Overview

URL cbdandhempwarehouse.com/
IP172.67.192.106
ASNCLOUDFLARENET
Location United States
Report completed2022-09-25 00:48:08 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-25 2 getresponse.chat Sinkholed
2022-09-25 2 getresponse.chat Sinkholed
2022-09-25 2 getresponse.chat Sinkholed
2022-09-25 2 getresponse.chat Sinkholed
2022-09-25 2 getresponse.chat Sinkholed


Files

No files detected



Passive DNS (31)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-24 19:39:32 UTC 142.250.74.174
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-24 05:36:42 UTC 100.20.30.105
mnemonic passive DNS wt.soundestlink.com (1) 17559 2018-02-06 08:21:20 UTC 2022-09-24 16:54:19 UTC 104.18.27.48
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-24 04:22:29 UTC 34.120.237.76
mnemonic passive DNS www.gstatic.com (4) 0 2016-07-26 09:37:06 UTC 2022-09-25 00:14:27 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.gstatic.com (23) 0 2014-08-29 13:43:22 UTC 2022-09-24 04:21:47 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS cbdandhempwarehouse.net (1) 0 2020-09-08 18:11:41 UTC 2022-09-25 00:44:08 UTC 172.67.172.135 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-24 04:21:50 UTC 23.36.77.32
mnemonic passive DNS i.getresponse.chat (1) 964824 2020-09-25 11:49:44 UTC 2022-09-23 03:06:09 UTC 151.101.65.195
mnemonic passive DNS us-central1-grchat-d3548.cloudfunctions.net (1) 862933 2021-02-23 11:16:16 UTC 2022-09-23 03:06:16 UTC 216.239.36.54
mnemonic passive DNS guest.getresponse.chat (4) 0 2020-09-24 12:28:29 UTC 2022-09-23 03:06:09 UTC 151.101.1.195 Domain (getresponse.chat) ranked at: 954547
mnemonic passive DNS cbdandhempwarehouse.com (1) 0 2019-12-18 01:11:54 UTC 2022-09-24 02:47:40 UTC 172.67.192.106 Unknown ranking
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-09-24 04:22:33 UTC 142.250.74.72
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-24 04:22:42 UTC 104.18.21.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-24 04:26:56 UTC 143.204.55.35
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-24 04:23:04 UTC 151.101.85.229
mnemonic passive DNS verify.authorize.net (1) 29584 2012-06-25 22:13:07 UTC 2022-09-24 10:11:10 UTC 172.64.145.133
mnemonic passive DNS omnisrc.com (1) 48023 2017-10-18 09:33:08 UTC 2022-09-24 14:21:29 UTC 104.18.4.28
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-24 07:11:24 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS app.getresponse.com (12) 50915 2017-01-30 06:28:09 UTC 2022-09-24 16:57:31 UTC 104.160.64.9
mnemonic passive DNS us-ms.gr-cdn.com (1) 286205 2018-03-16 13:05:44 UTC 2022-09-24 04:05:22 UTC 205.185.216.42
mnemonic passive DNS omnisnippet1.com (2) 16560 2021-04-01 18:46:48 UTC 2022-09-24 16:54:19 UTC 104.18.21.138
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-24 19:48:02 UTC 143.204.55.115
mnemonic passive DNS ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2022-09-24 19:30:16 UTC 93.184.220.29
mnemonic passive DNS forms.soundestlink.com (1) 16969 2016-03-10 06:08:55 UTC 2022-09-24 16:54:19 UTC 104.18.27.48
mnemonic passive DNS ocsp.godaddy.com (2) 698 2012-05-20 19:28:57 UTC 2022-09-24 04:39:15 UTC 192.124.249.24
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-24 04:23:20 UTC 142.250.74.3
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-24 04:22:23 UTC 34.117.237.239
mnemonic passive DNS ajax.googleapis.com (1) 12905 2014-10-18 20:16:48 UTC 2022-09-25 00:27:17 UTC 142.250.74.10
mnemonic passive DNS use.fontawesome.com (1) 942 2017-01-30 04:43:25 UTC 2022-09-24 04:25:54 UTC 172.64.133.15
mnemonic passive DNS us-as.gr-cdn.com (3) 88529 2018-02-23 14:36:19 UTC 2022-09-24 02:49:28 UTC 205.185.216.42


Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 172.67.192.106

Date UQ / IDS / BL URL IP
2022-09-25 00:48:08 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 172.67.192.106
2022-09-09 00:48:01 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 172.67.192.106

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-08 09:25:25 +0000
0 - 0 - 4 cba-australia.support/a1b2c3/e1110ed3dcfc660d (...) 172.67.172.131
2022-12-08 09:24:46 +0000
0 - 0 - 7 www4.bestjavporn.com/pornstar/nanako-tsukishima/ 104.26.2.123
2022-12-08 09:19:09 +0000
14 - 0 - 33 han.gl/xrrCV 172.67.189.251
2022-12-08 09:18:46 +0000
0 - 0 - 3 playmaster.co.ke/en/ucasino_ms/h-slots-20-sup (...) 188.114.96.1
2022-12-08 09:10:10 +0000
15 - 0 - 6 seal-app-f8w85.ondigitalocean.app/werrx01/?ph (...) 104.16.244.78

Last 5 reports on domain: cbdandhempwarehouse.com

Date UQ / IDS / BL URL IP
2022-10-21 00:48:03 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 104.21.82.2
2022-10-06 02:47:52 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 104.21.82.2
2022-09-25 00:48:08 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 172.67.192.106
2022-09-09 00:48:01 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 172.67.192.106
2022-09-03 00:48:02 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 104.21.82.2

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-01 02:44:18 +0000
0 - 0 - 5 cbdandhempwarehouse.net/ 104.21.30.86
2022-10-24 00:44:25 +0000
0 - 0 - 5 cbdandhempwarehouse.net/ 104.21.30.86
2022-10-19 02:44:16 +0000
0 - 0 - 5 cbdandhempwarehouse.net/ 172.67.172.135
2022-10-10 00:44:21 +0000
0 - 0 - 5 cbdandhempwarehouse.net/ 172.67.172.135
2022-10-06 02:47:52 +0000
0 - 0 - 5 cbdandhempwarehouse.com/ 104.21.82.2


JavaScript

Executed Scripts (71)


Executed Evals (1)

#1 JavaScript::Eval (size: 8509, repeated: 1) - SHA256: bffafb30adf0c09bfbf909eaa779391296499123dc3d90e429056ec896b2ebb9

                                        /*!
 * Salvattore 1.0.5 by @rnmp and @ppold
 * https://github.com/rnmp/salvattore
 * Licensed under the MIT license.
 * Copyright (c) 2013-2014 Rolando Murillo and Giorgio Leveroni
 */

/*
Permission is hereby granted, free of charge, to any person obtaining a copy of
this software and associated documentation files (the "Software"), to deal in
the Software without restriction, including without limitation the rights to
use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
the Software, and to permit persons to whom the Software is furnished to do so,
subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

 */
! function(e, t) {
    "function" == typeof define && define.amd ? define([], t) : "object" == typeof exports ? module.exports = t() : e.salvattore = t()
}(this, function() { /*! matchMedia() polyfill - Test a CSS media type/query in JS. Authors & copyright (c) 2012: Scott Jehl, Paul Irish, Nicholas Zakas, David Knight. Dual MIT/BSD license */
    window.matchMedia || (window.matchMedia = function() {
            "use strict";
            var e = window.styleMedia || window.media;
            if (!e) {
                var t = document.createElement("style"),
                    n = document.getElementsByTagName("script")[0],
                    r = null;
                t.type = "text/css", t.id = "matchmediajs-test", n.parentNode.insertBefore(t, n), r = "getComputedStyle" in window && window.getComputedStyle(t, null) || t.currentStyle, e = {
                    matchMedium: function(e) {
                        var n = "@media " + e + "{ #matchmediajs-test { width: 1px; } }";
                        return t.styleSheet ? t.styleSheet.cssText = n : t.textContent = n, "1px" === r.width
                    }
                }
            }
            return function(t) {
                return {
                    matches: e.matchMedium(t || "all"),
                    media: t || "all"
                }
            }
        }()), /*! matchMedia() polyfill addListener/removeListener extension. Author & copyright (c) 2012: Scott Jehl. Dual MIT/BSD license */
        function() {
            "use strict";
            if (window.matchMedia && window.matchMedia("all").addListener) return !1;
            var e = window.matchMedia,
                t = e("only all").matches,
                n = !1,
                r = 0,
                a = [],
                i = function() {
                    clearTimeout(r), r = setTimeout(function() {
                        for (var t = 0, n = a.length; n > t; t++) {
                            var r = a[t].mql,
                                i = a[t].listeners || [],
                                o = e(r.media).matches;
                            if (o !== r.matches) {
                                r.matches = o;
                                for (var c = 0, l = i.length; l > c; c++) i[c].call(window, r)
                            }
                        }
                    }, 30)
                };
            window.matchMedia = function(r) {
                var o = e(r),
                    c = [],
                    l = 0;
                return o.addListener = function(e) {
                    t && (n || (n = !0, window.addEventListener("resize", i, !0)), 0 === l && (l = a.push({
                        mql: o,
                        listeners: c
                    })), c.push(e))
                }, o.removeListener = function(e) {
                    for (var t = 0, n = c.length; n > t; t++) c[t] === e && c.splice(t, 1)
                }, o
            }
        }(),
        function() {
            "use strict";
            for (var e = 0, t = ["ms", "moz", "webkit", "o"], n = 0; n < t.length && !window.requestAnimationFrame; ++n) window.requestAnimationFrame = window[t[n] + "RequestAnimationFrame"], window.cancelAnimationFrame = window[t[n] + "CancelAnimationFrame"] || window[t[n] + "CancelRequestAnimationFrame"];
            window.requestAnimationFrame || (window.requestAnimationFrame = function(t) {
                var n = (new Date).getTime(),
                    r = Math.max(0, 16 - (n - e)),
                    a = window.setTimeout(function() {
                        t(n + r)
                    }, r);
                return e = n + r, a
            }), window.cancelAnimationFrame || (window.cancelAnimationFrame = function(e) {
                clearTimeout(e)
            })
        }(), "function" != typeof window.CustomEvent && ! function() {
            "use strict";

            function e(e, t) {
                t = t || {
                    bubbles: !1,
                    cancelable: !1,
                    detail: void 0
                };
                var n = document.createEvent("CustomEvent");
                return n.initCustomEvent(e, t.bubbles, t.cancelable, t.detail), n
            }
            e.prototype = window.Event.prototype, window.CustomEvent = e
        }();
    var e = function(e, t) {
        "use strict";
        var n = {},
            r = [],
            a = [],
            i = [],
            o = function(e, t, n) {
                e.dataset ? e.dataset[t] = n : e.setAttribute("data-" + t, n)
            };
        return n.obtainGridSettings = function(t) {
            var n = e.getComputedStyle(t, ":before"),
                r = n.getPropertyValue("content").slice(1, -1),
                a = r.match(/^\s*(\d+)(?:\s?\.(.+))?\s*$/),
                i = 1,
                o = [];
            return a ? (i = a[1], o = a[2], o = o ? o.split(".") : ["column"]) : (a = r.match(/^\s*\.(.+)\s+(\d+)\s*$/), a && (o = a[1], i = a[2], i && (i = i.split(".")))), {
                numberOfColumns: i,
                columnClasses: o
            }
        }, n.addColumns = function(e, r) {
            for (var a, i = n.obtainGridSettings(e), c = i.numberOfColumns, l = i.columnClasses, s = new Array(+c), u = t.createDocumentFragment(), d = c; 0 !== d--;) a = "[data-columns] > *:nth-child(" + c + "n-" + d + ")", s.push(r.querySelectorAll(a));
            s.forEach(function(e) {
                var n = t.createElement("div"),
                    r = t.createDocumentFragment();
                n.className = l.join(" "), Array.prototype.forEach.call(e, function(e) {
                    r.appendChild(e)
                }), n.appendChild(r), u.appendChild(n)
            }), e.appendChild(u), o(e, "columns", c)
        }, n.removeColumns = function(n) {
            var r = t.createRange();
            r.selectNodeContents(n);
            var a = Array.prototype.filter.call(r.extractContents().childNodes, function(t) {
                    return t instanceof e.HTMLElement
                }),
                i = a.length,
                c = a[0].childNodes.length,
                l = new Array(c * i);
            Array.prototype.forEach.call(a, function(e, t) {
                Array.prototype.forEach.call(e.children, function(e, n) {
                    l[n * i + t] = e
                })
            });
            var s = t.createElement("div");
            return o(s, "columns", 0), l.filter(function(e) {
                return !!e
            }).forEach(function(e) {
                s.appendChild(e)
            }), s
        }, n.recreateColumns = function(t) {
            e.requestAnimationFrame(function() {
                n.addColumns(t, n.removeColumns(t));
                var e = new CustomEvent("columnsChange");
                t.dispatchEvent(e)
            })
        }, n.mediaQueryChange = function(e) {
            e.matches && Array.prototype.forEach.call(r, n.recreateColumns)
        }, n.getCSSRules = function(e) {
            var t;
            try {
                t = e.sheet.cssRules || e.sheet.rules
            } catch (n) {
                return []
            }
            return t || []
        }, n.getStylesheets = function() {
            return Array.prototype.concat.call(Array.prototype.slice.call(t.querySelectorAll("style[type='text/css']")), Array.prototype.slice.call(t.querySelectorAll("link[rel='stylesheet']")))
        }, n.mediaRuleHasColumnsSelector = function(e) {
            var t, n;
            try {
                t = e.length
            } catch (r) {
                t = 0
            }
            for (; t--;)
                if (n = e[t], n.selectorText && n.selectorText.match(/\[data-columns\](.*)::?before$/)) return !0;
            return !1
        }, n.scanMediaQueries = function() {
            var t = [];
            if (e.matchMedia) {
                n.getStylesheets().forEach(function(e) {
                    Array.prototype.forEach.call(n.getCSSRules(e), function(e) {
                        e.media && e.cssRules && n.mediaRuleHasColumnsSelector(e.cssRules) && t.push(e)
                    })
                });
                var r = a.filter(function(e) {
                    return -1 === t.indexOf(e)
                });
                i.filter(function(e) {
                    return -1 !== r.indexOf(e.rule)
                }).forEach(function(e) {
                    e.mql.removeListener(n.mediaQueryChange)
                }), i = i.filter(function(e) {
                    return -1 === r.indexOf(e.rule)
                }), t.filter(function(e) {
                    return -1 == a.indexOf(e)
                }).forEach(function(t) {
                    var r = e.matchMedia(t.media.mediaText);
                    r.addListener(n.mediaQueryChange), i.push({
                        rule: t,
                        mql: r
                    })
                }), a.length = 0, a = t
            }
        }, n.rescanMediaQueries = function() {
            n.scanMediaQueries(), Array.prototype.forEach.call(r, n.recreateColumns)
        }, n.nextElementColumnIndex = function(e, t) {
            var n, r, a, i = e.children,
                o = i.length,
                c = 0,
                l = 0;
            for (a = 0; o > a; a++) n = i[a], r = n.children.length + (t[a].children || t[a].childNodes).length, 0 === c && (c = r), c > r && (l = a, c = r);
            return l
        }, n.createFragmentsList = function(e) {
            for (var n = new Array(e), r = 0; r !== e;) n[r] = t.createDocumentFragment(), r++;
            return n
        }, n.appendElements = function(e, t) {
            var r = e.children,
                a = r.length,
                i = n.createFragmentsList(a);
            Array.prototype.forEach.call(t, function(t) {
                var r = n.nextElementColumnIndex(e, i);
                i[r].appendChild(t)
            }), Array.prototype.forEach.call(r, function(e, t) {
                e.appendChild(i[t])
            })
        }, n.prependElements = function(e, r) {
            var a = e.children,
                i = a.length,
                o = n.createFragmentsList(i),
                c = i - 1;
            r.forEach(function(e) {
                var t = o[c];
                t.insertBefore(e, t.firstChild), 0 === c ? c = i - 1 : c--
            }), Array.prototype.forEach.call(a, function(e, t) {
                e.insertBefore(o[t], e.firstChild)
            });
            for (var l = t.createDocumentFragment(), s = r.length % i; 0 !== s--;) l.appendChild(e.lastChild);
            e.insertBefore(l, e.firstChild)
        }, n.registerGrid = function(a) {
            if ("none" !== e.getComputedStyle(a).display) {
                var i = t.createRange();
                i.selectNodeContents(a);
                var c = t.createElement("div");
                c.appendChild(i.extractContents()), o(c, "columns", 0), n.addColumns(a, c), r.push(a)
            }
        }, n.init = function() {
            var e = t.createElement("style");
            e.innerHTML = "[data-columns]::before{visibility:hidden;position:absolute;font-size:1px;}", t.head.appendChild(e);
            var r = t.querySelectorAll("[data-columns]");
            Array.prototype.forEach.call(r, n.registerGrid), n.scanMediaQueries()
        }, n.init(), {
            appendElements: n.appendElements,
            prependElements: n.prependElements,
            registerGrid: n.registerGrid,
            recreateColumns: n.recreateColumns,
            rescanMediaQueries: n.rescanMediaQueries,
            append_elements: n.appendElements,
            prepend_elements: n.prependElements,
            register_grid: n.registerGrid,
            recreate_columns: n.recreateColumns,
            rescan_media_queries: n.rescanMediaQueries
        }
    }(window, window.document);
    return e
});
                                    

Executed Writes (0)



HTTP Transactions (102)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 00:14:42 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oS-fCHge2ljnzGYtNZrZkAudayRbDqohfkRgC8jzboiYpNt3toC3nA==
Age: 1994


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Sun, 25 Sep 2022 03:28:47 GMT
Date: Sun, 25 Sep 2022 00:47:56 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JcGbNUvQzfN1fCtX8VdNc-HnfxIG2zKqFp_WV0sUkX06OgYhvlRyrw==
age: 72762
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET / HTTP/1.1 
Host: cbdandhempwarehouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.192.106
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 25 Sep 2022 00:47:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://cbdandhempwarehouse.net/
X-Powered-By: PleskLin
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BYsgJQvNrNEyaKNcibRkleIjuDAMXbtbwhT%2FOxW1qM6cyUU4GA54SRHsbVHavRz9S2ZH0084FKJwXkluzHU1rdX%2FB9tTGDdD5eEt5%2B6RxaSeOOjhCEjvOw5VH%2BguJPpPQz5c8N4g1NoMOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74ffc05b28d5b518-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   313
Md5:    60275d47151cca47ac835969abc267ae
Sha1:   5634a1e37c3f18441a6cb8f039fe56c2c339c837
Sha256: f2e6aca3f3e3e9f8e8eaf6aa22868cedef6e9be1053bd11a9029232a3622a545
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:56 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 00:04:17 GMT
Expires: Sun, 25 Sep 2022 00:56:17 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Bws1su2EwtPOJ5WKzyorglU8FAOZgqN4zpS2_Ma_aAcTwKN9k-JNxQ==
Age: 2620


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:57 GMT
Server: ECS (amb/6B9D)
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3589
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:57 GMT
Last-Modified: Sat, 24 Sep 2022 23:48:08 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: n1Im15XhUuarNkzPtOsA0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         100.20.30.105
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vhz4VOUZi6Hf8FKC0LVIR9L5PBA=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:58 GMT
Last-Modified: Sun, 25 Sep 2022 00:47:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /npm/es6-promise@4/dist/es6-promise.auto.min.js?ver=6.0.2 HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"1962-NLNASu4jwzBScgHcLDtueKdlX1E"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:58 GMT
age: 40122
x-served-by: cache-fra19175-FRA, cache-bma1651-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2487
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6498), with no line terminators
Size:   2487
Md5:    b337d87a81b4df63d2f1798a60bb4769
Sha1:   af3947f6fa2f8497f004546583bd6f223a3305a1
Sha256: 161b8d5632d06c7d1faca533a644dedb8b0338059482116a6d7d73ebc0c02fca
                                        
                                            GET /embedded_chat.js HTTP/1.1 
Host: i.getresponse.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.65.195
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: max-age=7200
content-encoding: br
etag: "65fcd621d192cacb9c924834390e1a31d5319884a6de7a89795341208d21c5f5-br"
last-modified: Thu, 19 May 2022 08:47:50 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:58 GMT
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664066878.426436,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5549
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20558), with no line terminators
Size:   5549
Md5:    54360b4541e6ae847a82aa96d0159867
Sha1:   17cb38613c4223e23c6808c0ce277f2b22c3fdb2
Sha256: b5a417da6622cff1ea4581f32596743b543c22c952cccf3b9ff4fd36e0cbb0df

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.50.0 HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 12:31:33 GMT
expires: Tue, 19 Sep 2023 12:31:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 476185
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2134)
Size:   5437
Md5:    30ca3165d143baf2835023bfcf463450
Sha1:   62c662c0873b79a314c040fef28dcd29abb14480
Sha256: 4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
                                        
                                            GET /gtag/js?id=UA-161834684-2 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 00:47:58 GMT
expires: Sun, 25 Sep 2022 00:47:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43242
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   43242
Md5:    2846a7ebbef9142e4b9ad3205f033bb6
Sha1:   e1836918a3215be8982a39bcf6c61cd37e65b301
Sha256: d098b500ef21627ba39cf9516fa7494d29005b88b9c90fd2af6d9ebe17e9c696
                                        
                                            GET /gtag/js?id=G-PR6SN12QDF&l=grChatDataLayer HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 00:47:58 GMT
expires: Sun, 25 Sep 2022 00:47:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64833
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2996)
Size:   64833
Md5:    7c42621fafc05f5fbb016a1d76eec3d9
Sha1:   a8052e1c102bb76209b749845510aeaacd8fb4b5
Sha256: 73486b7d761e9f12c2d2c7091286ad5d5527c8d8b67c97ffb8ff3ed59bfe0480
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F922E4DF6702E37A1E4A6343C409CFEE3CD83F61"
Expires: Sun, 25 Sep 2022 11:00:00 GMT
Last-Modified: Sat, 24 Sep 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3330
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ffc066edc60b65-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    132619db6af2e9d9f1e59e8c80462c10
Sha1:   219b266fb676c0618697d4f1a27c11933dcf1dff
Sha256: 0266f3fc1b1e61f3efae81bf58ea742a91cf3eb66476914a1906acd98f473932
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/0jSY8c0wwQY HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /REST/webTracking/v1/event?timestamp=1664066877150&brandID=60403fd78a48f74eb0525097&shopType=api&shopHostname=cbdandhempwarehouse.net&url=https%3A%2F%2Fcbdandhempwarehouse.net%2F&title=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&anonymousID=KAgrP5JcgwADlV-20220925004757&sessionID=npN8KaNHEq9BLJ-20220925004757&type=pageview HTTP/1.1 
Host: wt.soundestlink.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.27.48
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
content-length: 42
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ffc066e88cb4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=cbdandhempwarehouse.net&shopType=api&brandID=60403fd78a48f74eb0525097 HTTP/1.1 
Host: forms.soundestlink.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.27.48
HTTP/2 200 OK
content-type: application/json
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
cache-control: max-age=0, s-maxage=600, public
last-modified: Sun, 25 Sep 2022 00:47:58 GMT
x-envoy-upstream-service-time: 8
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ffc066d887b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2210), with no line terminators
Size:   1384
Md5:    6ab4997ddf5b62f395ab19db8bd359fc
Sha1:   030f3e8710820211b7219d20f378980ee9d990f2
Sha256: 1f60a3e2f2b449fe982a5e9c8719f332e7db8e6663c627629ecf67b8afa5e49f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6234
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:58 GMT
Last-Modified: Sat, 24 Sep 2022 23:04:04 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2735
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:58 GMT
Last-Modified: Sun, 25 Sep 2022 00:02:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 25 Sep 2022 00:47:58 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 24 Sep 2022 22:41:31 GMT
Expires: Sun, 25 Sep 2022 22:41:31 GMT
ETag: "cc7baa698c5ab0388abc0438cd604866a1e46f4f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    fde6be116a5446d396efce0a7cdc3e8b
Sha1:   cc7baa698c5ab0388abc0438cd604866a1e46f4f
Sha256: 5898427641fe5037eb33dab68f6247544cc0e1fdc48884d9384391c86b45d448
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 25 Sep 2022 00:47:58 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 24 Sep 2022 22:41:31 GMT
Expires: Sun, 25 Sep 2022 22:41:31 GMT
ETag: "cc7baa698c5ab0388abc0438cd604866a1e46f4f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    fde6be116a5446d396efce0a7cdc3e8b
Sha1:   cc7baa698c5ab0388abc0438cd604866a1e46f4f
Sha256: 5898427641fe5037eb33dab68f6247544cc0e1fdc48884d9384391c86b45d448
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4843
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 00:47:58 GMT
Last-Modified: Sat, 24 Sep 2022 23:27:15 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /buildButton HTTP/1.1 
Host: us-central1-grchat-d3548.cloudfunctions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 212
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.36.54
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-origin: *
etag: W/"e7da-aotpVgK/lmAt82WLgWGJL/ocFOM"
function-execution-id: t9813vhyq2vf
x-cloud-trace-context: 92d6b3d3407909af1a4ea1a409da6366;o=1
content-encoding: gzip
date: Sun, 25 Sep 2022 00:47:58 GMT
server: Google Frontend
cache-control: private
content-length: 44678
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (59354), with no line terminators
Size:   44678
Md5:    f9225cfadcbc2770b362ca34d339117f
Sha1:   4cc3a5e1aa513ae74f430a413f2d825c504308f1
Sha256: 09fba5590c1126ad53aaa897e88e9dd3cd86d4137685a496eeae32725a02794b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4425
Expires: Sun, 25 Sep 2022 02:01:44 GMT
Date: Sun, 25 Sep 2022 00:47:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4425
Expires: Sun, 25 Sep 2022 02:01:44 GMT
Date: Sun, 25 Sep 2022 00:47:59 GMT
Connection: keep-alive

                                        
                                            GET /releases/v5.2.0/css/all.css?ver=5.2.0 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.133.15
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
x-amz-id-2: 5DxjzcvEvqwVAZnEYSbAB8MW5o9vlMhQJITpVHbrIP44MqVKupdhlkuhQIgji03pEhcjt1kcatY=
x-amz-request-id: FTQ8STHQPS85SYB1
last-modified: Wed, 30 Jun 2021 15:41:36 GMT
etag: W/"20a9ce516eaea76da29a23adc43e8998"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28805127
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YPqD4xJ7JrBvZI6cqWRQUIJiaGNgpv6yLPbcFvcIpjnzswwrXdMfkNlPTCM958ns%2BidQpjYYWw6l5x8oN90yWVqH7%2BM8p5rFDBjZHWCEaTQ2B5WM6eB0UaOSbt4sM%2BcoXGznXSbm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ffc065c83c88a9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46750)
Size:   10701
Md5:    6efd143b11d9787d016a1e0b53ebcc06
Sha1:   044c4229cbe2ec8b46b018427fef246c8b8f16bd
Sha256: edc6c2cd09717a00e569654e23e6acc9744143e03dcd73321c931b497d32c8c6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4425
Expires: Sun, 25 Sep 2022 02:01:44 GMT
Date: Sun, 25 Sep 2022 00:47:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NdyoW-aALNbALUNnUAWgJafG47WQBKHxeOEQhLHWS1ie8YlUH9z9uA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:58:11 GMT
age: 10188
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4723
Md5:    3d35df1f57d0736995615b0d8f50b8a3
Sha1:   8324b383c89771a2b1155ec6d069bf5a47338acd
Sha256: 9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5172
x-amzn-requestid: d366d3e0-71d7-404c-a93b-3267852824ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_T5F5PoAMFqWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f78e5-52362b5f0dc1ee8951eebc07;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E5AjrYJrZjEREIaYV21riZZIvhquVUTRRwArp-UNXAEKlwHUL1CtIw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:58:23 GMT
age: 10176
etag: "a881666627e1077859ed1941cee576caf600d798"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5172
Md5:    d7bd3afd3069904500c28e9bb16587e8
Sha1:   a881666627e1077859ed1941cee576caf600d798
Sha256: 78a7b0a2127c583aba569abace503cff376cde67d5faa9a346c1494d91e8f3cf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 11427
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
age: 11453
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8914
Md5:    dfdacc8edea3c24dad020d7e9c11b3f4
Sha1:   2b6e37596e88b62f288dc8e8c937fd904fae28d5
Sha256: 338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
                                        
                                            GET /?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true HTTP/1.1 
Host: guest.getresponse.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.1.195
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: max-age=3600
content-encoding: br
etag: "ed1726da115908ad667a3ef2d91e3f70cc08521d68525ac2fe2e17f1a58e57c6-br"
last-modified: Fri, 19 Aug 2022 07:18:48 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:59 GMT
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664066879.075937,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 599
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1832), with no line terminators
Size:   599
Md5:    a7a9c2c26979c9f9fabcb4f21fc2ed6d
Sha1:   4a3ef0976cfe0d9d1b80e5982555c86c4c2142b9
Sha256: 1485ad0129b4bdcfb54870a6d7aad0004f6ea5186bcfbe1e711809e40ea54980

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7404
x-amzn-requestid: ef623ade-f397-40a9-b88d-0394f22a8d8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJPGYyoAMFVEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-2da73ceb54b36ade5bf4ce1a;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jqPyyJr0H9dHTBuQb9Z8bNBwMXhBz5pz09u_j1R0Qpp-iGUGFXm0VQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 13:56:57 GMT
age: 39062
etag: "3a69c08b4d25d1dae1abbabd103d6d295a2f5425"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7404
Md5:    9bbdad67489e993cebd23ffb04ebd02c
Sha1:   3a69c08b4d25d1dae1abbabd103d6d295a2f5425
Sha256: ee3839246f3bada3e3190c240c8ac64d8012a87c062c5e006ed80a7edcd773a5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73844595-b7d7-4585-a846-ab38b27af847.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11435
x-amzn-requestid: e1288aca-0375-4ce8-9daa-81afe23c9c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_ETHE6oAMFqGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-01a836ab57a326356f838bfc;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X8xpMQCKuQGx46BrQ_851U0HhXIALy0k22WRO-zp8TuFhK0KaHItBw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
age: 11453
etag: "27f05479fd4fbe68993748fdb043850807ddebdd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11435
Md5:    1a9f4d93ea4a06628bc31a00a9c4e692
Sha1:   27f05479fd4fbe68993748fdb043850807ddebdd
Sha256: 31b0809297c7e8acbb46b544cf6f3f4ffaa6bda7a8896fe8678fbfc839a115ab
                                        
                                            GET /assets/FontManifest.json HTTP/1.1 
Host: guest.getresponse.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.1.195
HTTP/2 200 OK
content-type: application/json
                                        
cache-control: max-age=3600
etag: "d15254cd9d142b950433cb8d1c0efb328352fa04db90c0f4d6eb2a68dead445f"
last-modified: Fri, 19 Aug 2022 07:18:48 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:59 GMT
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664066879.104183,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    d751713988987e9331980363e24189ce
Sha1:   97d170e1550eee4afc0af065b78cda302a97674c
Sha256: 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /assets/yaml_translations/guest_en.yaml HTTP/1.1 
Host: guest.getresponse.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.1.195
HTTP/2 200 OK
content-type: text/yaml; charset=utf-8
                                        
cache-control: max-age=3600
content-encoding: br
etag: "f5adf86f6083e9c28bf22b127d8f7d3b4d6201806739c00e370535dc2715b100-br"
last-modified: Fri, 19 Aug 2022 07:18:48 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:59 GMT
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664066879.108042,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 953
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   953
Md5:    9b8999d2b3c173cbf3a647704a16fad9
Sha1:   9582dcbc94cc731eb493df7cad56f3825958e5c8
Sha256: 21633c2333d68a9ece65d313ea3f96c3ef17d2ee74095a1a64027d3cde8f1da2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /initialization.js HTTP/1.1 
Host: guest.getresponse.chat
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/?data=%7B%22u%22%3A%22DpV%22%2C%22pageHref%22%3A%22https%3A%2F%2Fcbdandhempwarehouse.net%2F%22%2C%22pageTitle%22%3A%22CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online%22%2C%22pageDomain%22%3A%22cbdandhempwarehouse.net%22%2C%22p%22%3A%220ea5a4e69004591b7edc6c38a62093dd%22%2C%22city%22%3A%22oslo%20municipality%22%2C%22countryCode%22%3A%22NO%22%2C%22showButton%22%3Atrue%2C%22headlineText%22%3A%22Got%20questions%3F%22%2C%22mainChatColorHex%22%3A%22%237DB9EE%22%2C%22textColorHex%22%3A%22%23FFFFFF%22%2C%22showPreChatMessage%22%3Atrue%2C%22chatStartButtonPosition%22%3A%22ChatStartButtonPosition.bottomRight%22%2C%22chatStartButton%22%3A%22ChatStartButtonType.chat%22%2C%22timeZoneName%22%3A%22America%2FLos_Angeles%22%7D&isHidden=false&open=true&asyncFlutter=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.1.195
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: max-age=3600
content-encoding: br
etag: "ef3df72c1eb68a085768efeb997d1dc152481451475a5f35badd905f6c30d267-br"
last-modified: Fri, 19 Aug 2022 07:18:48 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 25 Sep 2022 00:47:59 GMT
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664066879.114388,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 554
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1079
Md5:    63a40e1a39e59bd16939977a80dd8d15
Sha1:   bbd3d2c57c8881276df83f5272fa34c91b397478
Sha256: c1831c926ba79b19eacb7d8c15142faaff59f5b2d4f6e8860ff9cbc8386714a3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /s/gts1d4/lVqjrIyzdEM HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /firebasejs/8.6.1/firebase-auth.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 56864
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 09:19:57 GMT
expires: Mon, 18 Sep 2023 09:19:57 GMT
cache-control: public, max-age=31536000
age: 574082
last-modified: Wed, 12 May 2021 23:15:25 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   56864
Md5:    685e2947235dcf4f7b71a5867498374e
Sha1:   0b3665b269bc38adeec65065dc801de03018edd0
Sha256: 33ad6835d83041b50bf318e57829722c46f468e519a3d2416893c7f9b179e6e5
                                        
                                            GET /firebasejs/8.6.1/firebase-database.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 52292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 09:19:57 GMT
expires: Mon, 18 Sep 2023 09:19:57 GMT
cache-control: public, max-age=31536000
age: 574082
last-modified: Wed, 12 May 2021 23:15:27 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   52292
Md5:    adbaa6fe0a1f9082924a85f3d0c4b556
Sha1:   3133074172310da878962c3a179aca73996c419e
Sha256: bfb1af32703669b90f7874bedb82440ed2e5d8f5fada9def770c3c45ab360486
                                        
                                            GET /firebasejs/8.6.1/firebase-app.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6921
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 10:56:35 GMT
expires: Fri, 22 Sep 2023 10:56:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 12 May 2021 23:15:25 GMT
age: 222684
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21765)
Size:   6921
Md5:    2fa9d504b3941a9b13e7ddb5d34b6c68
Sha1:   8ab923d5bca88468c346c79427d1d67dcb0c0a3b
Sha256: 7edcd8699b10af1c8a27a98e75980a5796abe8ad24c03ff26a522660a5ade5d2
                                        
                                            GET /firebasejs/8.6.1/firebase-performance.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guest.getresponse.chat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 11644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 16:31:19 GMT
expires: Wed, 20 Sep 2023 16:31:19 GMT
cache-control: public, max-age=31536000
age: 375400
last-modified: Wed, 12 May 2021 23:15:26 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12171
Md5:    e62861195dae043c28ba3fffe2c1632d
Sha1:   750fb7650d219f8f662ac3791a2da229f4950cf6
Sha256: cdd8ed969e1b0d54223505eb68a75896dec67ec9f7fcebc3e9e962171aaa9dc6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 00:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-PR6SN12QDF&gtm=2oe9l0&_p=1524802531&cid=1187714077.1664066877&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664066877&sct=1&seg=0&dl=https%3A%2F%2Fcbdandhempwarehouse.net%2F&dt=CBD%20-%20Buy%20CBD%20%7C%20Hemp%20Delta%208%20THC%20products%20online&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cbdandhempwarehouse.net
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://cbdandhempwarehouse.net
date: Sun, 25 Sep 2022 00:47:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0 HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:59 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Sun, 25-Sep-2022 12:47:59 GMT; Max-Age=43200; path=/; domain=getresponse.com gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Thu, 24-Nov-2022 00:47:59 GMT; Max-Age=5184000; path=/; domain=.getresponse.com webformv2_opened_65297604=0; expires=Tue, 24-Jan-2023 00:47:59 GMT; Max-Age=10454400; path=/ dtCookie=v_4_srv_5_sn_FE4D076DBAA793CCFB118272CB8CC15C_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
x-oneagent-js-injection: true
x-ruxit-js-agent: true
server-timing: dtSInfo;desc="0", dtRpid;desc="-1170406806"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9813)
Size:   3908
Md5:    54c286d6a974bb74142938c77b5eb364
Sha1:   adbf3556e3c76f90842743cd56ee415bdd1277b0
Sha256: d751dbe49d60fe945e469518ca7b07d64286ff92142fcaa8e13709a5c2fd5888
                                        
                                            GET //javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css HTTP/1.1 
Host: us-as.gr-cdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         205.185.216.42
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 25 Sep 2022 00:48:00 GMT
content-encoding: gzip
content-length: 6652
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-6e8a"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
server-timing: dtSInfo;desc="1"
x-hw: 1664066880.dop231.sk1.t,1664066880.cds013.sk1.hn,1664066880.cds228.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7579
Md5:    a26c86429cfe8b04462da075d13c3ae9
Sha1:   94332ccbb9f894c6108a0a2d6b300fd2ee672af4
Sha256: 4e8eeed9c1fa7c043cac9cbeb81f830c2d3adbfe5f73b3605f954d6f1f9413eb
                                        
                                            GET /site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0 HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:59 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Sun, 25-Sep-2022 12:47:59 GMT; Max-Age=43200; path=/; domain=getresponse.com gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Thu, 24-Nov-2022 00:47:59 GMT; Max-Age=5184000; path=/; domain=.getresponse.com webformv2_opened_60018804=0; expires=Tue, 24-Jan-2023 00:47:59 GMT; Max-Age=10454400; path=/
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32376)
Size:   13090
Md5:    e3c7de07f3b0168fb23cfbdcb3f6f354
Sha1:   b36ad987176fdea01f98b395566a1e63c91888a8
Sha256: 681dbf6835337b5b2842bf052ad8f5555371a6b13ca03074e201077800c1b6b5
                                        
                                            GET //javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js HTTP/1.1 
Host: us-as.gr-cdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         205.185.216.42
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:48:00 GMT
content-encoding: gzip
content-length: 415
last-modified: Fri, 26 Aug 2022 14:47:03 GMT
accept-ranges: bytes
server: nginx
etag: "6308dce7-2eb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1664066880.dop231.sk1.t,1664066880.cds013.sk1.hn,1664066880.cds235.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   14648
Md5:    928b3edb5cf47c7cc229014094974bd5
Sha1:   b39b0512f56516b9ed6521a7b4aeaf08c7739588
Sha256: da9fa92d2850d632f2e46eef47907f020b1b9185be9f268998e5bd94f7ec6f70
                                        
                                            GET //javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js HTTP/1.1 
Host: us-as.gr-cdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         205.185.216.42
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:48:00 GMT
content-encoding: gzip
content-length: 87876
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: W/"1dc09d84-47f3c"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1664066880.dop231.sk1.t,1664066880.cds013.sk1.hn,1664066880.cds264.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65232)
Size:   87876
Md5:    b9ffcf2506d95091ec2d2dd1101cbdd1
Sha1:   c3f08b1e4f91ad0ffdc8985a339dd1241617cccb
Sha256: e7cbdf3eb602c2fe47e405f41cf7f50fed01020318b6e6893869fd4a0645a903
                                        
                                            GET /ruxitagentjs_ICA27QVfgjqrux_10249220905100923.js HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
content-length: 121975
content-encoding: gzip
expires: Mon, 25 Sep 2023 00:48:00 GMT
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 03 Mar 2010 07:01:40 GMT
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   233004
Md5:    e3fb5d5a9eb3289b73c89f123534f166
Sha1:   61220a9e84c588447dfa9e3363c53ffe7611677d
Sha256: 0ea84ea76e02f5add4f057e088c327b5d052dea95be2c56851cd8e2b92fb366f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 00:41:09 GMT
expires: Sun, 25 Sep 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 411
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /images/common/templates/webform/105/1/img/105_02.png HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
content-length: 1430
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: "6315edfe-596"
expires: Mon, 26 Sep 2022 00:48:00 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size:   1430
Md5:    b08ace12a07a95ad4355eae9ed7152ee
Sha1:   92460c536f0548b514f3e8f6c317956c3ba42b7e
Sha256: 55adbd2da891dc3cad9c9b7a3796d51906bfd5b2f68c5634752080b7873a7b7f
                                        
                                            GET /getresponse-TSB/photos/cfce755c-e0e3-4dbb-8041-17258fee3971.png HTTP/1.1 
Host: us-ms.gr-cdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         205.185.216.42
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 25 Sep 2022 00:48:00 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-length: 294362
x-hw: 1664066879.dop231.sk1.t,1664066879.cds013.sk1.hn,1664066880.cds222.sk1.p
timing-allow-origin: *
server: nginx
x-amz-id-2: SbHTuFjvbn7K/YzVLiUUiFh9fjVm0kvOVes1jmlPwl20uHs5HgehQ+ZMEma/8ZsLlNPsrpQmKMg=
x-amz-request-id: G8WMHM7QYCGG08WM
etag: "21686b9e89eb77aaca0d58592f843031"
x-amz-version-id: Y679sWJ9z5tB5jSJhS40hztJ449fnZ34
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
last-modified: Mon, 08 Feb 2021 22:28:24 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1181 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size:   294362
Md5:    21686b9e89eb77aaca0d58592f843031
Sha1:   06b6a53e45e66a0d4f53d7a2fd3976646755a651
Sha256: ac633d04f6c4028e4d4cf631b30a3ffdfdd6ae7421e32f1115c67c54dfe491d9
                                        
                                            GET /s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:17:40 GMT
expires: Fri, 22 Sep 2023 17:17:40 GMT
cache-control: public, max-age=31536000
age: 199820
last-modified: Tue, 19 Apr 2022 18:36:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17300, version 1.0\012- data
Size:   17300
Md5:    2bb7eeed159db804f2e7a9ca64871661
Sha1:   d4aa569d336599b0c8a61ddbc2f5151627d0dbe1
Sha256: 6a444f75e21c8b900953619df3cbc2ecf9e2227416e07d774709adf722bcb415
                                        
                                            GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6Mk.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 15:48:02 GMT
expires: Thu, 21 Sep 2023 15:48:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:34:50 GMT
age: 291598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30908, version 1.0\012- data
Size:   30908
Md5:    0637d53459cdc8ee092a8f96186b4097
Sha1:   060034f995d649902b3207d41fde9a6060241499
Sha256: 50488656aeea003d0042da0979cd15675c0bc1c028a21dddfafd7656d54c709e
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 373059
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:29:51 GMT
expires: Fri, 22 Sep 2023 06:29:51 GMT
cache-control: public, max-age=31536000
age: 238689
last-modified: Mon, 11 Jul 2022 20:56:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29436, version 1.0\012- data
Size:   29436
Md5:    4e29aceac72b453671f585e88f69c24a
Sha1:   35115af67eca17e02698954f1533b69515ecbbf9
Sha256: b9d88c1280c412b1bccb32e6d99da3369feeb3fae8b64900e7066a1829385699
                                        
                                            GET /s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:08:14 GMT
expires: Tue, 19 Sep 2023 21:08:14 GMT
cache-control: public, max-age=31536000
age: 445186
last-modified: Mon, 18 Jul 2022 19:13:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25380, version 1.0\012- data
Size:   25380
Md5:    a4da6b64ef6b1dc66019a9005a39f0b6
Sha1:   afe914fa3d5f81d7b14b1c6052e397924efacc66
Sha256: 05901e9ca0453daeb0b97d3157710a32db02c7cb7901e6d8bb96ec01b157d38c
                                        
                                            GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 18:22:44 GMT
expires: Thu, 21 Sep 2023 18:22:44 GMT
cache-control: public, max-age=31536000
age: 282316
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26100, version 1.0\012- data
Size:   26100
Md5:    312bcfa92b0b0a09c3f404b2c662a0b6
Sha1:   5398ff9ee3c10bffc54e3a9f7e5e7506a822b38a
Sha256: 979caf94add5b00ec59d8abde43d200523745c2f4b105c2906f4d9dda4afaeec
                                        
                                            GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:02:41 GMT
expires: Sun, 24 Sep 2023 18:02:41 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
age: 24319
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19712, version 1.0\012- data
Size:   19712
Md5:    a855eba47cc044358626219a19b78d72
Sha1:   01e8ab7dd57bc7edaef52a00a776758cf5ab25ff
Sha256: 9492399746a3054c37f3e8e6a3d3f4799490697a3971a89a6449537612630b0d
                                        
                                            GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 41852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:10:15 GMT
expires: Tue, 19 Sep 2023 21:10:15 GMT
cache-control: public, max-age=31536000
age: 445065
last-modified: Mon, 18 Jul 2022 19:45:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 41852, version 1.0\012- data
Size:   41852
Md5:    eda9570095419a02305375af62ca8a7d
Sha1:   2602a1420637014af148ef49bd072937d7000768
Sha256: 1c43b0ad19f388f2381cbbb9ed34cee414d5f74d35897d496f5806c45a02ae0a
                                        
                                            GET /s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:30:45 GMT
expires: Sat, 23 Sep 2023 00:30:45 GMT
cache-control: public, max-age=31536000
age: 173835
last-modified: Thu, 21 Apr 2022 17:07:33 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 9728, version 1.0\012- data
Size:   9728
Md5:    ecbaa4c9c4ab43f177166fcc2a0d161d
Sha1:   3a80ace0fd0d8967f4b15be5ff60be33d94e3f6c
Sha256: 0758816c25896d8ff013f6c53c2bfb27610e910c25ca452b49caa09be293fe86
                                        
                                            GET /s/gabriela/v14/qkBWXvsO6sreR8E-b8m5xLtlmgzD.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:37:08 GMT
expires: Sat, 23 Sep 2023 00:37:08 GMT
cache-control: public, max-age=31536000
age: 173452
last-modified: Thu, 21 Apr 2022 17:21:13 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10664, version 1.0\012- data
Size:   10664
Md5:    c0f750134d21dde14468a8ad06147f18
Sha1:   bbe6bde58e4a1fd3568d4ed6e7d3c987269a97e9
Sha256: 142657ecb18312a7fdef25bfc8e74991e41effb958ea3678f4a601359ce2b8ec
                                        
                                            GET /s/englebert/v17/xn7iYH8w2XGrC8AR4HSBSP3ZVtyGZg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 05:10:41 GMT
expires: Sat, 23 Sep 2023 05:10:41 GMT
cache-control: public, max-age=31536000
age: 157039
last-modified: Thu, 21 Apr 2022 16:20:27 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20023
Md5:    3d293465a1cdde3f5b7973a23f6e9f59
Sha1:   53609b6f87ff8353c925b1c3e6d03a6f719c259d
Sha256: 882cf9a79d9c1da08b4ab0911f986b9e86b80a321015f64f96ddfc8151bce9b9
                                        
                                            GET /s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:26:46 GMT
expires: Wed, 20 Sep 2023 22:26:46 GMT
cache-control: public, max-age=31536000
age: 354074
last-modified: Tue, 19 Apr 2022 19:39:03 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   18100
Md5:    5876458cca454154df525dab0c51a7a2
Sha1:   2b0250f8a93db2a98a7aceb67bf9b1d6f421e3b8
Sha256: e0bd74fb5ef79110befb6cd9c54021a8d36424342218de52789e296c27410342
                                        
                                            GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25716
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:18:28 GMT
expires: Tue, 19 Sep 2023 21:18:28 GMT
cache-control: public, max-age=31536000
age: 444572
last-modified: Mon, 18 Jul 2022 19:17:10 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25716, version 1.0\012- data
Size:   25716
Md5:    13b034ce4fd4bef6fb4bbd639993b350
Sha1:   7c2ee0439e841d4187918af2908c041b544a0c93
Sha256: bacf0700f76fa7fb17cfd78fe44859a5f02cec044ff0e2e9a530f92e08b6e6aa
                                        
                                            GET /s/yesteryear/v14/dg4g_p78rroaKl8kRKo1n7sNTigkiy0.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 22:05:40 GMT
expires: Thu, 21 Sep 2023 22:05:40 GMT
cache-control: public, max-age=31536000
age: 268940
last-modified: Wed, 27 Apr 2022 16:59:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22704, version 1.0\012- data
Size:   22704
Md5:    c37644d4c0223610eeb8c21deff7fded
Sha1:   a02c036e96e15871a399fdd1a9f215e0d29e5e27
Sha256: 10b928684c98f508d9eb5a1eb336e2758619756611667dd86c55634543cff754
                                        
                                            GET /s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 02:13:45 GMT
expires: Wed, 20 Sep 2023 02:13:45 GMT
cache-control: public, max-age=31536000
age: 426855
last-modified: Mon, 09 May 2022 19:08:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29440, version 1.0\012- data
Size:   29440
Md5:    4b99ce7b01453671b66feda5899ce4bb
Sha1:   fbfdd01952861ad8ae8ed992339fb7b5eb0472aa
Sha256: ff273685b39a91b5e4111b70325051e45d3ef9e8e6b808b0fd35de19043a9f76
                                        
                                            GET /s/neuton/v18/UMBTrPtMoH62xUZCz4g6UCj1Bg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 01:08:37 GMT
expires: Wed, 20 Sep 2023 01:08:37 GMT
cache-control: public, max-age=31536000
age: 430763
last-modified: Mon, 09 May 2022 18:42:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12524, version 1.0\012- data
Size:   12524
Md5:    d6d7adc017e690841a59b0e0d2546035
Sha1:   b2079139932922e8b9a07d4c74ee76fc733eada6
Sha256: 27e6409819714f64ea8b98aff5203cb2ad5b8f255e21998941021c6bd2ca7547
                                        
                                            GET /s/varela/v16/DPEtYwqExx0AWHX5Ax4EXP_TsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 21:39:59 GMT
expires: Thu, 21 Sep 2023 21:39:59 GMT
cache-control: public, max-age=31536000
age: 270481
last-modified: Wed, 27 Apr 2022 17:10:49 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10293
Md5:    454fa65a3a11320071d0723a017d8f50
Sha1:   9d3a17ef33875b1c17c5cfce8708f5eaa21f1d2a
Sha256: 1ee65df42c845271404992f88d3f860446ca35d1f67bdb10f66d31806bfec40a
                                        
                                            GET /images/common/templates/webform/111/5/style.css HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-13d1"
expires: Mon, 26 Sep 2022 00:48:00 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16893
Md5:    8104a99ebee07d2d4d936ea33fbd3002
Sha1:   faec774e2fba4211f41053b7f4d068b4c2d6f2fc
Sha256: d8f0aaed6597a047c794022a02cbf08dfc22bd17c9fedb8e6e0f48d2e330fe5f
                                        
                                            GET /s/monoton/v15/5h1aiZUrOngCibe4TkHLQg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:09:04 GMT
expires: Wed, 20 Sep 2023 22:09:04 GMT
cache-control: public, max-age=31536000
age: 355136
last-modified: Tue, 26 Apr 2022 15:00:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16516, version 1.0\012- data
Size:   16516
Md5:    68bccc3c76de5d7f57ea6a42a0e9d773
Sha1:   5bc217d3f4a11918d582dd53677104c736231f22
Sha256: 912d17193cc65faaaa09a6cd8c8c4335f2d9385a6964888b8aa56508b5e66241
                                        
                                            GET /s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:04:09 GMT
expires: Tue, 19 Sep 2023 20:04:09 GMT
cache-control: public, max-age=31536000
age: 449031
last-modified: Tue, 19 Apr 2022 19:03:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   21897
Md5:    e7e62aa47fc5ffaac265f3cba34eea40
Sha1:   048a3a12ee7621bb10a170120328f95f5b014b24
Sha256: 99173058d80938373aaa38132332781e6c14d5ef914f0c1c0cab859868cd0f06
                                        
                                            GET /s/chewy/v18/uK_94ruUb-k-wn52KjI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:49:33 GMT
expires: Fri, 22 Sep 2023 06:49:33 GMT
cache-control: public, max-age=31536000
age: 237507
last-modified: Tue, 19 Apr 2022 19:00:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19920, version 1.0\012- data
Size:   19920
Md5:    754c4def845e64948e4e2db385078c00
Sha1:   49365281be547c02a001fb7909cdfad1ba518afe
Sha256: 5fb894030e4ade4d9f76ede985bc96d468bcb923fcd4b908a5d8e38178819dc4
                                        
                                            GET /s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:01:19 GMT
expires: Tue, 19 Sep 2023 19:01:19 GMT
cache-control: public, max-age=31536000
age: 452801
last-modified: Mon, 15 Aug 2022 18:08:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35560, version 1.0\012- data
Size:   35560
Md5:    fc1944b3edea5f8e691d9b21755417da
Sha1:   a86ed4a634987d2531990db22c8e03076aba256e
Sha256: a03ee3f3ced9496c1fbebb82101c92022d6aee2edb66d7fe10faa07a495e74a8
                                        
                                            GET /s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:09:43 GMT
expires: Tue, 19 Sep 2023 21:09:43 GMT
cache-control: public, max-age=31536000
age: 445097
last-modified: Mon, 18 Jul 2022 19:34:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35848, version 1.0\012- data
Size:   35848
Md5:    12bb96876fc38b93380a6cc76267bd0b
Sha1:   8a71285da71a177d92bb605fb89825f199a81b5b
Sha256: 7da5e32922590d2ca6057bd7f2882269bdbcce1f53d3b622cfa1b7fcb95cca5b
                                        
                                            GET /s/hanalei/v23/E21n_dD8iufIjBRHbz8sVg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 49392
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 21:50:11 GMT
expires: Mon, 18 Sep 2023 21:50:11 GMT
cache-control: public, max-age=31536000
age: 529069
last-modified: Thu, 21 Apr 2022 17:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 49392, version 1.0\012- data
Size:   49392
Md5:    6959dbaffd9b47c4300f971d201170ea
Sha1:   e1e1c1cf09932e506cdb6e25e98f1ddc86a29f60
Sha256: 64e6e7b2931ebd691eddc68b6d4bf9ed3584fc25efe1a70eacfde080060355a8
                                        
                                            GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zvAgt&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   37679
Md5:    47a4634f8518ed52bc437acbb13fce54
Sha1:   fc2be59de83fba95f639dab93f1803d55d63fadd
Sha256: a67b170a07ead9a63c6c517a7bedb08a8ca6b416054cb35ad19031fa853aed26
                                        
                                            GET /anetseal/seal.js HTTP/1.1 
Host: verify.authorize.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.145.133
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
cf-bgj: minify
cf-polished: origSize=4007
etag: W/"80c88e7cc095d61:0"
last-modified: Mon, 28 Sep 2020 17:55:01 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 3733
expires: Fri, 30 Sep 2022 00:47:58 GMT
cache-control: public, max-age=432000
set-cookie: __cfruid=40ba0088bffd46478efcef917ad1efc23e546353-1664066878; path=/; domain=.authorize.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 74ffc065fecdb518-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/core/pages/webFormV2/public/gr_wf_v2.css HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:59 GMT
last-modified: Fri, 23 Sep 2022 08:21:26 GMT
etag: W/"632d6c86-1fd8"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /inShop/forms.js?v=2022-09-25T00 HTTP/1.1 
Host: omnisnippet1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.21.138
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
last-modified: Tue, 20 Sep 2022 14:32:18 GMT
etag: W/"6329cef2-206e2"
expires: Sun, 25 Sep 2022 00:26:28 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2731
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ffc0682815fac8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /inshop/launcher-v2.js HTTP/1.1 
Host: omnisrc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.4.28
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
last-modified: Tue, 20 Sep 2022 14:32:18 GMT
etag: W/"6329cef2-de42"
expires: Sun, 25 Sep 2022 01:37:21 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 463
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ffc065dd5b0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /forms/main.js?v=2022-09-25T00 HTTP/1.1 
Host: omnisnippet1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.138
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
last-modified: Tue, 20 Sep 2022 13:57:10 GMT
etag: W/"6329c6b6-9fa5"
expires: Sun, 25 Sep 2022 00:26:28 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2731
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ffc0688831fac8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: cbdandhempwarehouse.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.67.172.135
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 25 Sep 2022 00:47:58 GMT
vary: Accept-Encoding
last-modified: Sat, 24 Sep 2022 20:50:47 GMT
x-cache-status: HIT
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40JSr6pAHeh2KEVt5i%2FRVx6R%2BdF7MWlGBIV8v7G1TwPGD6gdEtvGo4tFVfnqglEI6ProLgCWPMrO1HcqRyLqbWJRIAir4LH%2FmmCC4N1hTPJAa23plb1HduGcti8l%2B8G%2FjnC%2F%2BzY%2F7JEuZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ffc05ffdbdb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /images/common/templates/webform/105/5/style.css HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/cbd420/?u=TSB&webforms_id=zhN5J&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 25 Sep 2022 00:48:00 GMT
last-modified: Mon, 05 Sep 2022 12:39:26 GMT
etag: W/"6315edfe-1459"
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_7_sn_8C6220FFDC77315C5AC6404BB496ADCC_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
expires: Mon, 26 Sep 2022 00:48:00 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /view_webform_v2.js?u=TSB&webforms_id=zhN5J HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:58 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /view_webform_v2.js?u=TSB&webforms_id=zvAgt HTTP/1.1 
Host: app.getresponse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cbdandhempwarehouse.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.160.64.9
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: nginx
date: Sun, 25 Sep 2022 00:47:58 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
server-timing: dtSInfo;desc="1"
set-cookie: dtCookie=v_4_srv_3_sn_94A46CB69CDDBBDF803D2730FC2E049A_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---