| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashdc1de3c7fdef9bab1734dff976657640 f490b67c1c25c574709effcb4a895f67cfedefed 41c4ad4ed7b9a70e06c2b936fb7c04f144173b6718194415aec3a8a4b7941c06
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 16 Apr 2024 14:53:31 GMT
Server: ECAcc (amb/6B61)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pemA0Ywd9KVrzOFAz4VwsAGuTa-O5bzac7iy2QBvVIjnNCnNk-zVxg==
|
|
| gallifordtry.forwardtomyfriend.com/ | 143.204.55.115 | | 167 B |
URL gallifordtry.forwardtomyfriend.com/ IP143.204.55.115:0
File typeHTML document, ASCII text, with CRLF line terminators Hashf5d40b7259645010f9a248858ad14178 b3051d17a6ec8c9e166bf09a62b48261ab86957b 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET / HTTP/1.1
Host: gallifordtry.forwardtomyfriend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 16 Apr 2024 14:53:34 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://gallifordtry.forwardtomyfriend.com/
X-Cache: Redirect from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PvapKqoBTK3MT6YF864_ntxwN1iR7hPDqNS3Y1Fr3CXi7GD_k_PFDw==
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashdc1de3c7fdef9bab1734dff976657640 f490b67c1c25c574709effcb4a895f67cfedefed 41c4ad4ed7b9a70e06c2b936fb7c04f144173b6718194415aec3a8a4b7941c06
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 16 Apr 2024 14:53:34 GMT
Server: ECAcc (amb/6B27)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kH-AeZQ-n2YUzeIB-DJz0dTj5ZVIkym9XHaCDZdtciY0419M65jL3A==
|
|
| gallifordtry.forwardtomyfriend.com/ | 143.204.55.115 | | 320 B |
URL gallifordtry.forwardtomyfriend.com/ IP143.204.55.115:0
File typeHTML document, ASCII text, with CRLF line terminators Hash11ccaabe0faf6395f586065c8b19dee2 4bffbe8e721b549a5585f084e1db03c4b7facf65 954313518a9bf77870e319596936147c832c2ddeff6dc61068b343360ed5806e
GET / HTTP/1.1
Host: gallifordtry.forwardtomyfriend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 320
server: csw
date: Tue, 16 Apr 2024 14:53:34 GMT
cache-control: private
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OHb6TSqeCgGREgrgMNkzoviJT11hyL4G4HoSqUnc91mx2J600EBofg==
X-Firefox-Spdy: h2
|
|
| css.createsend1.com/img/forward-friend/sent-bg.png | 143.204.55.127 | 200 OK | 68 B |
URL GET HTTP/2css.createsend1.com/img/forward-friend/sent-bg.png IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced Hashd3878a4df70838f78d74ddd82ddefd9f 2a922aa367f856a8b33dfa33a8aeac9b905c87ab 3dc7e04420b806f9d363949c0e202e147548aaef2ba9eb4302f515e827f3a7e4
GET /img/forward-friend/sent-bg.png HTTP/1.1
Host: css.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 68
last-modified: Mon, 15 Apr 2024 00:30:31 GMT
x-amz-expiration: expiry-date="Mon, 15 Jul 2024 00:00:00 GMT", rule-id="assets-clean-up"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 16 Apr 2024 01:53:28 GMT
etag: "d3878a4df70838f78d74ddd82ddefd9f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XIsTDfwsVIPF41VqRct-kVXQVXs9WyhPBGJ_CXbA5DbTL5HlF9Vu2w==
age: 46807
X-Firefox-Spdy: h2
|
|
| css.createsend1.com/img/forward-friend/paperclip.png | 143.204.55.127 | 200 OK | 1.3 kB |
URL GET HTTP/2css.createsend1.com/img/forward-friend/paperclip.png IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typePNG image data, 28 x 56, 8-bit gray+alpha, non-interlaced Hashac337fb247cceb768503432c012219ee 42d647721194df878d523c416861e40eef5d0f4e ee0a2853b16279bcee00d2f873917c2cd2c3215ce215b6fe2d1d8e2ef4801803
GET /img/forward-friend/paperclip.png HTTP/1.1
Host: css.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1302
last-modified: Thu, 11 Apr 2024 23:25:50 GMT
x-amz-expiration: expiry-date="Thu, 11 Jul 2024 00:00:00 GMT", rule-id="assets-clean-up"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 16 Apr 2024 07:04:13 GMT
etag: "ac337fb247cceb768503432c012219ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4Cez02-HWKxEE3zMXKFoGwUUueqpklFT8F16LsHD3R_cvDo2hOv-Kw==
age: 28163
X-Firefox-Spdy: h2
|
|
| gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x | 143.204.55.23 | 200 OK | 4.3 kB |
URL User Request GET HTTP/2gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x IP143.204.55.23:443
CertificateIssuerAmazon Subjectforwardtomyfriend.com Fingerprint00:20:7F:1E:90:93:F6:D6:AB:3A:32:C3:3C:7E:68:9F:4C:D3:B1:91 ValiditySun, 28 Jan 2024 00:00:00 GMT - Mon, 24 Feb 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash3d7e869b700bf37202f0d8f90e4b249c ad7e818450a34f1e8a6314f1073817eec431ae49 f1f14ed63148c2949b421cbff3c309a20453d809c548178e9bc4b4bad2673493
GET /y-l-2AD73FFF-xuldlil-l-x HTTP/1.1
Host: gallifordtry.forwardtomyfriend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: csw
date: Tue, 16 Apr 2024 14:53:34 GMT
vary: Accept-Encoding
cache-control: private
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
set-cookie: __RequestVerificationToken=ng8UO0ShOBGSjw6Vior3ZLp7OH8877MYOjVjKq6WEf1nfcmmru4FaE7we-upf1tyJSXTv-MVIiQcEddmF6tV4ezLp281; path=/; HttpOnly
__RequestVerificationToken=ng8UO0ShOBGSjw6Vior3ZLp7OH8877MYOjVjKq6WEf1nfcmmru4FaE7we-upf1tyJSXTv-MVIiQcEddmF6tV4ezLp281; path=/; secure; HttpOnly; SameSite=None
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qsZzA9JIrlao826Q-jtTjzLOsHKm3-lmnv8zmDL8jt7mHGi0gcORXQ==
X-Firefox-Spdy: h2
|
|
| css.createsend1.com/img/forward-friend/plus.png | 143.204.55.127 | 200 OK | 241 B |
URL GET HTTP/2css.createsend1.com/img/forward-friend/plus.png IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typePNG image data, 17 x 17, 8-bit colormap, non-interlaced Hashbfc1e4e45014af83706a6a4d210bbefe 2897b2959da1e7747f656fffdffb86517b2188cf 112ba8383ecf6c50a550327e5d906cb7626776765f6a34156a4fbe1e50e460a9
GET /img/forward-friend/plus.png HTTP/1.1
Host: css.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 241
last-modified: Mon, 15 Apr 2024 00:30:31 GMT
x-amz-expiration: expiry-date="Mon, 15 Jul 2024 00:00:00 GMT", rule-id="assets-clean-up"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 16 Apr 2024 04:37:09 GMT
etag: "bfc1e4e45014af83706a6a4d210bbefe"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kYQxE6iZ9p-9GdDZLElgI4bs6NmgMKl_rooTE_pXymjlYdHmAm-zyA==
age: 45740
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.35 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gallifordtry.forwardtomyfriend.com
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 303801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:26 GMT
expires: Wed, 16 Apr 2025 09:54:26 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 17950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.35 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 303801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| gallifordtry.forwardtomyfriend.com/favicon.ico | 143.204.55.23 | 200 OK | 320 B |
URL GET HTTP/2gallifordtry.forwardtomyfriend.com/favicon.ico IP143.204.55.23:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerAmazon Subjectforwardtomyfriend.com Fingerprint00:20:7F:1E:90:93:F6:D6:AB:3A:32:C3:3C:7E:68:9F:4C:D3:B1:91 ValiditySun, 28 Jan 2024 00:00:00 GMT - Mon, 24 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash11ccaabe0faf6395f586065c8b19dee2 4bffbe8e721b549a5585f084e1db03c4b7facf65 954313518a9bf77870e319596936147c832c2ddeff6dc61068b343360ed5806e
GET /favicon.ico HTTP/1.1
Host: gallifordtry.forwardtomyfriend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x
DNT: 1
Connection: keep-alive
Cookie: __RequestVerificationToken=ng8UO0ShOBGSjw6Vior3ZLp7OH8877MYOjVjKq6WEf1nfcmmru4FaE7we-upf1tyJSXTv-MVIiQcEddmF6tV4ezLp281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 320
server: csw
date: Tue, 16 Apr 2024 14:53:36 GMT
cache-control: private
x-frame-options: SAMEORIGIN
x-robots-tag: noindex, nofollow
set-cookie: __RequestVerificationToken=ng8UO0ShOBGSjw6Vior3ZLp7OH8877MYOjVjKq6WEf1nfcmmru4FaE7we-upf1tyJSXTv-MVIiQcEddmF6tV4ezLp281; path=/; secure; SameSite=None
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ar767cFB6yHG23HyZQ3aUholpbTfIhzMr878AIu1vddmQz2xuMabtw==
X-Firefox-Spdy: h2
|
|
| img.createsend1.com/ei/y/D4/B50/563/screenshot-465x570.jpg?0416025334 | 143.204.55.127 | 200 OK | 36 kB |
URL GET HTTP/2img.createsend1.com/ei/y/D4/B50/563/screenshot-465x570.jpg?0416025334 IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3], baseline, precision 8, 465x570, components 3 Hasha5eda990f10c834482370997b0ea6355 a4659e570e3eaae91b483a7d64d4b160cc7d763a eb4f86f5c1f84c6d5c9cd92973dd177b8316d4e9eecf4c5ceddbb0ae5f444018
GET /ei/y/D4/B50/563/screenshot-465x570.jpg?0416025334 HTTP/1.1
Host: img.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 36405
server: csw
date: Tue, 16 Apr 2024 14:53:36 GMT
cache-control: public, max-age=86400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: om_1jSEbAOYDnFBTbBjK-krjSrHUMjA3Dfuw3kb5LB8fFNQlmMfLqQ==
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.35 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 303801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 475833
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:54:07 GMT
expires: Thu, 18 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 475169
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| js.createsend1.com/js/compiled/app/global/polyfill/polyfill.min.js?h=8D4972A220240412 | 143.204.55.36 | 200 OK | 20 kB |
URL GET HTTP/2js.createsend1.com/js/compiled/app/global/polyfill/polyfill.min.js?h=8D4972A220240412 IP143.204.55.36:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash39ffd2d948e13af6ecd1d07683d8d606 8b7e6cba8b3d95cbeb7fca9114bfe4bd67e8a5d7 9a5578ce3a93dae1c48b57ff6cd63c575c51293731c781ad461923d09e9aeee6
GET /js/compiled/app/global/polyfill/polyfill.min.js?h=8D4972A220240412 HTTP/1.1
Host: js.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: csw
date: Thu, 11 Apr 2024 23:14:40 GMT
cache-control: public,max-age=31536000
last-modified: Tue, 09 Apr 2024 14:26:26 GMT
etag: W/"01581e7898ada1:0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KXYD6dXxe4285CRVLUiT5mGPDyrwEVH_ox9_H2KALxwOCbu0Uz7STA==
age: 401935
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:26 GMT
expires: Wed, 16 Apr 2025 09:54:26 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 17951
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.35 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 303802
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| css.createsend.com/css/reset.css | 54.219.217.117 | 200 OK | 3.1 kB |
URL GET HTTP/2css.createsend.com/css/reset.css IP54.219.217.117:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend.com Fingerprint93:81:63:84:1A:E6:B6:ED:76:09:3D:CF:E4:43:46:03:4C:4B:E2:8D ValidityWed, 28 Feb 2024 00:00:00 GMT - Tue, 04 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (3291), with no line terminators Hash7f039889dbcd2c67f657ca24fc201beb 94ace5378a56dd8bf6f8eb98908377ad8c5f1bcf 3a11b3e28721432ccc2ef375efd762d8efded13e160aab7144e13cf3e7ed15cd
GET /css/reset.css HTTP/1.1
Host: css.createsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: csw
date: Tue, 16 Apr 2024 14:53:35 GMT
content-type: text/css
vary: Accept-Encoding
cache-control: public,max-age=31536000
last-modified: Mon, 15 Apr 2024 14:59:12 GMT
etag: W/"060cf79458fda1:0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 850 B |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (850), with no line terminators Hash1613f25e7a73976f440bd3c174bc1dc3 ffa5be6619ae6109c6e412186e0f12b8d8a73cd9 091a7de491da06df67c869b9905c1d028eb2816e68360c0b5b7a4fa8ce590322
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 16 Apr 2024 14:53:35 GMT
date: Tue, 16 Apr 2024 14:53:35 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash701c50fe2f9d8cfca61542dee7684552 952a04f81a291e11f5d4ecd7364a3840412ba65e 9fc5dfc54de18e9c98733bbea6ebdcbc1f01c0b23f985556f24684ee96dc0582
GET /recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 16 Apr 2024 14:53:36 GMT
date: Tue, 16 Apr 2024 14:53:36 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js | 142.250.74.164 | 200 OK | 18 kB |
URL GET HTTP/3www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17614) Hasha0b566c1ba416a3899181051b4e22648 6e24d55d8094a8e96bbcdb2c8b2baec42ad59128 4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214
GET /js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Apr 2024 05:03:42 GMT
expires: Thu, 10 Apr 2025 05:03:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 553794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z | 142.250.74.164 | 200 OK | 46 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z IP142.250.74.164:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (37411) Hashf3e7165038823dfaed825d33c6f204ea c8dcd43ffcffd735759937cba4e4b4c6248fe77e ff7a8bba08ccf8fae6f1d6acd6c699405beae3882fa51421c42c58be1a63b7cd
GET /recaptcha/api2/anchor?ar=1&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4&co=aHR0cHM6Ly9nYWxsaWZvcmR0cnkuZm9yd2FyZHRvbXlmcmllbmQuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=ytyuk3bouf4z HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 16 Apr 2024 14:53:36 GMT
content-security-policy: script-src 'nonce-DUefT4jrfUqXVaJYbWzb6Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| js.createsend1.com/js/compiled/app/global/forwardtofriend/app.min.js?h=6D96059120240412 | 143.204.55.36 | 200 OK | 77 kB |
URL GET HTTP/2js.createsend1.com/js/compiled/app/global/forwardtofriend/app.min.js?h=6D96059120240412 IP143.204.55.36:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/compiled/app/global/forwardtofriend/app.min.js?h=6D96059120240412 HTTP/1.1
Host: js.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: csw
date: Thu, 11 Apr 2024 23:16:39 GMT
cache-control: public,max-age=31536000
last-modified: Tue, 09 Apr 2024 14:27:44 GMT
etag: W/"0f0fe158a8ada1:0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: so1DIz-dOwMPh_TEr95S6g5W5sb3vF1LAsaFhkjX02DAARpho__HVQ==
age: 401816
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4 | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4 IP142.250.74.164:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (7672), with no line terminators Hash5049a0abf6348e2aa97a08f3a7018c16 2ecd4ebe4d53bd6979332c51dec67af5018722e8 4bf03353610e57cfc4ffedf499bfda738dadcd93d1c73484ccdbda3a20865392
GET /recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfhnFoUAAAAAJ6Y7dRPJvm8apFPlXpP6k41aUS4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 16 Apr 2024 14:53:37 GMT
content-security-policy: script-src 'nonce-JLHGfckM72q6uy3xHBt6mw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412 | 143.204.55.127 | 200 OK | 7.8 kB |
URL GET HTTP/2css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412 IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (7760), with no line terminators Hashbb7fa71bc7608e42be63dcb50eacf850 2e6d343b7a26bccc3bf249e11d5e243d9afd06ec 455cf3efc9f721a805cfcd1d3772c85ea8b3faae07aa86160c3404206c86cae6
GET /css/forward-to-friend.min.css?h=9ABB69A620240412 HTTP/1.1
Host: css.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gallifordtry.forwardtomyfriend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: csw
date: Thu, 11 Apr 2024 23:16:39 GMT
cache-control: public,max-age=31536000
last-modified: Tue, 09 Apr 2024 14:29:34 GMT
etag: W/"09b8f578a8ada1:0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9IYCXot_EFnrG_omz3GG0Bgk7UAvY7-LqHTXkSLK6rxAIMNN5t5zTw==
age: 401816
X-Firefox-Spdy: h2
|
|
| css.createsend1.com/img/forward-friend/tick.png | 143.204.55.127 | 200 OK | 1.9 kB |
URL GET HTTP/2css.createsend1.com/img/forward-friend/tick.png IP143.204.55.127:443
Requested byhttps://gallifordtry.forwardtomyfriend.com/y-l-2AD73FFF-xuldlil-l-x CertificateIssuerDigiCert Inc Subject*.createsend1.com Fingerprint7A:C2:68:3A:DE:A1:93:4C:E8:1B:CB:99:BF:B9:12:E1:1B:B7:E8:B0 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typePNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced Hash4c9be4993d551307670223d3768016a8 31b15992be6381c277fb2ec4ca6b9222e3eca5d2 dc8fbb1d877bb447d0695c8f15f1f100ada315511807181e5804c26efd201904
GET /img/forward-friend/tick.png HTTP/1.1
Host: css.createsend1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://css.createsend1.com/css/forward-to-friend.min.css?h=9ABB69A620240412
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 1903
last-modified: Mon, 15 Apr 2024 04:56:10 GMT
x-amz-expiration: expiry-date="Mon, 15 Jul 2024 00:00:00 GMT", rule-id="assets-clean-up"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 16 Apr 2024 08:01:51 GMT
etag: "4c9be4993d551307670223d3768016a8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pJTmD5B4NvwRkg9u4I46MLOkxT-rgRnsOVszOpA6Z_ShGjgyj_3YlQ==
age: 24705
X-Firefox-Spdy: h2
|
|