aff8fd9be44083
6c951b514a7b1b1d49dc52619956a6c057fb29bfed72a520f1d1b66052c79552
GET /css?family=Lato:300,400,700,undefined%7CMontserrat:400,500%7CLora:400,500%7CSource+Sans+Pro:400,undefined%7CBitter:400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 15:00:51 GMT
date: Fri, 26 Apr 2024 15:00:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.shopify.com/s/files/1/0563/4972/0736/files/ITC-Caslon-224-Bold.css?v=1706910501
23.227.60.200200 OK 10 kB URL GET HTTP/3 cdn.shopify.com/s/files/1/0563/4972/0736/files/ITC-Caslon-224-Bold.css?v=1706910501
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
Hash db688029c61d65e0fac71091201fa060
036f99dfb8d137653fa4d7f8b2c6e076ee6f687c
8172e7b7ccc5285f6a19cc025537e5ea1c9c85c770859daeb5729ed9979c9408
GET /s/files/1/0563/4972/0736/files/ITC-Caslon-224-Bold.css?v=1706910501 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:51 GMT
content-type: text/css
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
content-security-policy: sandbox allow-scripts allow-forms allow-modals allow-popups allow-downloads allow-top-navigation-by-user-activation
link: <https://cdn.shopify.com/s/files/1/0563/4972/0736/files/ITC-Caslon-224-Bold.css>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 79dd8ba5-25cb-491f-b24a-2bb1dda9ad48
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 02 Feb 2024 21:48:30 GMT
cf-cache-status: HIT
age: 7231232
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6TBjbnbJ7szzlJ1bHy8g2hFuJ%2BAuSutpE65IR70IyHZ70K08mxunlmlZ1Dp1Id%2Bb0fItm3wxznrHHBFr73cQ3U47qmZTxDAExKkezk4Ab%2FtJVX1Ct0PPfGo9K3x89iP%2F6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=28.834, imageryFetch;dur=27.481, cfRequestDuration;dur=17.999887
server: cloudflare
cf-ray: 87a771dd5cdf56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.privy.com/picture_photos/3342493/medium/44010dbbae6f4505a9a1214bdf876224?1691833931
104.22.20.108200 OK 37 kB URL GET HTTP/2 assets.privy.com/picture_photos/3342493/medium/44010dbbae6f4505a9a1214bdf876224?1691833931
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 450x595, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 410ae9bce0bbc0a31a96e14e49ba60ff
6547e4b65a845963225b70d8c7d59ebc3f47d069
b3cde635cda72fbe1b1a082179dab31820986a5551739477801fd92e8aeec08e
GET /picture_photos/3342493/medium/44010dbbae6f4505a9a1214bdf876224?1691833931 HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:56 GMT
content-type: image/webp
content-length: 36574
age: 5316
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=213868
vary: Accept
etag: "d179e095d6b6e219b4d9125a216d2d81"
last-modified: Sat, 12 Aug 2023 09:52:12 GMT
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-id: U-IOueZlNKXtQAoRSbTj19hEzYCh81ZV-bkQ9tWtrKOu0mb3QOdzkw==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
cache-control: max-age=1800
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a771fc88a1569d-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:08:31 GMT
expires: Sat, 26 Apr 2025 06:08:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 31945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.rebuyengine.com/onsite/css/global.min.css?build=1713979574
172.67.12.125200 OK 33 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/css/global.min.css?build=1713979574
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
File type gzip compressed data, from Unix
Hash a457a41c03341d8781b12c827e4cc89a
9ae94db8ed8273c2f27150a3a3989b1f109ce7eb
c8ef1146f755db9a8559d8dbbcdd8cbd258d18e95916cad2c544485873337a4b
GET /onsite/css/global.min.css?build=1713979574 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=10800
etag: W/"96d691da022163dfb5d96c82543fbd7c"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=7200
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=64aWFw%2FMBfgLJJUJ012BbOjthT62T0qKFcxzXQ9gdfS6uK05FkX3HIoVr9uVeXpg%2Fj6LOcTIKDOCDMkDff7aBCJF0Wr%2FS44CnAiCJgcNFpqBJty9JVRZvBNihkW2W2KkJcrDWQLP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d3ca6656a2-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 33 kB URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:03:45 GMT
expires: Sat, 26 Apr 2025 06:03:45 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 32231
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2
142.250.74.163200 OK 33 kB URL GET HTTP/3 fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 33148, version 1.0
Hash de781f4524b6f5b640118dbf0a656028
7a9de8ddd6da0ab6ffbf2cb165566a8e9faf40b1
2321d29475d47bd4d70a263c8f59d12ebad686e96aef5ac0a9e9e271ec0dcc47
GET /s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 17:55:15 GMT
expires: Tue, 22 Apr 2025 17:55:15 GMT
cache-control: public, max-age=31536000
age: 335141
last-modified: Wed, 13 Sep 2023 23:16:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2
142.250.74.163200 OK 33 kB URL GET HTTP/3 fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 33148, version 1.0
Hash de781f4524b6f5b640118dbf0a656028
7a9de8ddd6da0ab6ffbf2cb165566a8e9faf40b1
2321d29475d47bd4d70a263c8f59d12ebad686e96aef5ac0a9e9e271ec0dcc47
GET /s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 17:55:15 GMT
expires: Tue, 22 Apr 2025 17:55:15 GMT
cache-control: public, max-age=31536000
age: 335141
last-modified: Wed, 13 Sep 2023 23:16:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 33 kB URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:03:45 GMT
expires: Sat, 26 Apr 2025 06:03:45 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 32231
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
privymktg.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&cd2=3863596&cd5=signup&cd6=widget&cd7=auto&cd8=popup&tid=UA-20331028-1&t=event&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ni=true&ea=viewed-campaign&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=4990800839591598
104.21.4.111302 Found 143 B URL GET HTTP/3 privymktg.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&cd2=3863596&cd5=signup&cd6=widget&cd7=auto&cd8=popup&tid=UA-20331028-1&t=event&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ni=true&ea=viewed-campaign&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=4990800839591598
IP 104.21.4.111:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivymktg.com
Fingerprint11:D9:34:A7:A8:1A:70:46:D1:F3:26:0A:24:15:76:00:B2:57:7C:FB
ValidityWed, 24 Apr 2024 14:18:53 GMT - Tue, 23 Jul 2024 14:18:52 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash cb7b8f439b04c00f4a2d78160ddfee8d
9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4
12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
GET /collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&cd2=3863596&cd5=signup&cd6=widget&cd7=auto&cd8=popup&tid=UA-20331028-1&t=event&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ni=true&ea=viewed-campaign&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=4990800839591598 HTTP/1.1
Host: privymktg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 15:00:56 GMT
content-type: text/html
content-length: 143
location: https://google-analytics.com/collect?v=1&cid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&cd1=6A1A19F3F0BD871195976174&cd2=3863596&cd5=signup&cd6=widget&cd7=auto&cd8=popup&tid=UA-20331028-1&t=event&ci=6A1A19F3F0BD871195976174&cm=web&cn=6A1A19F3F0BD871195976174&ni=true&ea=viewed-campaign&ec=widget&dl=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&dt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ul=en-US&z=4990800839591598
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9D8a%2FgG29vleyEYnpXZ%2FjcoJrXyCK0vrUi99GaSWBGIrQAvcdfyisV9O8wIoUJbXXcK7kdVZXX4HB92UR2MMxNwhDYhI9xXb3KKGEP1UPKfNatQj%2BH2CkuekLlJAB0Qh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771fef87b712f-OSL
alt-svc: h3=":443"; ma=86400
www.cloudflare.com/cdn-cgi/trace
104.16.123.96200 OK 7.8 kB URL GET HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP 104.16.123.96:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectwww.cloudflare.com
FingerprintD5:88:2B:C6:94:C0:B0:2C:86:40:43:DE:7F:4C:F7:1D:B1:67:0D:04
ValidityThu, 25 Apr 2024 21:43:30 GMT - Wed, 24 Jul 2024 21:43:29 GMT
File type gzip compressed data, from Unix
Hash 0a5177023c33140b8b5a7964a7cb3b02
5aa5f049f38eba6e25924ce121dfbd251344fb37
0e742af71999aca3ffcd380f7175379a2250962d08486915551aa659b75014fb
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:52 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 87a771e1ad830b51-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
events.privy.com/collect?campaign_id=3863596&campaign_context=widget&campaign_type=signup&campaign_widget_trigger=auto&campaign_widget_type=popup&non_interaction=true&business_id=6A1A19F3F0BD871195976174&route=%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&event=viewed-campaign
104.22.21.108200 OK 3.9 kB URL GET HTTP/2 events.privy.com/collect?campaign_id=3863596&campaign_context=widget&campaign_type=signup&campaign_widget_trigger=auto&campaign_widget_type=popup&non_interaction=true&business_id=6A1A19F3F0BD871195976174&route=%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&event=viewed-campaign
IP 104.22.21.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type gzip compressed data, from Unix
Hash 846c157d6da5d3c0310f8be9065ec2bb
7956104f78cfe940388aa7efe80dce7b79bd77b3
78c760e5e46353536547f0533db6eca14ba33d6baf85dc0c0f12ae26023dbae5
GET /collect?campaign_id=3863596&campaign_context=widget&campaign_type=signup&campaign_widget_trigger=auto&campaign_widget_type=popup&non_interaction=true&business_id=6A1A19F3F0BD871195976174&route=%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&event=viewed-campaign HTTP/1.1
Host: events.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:56 GMT
content-type: text/html
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714143656&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=BL5V9wqLosrp9wGEFxbtQmhpzdQAAY8T%2FKDDdIYwQIo%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714143656&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=BL5V9wqLosrp9wGEFxbtQmhpzdQAAY8T%2FKDDdIYwQIo%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
access-control-request-method: *
cache-control: no-cache
x-request-id: 4367303a-4499-48d4-a4a7-249e6db977d8
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771fefca456bb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
conf.config-security.com/model
104.26.15.69200 OK 304 B URL GET HTTP/2 conf.config-security.com/model
IP 104.26.15.69:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectconfig-security.com
FingerprintA0:D3:31:2A:53:5F:C3:46:A3:9F:3C:0D:BA:EF:11:C9:01:1A:6A:45
ValidityTue, 02 Apr 2024 22:41:18 GMT - Mon, 01 Jul 2024 22:41:17 GMT
File type troff or preprocessor input, ASCII text, with very long lines (320), with no line terminators
Hash fc6e31de2ec00071054686993f9bc329
c38f7e0dc742ee9c5149ad90284d2185de42b529
52f337cbc360111e3ea709e076e4f05f95a76eb13a6ea986ae2abf987791318f
GET /model HTTP/1.1
Host: conf.config-security.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-Type: text/plain
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/json
content-length: 304
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "M0F0dSAod01nNEAtezIqYmIlblI3MXEmOHxwJVA="
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
x-powered-by: Flask/Theano
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gg6kkrq54D1WRKjE4c946N81yY4FOodaso3AJqxG4pOZ0wYvpfbFP0xSlEOFkbe3JvBMgO8GLBHUXrQtCbDVvRw63ZTAdDb4%2BgMYXe%2BJOLaYEaa0FNVdrVtrfSZ55vujoRTCWeT33VIK4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d5693556c9-OSL
X-Firefox-Spdy: h2
clearstem.com/cart.json
23.227.38.32200 OK 283 B IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
File type troff or preprocessor input, ASCII text, with very long lines (313), with no line terminators
Hash 91419bdc2158d0a9c0d362d60b03403f
08bd038ea0894e342af8ae98db141b7f7277cb1c
b45e3aa1f8f2d8dc995a0bc1555cd2342586fe1c33e8718021c82f9786b74d6b
GET /cart.json HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEAYmcS0u2FPHI9PYPJsWJoRw5x_EOOrJmI9tBBk1_SewgrDOFZK0CPtVaiWY-b7Js2AcVpnP45FFjYnPXWOuEM7VwqwlsjyT55XeoR7DACNw7yyvbj2Ugn0ZYIOJqp6ZTM7zae96reHMtFj2I8rQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4; __attentive_cco=1714143648214
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-type: application/json; charset=utf-8
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
x-storefront-renderer-rendered: 1
vary: Accept-Encoding, Accept
set-cookie: secure_customer_sig=; path=/; expires=Sat, 26 Apr 2025 15:00:48 GMT; secure; HttpOnly; SameSite=Lax
cart_currency=USD; path=/; expires=Fri, 10 May 2024 15:00:48 GMT; SameSite=Lax
_shopify_essential=:AY8a7FG7AAEA1RpRWk5OoVBUDJF8jGpHl1BzVQmuR8X0g7wFwsWF4CZyHCAadPwa7PFJNmQs_8M9PlHKWR4FASNdzCQIfjUSkjWLON_vkKWXj774_RELe-XtF1avNIh2oFEABxxmR3G2kaqbuOuMO3YL37d1pQ==:; path=/; Max-Age=31536000; secure; HttpOnly; SameSite=Lax
x-cartjs-cache: 1
x-cartjs-updatedat: 0
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 56349720736
x-shardid: 224
content-language: en
powered-by: Shopify
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: bd719e1f-638a-4a4d-aac5-f30c9362342d-1714143648
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F%2BbzH4a7P7EKRdLm0L7o9ttzfbqO17%2B6pLPeM0sb8Or%2Bc99Fn95a7jspYXhi9CBb0TfkV%2F4zEvTfWsSpOUPYVktA3lsEQoTrimpsd0lSPmRm5PYSuCi1geCZCiOn8OA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=16, db;dur=3, asn;desc="50304", edge;desc="CPH", country;desc="NO", servedBy;desc="4chp", requestID;desc="bd719e1f-638a-4a4d-aac5-f30c9362342d-1714143648", cfRequestDuration;dur=108.999968
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771c97e58929e-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.rebuyengine.com/onsite/js/vendor-flickity.js?id=173b1a75ff3dadd963c0
172.67.12.125200 OK 50 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/js/vendor-flickity.js?id=173b1a75ff3dadd963c0
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
File type JavaScript source, ASCII text, with very long lines (49536), with no line terminators
Hash 82c2d7d8e252b1a52b260c980bc203a6
ca34675d933b44db0560801be545f57a00ce7250
8b880a457a131cb1f783b2b06c49ffed7355a1e1f080c49530a0ae0c3655829f
GET /onsite/js/vendor-flickity.js?id=173b1a75ff3dadd963c0 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=604800, stale-while-revalidate=86400
etag: W/"cbca311c02468e6f19bf3ab18ee73ecc"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=86400
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KO6SS7pIqgpG3f3UjTxuMQeRy8XFuLaDfit7iibD8D1uam9HPsMlSEhpat9vOYyTjRnX%2FMnkl2UoDiXgt6yZ4J6vUpnoFW9WNCOBbv9aoqZ6WJMA5fnF5PsFGz%2BUkYFezStMHC5H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d72fc056a2-OSL
X-Firefox-Spdy: h2
clearstem.com/favicon.ico
23.227.38.32404 Not Found 0 B URL GET HTTP/3 clearstem.com/favicon.ico
IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEAYmcS0u2FPHI9PYPJsWJoRw5x_EOOrJmI9tBBk1_SewgrDOFZK0CPtVaiWY-b7Js2AcVpnP45FFjYnPXWOuEM7VwqwlsjyT55XeoR7DACNw7yyvbj2Ugn0ZYIOJqp6ZTM7zae96reHMtFj2I8rQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 15:00:49 GMT
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
x-storefront-renderer-rendered: 1
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: bff868d6-32c1-437f-95e9-5b51efc66933-1714143649
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTGEpgxtkvNeEfxDvYIez96oeFdHsDV0Uqex6hNfG3enXZHbcTX8a2U4Wr%2F%2FLv%2FCbnOa07jP1BBrQOBXJUHrBMBmoXY3%2FCsqcbysM2Y1pbrYZUWzdPDG4IuJ%2FLLYqN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=81.000090
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771cf280a929e-CPH
alt-svc: h3=":443"; ma=86400
assets.gorgias.chat/build/static/js/gcmw.17cda09aced8402a.js
172.64.144.86200 OK 595 kB URL GET HTTP/2 assets.gorgias.chat/build/static/js/gcmw.17cda09aced8402a.js
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (65457)
Size 595 kB (595026 bytes)
Hash 198bb6564fe0f1a4f851453657dff32a
bbdbc0619c7f03c8a975f96982e4520c33dace9e
2420db5b24dacdf62af83b14e09d65998f3000bf488c94cf0fdfe6a659370287
GET /build/static/js/gcmw.17cda09aced8402a.js HTTP/1.1
Host: assets.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
x-guploader-uploadid: ABPtcPot6BnT6PmgHtDOogW9_HdaEiK6B_hQZioDo-dtxXsMFzIcks2JLkA6pbLPVuc_OSFVCdbYb2wQuA
cache-control: public, max-age=31536000, s-maxage=31536000
expires: Sat, 26 Apr 2025 08:10:04 GMT
last-modified: Fri, 26 Apr 2024 08:02:00 GMT
etag: W/"35dc51864f7e709f1979f20d0a7fdc65"
vary: Accept-Encoding
x-goog-generation: 1714118520556549
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 144516
x-goog-hash: crc32c=ZRv46Q==, md5=NdxRhk9+cJ8ZefINCn/cZQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: HIT
age: 24220
server: cloudflare
cf-ray: 87a771d558b61c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.gorgias.chat/build/static/js/998.77d77725ea2e4082.js
172.64.144.86200 OK 52 kB URL GET HTTP/2 assets.gorgias.chat/build/static/js/998.77d77725ea2e4082.js
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (52192)
Hash c483e50a8e6407ee280db0d143ae1164
7b570936d09a339ae81b53ecdf3df3c58ac567b2
2522cbe6c8953c2f0fb2576f9236a54e4d2c8fbaa49ec40ef289ea6293582101
GET /build/static/js/998.77d77725ea2e4082.js HTTP/1.1
Host: assets.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
x-guploader-uploadid: ABPtcPqHg22Yv5qZ2fXbe72hYCrrwKmv9N0Whsasr-Jsowu7Vih9HBrB2K4wgbAt_sMBDMc5qyJ75kDPDg
cache-control: public, max-age=31536000, s-maxage=31536000
expires: Fri, 18 Apr 2025 13:48:23 GMT
last-modified: Thu, 18 Apr 2024 13:42:10 GMT
etag: W/"b4664e0e17cc30043ab2205629b02314"
vary: Accept-Encoding
x-goog-generation: 1713447730801184
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16203
x-goog-hash: crc32c=fiAEzw==, md5=tGZODhfMMAQ6siBWKbAjFA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: HIT
age: 695223
server: cloudflare
cf-ray: 87a771d74a9e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
shop.pe/widget/widget_async.js
35.227.244.1301 Moved Permanently 2.9 kB URL GET HTTP/2 shop.pe/widget/widget_async.js
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 26 Apr 2024 15:00:47 GMT
content-type: text/html
content-length: 162
location: https://d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
143.204.55.54200 OK 2.9 kB URL GET HTTP/2 d2mjzob2nc713b.cloudfront.net/widget/widget_async.js
IP 143.204.55.54:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3009), with no line terminators
Hash 7c75df1714a184f05e53e130b36b8894
7d0bf789f3262a1b9bf2eef929b82379e18f1ab9
9501c6ad022b31da7b6f2984642441c7355baf5d21c72bade446b21c34f5056d
GET /widget/widget_async.js HTTP/1.1
Host: d2mjzob2nc713b.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://clearstem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1192
last-modified: Wed, 24 Apr 2024 17:14:25 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-meta-mtime: 1713978863.67
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 Apr 2024 14:22:32 GMT
cache-control: max-age=3600, public
etag: "484f387da6a7d4eb76e437aad8296008"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Cdu6_u6SnZovkx_TEWpreR1HVLTDBfBBiBVh0JFHo86LgCi6ux_7WA==
age: 2302
X-Firefox-Spdy: h2
clearstem.com/cart.json
23.227.38.32200 OK 283 B IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
File type troff or preprocessor input, ASCII text, with very long lines (313), with no line terminators
Hash 22dac045f3970965593127d2ac8db7d6
a336faaf210d9dc8a8a8f8af0261450c5e69205a
fc31826135d690c0a45342301a7ea68edbe2eb745479f20fc0bb7672c2d144dd
GET /cart.json HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEA1RpRWk5OoVBUDJF8jGpHl1BzVQmuR8X0g7wFwsWF4CZyHCAadPwa7PFJNmQs_8M9PlHKWR4FASNdzCQIfjUSkjWLON_vkKWXj774_RELe-XtF1avNIh2oFEABxxmR3G2kaqbuOuMO3YL37d1pQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4; __attentive_cco=1714143648214; _nb_sp_ses.2e66=*; _nb_sp_id.2e66=2e0c5d0c-97be-46f2-bdcd-89cee6115da9.1714143648.1.1714143648.1714143648.11cc66b2-dacf-4cb8-b835-d4be9d6dd458; cart_currency=USD; _uetsid=c41571b003dd11efb7ad9779c52609c5; _uetvid=c415a9b003dd11efa8f31f434abd8343; __attentive_dv=1; __attentive_pv=1; __attentive_ss_referrer=ORGANIC; addshoppers.com=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a; revoffers_affil=p%3D1%26v%3DduzxT_4Dx9vnpKJ%26s%3DduzxT_4Dx9vQHP3; revoffers_affil=p%3D1%26v%3DduzxT_4Dx9vnpKJ%26s%3DduzxT_4Dx9vQHP3; _geuid=f47d6560-b39a-4e92-b5ec-0b7173100b87-1714143649669; _geran=1; octane%2Fshopify%2Fuid=d2689133868c3ca134d116df21fff7630b91ad02130c54ad7a42c025f74e981af4a924fd4fe56c99853164c7d4c5be3714bcafb1e5591010989b970b; _privy_6A1A19F3F0BD871195976174=%7B%22uuid%22%3A%2295edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c%22%7D; _rsession=459180098a1184af; _ruid=eyJ1dWlkIjoiYjk0NTk4ZmMtMDk2NC00YjRhLWE5ZWUtNzUzYjA1NWY4MzFlIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json; charset=utf-8
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
x-storefront-renderer-rendered: 1
vary: Accept-Encoding, Accept
set-cookie: secure_customer_sig=; path=/; expires=Sat, 26 Apr 2025 15:00:50 GMT; secure; HttpOnly; SameSite=Lax
cart_currency=USD; path=/; expires=Fri, 10 May 2024 15:00:50 GMT; SameSite=Lax
_shopify_essential=:AY8a7FG7AAEAMent9WcGvceFAMglv1ptNYE6qn9LUknm8M-TrNkV9MBZV_UJa8W--CgnPSWtyvJVK-IS5Vhe3F8z09zZ4hOLSPsduNAEq_YpvC1_KpcB1Ejc_yWcL92sCLFOwFFppbPIj1pJcsjHKoBWx038AA==:; path=/; Max-Age=31536000; secure; HttpOnly; SameSite=Lax
x-cartjs-cache: 1
x-cartjs-updatedat: 0
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 56349720736
x-shardid: 224
content-language: en
powered-by: Shopify
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 3f03b5ce-d092-44bd-b1c0-d50b7aee1254-1714143650
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F8GYjf1v73PbaBNolWpMKjZw%2FHv%2F1ja6ypju5KCyvgLhAi66r8GzbYKO%2Bt9i%2FfA1wnyNIyNirEB3bp9plJyDxF5TpGmS8Mpe1z9a89RXZQQ3fhlG0m%2FQ2jKDUehRh90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=18, db;dur=3, asn;desc="50304", edge;desc="CPH", country;desc="NO", servedBy;desc="4chp", requestID;desc="3f03b5ce-d092-44bd-b1c0-d50b7aee1254-1714143650", cfRequestDuration;dur=141.999960
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771d74def929e-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
db.revoffers.com/js/clearstemskincare.com.js?shopify_domain=clearstem-skincare.myshopify.com&shop=clearstem-skincare.myshopify.com
54.230.111.30200 OK 56 kB URL GET HTTP/2 db.revoffers.com/js/clearstemskincare.com.js?shopify_domain=clearstem-skincare.myshopify.com&shop=clearstem-skincare.myshopify.com
IP 54.230.111.30:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.revoffers.com
FingerprintE9:B2:26:75:1D:B6:88:54:9F:6B:DD:A1:8F:03:5D:06:B1:8A:E7:69
ValidityMon, 18 Sep 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/clearstemskincare.com.js?shopify_domain=clearstem-skincare.myshopify.com&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: db.revoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 21 Nov 2023 21:53:26 GMT
x-amz-version-id: 3Q44cOAxvByDbgZy9txXEZoYe4GL4HYR
server: AmazonS3
x-content-type-options: nosniff
content-encoding: br
date: Fri, 26 Apr 2024 12:32:11 GMT
cache-control: public,max-age=14400
etag: W/"71a592ae9fd6adbb593fa5c5c1db9302"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DijfEJelL34F2Za7_ST8ZBKD1HSYoNKUO_rVfSMzTOnP1LjUZL3pIg==
age: 8925
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-969758d8353df4cc4e7f092dbea48e56fe6144b382bf60151f9ae6ba49f1241b.js
23.227.60.200200 OK 1.4 MB URL GET HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-969758d8353df4cc4e7f092dbea48e56fe6144b382bf60151f9ae6ba49f1241b.js
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
Size 1.4 MB (1378296 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /shopifycloud/shopify/assets/checkout_2021-01-25-969758d8353df4cc4e7f092dbea48e56fe6144b382bf60151f9ae6ba49f1241b.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:46 GMT
content-type: text/javascript
content-length: 288104
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
content-encoding: br
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/checkout_2021-01-25-969758d8353df4cc4e7f092dbea48e56fe6144b382bf60151f9ae6ba49f1241b.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 36eaeb94-663b-40fa-a92e-6ee360c92516-1712065073
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Tue, 02 Apr 2024 13:37:53 GMT
cf-cache-status: HIT
age: 61335
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vwlEvYTfCaz4dAiwbRouMDpuzdvD5KEUy3DfJPgThFIBfu1MkcygsZ868n7g7oMdfp7lEwUUfP%2Ftr4Kd2fismBsCQlTqU1bJE0gK%2FOdptDCSvue9QBPOjpli24SyYmeQJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=125.499, imageryFetch;dur=38.554, cfRequestDuration;dur=18.000126
server: cloudflare
cf-ray: 87a771bf0d397131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=G-LNH1QN2KJM&ga_client_id=1744165816.1714143648&shpt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LNH1QN2KJM%22%2C%22ga_client_id%22%3A%221744165816.1714143648%22%2C%22shpt%22%3A%22Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout%22%2C%22dcm_cid%22%3A%221744165816.1714143648%22%2C%22mntnis%22%3A%22bgccwCftZ2dKpwTkFeCSqX8lsExMGzBb%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1744165816.1714143648&available_ga=%5B%7B%22id%22%3A%22G-LNH1QN2KJM%22%2C%22sess_id%22%3A%221714143648%22%7D%2C%7B%22id%22%3A%22UA-108119704-1%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=G-LNH1QN2KJM&conv=1&shaid=37201&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shpic=1&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cshopify%3Dtrue%2Cga4%3Dtrue
52.89.99.220200 OK 0 B URL GET HTTP/1.0 px.mountain.com/st?ga_tracking_id=G-LNH1QN2KJM&ga_client_id=1744165816.1714143648&shpt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LNH1QN2KJM%22%2C%22ga_client_id%22%3A%221744165816.1714143648%22%2C%22shpt%22%3A%22Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout%22%2C%22dcm_cid%22%3A%221744165816.1714143648%22%2C%22mntnis%22%3A%22bgccwCftZ2dKpwTkFeCSqX8lsExMGzBb%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1744165816.1714143648&available_ga=%5B%7B%22id%22%3A%22G-LNH1QN2KJM%22%2C%22sess_id%22%3A%221714143648%22%7D%2C%7B%22id%22%3A%22UA-108119704-1%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=G-LNH1QN2KJM&conv=1&shaid=37201&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shpic=1&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cshopify%3Dtrue%2Cga4%3Dtrue
IP 52.89.99.220:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?ga_tracking_id=G-LNH1QN2KJM&ga_client_id=1744165816.1714143648&shpt=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LNH1QN2KJM%22%2C%22ga_client_id%22%3A%221744165816.1714143648%22%2C%22shpt%22%3A%22Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout%22%2C%22dcm_cid%22%3A%221744165816.1714143648%22%2C%22mntnis%22%3A%22bgccwCftZ2dKpwTkFeCSqX8lsExMGzBb%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1744165816.1714143648&available_ga=%5B%7B%22id%22%3A%22G-LNH1QN2KJM%22%2C%22sess_id%22%3A%221714143648%22%7D%2C%7B%22id%22%3A%22UA-108119704-1%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=G-LNH1QN2KJM&conv=1&shaid=37201&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shpic=1&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cshopify%3Dtrue%2Cga4%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 200 OK
Cache-Control: no-cache
Connection: close
Content-Type: application/javascript;charset=utf-8
P3P: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
repeat-modal-snippet.netlify.app/fs.js?shop=clearstem-skincare.myshopify.com
52.58.254.253200 OK 1.3 kB URL GET HTTP/2 repeat-modal-snippet.netlify.app/fs.js?shop=clearstem-skincare.myshopify.com
IP 52.58.254.253:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1364), with no line terminators
Hash 0155879595bd9b8fa6d4263e7fc8efb1
da416e32a9d5e43e2670cf65005265406a68c8e9
951415dcd64d9df04a09647f3f60da7e37facef840184708d6f0efa684155de7
GET /fs.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: repeat-modal-snippet.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 104601
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 26 Apr 2024 15:00:49 GMT
etag: "d97245f690742824476cc54e3b28a5f7-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01HWDERQN9W0VVQVJ2M8A165TK
content-length: 614
X-Firefox-Spdy: h2
widgets.automizely.com/aftership/gmv.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com
104.18.17.130200 OK 1.8 kB URL GET HTTP/2 widgets.automizely.com/aftership/gmv.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com
IP 104.18.17.130:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectautomizely.com
Fingerprint7A:45:E7:B1:A2:3B:88:08:CF:6C:E1:A7:2F:1E:96:D5:AF:71:A0:24
ValidityMon, 25 Mar 2024 04:25:39 GMT - Sun, 23 Jun 2024 04:25:38 GMT
File type JavaScript source, ASCII text, with very long lines (1886), with no line terminators
Hash 07ed79b7d4010bbf92e543b09681779d
c19393b8dd7d09d11ca3444ec3c88311cc91d049
27bbcbbb353c8269fe6517b1c396d77485761806fa9ede92cbebac8c4594008f
GET /aftership/gmv.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: widgets.automizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: YlzNNs4Fk1EyxBuANMFDC8X2aMqPQfDstt/4vSwgGWAug4t363aig0dR0Ne1Bd9LfCQhn314c3M=
x-amz-request-id: W90ED2639TRPSB4S
x-amz-meta-x-frame-options: deny
last-modified: Thu, 25 Jan 2024 08:24:30 GMT
etag: W/"a0629c9eea780e8f21ab0bdb2518e3e7"
cf-cache-status: HIT
age: 5697
expires: Fri, 26 Apr 2024 19:00:49 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 87a771d01a0a56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.shop.pe/app/datapartners/status?usersite_id=621d3db4bbf6c3450b3083d3
35.227.244.1200 OK 34 B URL GET HTTP/2 app.shop.pe/app/datapartners/status?usersite_id=621d3db4bbf6c3450b3083d3
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1f180ad6f7659e74e1fbe58ccd04f68d
e005dbf0d0695772a924fad751dfe1eff275d09e
d8563028c1699c376cf5eff62e52ef91b779affc71a6474a2d9499b1fdcc6043
GET /app/datapartners/status?usersite_id=621d3db4bbf6c3450b3083d3 HTTP/1.1
Host: app.shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
etag: W/"0467ba22658b680d6de72dc567071b5bc495547f"
set-cookie: _xsrf=2|41535435|24c54b863b4f15f2ae2ad8e0cb1ea909|1714143650; Path=/
x-frame-options: deny
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.privy.com/assets/x-da8d2cc51c4426cc3ea5a20273576343cfa3a717812fa7182499685b95066541.svg
104.22.20.108200 OK 1.1 kB URL GET HTTP/2 assets.privy.com/assets/x-da8d2cc51c4426cc3ea5a20273576343cfa3a717812fa7182499685b95066541.svg
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type SVG Scalable Vector Graphics image
Hash 1214043b945e6cd76ddce07143fe7079
db2a7232408fd881b1a9ad306cd067515ae26a6f
053147aad97a4496397259b35c6a0dbd64e9302a2de89a99220e06f5c9aa9eb4
GET /assets/x-da8d2cc51c4426cc3ea5a20273576343cfa3a717812fa7182499685b95066541.svg HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:56 GMT
content-type: image/svg+xml
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713760005&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=uT6F9yyWoi%2BdPLJtlBh4ukA6xecGjDpcYZ0qsmqoBYg%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713760005&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=uT6F9yyWoi%2BdPLJtlBh4ukA6xecGjDpcYZ0qsmqoBYg%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
last-modified: Mon, 10 Apr 2023 19:08:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 de27d82c1c354527a5740acf5043eab4.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: _sNENNalUBw5yYSip0WKogDw9Q9bJ5GuCTxekU8FmusI6HhCY1oycg==
age: 6734
cache-control: max-age=31536000
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a771fc4862569d-OSL
X-Firefox-Spdy: h2
widgets.automizely.com/aftership/mobile-booster.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com
104.18.17.130200 OK 238 kB URL GET HTTP/2 widgets.automizely.com/aftership/mobile-booster.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com
IP 104.18.17.130:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectautomizely.com
Fingerprint7A:45:E7:B1:A2:3B:88:08:CF:6C:E1:A7:2F:1E:96:D5:AF:71:A0:24
ValidityMon, 25 Mar 2024 04:25:39 GMT - Sun, 23 Jun 2024 04:25:38 GMT
Size 238 kB (238053 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aftership/mobile-booster.js?organization_id=409b5153b2a44f7d9be00f9ae94015db&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: widgets.automizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: vVKpgal7yE5yCGYkrv3qS1XTfuXSQDRDfFv5+2LuFLM6DduA8X/Q0bprmqeM8OGYZgrVaCYcDU4=
x-amz-request-id: 2QMFGZ31XQ70YT8R
cache-control: public, no-cache
x-amz-meta-x-frame-options: deny
last-modified: Thu, 25 Jan 2024 08:24:31 GMT
etag: W/"225e03580b8019815a3bc7b3946e46ef"
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 87a771d01a0656ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.privy.com/packs/js/864-e97430f5f316998a0c34.js
104.22.20.108200 OK 19 kB URL GET HTTP/2 assets.privy.com/packs/js/864-e97430f5f316998a0c34.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (19051)
Hash 0f02ae458080f76ff16a666ce3a4dc32
49d4509dada48e65b3eb5f2ef169f59c78666500
c9b1c975871e139ec3dce8ca5d2cea862edf5572c930da5952c31a0e72a71ba2
GET /packs/js/864-e97430f5f316998a0c34.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 6189
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 a22ad523898ca1a66b4560cbe5984662.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714088597&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QMxTO%2Bugil9leTiADyPYuosolQllZssQ6aJYbdhKUAo%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714088597&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=QMxTO%2Bugil9leTiADyPYuosolQllZssQ6aJYbdhKUAo%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: Qg3bmddz86xtcUdv-OLv_tsy5ioTRkW5mpmcOY3jVt1s33l9DkTexw==
age: 439
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fcc569d-OSL
X-Firefox-Spdy: h2
cdn.attn.tv/clearstem/dtag.js
143.204.55.59200 OK 6.5 kB URL GET HTTP/2 cdn.attn.tv/clearstem/dtag.js
IP 143.204.55.59:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.attn.tv
FingerprintFA:F1:AA:15:48:7D:8F:61:2A:11:39:78:5A:97:D5:38:B2:1C:D8:9A
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6503), with no line terminators
Hash 0249d6eec4a0330ecd3b170cffa36f4e
fce8d67b2678f96d2fa751d555b48c76aeb81b60
e23ad63e4586ceeb72f48b46f6b40849e13c40ef5a6ec727a1fb8d8450beecd0
GET /clearstem/dtag.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 05 Oct 2023 19:08:46 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: L9oZIeAoL6pBAe3GxXtM0irpQg7mkWq9
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 15:00:48 GMT
cache-control: public, max-age=120
etag: W/"e13fa09e4f1ea352f86a8e76770d77bd"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pl-bye_ZoBvch6ObnjFXO0fn-eXGGlzooFKV1ibM-R08YwZnLJlucQ==
X-Firefox-Spdy: h2
d38xvr37kwwhcm.cloudfront.net/js/grin-sdk.js?shop=clearstem-skincare.myshopify.com
54.230.241.120200 OK 48 kB URL GET HTTP/2 d38xvr37kwwhcm.cloudfront.net/js/grin-sdk.js?shop=clearstem-skincare.myshopify.com
IP 54.230.241.120:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/grin-sdk.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: d38xvr37kwwhcm.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 15 Feb 2023 20:44:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: U6nGJyHrP5bKUSzRLYY8LHZiiNaB0WI_
server: AmazonS3
content-encoding: gzip
date: Thu, 25 Apr 2024 19:08:47 GMT
etag: W/"1d29e2190be6665be84c49429278090f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3aCWU-9O4eHEVbJtwa4zx4UQOJUBvI5U1Hkgyn4C2ibkEaq352BV5A==
age: 71527
X-Firefox-Spdy: h2
cdn.rebuyengine.com/onsite/js/global.js?build=1713979574
172.67.12.125200 OK 640 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/js/global.js?build=1713979574
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
Size 640 kB (640295 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /onsite/js/global.js?build=1713979574 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=1800
etag: W/"519486e4aefb8fca43eee15f75375db9"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=7200
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KqB5wIfpmZjGRhWkkZ2cVgH605RU3y8gtTigDKXNcEDGN3mxBHasmMQl6zKnGWz%2Braee4hQrb9qU0t1xCIyKymH8fw4whUaIVg0CVe0b0hRo8ApHHxz5pHhxOjAMW0cCll6bbXYR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d3ca6256a2-OSL
X-Firefox-Spdy: h2
3.212.39.155/is
3.212.39.155200 OK 32 B IP 3.212.39.155:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerSectigo Limited
Subject3.212.39.155
Fingerprint82:C1:10:23:E3:8E:C8:62:47:9B:A0:4C:5B:14:A9:D8:CF:80:7F:02
ValidityFri, 26 Jan 2024 00:00:00 GMT - Sat, 15 Feb 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash b050c6754128a199d99e7c8ed41bd0ad
2bc5090f67a8890a2affe9677d3f22445c2dfae2
acea2239ce267c86ccb9c5fcf2a153f44161dbe5834709b5c2e022b95675d169
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /is HTTP/1.1
Host: 3.212.39.155
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
142.250.74.106200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP 142.250.74.106:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
Hash fa399c57b8f59144c0b18302c33dfea5
6d420f186305a23da0e971a03d14d76d988bb56c
00008d2a6bb44551ff155148e5fedbcc0fdf8d710d908581fdf04dd96dfb31ca
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 15:00:50 GMT
date: Fri, 26 Apr 2024 15:00:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
geo.rebuyengine.com/?key=156a97c0415568d219a514a59916237ffaafd994&cache_key=1713917354
104.22.33.205200 OK 232 B URL GET HTTP/2 geo.rebuyengine.com/?key=156a97c0415568d219a514a59916237ffaafd994&cache_key=1713917354
IP 104.22.33.205:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectrebuyengine.com
Fingerprint2C:83:43:41:F0:65:39:B9:5C:78:79:2C:6E:96:2B:00:CE:2F:44:FA
ValidityMon, 25 Mar 2024 21:54:53 GMT - Sun, 23 Jun 2024 21:54:52 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 0fa5c5f238a62cc5f8a40b331bac5c8e
1539d4a2af75a2aeaf5d68096ead93d64c777e4d
c8092d2591c2de4504d1ee60c6a7bb0db21c0e26391967bb00bf5167b7503a47
GET /?key=156a97c0415568d219a514a59916237ffaafd994&cache_key=1713917354 HTTP/1.1
Host: geo.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: https://clearstem.com
access-control-allow-headers: *
access-control-allow-methods: POST
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d80f7392c7-CPH
content-encoding: gzip
X-Firefox-Spdy: h2
db.revoffers.com/shopify.js?shop=clearstem-skincare.myshopify.com
54.230.111.30200 OK 5.2 kB URL GET HTTP/2 db.revoffers.com/shopify.js?shop=clearstem-skincare.myshopify.com
IP 54.230.111.30:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.revoffers.com
FingerprintE9:B2:26:75:1D:B6:88:54:9F:6B:DD:A1:8F:03:5D:06:B1:8A:E7:69
ValidityMon, 18 Sep 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (5463), with no line terminators
Hash 86621e27f4ce51f85a6e67ee7953d159
2c9212abb09c6cf54c8c4b4b46da7131528daeb6
94670e80db2ff7870cdeb9892b76ffd46de08911b5e1b1edd10de352a4bff34a
GET /shopify.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: db.revoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
x-amz-meta-replication-status: COMPLETED
x-amz-meta-version-id: AmfPRzj_wusgr0aFhx0UeGTtyHwZJgwT
last-modified: Tue, 05 Nov 2019 22:45:53 GMT
x-amz-version-id: IIYG14jrkePY6IXaxOFxeOSnSJcyPwKr
server: AmazonS3
content-encoding: br
date: Fri, 26 Apr 2024 15:00:49 GMT
etag: W/"239243a110a4de0b7bbe89e88e559061"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1lGBJyfbcCD7wh1lCFCT4jWuUdi9ScdHswWHysZHcABngZMgncEjgg==
age: 10236
X-Firefox-Spdy: h2
app.octaneai.com/get_user_info/l9neqbg66j1o4m2i
104.22.35.242200 OK 66 B URL POST HTTP/3 app.octaneai.com/get_user_info/l9neqbg66j1o4m2i
IP 104.22.35.242:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectoctaneai.com
Fingerprint1A:53:70:B9:11:DA:D9:2A:D5:56:08:96:86:4D:A0:CB:07:FE:F5:DE
ValidityThu, 11 Apr 2024 03:23:28 GMT - Wed, 10 Jul 2024 03:23:27 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 73bce488b94096cff89b6d9df640597c
35d635230a295f49e6b889c65792ae6598d78bbc
35495bb40dc183a0bf89919d64ad17cfc61af8b3c42195554e07704f9b6e579b
POST /get_user_info/l9neqbg66j1o4m2i HTTP/1.1
Host: app.octaneai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Content-type: application/x-www-form-urlencoded
Content-Length: 155
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://clearstem.com
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d4af4dabe4-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
ss.clearstem.com/data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9jbGVhcnN0ZW0uY29tLzU2MzQ5NzIwNzM2L29yZGVycy8wYzRmNTQ3MGEzYjVhZDczNmFmNmM1MmQxN2Q4NjlkYyIsInBhZ2VfaG9zdG5hbWUiOiJjbGVhcnN0ZW0uY29tIiwicGFnZV9yZWZlcnJlciI6IiIsInBhZ2VfdGl0bGUiOiJUaGFuayB5b3UhIC0gQ0xFQVJTVEVNIFNraW5jYXJlIC0gQ2hlY2tvdXQiLCJwYWdlX2VuY29kaW5nIjoiVVRGLTgiLCJldmVudF9pZCI6InBhZ2Vfdmlld18xNzE0MTQ0MTA0Nzg1XzE3MTQxNDQ0MjMyMzQ5In0%3D
0.0.0.0 0 B URL GET ss.clearstem.com/data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9jbGVhcnN0ZW0uY29tLzU2MzQ5NzIwNzM2L29yZGVycy8wYzRmNTQ3MGEzYjVhZDczNmFmNmM1MmQxN2Q4NjlkYyIsInBhZ2VfaG9zdG5hbWUiOiJjbGVhcnN0ZW0uY29tIiwicGFnZV9yZWZlcnJlciI6IiIsInBhZ2VfdGl0bGUiOiJUaGFuayB5b3UhIC0gQ0xFQVJTVEVNIFNraW5jYXJlIC0gQ2hlY2tvdXQiLCJwYWdlX2VuY29kaW5nIjoiVVRGLTgiLCJldmVudF9pZCI6InBhZ2Vfdmlld18xNzE0MTQ0MTA0Nzg1XzE3MTQxNDQ0MjMyMzQ5In0%3D
IP 0.0.0.0:0
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /data?v=2&event_name=page_view&dtdc=eyJwYWdlX2xvY2F0aW9uIjoiaHR0cHM6Ly9jbGVhcnN0ZW0uY29tLzU2MzQ5NzIwNzM2L29yZGVycy8wYzRmNTQ3MGEzYjVhZDczNmFmNmM1MmQxN2Q4NjlkYyIsInBhZ2VfaG9zdG5hbWUiOiJjbGVhcnN0ZW0uY29tIiwicGFnZV9yZWZlcnJlciI6IiIsInBhZ2VfdGl0bGUiOiJUaGFuayB5b3UhIC0gQ0xFQVJTVEVNIFNraW5jYXJlIC0gQ2hlY2tvdXQiLCJwYWdlX2VuY29kaW5nIjoiVVRGLTgiLCJldmVudF9pZCI6InBhZ2Vfdmlld18xNzE0MTQ0MTA0Nzg1XzE3MTQxNDQ0MjMyMzQ5In0%3D HTTP/1.1
Host: ss.clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _gcl_au=1.1.1281313967.1714143647; _ga_LNH1QN2KJM=deleted; _ga=GA1.1.1744165816.1714143648
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
cdn.rebuyengine.com/onsite/js/rebuy.js?shop=clearstem-skincare.myshopify.com
172.67.12.125200 OK 52 kB URL GET HTTP/2 cdn.rebuyengine.com/onsite/js/rebuy.js?shop=clearstem-skincare.myshopify.com
IP 172.67.12.125:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.rebuyengine.com
Fingerprint3E:E4:EE:D6:44:8B:1B:E4:0B:CE:19:D6:EE:30:F4:C4:74:2C:AB:A7
ValidityThu, 07 Mar 2024 18:42:49 GMT - Wed, 05 Jun 2024 18:42:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /onsite/js/rebuy.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=0
etag: W/"39095d4dbd4edc59571fcdff0aa97167"
access-control-allow-methods: GET, OPTIONS
referrer-policy: strict-origin-when-cross-origin
surrogate-control: max-age=7200
x-content-type-options: nosniff
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=peFy1ANh%2BNW7H2ln96FUqqQLilzM1UgRA2wgGAEDD3sNLPU3g6DPVbB5AqTITO0SDmzLT6dBsfiK4Di3RON6Gy32xI%2FjZpYJB9rDHF1eYIxQJ1oz4xmZT%2F%2Fqu65d1DRrtMX0Jkvb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d13ee456a2-OSL
X-Firefox-Spdy: h2
app.fairing.co/css/fairing-b84be12e2e2f7ea2439a33a7b40de20c.css?vsn=d
172.67.72.105200 OK 3.1 kB URL GET HTTP/3 app.fairing.co/css/fairing-b84be12e2e2f7ea2439a33a7b40de20c.css?vsn=d
IP 172.67.72.105:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectfairing.co
Fingerprint92:29:DD:D0:34:05:26:EA:41:7A:44:28:78:70:23:E2:40:A0:6E:92
ValidityMon, 01 Apr 2024 17:26:57 GMT - Sun, 30 Jun 2024 17:26:56 GMT
File type ASCII text, with very long lines (3080), with no line terminators
Hash 9e7efccf1a03f9fd1e327c9eb6682ca8
391cebfe7425681043a0fbcb6e7ff565e7fcbbb2
daab195d4a40d8923d0f16c9f0e0c7b4c4e289d6df0dd59515e44bb7e46b3bb5
GET /css/fairing-b84be12e2e2f7ea2439a33a7b40de20c.css?vsn=d HTTP/1.1
Host: app.fairing.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/css
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=3720
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713312343&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=2P5W%2BBWDaov9hfuKSSwG40KbRc8bL50semN0NXjjIfM%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713312343&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=2P5W%2BBWDaov9hfuKSSwG40KbRc8bL50semN0NXjjIfM%3D
via: 1.1 vegur
cf-cache-status: HIT
age: 831307
last-modified: Wed, 17 Apr 2024 00:05:43 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d55a6f5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.gorgias.chat/build/static/js/campaigns.5ae27d67d4a4f64d.js
172.64.144.86200 OK 21 kB URL GET HTTP/2 assets.gorgias.chat/build/static/js/campaigns.5ae27d67d4a4f64d.js
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (20498)
Hash ef71d4c9d478bfc9255c4765d87aa807
3d424b3c389599258909a6b614e7a209d7a8573b
b208d14f5163701a66aee9742a06e5af2d22ee1560f9f27c718f84a5ba20f1a0
GET /build/static/js/campaigns.5ae27d67d4a4f64d.js HTTP/1.1
Host: assets.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
x-guploader-uploadid: ABPtcPrOhpGaEcOmJ9vEGfUva65AVUD3wAjD0BNyU2-30RVf0E_flTuwoEvD3ijT96FxfTmGi-HydkhFSQ
cache-control: public, max-age=31536000, s-maxage=31536000
expires: Sat, 26 Apr 2025 08:11:19 GMT
last-modified: Fri, 26 Apr 2024 08:01:56 GMT
etag: W/"e4ed3f39d0d695a5702d799f166bbed5"
vary: Accept-Encoding
x-goog-generation: 1714118516723185
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7967
x-goog-hash: crc32c=ijynXQ==, md5=5O0/OdDWlaVwLXmfFmu+1Q==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: HIT
age: 24220
server: cloudflare
cf-ray: 87a771d75aa71c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
config.gorgias.chat/bundle-loader/01GYCC83JD8PXKQEKTBS2SSPRE?source=shopify1click&shop=clearstem-skincare.myshopify.com
172.64.144.86200 OK 2.4 kB URL GET HTTP/2 config.gorgias.chat/bundle-loader/01GYCC83JD8PXKQEKTBS2SSPRE?source=shopify1click&shop=clearstem-skincare.myshopify.com
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (2434), with no line terminators
Hash 4c2290c95c215c8bad6e294689dac663
96531293805d4c33680adb5a01736f0259ff9fe3
bbed8b23aa44d6c93ea15f6f2e3a762e056b9ffc3dfe4c8f6a57508a46f80720
GET /bundle-loader/01GYCC83JD8PXKQEKTBS2SSPRE?source=shopify1click&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: config.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
cache-control: no-cache
etag: W/"953-RB0paI2STPxYJqBxyp4tbX4GbU4"
via: 1.1 google
cf-cache-status: HIT
age: 10948
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d0ed0f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
bundle.dyn-rev.app/script.js?rev=1d8f2fbc
188.114.97.1200 OK 52 kB URL GET HTTP/3 bundle.dyn-rev.app/script.js?rev=1d8f2fbc
IP 188.114.97.1:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectdyn-rev.app
Fingerprint41:B2:55:91:6A:48:1C:14:EB:FE:0D:A7:84:AB:5D:04:F4:A6:5B:09
ValidityThu, 28 Mar 2024 22:08:42 GMT - Wed, 26 Jun 2024 22:08:41 GMT
File type JavaScript source, ASCII text, with very long lines (52095), with no line terminators
Hash 942fcd5c3a0540e814c5a170ca6de918
38b1cdea54dc9fe18c09553a315aff3e0edb65be
ebc9360c80376174aabe487e47f9bcc46d14b1164c7ee0924143b8937fb37af6
GET /script.js?rev=1d8f2fbc HTTP/1.1
Host: bundle.dyn-rev.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoBNKQRZ6X-OX2lRqykP00IhXTKhsBB72Ad6M5KGpcKqaMDcXUbnfRZ10No6n3WM-0I6iVX8eE-_w
x-goog-generation: 1712668561237663
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 52095
x-goog-hash: crc32c=xPaP/Q==, md5=lC/NXDoFQOgUxaFwym3pGA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sat, 27 Apr 2024 14:40:02 GMT
cache-control: public, max-age=86400
age: 1247
last-modified: Tue, 09 Apr 2024 13:16:01 GMT
etag: W/"942fcd5c3a0540e814c5a170ca6de918"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tNu51EKWn2FsOCaTTVHSAnfoT82K023SfSq0ZQZlnz7KWJQB%2BGzKrgGJyVUZ%2Bz7VczdG7kACmbLbu442bruW%2BbQDwbXQE9o1xKyAORtUPHfWR2rrMbuyebavNSyPATejlied2io%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d3681f712f-OSL
content-encoding: br
assets.privy.com/packs/js/212-10228c6a8b3d61f23b60.js
104.22.20.108200 OK 207 kB URL GET HTTP/2 assets.privy.com/packs/js/212-10228c6a8b3d61f23b60.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65454)
Size 207 kB (207166 bytes)
Hash 030d2ea6701270c0652bb7b55feef68e
45475e12582a4804da1c016ab636e4704469b4e2
58cd66abdf9ace20b408fe63bcbbb012078151d8f2d3479577bd906f32b6a2dd
GET /packs/js/212-10228c6a8b3d61f23b60.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 60096
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714084776&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=LsDBajy%2FKpAc4fH8zq3nqlRrTRwV5q6qT%2BWby%2BG%2Bn74%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714084776&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=LsDBajy%2FKpAc4fH8zq3nqlRrTRwV5q6qT%2BWby%2BG%2Bn74%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PLmbDfL0BMZGQLYiPK8u33iU9AKtikpMGqEsq5_F4q96C9WsiIZhNg==
age: 143
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fd1569d-OSL
X-Firefox-Spdy: h2
api.privy.com/businesses/6A1A19F3F0BD871195976174/campaigns.json?s=j&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&user_uuid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&fence=1
104.22.21.108200 OK 66 kB URL GET HTTP/2 api.privy.com/businesses/6A1A19F3F0BD871195976174/campaigns.json?s=j&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&user_uuid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&fence=1
IP 104.22.21.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /businesses/6A1A19F3F0BD871195976174/campaigns.json?s=j&l=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&user_uuid=95edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c&fence=1 HTTP/1.1
Host: api.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json; charset=utf-8
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714143650&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=83c3Wo15DF3%2BU%2B%2FlG2Vy8FHWiazLFJ5JmgcV6pjRlL4%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714143650&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=83c3Wo15DF3%2BU%2B%2FlG2Vy8FHWiazLFJ5JmgcV6pjRlL4%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
access-control-request-method: *
access-control-expose-headers: X-IPCountry, X-IPRegion, X-IPPostalCode
x-ipcountry: NO
x-ipregion: NO_
x-ippostalcode:
etag: W/"bee683edffcff1a75889eeecdb4553cb"
cache-control: max-age=0, private, must-revalidate
x-request-id: 61f8a327-2141-441f-b891-cd446319db9e
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771d54ca956bb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
clearstem.com/cart.js
23.227.38.32200 OK 283 B IP 23.227.38.32:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectclearstem.com
Fingerprint81:BC:44:F4:C7:7E:76:7D:23:47:F3:C7:AD:BD:4D:63:45:DE:8A:8D
ValidityTue, 16 Apr 2024 18:49:58 GMT - Mon, 15 Jul 2024 18:49:57 GMT
File type troff or preprocessor input, ASCII text, with very long lines (313), with no line terminators
Hash ef25130f4d0acfdfae5d9b586aba5611
49055be9becf4019ba4e540bedb98a5ea05860a1
fe6df7495ba7942b71a8fc9639c0fe032deec950078d1396380fc7142147035a
GET /cart.js HTTP/1.1
Host: clearstem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Cookie: _cmp_a=%7B%22purposes%22%3A%7B%22p%22%3Afalse%2C%22a%22%3Afalse%2C%22m%22%3Afalse%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Atrue%2C%22sale_of_data_region%22%3Afalse%7D; _tracking_consent=%7B%22region%22%3A%22NO03%22%2C%22reg%22%3A%22GDPR%22%2C%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22s%22%3A%22%22%2C%22p%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%7D; _shopify_essential=:AY8a7FG7AAEA1RpRWk5OoVBUDJF8jGpHl1BzVQmuR8X0g7wFwsWF4CZyHCAadPwa7PFJNmQs_8M9PlHKWR4FASNdzCQIfjUSkjWLON_vkKWXj774_RELe-XtF1avNIh2oFEABxxmR3G2kaqbuOuMO3YL37d1pQ==:; _gcl_au=1.1.1281313967.1714143647; secure_customer_sig=; _ga_LNH1QN2KJM=GS1.1.1714143648.1.0.1714143648.0.0.0; _ga=GA1.1.1744165816.1714143648; _attn_=eyJ1Ijoie1wiY29cIjoxNzE0MTQzNjQ4MjEyLFwidW9cIjoxNzE0MTQzNjQ4MjEyLFwibWFcIjoyMTkwMCxcImluXCI6ZmFsc2UsXCJ2YWxcIjpcIjg5Y2M1YTFkNjEyMDQ0OTY5M2E0ZDZiOTE0NTgyOGU0XCJ9In0=; __attentive_id=89cc5a1d6120449693a4d6b9145828e4; __attentive_cco=1714143648214; _nb_sp_ses.2e66=*; _nb_sp_id.2e66=2e0c5d0c-97be-46f2-bdcd-89cee6115da9.1714143648.1.1714143648.1714143648.11cc66b2-dacf-4cb8-b835-d4be9d6dd458; cart_currency=USD; _uetsid=c41571b003dd11efb7ad9779c52609c5; _uetvid=c415a9b003dd11efa8f31f434abd8343; __attentive_dv=1; __attentive_pv=1; __attentive_ss_referrer=ORGANIC; addshoppers.com=2%7C1%3A0%7C10%3A1714143649%7C15%3Aaddshoppers.com%7C44%3AOTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI%3D%7Cff5b724bdb8ff70134e1fab57058704c4a0fbc87044ffc794ec7d8199f2f8d8a; revoffers_affil=p%3D1%26v%3DduzxT_4Dx9vnpKJ%26s%3DduzxT_4Dx9vQHP3; revoffers_affil=p%3D1%26v%3DduzxT_4Dx9vnpKJ%26s%3DduzxT_4Dx9vQHP3; _geuid=f47d6560-b39a-4e92-b5ec-0b7173100b87-1714143649669; _geran=1; octane%2Fshopify%2Fuid=d2689133868c3ca134d116df21fff7630b91ad02130c54ad7a42c025f74e981af4a924fd4fe56c99853164c7d4c5be3714bcafb1e5591010989b970b; _privy_6A1A19F3F0BD871195976174=%7B%22uuid%22%3A%2295edf9fb-cd3d-4ecb-b3ee-1a5bacb33d7c%22%2C%22variations%22%3A%7B%7D%2C%22country_code%22%3A%22NO%22%2C%22region_code%22%3A%22NO_%22%2C%22postal_code%22%3A%22%22%7D; _rsession=459180098a1184af; _ruid=eyJ1dWlkIjoiYjk0NTk4ZmMtMDk2NC00YjRhLWE5ZWUtNzUzYjA1NWY4MzFlIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/javascript; charset=utf-8
x-sorting-hat-podid: 224
x-sorting-hat-shopid: 56349720736
x-storefront-renderer-rendered: 1
vary: Accept-Encoding, Accept
set-cookie: secure_customer_sig=; path=/; expires=Sat, 26 Apr 2025 15:00:50 GMT; secure; HttpOnly; SameSite=Lax
cart_currency=USD; path=/; expires=Fri, 10 May 2024 15:00:50 GMT; SameSite=Lax
_shopify_essential=:AY8a7FG7AAEAE8821DymjtB6hPsyf_kppvjI93FIkHLf4-pMyOqfN0ELmwpajBuwnPlvwwLLQEcSGtEoUUeCPZ-6ueL3JAZQROTGm88Q8VeNT0dQsmm6VDtSAxh8pekQwqlLYJSW8f4FylW5HPdnpvez7FlKZw==:; path=/; Max-Age=31536000; secure; HttpOnly; SameSite=Lax
x-cartjs-cache: 1
x-cartjs-updatedat: 0
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 56349720736
x-shardid: 224
content-language: en
powered-by: Shopify
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: c08b9602-b26c-4127-8e8d-2a88566c0910-1714143650
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p9Mpr0%2FL0uHxPVr09Cxt5MEiajh7lRep1tTJDqgxDzfHwRNp28u%2FI2PD3OZVwMOPhB85Oh8R9%2FMeqNOlAE%2BG2vqUqkcWS8%2B4J%2ByK%2Fe0uWCvgv3MOuSsK1QHSuUmPG5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=14, db;dur=3, asn;desc="50304", edge;desc="CPH", country;desc="NO", servedBy;desc="4chp", requestID;desc="c08b9602-b26c-4127-8e8d-2a88566c0910-1714143650", cfRequestDuration;dur=88.999987
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
server: cloudflare
cf-ray: 87a771d83f93929e-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.privy.com/packs/js/565-189ee9ea48c27170c378.chunk.js
104.22.20.108200 OK 108 kB URL GET HTTP/2 assets.privy.com/packs/js/565-189ee9ea48c27170c378.chunk.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 108 kB (108318 bytes)
Hash 7c1833f630471faf5ad8ec1ec7231fea
0e69700af66ee2897cefb2b9e6ef0f5ec9135778
2550ef9adbfc4761443cff22243c627af9973d88645d9487a33cdca5c55c7458
GET /packs/js/565-189ee9ea48c27170c378.chunk.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 30177
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714084776&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=LsDBajy%2FKpAc4fH8zq3nqlRrTRwV5q6qT%2BWby%2BG%2Bn74%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714084776&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=LsDBajy%2FKpAc4fH8zq3nqlRrTRwV5q6qT%2BWby%2BG%2Bn74%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xJIfzCBPilE5HvrYA0j5fNIKrjVkcEdtoHp02HSQQeL-POxK7gud_w==
age: 143
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d87fd8569d-OSL
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-61fa9e0a912c675e178777d2b27f6cbd482f8912a6b0aa31fa3515985a8cd626.js
23.227.60.200200 OK 8.3 kB URL GET HTTP/3 cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-61fa9e0a912c675e178777d2b27f6cbd482f8912a6b0aa31fa3515985a8cd626.js
IP 23.227.60.200:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectcdn.shopify.com
Fingerprint34:CE:56:3A:83:8F:D8:06:E6:52:5C:6D:DE:D5:CD:92:EE:F0:79:DF
ValidityTue, 05 Mar 2024 12:27:42 GMT - Mon, 03 Jun 2024 12:27:41 GMT
File type JavaScript source, ASCII text, with very long lines (8422), with no line terminators
Hash 0b1194d424ec334a5fc0eec4b313f740
2df5a067070edddd171411439a731d4ed6665fb1
1e4e8d13f895400bf9ea0406984a6edb6285c6d11cdc2b7131d446bdf709e459
GET /shopifycloud/shopify/assets/shop_events_listener-61fa9e0a912c675e178777d2b27f6cbd482f8912a6b0aa31fa3515985a8cd626.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:47 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-61fa9e0a912c675e178777d2b27f6cbd482f8912a6b0aa31fa3515985a8cd626.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: ca5653de-f637-4234-a18e-1df6ea99be62
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Fri, 23 Feb 2024 18:20:44 GMT
cf-cache-status: HIT
age: 5431170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yx70%2Fvs7bVViI1I5jwnUhXrSoNJNPM6iM4cVGJBvJj7%2FJwkqoNzoBhyxo%2FmmcX4oa25v27fY4BvYnM3Y4Yr%2BhJUkcFT9P4IZy9PdfSTxreTBPgsXkCzaAGdGJLiHgCpE2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=47.490, imageryFetch;dur=46.610, cfRequestDuration;dur=17.999887
server: cloudflare
cf-ray: 87a771c7d82a56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopify.privy.com/widget.js?shop=clearstem-skincare.myshopify.com
104.22.20.108200 OK 370 B URL GET HTTP/2 shopify.privy.com/widget.js?shop=clearstem-skincare.myshopify.com
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (379), with no line terminators
Hash f19a2782b01eecf9eb729a67bf6deec2
41b63b47cd9a5221b0bb78731ac03a4c627b676c
0abd21a898e40ae744829f921cb70a2aeb773e5b32c29f284dae487f1bd938d4
GET /widget.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: shopify.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript; charset=utf-8
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713984374&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=vWSr5oE8xcsiQBpFVvjzhLaGY7Yjc3PyUuqXzHOs4fk%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713984374&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=vWSr5oE8xcsiQBpFVvjzhLaGY7Yjc3PyUuqXzHOs4fk%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
access-control-request-method: *
cache-control: private, max-age=1800
etag: W/"c0a3b4e71d04f72ffae9f7732a735e7c"
x-request-id: 1657030a-0c9f-49c5-9ac4-bc08c0f85103
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur
cf-cache-status: HIT
age: 462
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d0ce4f569d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
assets.privy.com/packs/js/538-77104c19603dadebe86d.js
104.22.20.108200 OK 110 kB URL GET HTTP/2 assets.privy.com/packs/js/538-77104c19603dadebe86d.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 110 kB (110286 bytes)
Hash aaf91dcd68e5b40e3237efeab38ad589
0fcd8eab4e5e2977841f91b3760a3faf4fcaa3a9
900dbad3c14d5ffd093a19635c0251f84ae56597067b81b41dd6dfcbd336b505
GET /packs/js/538-77104c19603dadebe86d.js HTTP/1.1
Host: assets.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
content-length: 31873
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 b78539d5f13f3162976a6abc8783d3de.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714089497&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=hVaczqSBFbW3Vc3GvLakek9zyhPVyYEo6Z498CWLNag%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714089497&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=hVaczqSBFbW3Vc3GvLakek9zyhPVyYEo6Z498CWLNag%3D
vary: accept-encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: YJfUplVlm3kWp5jicmdhv0t-NbVyA5ELh5kvU7opcNcTEGbh-8WG-A==
age: 47
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a771d86fcd569d-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
142.250.74.163200 OK 47 kB URL GET HTTP/2 fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Hash 30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:49:58 GMT
expires: Sat, 26 Apr 2025 05:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 33052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=0&msclkid=N&gv=99.3&gc=USD&en=Y&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&sw=1280&sh=1024&sc=24&evt=custom&rn=383983
204.79.197.237204 No Content 0 B URL GET HTTP/2 bat.bing.com/action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=0&msclkid=N&gv=99.3&gc=USD&en=Y&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&sw=1280&sh=1024&sc=24&evt=custom&rn=383983
IP 204.79.197.237:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99
ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=343002239&Ver=2&mid=ff4a5638-a1f9-4cb2-ad9b-03e880ce3189&sid=c41571b003dd11efb7ad9779c52609c5&vid=c415a9b003dd11efa8f31f434abd8343&vids=0&msclkid=N&gv=99.3&gc=USD&en=Y&p=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&sw=1280&sh=1024&sc=24&evt=custom&rn=383983 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=18B8AFA51FB560A63A6BBBC81E4061CD; domain=.bing.com; expires=Wed, 21-May-2025 15:00:49 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5F425C2C9EF14E719C7A080FF294872C Ref B: OSL30EDGE0108 Ref C: 2024-04-26T15:00:49Z
date: Fri, 26 Apr 2024 15:00:49 GMT
X-Firefox-Spdy: h2
app.enquirelabs.com/shopify/survey-script.js?k=kqUrUFZz0gdeZpNZdiZzgksCVe-f3j1R1eI1cYJ5rjudpMXDs4C4uKAHxNCpeSgz&shop=clearstem-skincare.myshopify.com
172.67.157.5200 OK 1.4 kB URL GET HTTP/2 app.enquirelabs.com/shopify/survey-script.js?k=kqUrUFZz0gdeZpNZdiZzgksCVe-f3j1R1eI1cYJ5rjudpMXDs4C4uKAHxNCpeSgz&shop=clearstem-skincare.myshopify.com
IP 172.67.157.5:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectenquirelabs.com
FingerprintE8:36:EE:42:F7:23:1F:B3:68:B0:4B:D1:F8:D2:1C:38:84:29:55:5B
ValidityMon, 15 Apr 2024 19:20:48 GMT - Sun, 14 Jul 2024 19:20:47 GMT
File type JavaScript source, ASCII text, with very long lines (1429), with no line terminators
Hash b632d393d5721346f0b3acf6994a5005
66fbf3e5e32e08ebb25f84b090f7d85affaddc82
e4ff51baee084067986ddd314953aa6afc45faead40381e82f3696de01085f0a
GET /shopify/survey-script.js?k=kqUrUFZz0gdeZpNZdiZzgksCVe-f3j1R1eI1cYJ5rjudpMXDs4C4uKAHxNCpeSgz&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: app.enquirelabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714143649&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=p%2FYpP5B6I67kxoAkgeQd8Z4eNDZqAqLOtOH%2FHPflywg%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714143649&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=p%2FYpP5B6I67kxoAkgeQd8Z4eNDZqAqLOtOH%2FHPflywg%3D
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 48ce07f6-cd8e-4074-bdf8-b4b3b27d258d
via: 1.1 vegur
cf-cache-status: BYPASS
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d06cf57128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
db.revoffers.com/v2/sync.html
54.230.111.30200 OK 3.3 kB URL GET HTTP/2 db.revoffers.com/v2/sync.html
IP 54.230.111.30:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.revoffers.com
FingerprintE9:B2:26:75:1D:B6:88:54:9F:6B:DD:A1:8F:03:5D:06:B1:8A:E7:69
ValidityMon, 18 Sep 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3328), with no line terminators
Hash 9f8843a42dfc19666d739f067efc2979
6ef6c47ba617ac05829492fdeb97db57e0ecf24f
91053a920357042f44c2883f12bc20bf4bf8b10a9866ab1563b7ea119dff433b
GET /v2/sync.html HTTP/1.1
Host: db.revoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
x-amz-meta-replication-status: COMPLETED
x-amz-meta-version-id: ClEhfN1beZ0DGX5CR382cUn6aKnO6wwI
last-modified: Wed, 11 Aug 2021 18:21:05 GMT
x-amz-version-id: THByu_v99LgUBzBs.T7l9nupDizZrVFN
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 09:44:09 GMT
etag: W/"1e4b6997a2a15a8ce2cdf859eae651aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3n2XYfhP_MkvZRwtg2mF9AbNPcuHOZOfri4SB-AqEIgaR-J3XHmieg==
age: 19207
X-Firefox-Spdy: h2
app.fairing.co/js/fairing-loader-1744ad5e35548a306853debfe1d30ba6.js?vsn=d
172.67.72.105200 OK 49 kB URL GET HTTP/2 app.fairing.co/js/fairing-loader-1744ad5e35548a306853debfe1d30ba6.js?vsn=d
IP 172.67.72.105:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectfairing.co
Fingerprint92:29:DD:D0:34:05:26:EA:41:7A:44:28:78:70:23:E2:40:A0:6E:92
ValidityMon, 01 Apr 2024 17:26:57 GMT - Sun, 30 Jun 2024 17:26:56 GMT
File type JavaScript source, ASCII text, with very long lines (3042)
Hash 06d1f88b2498b65bc50c78415e2231c8
a23e67e5fcf280524cc682cfea8b247bf2aec846
f9315bd0464ef09e96271f302b0f1051851a87e9dbbd47336276b442bd534a58
GET /js/fairing-loader-1744ad5e35548a306853debfe1d30ba6.js?vsn=d HTTP/1.1
Host: app.fairing.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: text/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=68175
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1713978653&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=aaQpWKrvS1JfEAEKIA3fxc5KZZYXKJWqoYhUulGyzs4%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1713978653&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&s=aaQpWKrvS1JfEAEKIA3fxc5KZZYXKJWqoYhUulGyzs4%3D
via: 1.1 vegur
cf-cache-status: HIT
age: 164997
last-modified: Wed, 24 Apr 2024 17:10:53 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d47ab2712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bundle.dyn-rev.app/loader.js?g_cvt_id=3164a0c6-5dda-468c-93c7-c458c87bf8ec&shop=clearstem-skincare.myshopify.com
188.114.97.1200 OK 1.8 kB URL GET HTTP/2 bundle.dyn-rev.app/loader.js?g_cvt_id=3164a0c6-5dda-468c-93c7-c458c87bf8ec&shop=clearstem-skincare.myshopify.com
IP 188.114.97.1:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectdyn-rev.app
Fingerprint41:B2:55:91:6A:48:1C:14:EB:FE:0D:A7:84:AB:5D:04:F4:A6:5B:09
ValidityThu, 28 Mar 2024 22:08:42 GMT - Wed, 26 Jun 2024 22:08:41 GMT
File type JavaScript source, ASCII text, with very long lines (1877), with no line terminators
Hash 9222c2dfe319e52ee9a5fe974ce41045
f6159b69867850520a004250878a691a3f8307f0
1e4987e0cbecf632350745599044fb2caa30278694ca7376df3830457568f897
GET /loader.js?g_cvt_id=3164a0c6-5dda-468c-93c7-c458c87bf8ec&shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: bundle.dyn-rev.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPo-7h9IW0Z8cH-qzQvgU5qcSNghSzWV7q36rCRLvPcrPn2ath6zjlunz8oKn2p7gPavZTMgzLbj1w
x-goog-generation: 1712668563196314
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1821
x-goog-hash: crc32c=a8tjzw==, md5=UsWbrA4qFI62tqvtWVWQeA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Fri, 26 Apr 2024 14:57:25 GMT
cache-control: public, max-age=86400
last-modified: Tue, 23 Apr 2024 14:39:27 GMT
etag: W/"52c59bac0e2a148eb6b6abed59559078"
age: 84087
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFs2m80HseV%2FmOdnDkiIZ4TMZG9IogjUzeBZD%2FVxyQsU465WzZu3NI7hxnEARE58D9DMA%2FSf9FL4v%2FVN35mI5B89z1DVJF4wPjguXDOZhwgmQ3sShD3ASqZzrV1m%2BoI8gApdGkE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d10af50afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
delivery.shopifyapps.com/checkout/check_order?callback=jQuery36409858895429007012_1714143649951&shop=clearstem-skincare.myshopify.com&checkout_token=27ea8656f36f7149f8b79f68a50ca4d8&_=1714143649952
185.146.173.20200 OK 91 B URL GET HTTP/3 delivery.shopifyapps.com/checkout/check_order?callback=jQuery36409858895429007012_1714143649951&shop=clearstem-skincare.myshopify.com&checkout_token=27ea8656f36f7149f8b79f68a50ca4d8&_=1714143649952
IP 185.146.173.20:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectdelivery.shopifyapps.com
Fingerprint97:68:FD:2F:9B:E6:01:8D:42:6B:04:8E:10:F1:EB:45:C5:DF:EA:47
ValidityTue, 19 Mar 2024 06:57:04 GMT - Mon, 17 Jun 2024 06:57:03 GMT
File type ASCII text, with no line terminators
Hash 737558a0ea11dbba58866254a51e47ff
7a09ab46b80dbcb1bf32a651aede293a05d3b707
fc495ed116d1572e355240e0d24208740a5309e29496cf366e9b4c501fbde525
GET /checkout/check_order?callback=jQuery36409858895429007012_1714143649951&shop=clearstem-skincare.myshopify.com&checkout_token=27ea8656f36f7149f8b79f68a50ca4d8&_=1714143649952 HTTP/1.1
Host: delivery.shopifyapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept
x-xss-protection: 0
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
p3p: CP="Shopify does not support P3P."
etag: W/"c672487f2951cb8fcb54f57a86eb3fff"
cache-control: max-age=0, private, must-revalidate
x-request-id: 07a1e8c8-1386-4b62-b765-e5bb968524c4-1714143649
x-runtime: 0.022484
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3kUKbeRAnikC7vSdEiVC8l1SeuWofC7TSW1uoJEC2xoelVDj%2BoZk0eSzuAu134%2BqAnna98njKVYwZsMTmY21mkhTEXBqPp7n%2B3tDMmIHrTcZmJG9kk4CgYjLY2uJARIgN1CopLO5dLl%2BLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=23, socket_queue;dur=3.977, util;dur=0.125, cfRequestDuration;dur=193.000078
server: cloudflare
cf-ray: 87a771d43b1056c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
142.250.74.163200 OK 47 kB URL GET HTTP/2 fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 142.250.74.163:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File type Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Hash 30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:49:58 GMT
expires: Sat, 26 Apr 2025 05:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 33052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.attn.tv/clearstem/dtag.js
143.204.55.59200 OK 6.5 kB URL GET HTTP/2 cdn.attn.tv/clearstem/dtag.js
IP 143.204.55.59:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.attn.tv
FingerprintFA:F1:AA:15:48:7D:8F:61:2A:11:39:78:5A:97:D5:38:B2:1C:D8:9A
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6503), with no line terminators
Hash 0249d6eec4a0330ecd3b170cffa36f4e
fce8d67b2678f96d2fa751d555b48c76aeb81b60
e23ad63e4586ceeb72f48b46f6b40849e13c40ef5a6ec727a1fb8d8450beecd0
GET /clearstem/dtag.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 05 Oct 2023 19:08:46 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: L9oZIeAoL6pBAe3GxXtM0irpQg7mkWq9
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 15:00:48 GMT
cache-control: public, max-age=120
etag: W/"e13fa09e4f1ea352f86a8e76770d77bd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fNfb83INLrnyFJwrCTuDYhujXAR0lgmJc-4iZN47-1q_dieJb1oBww==
age: 2
X-Firefox-Spdy: h2
assets.gorgias.chat/build/static/js/998.77d77725ea2e4082.js
172.64.144.86200 OK 52 kB URL GET HTTP/2 assets.gorgias.chat/build/static/js/998.77d77725ea2e4082.js
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type JavaScript source, ASCII text, with very long lines (52192)
Hash c483e50a8e6407ee280db0d143ae1164
7b570936d09a339ae81b53ecdf3df3c58ac567b2
2522cbe6c8953c2f0fb2576f9236a54e4d2c8fbaa49ec40ef289ea6293582101
GET /build/static/js/998.77d77725ea2e4082.js HTTP/1.1
Host: assets.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/javascript
x-guploader-uploadid: ABPtcPqHg22Yv5qZ2fXbe72hYCrrwKmv9N0Whsasr-Jsowu7Vih9HBrB2K4wgbAt_sMBDMc5qyJ75kDPDg
cache-control: public, max-age=31536000, s-maxage=31536000
expires: Fri, 18 Apr 2025 13:48:23 GMT
last-modified: Thu, 18 Apr 2024 13:42:10 GMT
etag: W/"b4664e0e17cc30043ab2205629b02314"
vary: Accept-Encoding
x-goog-generation: 1713447730801184
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16203
x-goog-hash: crc32c=fiAEzw==, md5=tGZODhfMMAQ6siBWKbAjFA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: HIT
age: 695223
server: cloudflare
cf-ray: 87a771d558b71c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
whale.camera/live/dot.js?shop=clearstem-skincare.myshopify.com
104.26.7.233200 OK 104 kB URL GET HTTP/2 whale.camera/live/dot.js?shop=clearstem-skincare.myshopify.com
IP 104.26.7.233:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectwhale.camera
Fingerprint8C:96:9F:93:1E:00:1E:5C:5D:0A:68:88:41:0B:F2:1D:2B:CD:FE:A9
ValiditySun, 24 Mar 2024 02:29:35 GMT - Sat, 22 Jun 2024 02:29:34 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 104 kB (104245 bytes)
Hash 9bb5eebab6772367d858909b8200e4da
d689ccd4d37753ddd8b3f2f6dd25c98b2fa11cd7
5e17f2c10ead97c54a014aca29a4ee19c60bd4b6cbedba597edeccfab2fbdbb1
GET /live/dot.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: whale.camera
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript
expires: Fri, 26 Apr 2024 16:00:49 GMT
cache-control: public, max-age=14400
last-modified: Thu, 18 Apr 2024 09:14:52 GMT
etag: W/"84c69b7d689d6e07a070cc8ad2dcd555"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
via: 1.1 google
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PxWrZSWFwY6U0Y0DabWFZlNJU4n1KhMxg8ZL2pIgNh8oGJ3YP%2Bagx%2FchOL7LiUbxeQk2QHErx5IJtWe43G6Eg1h%2FQJUIZhV3veCv1f3zxOp32Gaij%2BQjJebFuKWioA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a771d1181e56bb-OSL
content-encoding: br
X-Firefox-Spdy: h2
config.gorgias.chat/applications/01GYCC83JD8PXKQEKTBS2SSPRE/agents
172.64.144.86200 OK 203 B URL GET HTTP/2 config.gorgias.chat/applications/01GYCC83JD8PXKQEKTBS2SSPRE/agents
IP 172.64.144.86:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectgorgias.chat
Fingerprint39:C8:C2:4F:59:7D:DC:F5:8D:98:E9:93:A4:5A:52:0B:F4:1D:D1:E4
ValiditySun, 31 Mar 2024 06:29:56 GMT - Sat, 29 Jun 2024 06:29:55 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5848628492ab361553df276f29cc385e
8a987b2bc7d226b807b854be89cd9a0fcc755a99
62f77749fe7aba1f2988742811776fbffc16b13568f8515f3741728bd9a897d9
GET /applications/01GYCC83JD8PXKQEKTBS2SSPRE/agents HTTP/1.1
Host: config.gorgias.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:50 GMT
content-type: application/json; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
cache-control: max-age=60
etag: W/"cb-yYgC5RyCSyHIdoKvZrRrvpQRXB0"
via: 1.1 google
cf-cache-status: HIT
age: 36255
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d689b71c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget.privy.com/assets/widget.js
104.22.20.108200 OK 364 kB URL GET HTTP/2 widget.privy.com/assets/widget.js
IP 104.22.20.108:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectprivy.com
FingerprintE4:F5:40:CF:E9:39:FB:FF:1D:2E:B8:81:98:13:05:82:A2:5E:9D:58
ValiditySun, 17 Mar 2024 03:40:16 GMT - Sat, 15 Jun 2024 03:40:15 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Size 364 kB (363855 bytes)
Hash 1282473036ce577551eb69d1973e66fd
8afdb65167ec6c0c703273ad857cf9e391550905
5ca51c6e74948bb2f7dda3293ef3a05ba8f4678608d6451cc78ad23cefd04a96
GET /assets/widget.js HTTP/1.1
Host: widget.privy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 22:24:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 vegur, 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]}
report-to: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1714084245&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=dlQtOe0k54cgZhpE1%2FMCfMBVC0hfEKt3N%2FG9b9KmT9A%3D"}]}
reporting-endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1714084245&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&s=dlQtOe0k54cgZhpE1%2FMCfMBVC0hfEKt3N%2FG9b9KmT9A%3D
content-encoding: gzip
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N0Y0rAhsjYag2KGAk68Wn_m9o76AYz-gwXUMQ-K6tDn0cp3GrYmZag==
cache-control: max-age=1800
cf-cache-status: HIT
age: 1040
server: cloudflare
cf-ray: 87a771d3793b569d-OSL
X-Firefox-Spdy: h2
cdn.attn.tv/clearstem/dtag.js?shop=clearstem-skincare.myshopify.com
143.204.55.59200 OK 6.5 kB URL GET HTTP/2 cdn.attn.tv/clearstem/dtag.js?shop=clearstem-skincare.myshopify.com
IP 143.204.55.59:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerAmazon
Subject*.attn.tv
FingerprintFA:F1:AA:15:48:7D:8F:61:2A:11:39:78:5A:97:D5:38:B2:1C:D8:9A
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6503), with no line terminators
Hash 0249d6eec4a0330ecd3b170cffa36f4e
fce8d67b2678f96d2fa751d555b48c76aeb81b60
e23ad63e4586ceeb72f48b46f6b40849e13c40ef5a6ec727a1fb8d8450beecd0
GET /clearstem/dtag.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 05 Oct 2023 19:08:46 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: L9oZIeAoL6pBAe3GxXtM0irpQg7mkWq9
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Apr 2024 15:00:48 GMT
cache-control: public, max-age=120
etag: W/"e13fa09e4f1ea352f86a8e76770d77bd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DpWXqIEa8WCiGf-irm6KshqKXAhc-2KIoBTyTufKhKpUuMPG221hlQ==
age: 2
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=DM+Serif+Display:400%7CSource+Sans+Pro:400%7CShippori+Antique:400%7CMontserrat:400%7CPlayfair+Display:400%7CCousine:400%7CLato:400
142.250.74.106200 OK 122 kB URL GET HTTP/3 fonts.googleapis.com/css?family=DM+Serif+Display:400%7CSource+Sans+Pro:400%7CShippori+Antique:400%7CMontserrat:400%7CPlayfair+Display:400%7CCousine:400%7CLato:400
IP 142.250.74.106:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File type ASCII text, with very long lines (1981)
Size 122 kB (122476 bytes)
Hash 9049d68ef4cab05878f37a275c6ffdab
06fe617385a12abbd98e8922ab038ff0aa2837d9
82bb7e29d74488aa0db8d59c9e7a8ff7ccf97dcc8ce02a21ddbe7ab231c30267
GET /css?family=DM+Serif+Display:400%7CSource+Sans+Pro:400%7CShippori+Antique:400%7CMontserrat:400%7CPlayfair+Display:400%7CCousine:400%7CLato:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 15:00:51 GMT
date: Fri, 26 Apr 2024 15:00:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
delivery.shopifyapps.com/assets/checkout/script.js?shop=clearstem-skincare.myshopify.com
185.146.173.20200 OK 341 kB URL GET HTTP/2 delivery.shopifyapps.com/assets/checkout/script.js?shop=clearstem-skincare.myshopify.com
IP 185.146.173.20:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerLet's Encrypt
Subjectdelivery.shopifyapps.com
Fingerprint97:68:FD:2F:9B:E6:01:8D:42:6B:04:8E:10:F1:EB:45:C5:DF:EA:47
ValidityTue, 19 Mar 2024 06:57:04 GMT - Mon, 17 Jun 2024 06:57:03 GMT
Size 341 kB (341403 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/checkout/script.js?shop=clearstem-skincare.myshopify.com HTTP/1.1
Host: delivery.shopifyapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
cache-control: public, must-revalidate
etag: W/"cb5aea2bce679766c3ffe8fced40a2b0e64685623910dc95acfa64269fbf94ce"
x-request-id: dd75a0e0-429e-4656-b0ee-0712f2c8eb00-1714143649
x-runtime: 0.001422
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wy7y7DIAwSPhMSo9r4rorcAd%2FzdKNW8XNBHce8UVVcHfx96ja7HY1HHJQ30NC%2BSrYcF4C3lZWliZ5x8cM%2F1QPe5btQ1ejcYdqy3z%2Fn0QvytqN%2BEQ8SXt2TZCMOSZ6FHh7QYbu0jey084Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: processing;dur=2, socket_queue;dur=2.711, util;dur=0.0, cfRequestDuration;dur=217.000008
server: cloudflare
cf-ray: 87a771d06f8fb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dx.mountain.com/spx?conv=1&shaid=37201&tdr=&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shoid=ORDER%20ID&shoamt=TOTAL%20ORDER%20AMOUNT&shocur=&shopid=&shoq=&shoup=&shpil=
44.209.137.118200 OK 23 kB URL GET HTTP/1.1 dx.mountain.com/spx?conv=1&shaid=37201&tdr=&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shoid=ORDER%20ID&shoamt=TOTAL%20ORDER%20AMOUNT&shocur=&shopid=&shoq=&shoup=&shpil=
IP 44.209.137.118:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, ASCII text, with very long lines (22895), with no line terminators
Hash 042efbf91d003c8d185564dda4e4ad88
98e59058414eac3a398ae5a726a76ecbefc567fd
fb8b87a9d766be6e7d76113ea66d2c8d58a26b4f7fe9c425dfc3e33a0b312054
GET /spx?conv=1&shaid=37201&tdr=&plh=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&cb=82042250057001730&shoid=ORDER%20ID&shoamt=TOTAL%20ORDER%20AMOUNT&shocur=&shopid=&shoq=&shoup=&shpil= HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Fri, 26 Apr 2024 15:00:49 GMT
x-envoy-upstream-service-time: 2
be: spx-prod
server: istio-envoy
transfer-encoding: chunked
clearstem.attn.tv/d/?attn_vid=89cc5a1d6120449693a4d6b9145828e4
104.18.43.135200 OK 5 B URL GET HTTP/2 clearstem.attn.tv/d/?attn_vid=89cc5a1d6120449693a4d6b9145828e4
IP 104.18.43.135:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectattn.tv
Fingerprint20:F9:EA:E8:98:AE:71:8D:06:DE:09:67:08:2B:53:EC:14:8D:1B:92
ValidityThu, 25 Apr 2024 19:15:05 GMT - Fri, 24 May 2024 18:34:46 GMT
File type ASCII text, with no line terminators
Hash 68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /d/?attn_vid=89cc5a1d6120449693a4d6b9145828e4 HTTP/1.1
Host: clearstem.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
Origin: https://clearstem.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:48 GMT
content-type: application/json
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
x-envoy-upstream-service-time: 5
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a771c9f8db7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
shop.pe/widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&no_cookie_callback=AddShoppersWidget.load_no_cookie&sos=false&rand=43038&cookie=&referer=
35.227.244.1200 OK 260 B URL GET HTTP/3 shop.pe/widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&no_cookie_callback=AddShoppersWidget.load_no_cookie&sos=false&rand=43038&cookie=&referer=
IP 35.227.244.1:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerDigiCert Inc
Subject*.shop.pe
FingerprintF9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59
ValidityThu, 13 Jul 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e5d8a84ed2ea264bb2465bae1f3f8fc4
85ffa48d3eef82b6585e995ad202dab452dee4df
61c04777686c410db2791ab132530fb98c5ce89bf95db833f4f2c6228f28eda1
GET /widget/main/init/params?siteid=621d3db4bbf6c3450b3083d3&product=Thank%20you!%20-%20CLEARSTEM%20Skincare%20-%20Checkout&product_url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&image=&price=¤cy=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Fclearstem.com%2F56349720736%2Forders%2F0c4f5470a3b5ad736af6c52d17d869dc&callback=AddShoppersWidget.load_widget&no_cookie_callback=AddShoppersWidget.load_no_cookie&sos=false&rand=43038&cookie=&referer= HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: text/javascript
data-regulation-gdpr-enforced: true
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH
set-cookie: addshoppers="2|1:0|10:1714143649|11:addshoppers|44:OTQwMTU2NjViNzIzNGMwMDgwYmRmYWJmYWUxYTQyZWI=|0bb4800af4614df053a96efe1c81287094f79f3c597679e1c60180467943c4cd"; expires=Thu, 21 Jan 2027 15:00:49 GMT; Path=/; SameSite=None; secure
etag: W/"dcf50898f4fb5fbc058e1ad365446fc4fa802fbe"
backend-version: 47
access-control-allow-credentials: true
access-control-allow-origin: https://my.addshoppers.com
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR"
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sdks.automizely-analytics.com/analytics/v1/dc.js
104.21.27.126200 OK 44 kB URL GET HTTP/2 sdks.automizely-analytics.com/analytics/v1/dc.js
IP 104.21.27.126:443
Requested by https://clearstem.com/56349720736/orders/0c4f5470a3b5ad736af6c52d17d869dc
Certificate IssuerGoogle Trust Services LLC
Subjectautomizely-analytics.com
Fingerprint92:5A:34:01:FA:6A:39:32:D9:2F:E2:E6:14:55:E6:E1:FA:2A:1B:80
ValiditySat, 23 Mar 2024 19:31:08 GMT - Fri, 21 Jun 2024 19:31:07 GMT
File type JavaScript source, ASCII text, with very long lines (43865), with no line terminators
Hash 1ad01ef5f8c8f80333c8278c90ec0349
5883e0412b1a18a00d968c1f12a5ae713147af21
065adff76ce7de69ae79de218d7cb18d5ba05429a60615cf2a927a6b65a8dd5a
GET /analytics/v1/dc.js HTTP/1.1
Host: sdks.automizely-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clearstem.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:00:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: nadzOnOjYC2oF+HBbW3uQ0+vlgpSujRNMSQmISCyOfG68d2F3RJNHiXfx6gozMHVJ1zYDWOB53E=
x-amz-request-id: XRT2GXT1MFY8AQ2D
cache-control: public, max-age=14400
last-modified: Mon, 08 Jan 2024 03:00:56 GMT
etag: W/"1ad01ef5f8c8f80333c8278c90ec0349"
cf-cache-status: HIT
age: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xLXwV2h5DW0RiaqauPhr8QLFUU8JVfaPfEWBEZhlaBGxuMpl8dEuGNiPBP63ZYnQav5NG90v2uHC4KWUjRHwC4qpCEBW0%2F7X7w5d9tRP19aYYzi3GDEQbt51XKOHit4ejyy7sVe8IGcfmxLX1XgWLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a771d13c94b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2