d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Light.woff2
200 OK 39 kB URL GET HTTP/2 d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Light.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 38708, version 1.66
Hash 50d1fc1f8a1df6e37643b398421a8cb9
cfa1ba6b80c01a50bd2ecb721f80c7320ba8ea85
a7261c03942fe3aeae6c21a5e0d467a14b728a707eaf7e1d294a93683032d761
GET /EFCircularSub-Light.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grouptoursite.com/
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 38708
date: Mon, 22 Apr 2024 09:55:56 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "50d1fc1f8a1df6e37643b398421a8cb9"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: xVe-P1X8AwtuH3uzJQYQN9z5x3AnyUSgDmA_jMZHqS5T_Z4UaWk94w==
age: 211153
X-Firefox-Spdy: h2
d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Black.woff2
200 OK 39 kB URL GET HTTP/2 d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Black.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 38924, version 1.66
Hash c7b73a297e6834c2d8a28ed7443489db
3f7c4da9070630b1c0aec6a80dc7c7f4b172875b
318b3811fff78b9d51b1385ccafe830b1b731407f73d12aba87704ce4c8c478c
GET /EFCircularSub-Black.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grouptoursite.com/
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 38924
date: Mon, 22 Apr 2024 09:55:56 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "c7b73a297e6834c2d8a28ed7443489db"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: Z7_0SfEmwMhF_D4bzzYsl0IbBc3YiYsQk0IqWF2dJVblrDNlAnkJPw==
age: 211153
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NDTHZ2G
200 OK 129 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NDTHZ2G
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (37089)
Size 129 kB (129023 bytes)
Hash 8672753d97d54d2ea7dbca78923365fa
262f4208d13704a38c98021b200a6f0c937d6a6c
10e16f52fe71de8c0615734bb4e17e394cd77b5f540a228bbc73031e1a51c668
GET /gtm.js?id=GTM-NDTHZ2G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 129023
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LQM236SHEC&l=dataLayer&cx=c
200 OK 105 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-LQM236SHEC&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Size 105 kB (104785 bytes)
Hash d5dbd2653577b8074e1a04387b428e0f
74e2d2b92c10cedc2142d70d5df51324aff8b5d0
785afe5e21c2c0ec21a43bed1b95af8fe791593e3a5ae198d14355f932af57f0
GET /gtag/js?id=G-LQM236SHEC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104785
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/destination?id=AW-951355816&l=dataLayer&cx=c
200 OK 78 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=AW-951355816&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (2165)
Hash 3bd5554098983167012e8062a90eaf8c
05a4c95958ea0507b5f6e7f70ba36b84cf36a560
93e56382aafc09efea89df127cf5b3f515f6f39f2e2fa680b313cbbec29075a1
GET /gtag/destination?id=AW-951355816&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77817
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/destination?id=AW-937035465&l=dataLayer&cx=c
200 OK 80 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=AW-937035465&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (2386)
Hash 386d5b0ebbbc3ceb8f9205d353157de4
fe4c12016f72d2e9a6e874b5fb3a67558a5ea43a
950751ea5bc85b6b0c5fea40b7a96080183b34a44ca02dafaed05165951e4768
GET /gtag/destination?id=AW-937035465&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79464
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/destination?id=AW-1071918522&l=dataLayer&cx=c
200 OK 78 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=AW-1071918522&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (2165)
Hash 37db64702a8740973ab56899e94023c2
af27f0237ec8c1e7b42e56144754adc58f0e7b52
828a9ed231e72823d52b854c214cc6ce1f06879b31c44035d6dc2b7ec198c04a
GET /gtag/destination?id=AW-1071918522&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77750
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/destination?id=DC-6384424&l=dataLayer&cx=c
200 OK 73 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=DC-6384424&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (2165)
Hash 1e4629fb815fdfbb0f9bbfaa258299e1
9d896ace82eda9568d6ac64ce96fd2c731ce59cc
98bf0a232b9719e38b11732092e947d5be4266f58f2b27f6bee8d0cb1cc7d11b
GET /gtag/destination?id=DC-6384424&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72826
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/destination?id=DC-10100557&l=dataLayer&cx=c
200 OK 73 kB URL GET HTTP/3 www.googletagmanager.com/gtag/destination?id=DC-10100557&l=dataLayer&cx=c
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (2165)
Hash 1811e0914dbf82ee810fa13f4a153c7a
97f9ec221dd6ae9df1b431a4b18635eee0a56bda
cd0a38175250a094e0b270d6129e0f643d5d4031d05f323682c51aa0f96775d6
GET /gtag/destination?id=DC-10100557&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 20:35:08 GMT
expires: Wed, 24 Apr 2024 20:35:08 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 20:01:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72718
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Medium.woff2
200 OK 38 kB URL GET HTTP/2 d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Medium.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 38168, version 1.66
Hash bd219c26b950d61cbb1b9b69737f331d
57f59e8dbcec1125aeda8a07cf0e24604367d8cb
ade30ddbc83c165140e004aa0bbe5f843cb479538451cdc208cb47e718e1593d
GET /EFCircularSub-Medium.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grouptoursite.com/
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 38168
date: Wed, 24 Apr 2024 20:35:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "bd219c26b950d61cbb1b9b69737f331d"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: AY9zbn8a2nJX3gJuY_NT06UTC7AtEZWgdK-GgYKLBVYk1vzWBILovg==
X-Firefox-Spdy: h2
d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Book.woff2
200 OK 37 kB URL GET HTTP/2 d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Book.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 36584, version 1.66
Hash c2ee49959adcc23fac3d4f89f0b45956
fdef1955e7b8ac9e879bc18c2b81d2e037b16795
569f041ebf1517bc89897ddeb38835b9d93afed9d870742c4e8b967464617b54
GET /EFCircularSub-Book.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grouptoursite.com/
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 36584
date: Wed, 24 Apr 2024 20:35:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "c2ee49959adcc23fac3d4f89f0b45956"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: rEa0BnVwChoe_Pfqh9JQ4710LtZaGChsPHhUc_TkM7s9-ShTJn4Auw==
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/search-insights@2.2.1
200 OK 2.6 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/search-insights@2.2.1
IP
Requested by https://grouptoursite.com/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (7336)
Hash 1f759ae7fd3bac1de709d9c74fa035ff
2e561a99e41619d4adc6fa7484606851785fe28c
e0d2e872be145886fa21dbfb0bdd82a6dd87de09470f3b4dc8a93c9548f1d365
GET /npm/search-insights@2.2.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.2.1
x-jsd-version-type: version
etag: W/"1ca9-LlYameQWGdStxvp0hGBoUXhf4ow"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 20:35:09 GMT
age: 30398669
x-served-by: cache-fra-eddf8230089-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2646
X-Firefox-Spdy: h2
d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Light.woff2
200 OK 39 kB URL GET HTTP/2 d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Light.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 38708, version 1.66
Hash 50d1fc1f8a1df6e37643b398421a8cb9
cfa1ba6b80c01a50bd2ecb721f80c7320ba8ea85
a7261c03942fe3aeae6c21a5e0d467a14b728a707eaf7e1d294a93683032d761
GET /EFCircularSub-Light.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 38708
date: Wed, 24 Apr 2024 20:35:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "50d1fc1f8a1df6e37643b398421a8cb9"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: jD-WlXeBhzVR99d0HfLXSpHvjCNefvCXMj_SvEz6xNgCDfS69LXPkQ==
X-Firefox-Spdy: h2
js.driftt.com/include/1713991200000/m5k7y7ds347b.js
200 OK 63 kB URL GET HTTP/2 js.driftt.com/include/1713991200000/m5k7y7ds347b.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash d270f8163d82a17d41782b966cb5a653
d220fda85ea0df4799109694749a98f58014f331
4ba66ad932b8934ccbe44442d24f75c0e97469f48393fe7b32cf85c1c7c90d59
GET /include/1713991200000/m5k7y7ds347b.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
last-modified: Thu, 04 Apr 2024 20:13:54 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ECpAIUHXvnHr64vvrQweEad8ZWUjBUSY
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 36
content-encoding: gzip
date: Wed, 24 Apr 2024 20:35:09 GMT
cache-control: no-cache
etag: W/"d320e83a1b98d0793815b4e22b96825b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: g5jGj751O7mPxAPbAupbqLKvdXKHiMyLNi90VNU4F737j9GnW3GCCw==
X-Firefox-Spdy: h2
d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Bold.woff2
40 kB URL GET d1nldbz8jmu82w.cloudfront.net/EFCircularSub-Bold.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39500, version 1.66
Hash 7cf902110636eb8fd0bb0e6f9603ecff
e7225872bd7ee93519d2e8a7c9f1ef605cb22552
419e9ceec0f42d8d507ffd2bc953430abeb29bd2612358428d7b217deb284c5d
GET /EFCircularSub-Bold.woff2 HTTP/1.1
Host: d1nldbz8jmu82w.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 39500
date: Wed, 24 Apr 2024 20:35:10 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Sat, 04 May 2019 23:15:47 GMT
etag: "7cf902110636eb8fd0bb0e6f9603ecff"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 5f7dfed9ac84be147f8e4e2e474596fc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 4LTWOLEES2O7Z5VIaY7sSsQBPFg9-Noa2jo8EyP0j8UtBB4xRaz0EA==
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_buildManifest.js
200 OK 6.4 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_buildManifest.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type ASCII text, with very long lines (931), with no line terminators
Hash 227b2e6046d3db76179f2432c74fd713
a4752ba29e5a33de6eebc1e023910260dd55418f
8b42f847f5669d94bac2cf9bcab153da1a243a914d92646acd5bc9f854b9e2b0
GET /web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_buildManifest.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"227b2e6046d3db76179f2432c74fd713"
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HQr0ehqJOzEkOZdgkERHmXTHXBojGWUPg8SpYPiCO-Gw3627r5eaSQ==
cf-cache-status: REVALIDATED
vary: Accept-Encoding
strict-transport-security: max-age=0
set-cookie: __cf_bm=WSPYIUWiP3MGEu5cn6hOl5HeuYNX08PGCicZ2DF8dkE-1713990908-1.0.1.1-adu6I_ajxd_Y64.6O5uzs5V_YmCFKugbxVkJ7owdPjks.7hYy06_gVS0TgK2ZscQJqTVjIkWrqvKb7NS_lfIpQ; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=87fHh6dEVKvVBsnGFOWpfxBfzZtTphYmrl1YfhqTRXk-1713990908481-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c91c8f1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/pages/_error-e69890b6db18dcbc6fa4.js
200 OK 4.4 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/pages/_error-e69890b6db18dcbc6fa4.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type JavaScript source, ASCII text, with very long lines (2463), with no line terminators
Hash fc40af882193380ab910317a7d79959b
4ee7835ef5f933cdd66f124c768c68f7e508cf9c
07d4b62f608044fc01e65efc37db945c99e634a82a5264844ab092a2d79f9e4e
GET /web-groups-microsite/1698155796/_next/static/chunks/pages/_error-e69890b6db18dcbc6fa4.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"fc40af882193380ab910317a7d79959b"
x-amz-server-side-encryption: AES256
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DMYJFese1C19PPQ7sU_L6VjIQsrdZv2Xb_v1X13MKUnfguiAPxVB5g==
cf-cache-status: MISS
strict-transport-security: max-age=0
set-cookie: __cf_bm=PykYbnh4JRxZwLgCAf863neEs9tsUEatr5pM58hoK84-1713990908-1.0.1.1-dC30x0BIKdOE6DGM23B72ISq.HVP2sIXsajdP0TXbyY3CA2yR40VSoFq0xIeZ420O8QbSOhvaKYeqYVSB0YxqQ; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=wCVPQnCV_hvzU5bxxOlUznl3U9TU1zorGX4xu9iDb9M-1713990908492-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c91c891c06-OSL
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33640&tdr=&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term=value
200 OK 6.5 kB URL GET HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33640&tdr=&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term=value
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (4905)
Hash 1a662e2e376d87ee712a67334e3f2c9c
c7a8a8c3a7fabb06d1449235542aaa0483d621e9
05ec4090c5cb6a55fd1b183b83c8958a7644120bef91727da99dca2a5ff1326c
GET /spx?dxver=4.0.0&shaid=33640&tdr=&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 24 Apr 2024 20:35:08 GMT
x-envoy-upstream-service-time: 2
be: spx-prod
server: istio-envoy
transfer-encoding: chunked
collector-30678.us.tvsquared.com/tv2track.js
200 OK 8.5 kB URL GET HTTP/1.1 collector-30678.us.tvsquared.com/tv2track.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.us.tvsquared.com
Fingerprint7F:72:75:CD:F0:A4:E0:3D:F0:61:1E:0F:6B:30:84:51:A2:19:16:27
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 26 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1162)
Hash a1f3145e1dc107aad3b57974b8817b57
507ea38aa8ad7bbe3ab3fa7e4c85016e3dca2960
a463aa6666ce0abcabf8033013cfe881fdbfb570389aff471d400a45b3a496d4
GET /tv2track.js HTTP/1.1
Host: collector-30678.us.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Wed, 24 Apr 2024 20:35:09 GMT
ETag: "65d377e7-2133"
Expires: Wed, 24 Apr 2024 20:45:09 GMT
Last-Modified: Mon, 19 Feb 2024 15:46:47 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive
a.opmnstr.com/app/js/1.b1faf420.min.js
200 OK 16 kB URL GET HTTP/2 a.opmnstr.com/app/js/1.b1faf420.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (11094)
Hash 1cb7e2d19c93b8b8fe259e58c02647f8
d13574d19e437e6029d00e5555f5f7ec10e93f46
8bea43a9ea37aa3cb1e00bdb138fb4d55b2f3b469914a3e6920b77d1eb114954
GET /app/js/1.b1faf420.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6620879a-2b87"
last-modified: Thu, 18 Apr 2024 02:38:18 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e9a3b571391416bae49d6adeecc6cbd3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQM236SHEC&cid=1579328221.1713990909>m=45je44m0v888938065z8811745238za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=514536114
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQM236SHEC&cid=1579328221.1713990909>m=45je44m0v888938065z8811745238za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=514536114
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D
ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQM236SHEC&cid=1579328221.1713990909>m=45je44m0v888938065z8811745238za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=514536114 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 24 Apr 2024 20:35:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/32.b9065693.min.js
200 OK 5.2 kB URL GET HTTP/2 a.opmnstr.com/app/js/32.b9065693.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (11265)
Hash 6fd48ead83fa7ab24afa74a2032e960c
082747f18091761fa46359c6fc6e3cc1920adc17
978277c7385002bbd8eca4f51d7bdac7424ef8c6d267066e36b018b25bf88f7a
GET /app/js/32.b9065693.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65088832-2c41"
last-modified: Mon, 18 Sep 2023 17:26:10 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6fbfd8c6b0f60272dff4d89dc4a1147d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/9.09463684.min.js
200 OK 1.1 kB URL GET HTTP/2 a.opmnstr.com/app/js/9.09463684.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (2119)
Hash 10879e406c5b255321291f1faa99114a
75cf9a03287dead52cd2d23aaa0bd5e501be2535
85ac85413190c43521f591c1a6396da00ca53691e1f5efa474b98eb19355864e
GET /app/js/9.09463684.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8b-879"
last-modified: Tue, 12 Mar 2024 17:10:35 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4468299174af2fba8595ca6e37d977c5
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 33 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 583027
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/4.d8754c5b.min.js
200 OK 47 kB URL GET HTTP/2 a.opmnstr.com/app/js/4.d8754c5b.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (49194)
Hash 4e296a8509946bf75c3f1f6c87b09116
43ff933f8c5f6310729dc3c17491e20494b125d4
0419af108684c7be468d5b2e8813d0f8c6a8dfe6e903f321fb5fb94b538f3f41
GET /app/js/4.d8754c5b.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"661cddb4-c05a"
last-modified: Mon, 15 Apr 2024 07:56:36 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 314cfeb8c4f20e22447b1e5f2efa8a93
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/13.e8c894f8.min.js
200 OK 2.6 kB URL GET HTTP/2 a.opmnstr.com/app/js/13.e8c894f8.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (2706)
Hash c87ed00c7156004e4af01801a2d9f762
55f84c7e2da8a6e7b8fe1b4848b6c3d4c1ebee5b
0ba898ffa07be7a7bbf859950bfa5c8214829033187f04ea071f09f917066ff1
GET /app/js/13.e8c894f8.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"66217f49-ac2"
last-modified: Thu, 18 Apr 2024 20:15:05 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: efc6199a05344167477af15f555e1173
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
bat.bing.com/p/action/5065967.js
204 No Content 0 B URL GET HTTP/2 bat.bing.com/p/action/5065967.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://grouptoursite.com/
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint7C:28:A0:E5:94:14:8F:43:5F:DD:F8:5E:FD:79:61:FC:C8:33:3E:1A
ValidityWed, 24 Apr 2024 02:02:41 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5065967.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CAB8B500C1B24BDBBA57AAB84412C14D Ref B: OSL30EDGE0219 Ref C: 2024-04-24T20:35:09Z
date: Wed, 24 Apr 2024 20:35:09 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5065967&tm=gtm002&Ver=2&mid=21bb25c4-5a4b-4542-a3a7-f7bd10cf9331&sid=24c5f580027a11efbf245bcc12239db6&vid=24c622b0027a11ef99e4df0c02e0d37e&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=404%3A%20This%20page%20could%20not%20be%20found&p=https%3A%2F%2Fgrouptoursite.com%2F&r=<=710&evt=pageLoad&sv=1&rn=967342
204 No Content 0 B URL GET HTTP/2 bat.bing.com/action/0?ti=5065967&tm=gtm002&Ver=2&mid=21bb25c4-5a4b-4542-a3a7-f7bd10cf9331&sid=24c5f580027a11efbf245bcc12239db6&vid=24c622b0027a11ef99e4df0c02e0d37e&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=404%3A%20This%20page%20could%20not%20be%20found&p=https%3A%2F%2Fgrouptoursite.com%2F&r=<=710&evt=pageLoad&sv=1&rn=967342
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://grouptoursite.com/
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint7C:28:A0:E5:94:14:8F:43:5F:DD:F8:5E:FD:79:61:FC:C8:33:3E:1A
ValidityWed, 24 Apr 2024 02:02:41 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5065967&tm=gtm002&Ver=2&mid=21bb25c4-5a4b-4542-a3a7-f7bd10cf9331&sid=24c5f580027a11efbf245bcc12239db6&vid=24c622b0027a11ef99e4df0c02e0d37e&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=404%3A%20This%20page%20could%20not%20be%20found&p=https%3A%2F%2Fgrouptoursite.com%2F&r=<=710&evt=pageLoad&sv=1&rn=967342 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1A0912319B0B62292286065A9AFE63FD; domain=.bing.com; expires=Mon, 19-May-2025 20:35:09 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1A7071548D13452DBAA86516702C56FD Ref B: OSL30EDGE0219 Ref C: 2024-04-24T20:35:09Z
date: Wed, 24 Apr 2024 20:35:09 GMT
X-Firefox-Spdy: h2
3.212.39.155/is
200 OK 32 B IP
Requested by https://grouptoursite.com/
Certificate IssuerSectigo Limited
Subject3.212.39.155
Fingerprint82:C1:10:23:E3:8E:C8:62:47:9B:A0:4C:5B:14:A9:D8:CF:80:7F:02
ValidityFri, 26 Jan 2024 00:00:00 GMT - Sat, 15 Feb 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 20d0582f61f4eb23c4147ac234ac4cbb
fc811c1babffbc89fbff75f372e679ae17feddaa
325d1a682ee307306ceb4bb577e5e4190a7e6b33d115c1d51c3fc9a4093b7db6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /is HTTP/1.1
Host: 3.212.39.155
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://grouptoursite.com/
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
grouptoursite.com/favicon.ico
200 OK 375 B URL GET HTTP/2 grouptoursite.com/favicon.ico
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgrouptoursite.com
Fingerprint8F:B2:58:58:85:72:6A:63:D4:F2:8A:48:71:34:B1:D5:9F:6B:6C:9B
ValidityWed, 28 Feb 2024 00:26:29 GMT - Tue, 28 May 2024 00:26:28 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash c712a6984b9d957cb2842927208730d2
c1d78a13ba0f2f9a226a432e99dda73ff0ea1405
d83d361136601a200b9c09cc3bb4399fe7e56610e2b22cb3727c323333de175c
GET /favicon.ico HTTP/1.1
Host: grouptoursite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Cookie: _omappvp=kUl58Xx1Maz4iXl9mFWv2mhqNUdY651unyzbYgZSJQ8aGLENPgnYBmqJYsq9dhebs2Mqsv5jE2ACZzxhRS1eWToUkTx8YEFZ; _omappvs=1713990908748; _gcl_au=1.1.1554918348.1713990909; _ga_LQM236SHEC=GS1.1.1713990908.1.0.1713990908.60.0.0; _ga=GA1.1.1579328221.1713990909; _ALGOLIA=anonymous-b4e03fed-094e-42d5-95b9-04040ac40b0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:10 GMT
content-type: image/x-icon
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: frame-ancestors https://app.storyblok.com http://app.storyblok.com/
cache-control: max-age=10, s-maxage=600, stale-while-revalidate=300
last-modified: Tue, 24 Oct 2023 13:55:16 GMT
etag: W/"47e-18b61f7dda0"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8798e0d2fbc0b4fa-OSL
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/16.22abfce0.chunk.css
200 OK 24 B URL GET HTTP/2 js.driftt.com/core/assets/css/16.22abfce0.chunk.css
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/16.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Tue, 26 Dec 2023 10:04:47 GMT
last-modified: Tue, 19 Dec 2023 18:34:35 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: oL98YdzlpaGyxUOIAT2tnEGpxnQwpHij
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 13
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xiorIPeIhgIhij58Q2gL3-mvWNOyOrfeXzWGUPJMz7eplvnSxfOghQ==
age: 10405823
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.9e1d5232.chunk.js
200 OK 15 kB URL GET HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.9e1d5232.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash df46bfd8221b5f73051356c151e04e8c
4a27d3b1629563994e3cf1e645270b434816c1a5
848280353a6db9050542ae2275461c54d08bda28bea76e090c9d776a71a0401c
GET /core/assets/js/main~493df0b3.9e1d5232.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:28 GMT
etag: W/"73b9f4a9eb62a2176090bf9c21a639a7"
x-amz-server-side-encryption: AES256
x-amz-version-id: rlUjojg2gTbtwdGP_pdjObQJE7FQKLQJ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: FCpXh396e7qVP_Ew_g2P3tUrrWM-ZqegGdUHErMByAMDX8PfZQgEww==
age: 4054320
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/25.c695453b.chunk.css
200 OK 365 B URL GET HTTP/2 js.driftt.com/core/assets/css/25.c695453b.chunk.css
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (365), with no line terminators
Hash 06b2963b029c0824382815165bfea73e
de23fb128e2589cf384603cfbb7f6b7bef969b05
ec3a84e593065a50cd77ce9fba273b4196936940c0813ca248b045df2e2c8eff
GET /core/assets/css/25.c695453b.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 365
server: istio-envoy
date: Mon, 27 Nov 2023 12:03:54 GMT
last-modified: Tue, 21 Nov 2023 16:21:39 GMT
etag: "06b2963b029c0824382815165bfea73e"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0H7FjD7Jl9xIJbAVeMxI..hCPUWnSz0t
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: GgQwCxFXz-zrLYRImxwS_SJDwlxcj-WfaJDm4B6JIv9j5kcFBxGHQA==
age: 12904276
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/27.b5b10bd4.min.js
200 OK 5.9 kB URL GET HTTP/2 a.opmnstr.com/app/js/27.b5b10bd4.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (6499)
Hash 72c2f27e394afff5a826485fa4e1658d
e254b2962b48bc35b95bf3c558e185eefc7f5754
76e0cb78cc3495b6f1d43ce22fcd3b86eb896c36449130fa6f57d5d78d24f326
GET /app/js/27.b5b10bd4.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6621f137-1991"
last-modified: Fri, 19 Apr 2024 04:21:11 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f920b59c662af97d39bad86266ef2b5b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/50.de3b5864.chunk.js
200 OK 40 kB URL GET HTTP/2 js.driftt.com/core/assets/js/50.de3b5864.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash ca657d9322fee94368facddd41e459bc
b0652a739e1233f783b17dac2f58ccf414f489f9
cf71077bfcb82f0f07048926e948e62033896a1402b636657716392c49e9a45b
GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"114785899ceb423273fcc17aaad202e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: BecLvOdVAWkrJUptshR_Vz6xe2maTdmW
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 7jRhaxbBNDGZDWsYI3NiGkkuOil1tSrSpA159u54jvQ6mNoRlBUnfQ==
age: 4054320
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/29.31d09948.chunk.js
200 OK 5.1 kB URL GET HTTP/2 js.driftt.com/core/assets/js/29.31d09948.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 66437d634ba0e73555f5bdd8e6cb1640
98c74834fa80ca1f5b7c02bce2dd757cfed84e6f
2e1ec9b53c1e39d76b70b9e5fbeb8f1039a73638a8ab58ed1ff0c3618e67d4c1
GET /core/assets/js/29.31d09948.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 27 Nov 2023 02:39:00 GMT
last-modified: Tue, 21 Nov 2023 16:21:41 GMT
etag: W/"455157cb49065fb85fed54901ddaeb0e"
x-amz-server-side-encryption: AES256
x-amz-version-id: sy2gXVIBAtxn_z6EcojE2GGUK5H4qzOW
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 4rerNLYg-RJoTbfl8qDOz3TcUstfTbhJ49KY9hDYHFcwJxTFiPrXoA==
age: 12938170
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v3
200 OK 25 B URL POST HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v3
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/widget/init/v3 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 501
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:12 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: fb2c54d3a521b16a
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 13
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/14.e24a6190.chunk.js
200 OK 28 kB URL GET HTTP/2 js.driftt.com/core/assets/js/14.e24a6190.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 32b6b51ab2ed0002ccb69a8351c0921c
81db0f3b467204cf97cdb074a96196bd381a6c4c
2688dde0217a9eb4bb8180fa8a9b81c7b47b555425cd0548acf312f24bf46fc8
GET /core/assets/js/14.e24a6190.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"16d7ae86e21434a32157d3226ac9bb77"
x-amz-server-side-encryption: AES256
x-amz-version-id: iLluOjfpMSRsML8bOSqA9V8JfTEqMP9L
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: EMdUncWL-0tMMPpnJ0hstbbAHJ6KOQNwozEKpIXXrdFgR-81ZQerPA==
age: 10395382
X-Firefox-Spdy: h2
1094614-14.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0
0 B URL 1094614-14.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: 1094614-14.chat.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xJnrA6QbHOrMpN9oYz5AfQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 24 Apr 2024 20:35:12 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: EEcyel7vDKI67cKx2oOIQ5KutJA=
server: Cowboy
upgrade: websocket
js.driftt.com/core/assets/js/22.6b9a301a.chunk.js
200 OK 10 kB URL GET HTTP/2 js.driftt.com/core/assets/js/22.6b9a301a.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 810c678a718d9da34bb8c79a46e27093
8a453bc273e1be19a83cd59f84a7caaa0e3506a9
4320a152e656ea77fbf72d89566cf2632cfde75e509ba95afdb85826d0641615
GET /core/assets/js/22.6b9a301a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 06 Feb 2024 23:47:36 GMT
last-modified: Tue, 06 Feb 2024 19:57:37 GMT
etag: W/"d8739a9fe9a3a42936f5cd86c8727494"
x-amz-server-side-encryption: AES256
x-amz-version-id: vXzNrqspXsAXcjt5Me_czePQe44sOTaA
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p-Uc8l-RWGxQFdVL1_-ceE9D0QkbdrqjJF-kKp1piHGp9h-Cd1K1Aw==
age: 6727654
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/28.812d5a7c.chunk.css
200 OK 2.5 kB URL GET HTTP/2 js.driftt.com/core/assets/css/28.812d5a7c.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 8387a9b2a7c8cf3df8f439e7c9369f6b
3c8587e8d253ea9514a3af98eb5ca4f95444b4ef
35e078c5959539bcb80bc3b752da4ad3cd0723fa39936c67c0db02c620817670
GET /core/assets/css/28.812d5a7c.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:11 GMT
last-modified: Fri, 08 Mar 2024 21:52:24 GMT
etag: W/"6f779260053e30787f84dfa7ba6743e5"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4DKwArnsEad_45FTV7lDarWR0I2cfneh
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: txMuzG52Al3doyr077m2FvlICe0uNFDyZI1n0A69y-5szdxShZqH9Q==
age: 4054319
X-Firefox-Spdy: h2
event.api.drift.com/track
200 OK 513 B URL POST HTTP/2 event.api.drift.com/track
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 02d090bcbdbb456d93ffed795df1a5c0
56774307702cebbe3f6f8097810fb620a88b47ac
d5a6886965602650cd5719bea0393fcb630f48a8341690ae24c5c1d8e5280c86
POST /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Content-Length: 358
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 1d1556fd0d13e56a
content-length: 513
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
200 OK 259 B URL POST HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash adc2547c7028befd72b914f92b07070f
fa8ec6bd1035dbe754330db77a3183d6dbdbd193
7483586028ba792d867042d68872c5a97a0039f32d7b64b618ef890226213b43
POST /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Content-Length: 422
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 178d7130670b5a0e
vary: Accept-Encoding
content-encoding: gzip
content-length: 259
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0
0 B URL presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: presence.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JARzksn68P5O1dYlNs6Q6Q==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Wed, 24 Apr 2024 20:35:13 GMT
sec-websocket-accept: Cxl5wYgQtu+VvuS9ewWFwqdV48c=
server: Cowboy
upgrade: websocket
flow.api.drift.com/flows/render_initial_v3
204 No Content 0 B URL POST HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Content-Length: 461
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 9dfbf75e23db4ba7
x-envoy-upstream-service-time: 15
server: istio-envoy
X-Firefox-Spdy: h2
conversation.api.drift.com/campaigns/2760177/enroll
200 OK 13 B URL OPTIONS HTTP/2 conversation.api.drift.com/campaigns/2760177/enroll
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /campaigns/2760177/enroll HTTP/1.1
Host: conversation.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift118e2e241ccba879509d9d0d739
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
conversation.api.drift.com/campaigns/2760177/enroll
200 OK 28 B URL OPTIONS HTTP/2 conversation.api.drift.com/campaigns/2760177/enroll
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 603d8e37d4d835f377d79732b3c613ff
7ab8e614422bb9facc3703957eabd6f3452bf03f
b089aa66abaeaa94476f20a5f13873d097111383fc195a85f9dacc0462685769
POST /campaigns/2760177/enroll HTTP/1.1
Host: conversation.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Content-Length: 97
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: ab0dfcfce240c91f
vary: Accept-Encoding
content-length: 28
x-envoy-upstream-service-time: 187
server: istio-envoy
X-Firefox-Spdy: h2
event.api.drift.com/identify
200 OK 13 B URL POST HTTP/2 event.api.drift.com/identify
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /identify HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drifte4f217d497da6d0b2c06fa5d247
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
conversation.api.drift.com/conversations/3967985159/permaclosed
200 OK 18 B URL OPTIONS HTTP/2 conversation.api.drift.com/conversations/3967985159/permaclosed
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /conversations/3967985159/permaclosed HTTP/1.1
Host: conversation.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: HEAD,GET,OPTIONS
requestid: drift494a67b4661ad1c92fd6e0d13a4
content-length: 18
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
200 OK 13 B URL OPTIONS HTTP/2 targeting.api.drift.com/impressions/widget
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift58addbf40cebd7dbde2f9a7db61
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
200 OK 39 kB URL GET HTTP/2 js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39372, version 1.0
Hash 40b6965b5cd26213faf61e5ab6765bb9
8b040e0fc0c40e0e7ce54eba07eda98f35512948
fbeb296c1ecc216a17bda77bf65e833cc0410cfbe1908e121f7a4549cc390675
GET /deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2,font/woff2
content-length: 39372
server: istio-envoy
date: Fri, 08 Dec 2023 06:04:56 GMT
last-modified: Fri, 03 Mar 2023 16:21:38 GMT
etag: "40b6965b5cd26213faf61e5ab6765bb9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 48
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 50Oqj4h5LnKY6WROY1HbL1OqdssWAv1cae2X9cKuZpVrOjmWZ22rhg==
age: 11975418
X-Firefox-Spdy: h2
js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
200 OK 39 kB URL GET HTTP/2 js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39372, version 1.0
Hash 40b6965b5cd26213faf61e5ab6765bb9
8b040e0fc0c40e0e7ce54eba07eda98f35512948
fbeb296c1ecc216a17bda77bf65e833cc0410cfbe1908e121f7a4549cc390675
GET /deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2,font/woff2
content-length: 39372
server: istio-envoy
date: Fri, 08 Dec 2023 06:04:56 GMT
last-modified: Fri, 03 Mar 2023 16:21:38 GMT
etag: "40b6965b5cd26213faf61e5ab6765bb9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 48
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: anKylI9CFUTZGK_3LB29gTIsFnR04z5ZhDBPDiXkUoGMT-F_z3xo8Q==
age: 11975418
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/58.df4c0996.chunk.js
200 OK 6.5 kB URL GET HTTP/2 js.driftt.com/core/assets/js/58.df4c0996.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 380947770a63ec7fa9882da2c8ff036b
9e2d9a36ac09ee022ca0624756432703fefa6523
603f08f4a7371a4f8c2337f9a994c48429671df752b54a8326b1d4e9c594cf43
GET /core/assets/js/58.df4c0996.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:12 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"accef82c4f6636ec26f17bd7b8068438"
x-amz-server-side-encryption: AES256
x-amz-version-id: MfNPO0hWIgB0HhAvUydp2VqfnGbeyUyv
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 95
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p592Pla_B1PfDbiWNjLq__h3JNGOC0JvTPGDXBW_gcKYLcoNGE7DNA==
age: 4054322
X-Firefox-Spdy: h2
flow.api.drift.com/flows/render_initial_v3
204 No Content 13 B URL POST HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:13 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift153dc9e43c1a338e4247200b2f7
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
conversation.api.drift.com/conversations/end_users/widget/conversation_context/3967985159
200 OK 18 B URL GET HTTP/2 conversation.api.drift.com/conversations/end_users/widget/conversation_context/3967985159
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /conversations/end_users/widget/conversation_context/3967985159 HTTP/1.1
Host: conversation.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: HEAD,GET,OPTIONS
requestid: driftc9cf3cc4fe3adb8e34dae63383b
content-length: 18
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
event.api.drift.com/identify
200 OK 741 B URL POST HTTP/2 event.api.drift.com/identify
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash c3c7a60425bdf3e29b25bc9466c6f1dc
8c62c0ef1a732dfa74f7afa391c5b47dc98f1e51
d34fb7102a88880627e51983c72e41476ae24adcea59c602d626035406f70d34
POST /identify HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 599
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: f17cc700afe30ff0
content-length: 741
x-envoy-upstream-service-time: 125
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event3/bulk
200 OK 25 B URL POST HTTP/2 metrics.api.drift.com/monitoring/metrics/event3/bulk
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/event3/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1294
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 9918ca0e7b93eef2
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 14
server: istio-envoy
X-Firefox-Spdy: h2
conversation.api.drift.com/conversations/end_users/widget/conversation_context/3967985159
200 OK 1.1 kB URL GET HTTP/2 conversation.api.drift.com/conversations/end_users/widget/conversation_context/3967985159
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 65785fcf684aa561cd5a55ca4bcff449
9dd42562c028064818c349dc66ba7ed51600b1e8
46dd507d0c6c22f62f1778c7caf67d25c0efa59d4b0cf0a6c10204df2ec9e324
GET /conversations/end_users/widget/conversation_context/3967985159 HTTP/1.1
Host: conversation.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: driftade64954a9ba5b49cccdab75379
vary: Accept-Encoding
content-encoding: gzip
content-length: 1136
x-envoy-upstream-service-time: 39
server: istio-envoy
X-Firefox-Spdy: h2
messaging.api.drift.com/conversations/3967985159/messages/page/v2?limit=30&withReceipts=true
200 OK 18 B URL OPTIONS HTTP/2 messaging.api.drift.com/conversations/3967985159/messages/page/v2?limit=30&withReceipts=true
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /conversations/3967985159/messages/page/v2?limit=30&withReceipts=true HTTP/1.1
Host: messaging.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: HEAD,GET,OPTIONS
requestid: drift068005a491b940e127bf157f127
content-length: 18
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
messaging.api.drift.com/conversations/3967985159/messages/page/v2?limit=30&withReceipts=true
200 OK 1.2 kB URL OPTIONS HTTP/2 messaging.api.drift.com/conversations/3967985159/messages/page/v2?limit=30&withReceipts=true
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
Hash 7d81555cd2cf5c36f36feab6a9a218d2
2dcba50404da9e2f16041f561ef5562647279795
08186812dd28c28f6c0318d892785f082529b80872652d0b8f1f1668b201d548
GET /conversations/3967985159/messages/page/v2?limit=30&withReceipts=true HTTP/1.1
Host: messaging.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIyMTcxNTQxNjI2NyIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjEwOTQ2MTQiLCJleHAiOjE3NDU1MjY5MTEsImlhdCI6MTcxMzk5MDkxMX0.WlpisVPrKt-j4CFKHt1D6z4v7OFkrzD7Wv1wb82nVV1NOONCuOCgbD3cLhRyP9T6pFIA3Hg3KPAq7FLoU5Rtjg
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:14 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 4fbd05a445395620
vary: Accept-Encoding
content-encoding: gzip
content-length: 1158
x-envoy-upstream-service-time: 12
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/38.e483d03f.chunk.css
200 OK 900 B URL GET HTTP/2 js.driftt.com/core/assets/css/38.e483d03f.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (900), with no line terminators
Hash 0bd11a8facc0a9d41713c64ed1ba1289
23d92b5b9138666f5c33517d53451a6e2e8ec30a
12ffe3ad71f763d9057baf43e0f1c1482bb9a0372602020554c4d52f52b37981
GET /core/assets/css/38.e483d03f.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 900
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:14 GMT
last-modified: Fri, 08 Mar 2024 21:52:24 GMT
etag: "0bd11a8facc0a9d41713c64ed1ba1289"
x-amz-server-side-encryption: AES256
x-amz-version-id: iRajPbGKMxoA6aLl7rDRPjOXwRus.UEc
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: -NzWrlZbw7vT-2ycpwehlEaKRU8NoF9k146kO5YaMsfxXo4v3jjvCQ==
age: 4054321
X-Firefox-Spdy: h2
js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
200 OK 39 kB URL GET HTTP/2 js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39372, version 1.0
Hash 40b6965b5cd26213faf61e5ab6765bb9
8b040e0fc0c40e0e7ce54eba07eda98f35512948
fbeb296c1ecc216a17bda77bf65e833cc0410cfbe1908e121f7a4549cc390675
GET /deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2,font/woff2
content-length: 39372
server: istio-envoy
date: Fri, 08 Dec 2023 06:04:56 GMT
last-modified: Fri, 03 Mar 2023 16:21:38 GMT
etag: "40b6965b5cd26213faf61e5ab6765bb9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 48
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cqdjEgZHnUK0D74D9yurr7eYKMGM-V_AkwCPnWirCF6kW-2i-HnMnw==
age: 11975420
X-Firefox-Spdy: h2
js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
200 OK 39 kB URL GET HTTP/2 js.driftt.com/deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39372, version 1.0
Hash 40b6965b5cd26213faf61e5ab6765bb9
8b040e0fc0c40e0e7ce54eba07eda98f35512948
fbeb296c1ecc216a17bda77bf65e833cc0410cfbe1908e121f7a4549cc390675
GET /deploy/assets/static/fonts/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2,font/woff2
content-length: 39372
server: istio-envoy
date: Fri, 08 Dec 2023 06:04:56 GMT
last-modified: Fri, 03 Mar 2023 16:21:38 GMT
etag: "40b6965b5cd26213faf61e5ab6765bb9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 48
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 47qmr0Ov7c6hMARg6WSofX9_WPJg-PvR3B8Bm4VGL_1lOIKYYAlKeA==
age: 11975420
X-Firefox-Spdy: h2
driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1306177%252Fc19782a8a6b4ea7a1d099ac9709f0bc8reazvg5s446w%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D67d1618880bc4a39a7f6c941e7e3e633?fit=max&fm=png&h=200&w=200&s=018ffbbdc549ab1e884141306e8bd2e2
200 OK 5.1 kB URL GET HTTP/2 driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1306177%252Fc19782a8a6b4ea7a1d099ac9709f0bc8reazvg5s446w%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D67d1618880bc4a39a7f6c941e7e3e633?fit=max&fm=png&h=200&w=200&s=018ffbbdc549ab1e884141306e8bd2e2
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerGlobalSign nv-sa
Subject*.imgix.com
FingerprintB1:CE:29:3A:FE:13:43:AB:E5:4F:05:D5:D9:39:A7:6F:9D:B1:B0:C1
ValidityThu, 07 Dec 2023 12:43:26 GMT - Tue, 07 Jan 2025 12:43:25 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Hash eff0fd1ab31c7b3c9c54ff792313551a
431f274714551fbffdb7bebf00a86ce9bf1f7b83
4e15674f1d77c748fc800793b29af4d43384230a5e67a65f239e3cc3934ab489
GET /https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1306177%252Fc19782a8a6b4ea7a1d099ac9709f0bc8reazvg5s446w%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D67d1618880bc4a39a7f6c941e7e3e633?fit=max&fm=png&h=200&w=200&s=018ffbbdc549ab1e884141306e8bd2e2 HTTP/1.1
Host: driftt.imgix.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-imgix-id: 0379a868a65a7e0c8dc3b38fac8057e2a9b27a44
cache-control: public, max-age=315360000
last-modified: Mon, 22 Apr 2024 11:50:16 GMT
server: Google Frontend
date: Wed, 24 Apr 2024 20:35:16 GMT
age: 204300
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc1000142-SJC, cache-hel1410020-HEL
x-cache: HIT, HIT
content-length: 5110
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/38.ccffa1e3.chunk.js
200 OK 3.3 kB URL GET HTTP/2 js.driftt.com/core/assets/js/38.ccffa1e3.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 2a42f8029c2a16ec6200f397ccf04804
7440e4735dee70bea161f01502a9ba07d90be05f
95712bc5cc814ab77a75d689502910cc320858095dde1ba73abab94f56779200
GET /core/assets/js/38.ccffa1e3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 22 Mar 2024 05:01:15 GMT
last-modified: Fri, 22 Mar 2024 04:57:22 GMT
etag: W/"4cadebf0d8131f26a01ec645ec6767b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2SnwgIZjlNLOj.7IvUuF51iQ__dF5frA
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: jYEgusHJcaeCoKyB1UW78bsywNBFTEQgZyUf8MhIv-R59_FZfQLhtw==
age: 2907240
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/58.df4c0996.chunk.js
200 OK 15 kB URL GET HTTP/2 js.driftt.com/core/assets/js/58.df4c0996.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 5bd2006e7dac50e379488e3925dbfd4f
20b41c51d944e4434269f90383cadb4ae0575c13
338c6d53367b709990b331fea72543b1148d8def2354100d30d1489123e4dae9
GET /core/assets/js/58.df4c0996.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:12 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"accef82c4f6636ec26f17bd7b8068438"
x-amz-server-side-encryption: AES256
x-amz-version-id: MfNPO0hWIgB0HhAvUydp2VqfnGbeyUyv
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 95
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: NM34_ryymSwLwT5UElkKuG89acOEWqd2SWpYCpjuK2OjINMTTF4_NQ==
age: 4054322
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.b8d3a33a.chunk.js
200 OK 94 kB URL GET HTTP/2 js.driftt.com/core/assets/js/25.b8d3a33a.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 1fab3e8d98e98fe27b86bdea9085f17b
d0cfbd4819fece863d18c58474b759755797c357
77c1fee067f934f8d9268dfacc3bd33674effd759b0ad1b702e2c5dff710ce21
GET /core/assets/js/25.b8d3a33a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Mar 2024 18:02:34 GMT
last-modified: Tue, 26 Mar 2024 14:12:58 GMT
etag: W/"1fab3e8d98e98fe27b86bdea9085f17b"
x-amz-server-side-encryption: AES256
x-amz-version-id: nySg3gWFoZpwoITG_phs5J7r7YUpT89V
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: wnfqfQZxZyfwBglXShx6BOwdyAPLMnH5trPxrNMWHkSF_haQmynong==
age: 2514756
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/main-0780dc073edca84dd826.js
200 OK 60 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/main-0780dc073edca84dd826.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type JavaScript source, ASCII text, with very long lines (60547), with no line terminators
Hash 1ffbd2560e21b440da97cbf29decbf85
afdd7167515a531c1e3b2a4eb839a42e3a665aa1
de14592957c07f7d86d506b4b33e19cc581fde9391d6f90b55c84e551d870025
GET /web-groups-microsite/1698155796/_next/static/chunks/main-0780dc073edca84dd826.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"1ffbd2560e21b440da97cbf29decbf85"
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2ec95fe7e41d4394d0fc48587428057e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: h-lPhUv36rmEfxBvIY8q5qu_ecoaLlOX5f-_PpLQ-oiWApRa38N5Rg==
cf-cache-status: REVALIDATED
strict-transport-security: max-age=0
set-cookie: __cf_bm=N7akJ76MCSrabmXTSEJzLbCyptYpNuabC8L.70z1p.I-1713990908-1.0.1.1-Sj5.qtmrMKvLCKMzlT8oWeBZfNmMLE81c4GHy4KcqrT7aXR9ZAaUSBGb8WNpvM0OEMu8RTTEwtH0zuqBy9Z2_Q; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=7s81CTb9moo5sF0UEgId8vU9PmYGTrvCAdO4bbLvmRk-1713990908424-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c90c7a1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.9c1bd1fb.chunk.js
200 OK 64 kB URL GET HTTP/2 js.driftt.com/core/assets/js/18.9c1bd1fb.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (63529), with no line terminators
Hash 02f09379c544befa413d22eb57ed41de
156ff3fbf28d890eb0f79754e436ac3a66b3de24
e555f4b34b579e6528d6bbd4819620a634c0759b41dfa99520b7ca5aa5117b11
GET /core/assets/js/18.9c1bd1fb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"02f09379c544befa413d22eb57ed41de"
x-amz-server-side-encryption: AES256
x-amz-version-id: q8W9FNPLIM8OX5drRDX0sp4TnKuKPMbY
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: LxXS05vbGdE93C8XakPDm-rM-PbC3KGNtRZAx9b31ovVwldfo9dTJw==
age: 10395382
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.58de437c.js
200 OK 6.1 kB URL GET HTTP/2 js.driftt.com/core/assets/js/runtime~main.58de437c.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6551), with no line terminators
Hash 76a3fd1ae4829d4c32d6575099cc2a89
ceb35164f02325b8c0e227c4a56894de7766105f
f99fbf218e8dcf51627a3864736119d98d31b24c553522c46de2e2625b07236f
GET /core/assets/js/runtime~main.58de437c.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:20 GMT
last-modified: Thu, 04 Apr 2024 18:49:25 GMT
etag: W/"44c56ae0f8bd42ad553b7316b388ea1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: E0oHslzwcAyBCcPsjBe7YnkYdzCoH2Y4
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: aMAalACUlLNAnvgp_oQwH8RPwN0J-9bMB31LFzh5ewUZg2dlpjo1HA==
age: 1730930
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
200 OK 8.8 kB URL GET HTTP/2 js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (8912), with no line terminators
Hash e4b83ecb3264826482970c82325ce021
728b5c23bcd47b4ca79e00c1d22975c1a337d23f
967002b56a58f41a49dbebbf93955d8774d83319c9ec02db7c76e0769c7af439
GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:50 GMT
last-modified: Tue, 19 Dec 2023 18:34:36 GMT
etag: W/"c5efcdc9e465604f32cf24af10fd6c13"
x-amz-server-side-encryption: AES256
x-amz-version-id: wIYiMMOv59k7p4Fbql5xBCm9H7moGtf2
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zth6HZwsbQNztvXPgfB_AiqKJKQ0vA6HnS96JD2iKMkmsmaRXRryhA==
age: 10395380
X-Firefox-Spdy: h2
z.omappapi.com/v3/i?aid=50504&cid=fosdh1udqaunoucyxdev&sid=6033e09f93ef9&rt=false&dv=desktop&cty=floating&url=&v=5
204 No Content 0 B URL GET HTTP/2 z.omappapi.com/v3/i?aid=50504&cid=fosdh1udqaunoucyxdev&sid=6033e09f93ef9&rt=false&dv=desktop&cty=floating&url=&v=5
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectomappapi.com
Fingerprint73:15:DD:61:58:FC:DE:E1:9B:67:96:79:4F:81:BE:43:86:B1:15:1A
ValidityThu, 18 Apr 2024 16:45:24 GMT - Wed, 17 Jul 2024 16:45:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/i?aid=50504&cid=fosdh1udqaunoucyxdev&sid=6033e09f93ef9&rt=false&dv=desktop&cty=floating&url=&v=5 HTTP/1.1
Host: z.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 24 Apr 2024 20:35:10 GMT
access-control-allow-origin: https://grouptoursite.com
vary: Origin
access-control-allow-credentials: true
x-kong-response-latency: 18
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8798e0d3e92c7131-OSL
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/11.639238ba.chunk.js
200 OK 24 kB URL GET HTTP/2 js.driftt.com/core/assets/js/11.639238ba.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23865), with no line terminators
Hash 4049f38c00add1738dc4806148ff8829
0a631d2ccde970a13f60e147a5b5aeacb6a1b2e0
c501de88fbb90a445f1754a529bc772e7047071bf653c8c3f0330f7bb736d140
GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 15 Jan 2024 07:31:30 GMT
last-modified: Thu, 11 Jan 2024 23:20:32 GMT
etag: W/"4049f38c00add1738dc4806148ff8829"
x-amz-server-side-encryption: AES256
x-amz-version-id: fTPxsmx5We5V2pMGDl1ykjBzTcYFF2dc
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: rv3EhfzNrHCttQgVwxJKVjxkCRxEjWmjVhivqGzLXU5enTM-APoZqw==
age: 8687020
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/8.10f90e75.chunk.js
200 OK 84 kB URL GET HTTP/2 js.driftt.com/core/assets/js/8.10f90e75.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash a8ceac2e3bd2c128d8f2e2f1b0ef0290
a1c4d2b832ce5cfb0d5e46b1eb6a8e708cd7f937
7418c75f5b92aebd9204de88288757d6864f8dc8cf782eee24bb788f9f02c338
GET /core/assets/js/8.10f90e75.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Mar 2024 18:02:34 GMT
last-modified: Tue, 26 Mar 2024 14:12:59 GMT
etag: W/"a8ceac2e3bd2c128d8f2e2f1b0ef0290"
x-amz-server-side-encryption: AES256
x-amz-version-id: eF3QYn.XJzBI9KjaY4UJ5tbNakOAL7P5
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PuNBBq2AYhr4m2fKllASLg1elqJF47Hm5ND4SU37kCyYAx4lPHsbvw==
age: 2514756
X-Firefox-Spdy: h2
gs.mountain.com/gs
200 OK 144 B IP
Requested by https://grouptoursite.com/
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, ASCII text, with no line terminators
Hash cf51c48451aa057669652b5574090dc7
8d6a0475140dc0bfeabd362fdb0b05d851581115
401273bd3b60268945939c82ce51cefaa3d05ceac6bc4ab4ac4d1a8882f15f64
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Cookie: guid=256c3a31-027a-11ef-adbe-1f69d1b3dd67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 24 Apr 2024 20:35:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
collector-30678.us.tvsquared.com/tv2track.php?action_name=404%3A%20This%20page%20could%20not%20be%20found&idsite=TV-6390362718-1&rec=1&r=077003&h=20&m=35&s=9&url=https%3A%2F%2Fgrouptoursite.com%2F&_id=44bff933e2f4bef8&_idts=1713990910&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=10
200 OK 42 B URL GET HTTP/1.1 collector-30678.us.tvsquared.com/tv2track.php?action_name=404%3A%20This%20page%20could%20not%20be%20found&idsite=TV-6390362718-1&rec=1&r=077003&h=20&m=35&s=9&url=https%3A%2F%2Fgrouptoursite.com%2F&_id=44bff933e2f4bef8&_idts=1713990910&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=10
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subject*.us.tvsquared.com
Fingerprint7F:72:75:CD:F0:A4:E0:3D:F0:61:1E:0F:6B:30:84:51:A2:19:16:27
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 26 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=404%3A%20This%20page%20could%20not%20be%20found&idsite=TV-6390362718-1&rec=1&r=077003&h=20&m=35&s=9&url=https%3A%2F%2Fgrouptoursite.com%2F&_id=44bff933e2f4bef8&_idts=1713990910&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=10 HTTP/1.1
Host: collector-30678.us.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 24 Apr 2024 20:35:09 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: a2197640-7c11-4eed-8c48-01706fd27c3b
Server: nginx
Content-Length: 42
Connection: keep-alive
js.driftt.com/core/assets/js/8.10f90e75.chunk.js
200 OK 84 kB URL GET HTTP/2 js.driftt.com/core/assets/js/8.10f90e75.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash a8ceac2e3bd2c128d8f2e2f1b0ef0290
a1c4d2b832ce5cfb0d5e46b1eb6a8e708cd7f937
7418c75f5b92aebd9204de88288757d6864f8dc8cf782eee24bb788f9f02c338
GET /core/assets/js/8.10f90e75.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Mar 2024 18:02:34 GMT
last-modified: Tue, 26 Mar 2024 14:12:59 GMT
etag: W/"a8ceac2e3bd2c128d8f2e2f1b0ef0290"
x-amz-server-side-encryption: AES256
x-amz-version-id: eF3QYn.XJzBI9KjaY4UJ5tbNakOAL7P5
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: IVrnVVUXBtleb-fuYwc_Nh5meMpCIOf4_V4q92Ky-LO8xXVE7Nmm7Q==
age: 2514756
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/1.1bcc8082.chunk.css
200 OK 45 kB URL GET HTTP/2 js.driftt.com/core/assets/css/1.1bcc8082.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (45138), with no line terminators
Hash 3b8ba82e1bac13ee29e9764a55620d99
d68d0e4a43779884f7fda72c7febee83ba287e0c
58fdb03fac3e89e51525a5a45eb777395d1b499bf4483e96201b6becddbe516f
GET /core/assets/css/1.1bcc8082.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:11 GMT
last-modified: Fri, 08 Mar 2024 21:52:24 GMT
etag: W/"3b8ba82e1bac13ee29e9764a55620d99"
x-amz-server-side-encryption: AES256
x-amz-version-id: J9K9ed_T2U1DfO8_gHKqtr8IE2EyErto
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 2mAMLEGBCs4lxkM8GN0qpNSCOkWHxZNipaukp88n5cD0tfxxC0W8gQ==
age: 4054319
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/50504?d=grouptoursite.com
200 OK 25 kB URL GET HTTP/2 api.omappapi.com/v2/embed/50504?d=grouptoursite.com
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectomappapi.com
Fingerprint73:15:DD:61:58:FC:DE:E1:9B:67:96:79:4F:81:BE:43:86:B1:15:1A
ValidityThu, 18 Apr 2024 16:45:24 GMT - Wed, 17 Jul 2024 16:45:23 GMT
Hash b78889caf2a39d8ad75b91caa5af9391
e08ea7a0a5727278e9c9bdaaa5df808a30e59213
09526dd8a6a58b32149b968878cc9425a04e744bb2b3986454ab8f6fac95773f
GET /v2/embed/50504?d=grouptoursite.com HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Wed, 24 Apr 2024 20:32:39 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 11 Apr 2024 13:04:37 GMT
etag: W/"1d48c13a1b84cdcbb11bea49e8859929"
x-optinmonster-account: 56830
access-control-expose-headers: X-OptinMonster-Account, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d7-ty9U0DHAavJyhI9ADwsT_ij_BeAwm28-zdVb9gTsy0fg5Bxb34A==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8798e0cbda747131-OSL
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/add/bulk/v2
200 OK 25 B URL POST HTTP/2 metrics.api.drift.com/monitoring/metrics/add/bulk/v2
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
FingerprintB7:94:E7:F3:B7:5C:66:0B:09:DC:83:16:97:C6:C8:04:3A:B0:3B:D0
ValiditySun, 03 Mar 2024 00:00:00 GMT - Mon, 31 Mar 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 7d35d90ac2341198eb16b22aa053f954
75d19a545a2c22e195293482e3794b97ff658d26
acd48558872cedc5430afa00c35720e41698b6464e7276b00f9fae00fb31e6d1
POST /monitoring/metrics/add/bulk/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 869
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:17 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 5ed5dae771f1f91d
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
404 Not Found 16 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjectgrouptoursite.com
Fingerprint8F:B2:58:58:85:72:6A:63:D4:F2:8A:48:71:34:B1:D5:9F:6B:6C:9B
ValidityWed, 28 Feb 2024 00:26:29 GMT - Tue, 28 May 2024 00:26:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: grouptoursite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: frame-ancestors https://app.storyblok.com http://app.storyblok.com/
cache-control: max-age=10, s-maxage=600, stale-while-revalidate=300
etag: "404f-bXzSV1xbhnQk0SFAuEIQz0MpQM4"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8798e0c66fe7b4fa-OSL
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/11.f24aae20.min.js
200 OK 2.6 kB URL GET HTTP/2 a.opmnstr.com/app/js/11.f24aae20.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (2717), with no line terminators
Hash 8efaddca43a361b2064be10f8dfe366c
5b1b91b529e1af4308fa41516ab68af2a06a4374
0f1093577234fd2ebadca5469bda48137712b56d37aae2d5c9d38e2f67e0e8f8
GET /app/js/11.f24aae20.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08abf-a40"
last-modified: Tue, 12 Mar 2024 17:02:55 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e7494203d873b53cf4b00371a77e3db9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/20.41293cba.min.js
200 OK 4.2 kB URL GET HTTP/2 a.opmnstr.com/app/js/20.41293cba.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (4315), with no line terminators
Hash 83e5dc53b807336f13f63acdbcb1e7f5
5df9ff792fa0b8f5f15f1f108e69555eb0210936
b0232122a2e2425b9cd09dd55053feade0275ea0c563b2f670adb7badba9b55f
GET /app/js/20.41293cba.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08aac-1062"
last-modified: Tue, 12 Mar 2024 17:02:36 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:07
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d9fb36e88dac2ce65a09c694afe8f049
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.6f85b843.chunk.js
200 OK 17 kB URL GET HTTP/2 js.driftt.com/core/assets/js/19.6f85b843.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (17065), with no line terminators
Hash e28ebc3391b56e8f01ea063dc089e9d3
d0eb0eddb70199db3533f492e7f2e22be890a1fa
afbd41e7209fa3aef6f53c7a5713aa542a7be54c432fec2d690e0dfaccd528d1
GET /core/assets/js/19.6f85b843.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"e28ebc3391b56e8f01ea063dc089e9d3"
x-amz-server-side-encryption: AES256
x-amz-version-id: TS.9ApOzy..rylGKiVPdLcCX5dJ9HsBw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: SD8dBZ5tLNlxwDYQbtD90i0acU32wPSiL4WSR61jLWdzZt3YjqgS5g==
age: 10395382
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/16.f8b2cea4.min.js
200 OK 1.3 kB URL GET HTTP/2 a.opmnstr.com/app/js/16.f8b2cea4.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (1348), with no line terminators
Hash 4ec699631064c9298c58458507dc1791
070069c4d65965a368ec1d4a2b385743712efa7d
f02902152f40c02bbf043b797a432b7e10e7ebef90424703b287a13e57ca2a83
GET /app/js/16.f8b2cea4.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8b-51f"
last-modified: Tue, 12 Mar 2024 17:10:35 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 72c08e5db06e4953fd45db74c9324d08
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/28.caa75eae.chunk.js
200 OK 20 kB URL GET HTTP/2 js.driftt.com/core/assets/js/28.caa75eae.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20426), with no line terminators
Hash 481aab9660002090188fee60921b6ec7
8e2beac7e106ed5d0ef7612fa9c360f1407bf138
d51a4c1c5d8e010e04d9eb59e04242c20557bc928bc36e401c157a05c0171788
GET /core/assets/js/28.caa75eae.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:11 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"481aab9660002090188fee60921b6ec7"
x-amz-server-side-encryption: AES256
x-amz-version-id: mC9SawLOV8oKr2SAmrqkSOSIj6G_pv_0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 47
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: KrIxhChYpE3QXv7HoFVHowdKDojrfI7S7P-dzWRouVE7xC16u1aRkw==
age: 4054319
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/16.9ef4a519.chunk.js
200 OK 95 kB URL GET HTTP/2 js.driftt.com/core/assets/js/16.9ef4a519.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash b32ccc4557ebaeaebc835c96712693c2
5747bd14940cc3a54af65924cc5421b9c92211d5
d55abb3750d355b96bb3d095fd440b8f439a83253d66243737f67836077be254
GET /core/assets/js/16.9ef4a519.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 22 Mar 2024 05:01:11 GMT
last-modified: Fri, 22 Mar 2024 04:57:22 GMT
etag: W/"b32ccc4557ebaeaebc835c96712693c2"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5E7jxxxfATsk4OvK3cC2sK7jaXMjyNTX
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cWpdvT_jPu7R4-Q0HSRlm82JYJq3HzU-b65aFT5V3yeAWIksTPNv9g==
age: 2907239
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc=
200 OK 2.4 kB URL GET HTTP/1.1 px.mountain.com/st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc=
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, ASCII text, with very long lines (2443), with no line terminators
Hash 18d44b2cacfb08c6bad40cf28c1c20ce
e2a74cd50035b8344309e09c3d8612a1ee45c29c
b437ffde8eb5f2528e35d90ebbf93ac8032b711bac182dabac9171fc342da1ed
GET /st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&cb=7808200623498385term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc= HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 24 Apr 2024 20:35:10 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=256c3a31-027a-11ef-adbe-1f69d1b3dd67;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
js.driftt.com/core/assets/js/35.d0f1ccda.chunk.js
200 OK 37 kB URL GET HTTP/2 js.driftt.com/core/assets/js/35.d0f1ccda.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (36995), with no line terminators
Hash 46fa5a7bc37a22544a908e4ad950309c
7c63d2a96eddd4bc0d2c1d03947da197b4625804
e0c6f8695589df90e63442fee1c9cf14e60dfc4fd8ce7296515b1d6db41e1d3d
GET /core/assets/js/35.d0f1ccda.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 16:15:24 GMT
etag: W/"46fa5a7bc37a22544a908e4ad950309c"
x-amz-server-side-encryption: AES256
x-amz-version-id: sgEYGmeR8Py6tciS9o0uWaEb0DViiRFb
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 34
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Sp88prmnI3RNkIrSeV3P6FQsIIrlm-okJkhBI3_i1WGy7HPFj5Rr8Q==
age: 10395382
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/39.11d2b6a7.chunk.css
200 OK 2.8 kB URL GET HTTP/2 js.driftt.com/core/assets/css/39.11d2b6a7.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (2783), with no line terminators
Hash 87532c4db85f1429fa6d759bc3332f36
4e576e680c9843dae6fbbfbaea10822b3b70158d
e40b6eae9d66c60b9c750da70da6b2bc5d35c2ae9689cc1e9547e300fac4a3ba
GET /core/assets/css/39.11d2b6a7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:24 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: UcZhIKxPiJynhkWzqWd9d6dr.VpqzWB3
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: RakdSxxUZVoKns2mydw_J8TLh2o2zSjOtDbZeojB0FKu9optCZZITw==
age: 4054319
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/framework-87973da4fb08311ce6fa.js
200 OK 150 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/framework-87973da4fb08311ce6fa.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 150 kB (149600 bytes)
Hash 699ca6e581c935515539df7cd4f4ed42
c55c09fa28988047e894fa051c4df8b9657cc967
bd6f4bcdea6ade72ddbcfa9146120c9d4d447214f279350d0c1a0a99ed4da063
GET /web-groups-microsite/1698155796/_next/static/chunks/framework-87973da4fb08311ce6fa.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"699ca6e581c935515539df7cd4f4ed42"
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ec2f767a4113b6a2b366ac7622dad01e.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS58-P1
x-amz-cf-id: GLgGjcP6-0FXWvv3yg0LvTTL_E0XqvHV3QyZBeit8W6SLAtkwFIp1w==
cf-cache-status: HIT
strict-transport-security: max-age=0
set-cookie: __cf_bm=DKf35x4lX0wXkD326m2v3lcJKs42WnJI8pTQMWIAeSw-1713990908-1.0.1.1-DNj7KBpXObB3l3pNWcQpxInLLeGtFRXpHaHXTbHOrv9xeWpdH8iiLGDGfbkcK_VctCVcUH1jz_TmajcL4SNDtg; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=2KgwEmUhZjATBMrEGslTKEk0adPewCSKfVbZhNg471M-1713990908415-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c91c7d1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
200 OK 31 kB URL GET HTTP/2 js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (31339), with no line terminators
Hash 1e97f00f07b87f701d0bf06259f954e4
0fcedfbe2c5b8ad22e9d69905a0317d81f4b7380
ff8f406b684c6674dbd3705d3f6d2cd10b5eedbc2c67a7773f235d69ef122d04
GET /core/assets/css/8.ab226b4a.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 26 Jan 2024 21:38:16 GMT
last-modified: Fri, 26 Jan 2024 18:11:46 GMT
etag: W/"1e97f00f07b87f701d0bf06259f954e4"
x-amz-server-side-encryption: AES256
x-amz-version-id: Iy50rWLvnka9klYMF5qa_8hsgho0e_uB
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: u_kZNJ0vD3EEwIWM2_Gm6uTZBt9U3MAIzIpoLxFTDrgO_d-bWA1jOw==
age: 7685814
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/1.0ca46fe3.chunk.js
200 OK 74 kB URL GET HTTP/2 js.driftt.com/core/assets/js/1.0ca46fe3.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 3d2eecfeab24c42f510811f441fc9bcb
54132cd97c80b587f8397d6e721f59c7abc12db4
5dc5cdfa5abe4d19100a5c64466e15878d12979c87845b5ce66f38e1cde57eca
GET /core/assets/js/1.0ca46fe3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 22 Mar 2024 05:01:12 GMT
last-modified: Fri, 22 Mar 2024 04:57:21 GMT
etag: W/"3d2eecfeab24c42f510811f441fc9bcb"
x-amz-server-side-encryption: AES256
x-amz-version-id: ReEtMDGHCzPScAsWw7ubL1LDhW3X_GQy
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PfN5K9FFXfpTScHoDZqabJO2Y0_3azcCSUt6yNik_HjDZ54eJ6irPA==
age: 2907238
X-Firefox-Spdy: h2
presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0
101 Switching Protocols 0 B URL GET HTTP/1.1 presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTEwOTQ2MTQtMjE3MTU0MTYyNjctNGQABm9yZ19pZG0AAAAHMTA5NDYxNGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzIxNzE1NDE2MjY3ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAEXI0RGPAQ.eOKjK2cvRCEC8aU-kGbgSJY9REHxQl3fr7pdJVq9MQ0&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: presence.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JARzksn68P5O1dYlNs6Q6Q==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Wed, 24 Apr 2024 20:35:13 GMT
sec-websocket-accept: Cxl5wYgQtu+VvuS9ewWFwqdV48c=
server: Cowboy
upgrade: websocket
js.driftt.com/core/assets/js/24.f2a14bf3.chunk.js
200 OK 52 kB URL GET HTTP/2 js.driftt.com/core/assets/js/24.f2a14bf3.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (52313), with no line terminators
Hash eeb141d15a5542cc12f6697498a4dae4
31f378b1af777f61e9242fdd59c53533ce1be0ad
80ca50f229e6a99c3a0e04d6e6b2aa216152dfbc3dd81b8a59e2934782f4328d
GET /core/assets/js/24.f2a14bf3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:21 GMT
last-modified: Thu, 04 Apr 2024 18:49:23 GMT
etag: W/"eeb141d15a5542cc12f6697498a4dae4"
x-amz-server-side-encryption: AES256
x-amz-version-id: h1TpcLqbPY4hV6zMUp0mzajfkh8wVGak
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 6UHK7YppbDaA2i0_tGHz9XLBIm9974UULyr3ag-JLHhljfu1cr7y3w==
age: 1730929
X-Firefox-Spdy: h2
404 Not Found 16 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjectgrouptoursite.com
Fingerprint8F:B2:58:58:85:72:6A:63:D4:F2:8A:48:71:34:B1:D5:9F:6B:6C:9B
ValidityWed, 28 Feb 2024 00:26:29 GMT - Tue, 28 May 2024 00:26:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: grouptoursite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: frame-ancestors https://app.storyblok.com http://app.storyblok.com/
cache-control: max-age=10, s-maxage=600, stale-while-revalidate=300
etag: "404f-bXzSV1xbhnQk0SFAuEIQz0MpQM4"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8798e0c7ea3db4fa-OSL
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/10.d6ea746c.min.js
200 OK 34 kB URL GET HTTP/2 a.opmnstr.com/app/js/10.d6ea746c.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/js/10.d6ea746c.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8c-8515"
last-modified: Tue, 12 Mar 2024 17:10:36 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f13dc73b406ede763d683facd4e83e90
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/42.f634da7c.chunk.js
200 OK 12 kB URL GET HTTP/2 js.driftt.com/core/assets/js/42.f634da7c.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (11808), with no line terminators
Hash c65db597e762d33246cfbec56b886523
de968f5d5a9eba6f17c47beecbbad50430c806c3
df3b4f7ee9b54dc67162d74792e3906d8888a0a83068b490fb6830cc6954d5c4
GET /core/assets/js/42.f634da7c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"c65db597e762d33246cfbec56b886523"
x-amz-server-side-encryption: AES256
x-amz-version-id: vXeKg.tGpOUOXbODWyYzAbmB8cSGPgwQ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: wdesYVxlxOXC01A34jv-1JF099gdrGf7FWj1xJxiTCvZ4FlPmt93dQ==
age: 4054320
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
200 OK 26 kB URL GET HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25600), with no line terminators
Hash 48be1563378f7c36bdadc0f2eb616856
2aa42b08fe8cc7ac0dc371d2309a38d5a465247f
63c035e2f43180086b19ec08f35c8deee82b2b804ddfcf92f7f0e6d835957bfe
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: kSQfBnXe3RrQ76A7.epJ9X5L3Vb2TouI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 36
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: T_I6OElBOZCADXW80AX6cP3RfWNSxm_5xaQKNSZOXxdHPVgCNFh2Dw==
age: 4054320
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/5.ad5ae419.min.js
200 OK 17 kB URL GET HTTP/2 a.opmnstr.com/app/js/5.ad5ae419.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (16730)
Hash 3f585aa58b9495b3807256e46d072aea
b65631e1fbe4b6a76cbcac88e196bc314eded80c
5fd85023d4b7e68daa580930db825421c34ce8a005748eca44c2396922b2402e
GET /app/js/5.ad5ae419.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08f03-418b"
last-modified: Tue, 12 Mar 2024 17:21:07 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 9f26402770afcd03d9801c0df5c99b0a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/campaign-views/71243615b528/fosdh1udqaunoucyxdev/9163b76115b312d30b4c4982e45ab899-optin.json
200 OK 26 kB URL GET HTTP/2 a.omappapi.com/app/campaign-views/71243615b528/fosdh1udqaunoucyxdev/9163b76115b312d30b4c4982e45ab899-optin.json
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
FingerprintFF:39:2A:B3:5F:60:19:2C:80:46:80:C3:D0:EA:C4:F9:E6:CD:5B:E0
ValidityFri, 29 Mar 2024 17:14:58 GMT - Thu, 27 Jun 2024 17:14:57 GMT
Hash 9163b76115b312d30b4c4982e45ab899
c4efdfd2c6543ba431574657410e1cb8e6bf84d2
bc0f61e24e419b1f35c9eab4f38bd308406a2de87a405712c0d285b4f8462bfa
GET /app/campaign-views/71243615b528/fosdh1udqaunoucyxdev/9163b76115b312d30b4c4982e45ab899-optin.json HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/json
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65fc74ec-6435"
last-modified: Thu, 21 Mar 2024 17:57:00 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:35:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a9bcb4792314424c6cfa88ca8c1714b2
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
200 OK 36 kB URL GET HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (35552), with no line terminators
Hash c6f58dd3d60f07462254b842dd4f9ca1
62c507fc6cc05f9732bcd5c593f3d8d0e0a3d7e2
2a8a441d8086f20a64563edc759aba1de84d932e34ff77b8bb0279a730cdb428
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:47 GMT
last-modified: Tue, 19 Dec 2023 18:34:39 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: xDLMc9.vfMRinFJv17uWwlTUqFMyHh91
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: WF_2xckmfx8YyVhQxurHKuYiXTB5DggiPQkYbZ0vitwOBVBMjo884g==
age: 10395383
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/3.2a4c7561.chunk.js
200 OK 47 kB URL GET HTTP/2 js.driftt.com/core/assets/js/3.2a4c7561.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (47358), with no line terminators
Hash 2d79b64b95d2aa829a460e0d02cca148
112031f4e0eb04f10227a437e3a52570c5348680
257cbdcb36feb3ef9bc1c5bdb9c777af5ae08f0834ece8a4ce5d74fbfeb7ea0d
GET /core/assets/js/3.2a4c7561.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:11 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"2d79b64b95d2aa829a460e0d02cca148"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ij0e.e6AkWNNfAhEvnGK4qzljUH2ysS9
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: SMHMQNUl1cQTnO4pAGI1NA4M-9BC7Wt-vqonJgr_5WfDaiBhomRBrA==
age: 4054319
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/19.b4e5b44b.min.js
200 OK 4.3 kB URL GET HTTP/2 a.opmnstr.com/app/js/19.b4e5b44b.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (4362), with no line terminators
Hash 931683ac4ae3c3e7a749d2c16fed8669
60e6a816bc83d614cd658831ca508398e7b78539
631900ae8835dfc3e3e1b14f9ec8038ccc68d98697bcc2dbd671d60efcf77279
GET /app/js/19.b4e5b44b.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08aac-10b0"
last-modified: Tue, 12 Mar 2024 17:02:36 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0e6528bcb92d49bf7ec3e9acb74eb54f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.04e7f30b.chunk.js
200 OK 68 kB URL GET HTTP/2 js.driftt.com/core/assets/js/26.04e7f30b.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 49ce5445ddcf5d24ef3badc4eb1a11dd
dbe8cf782a53824bac569aa3ea42992dd21064d6
d70fa5dc6c8bfe9d7824be31e669528533d0879a2b1600a7df68b880f4d44296
GET /core/assets/js/26.04e7f30b.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 16:15:24 GMT
etag: W/"49ce5445ddcf5d24ef3badc4eb1a11dd"
x-amz-server-side-encryption: AES256
x-amz-version-id: cqsMaYjOHahH71A7EXhyHFywLOEay3sx
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 32
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cgXNLHzaUBqz4ooDrGyNCMDNlW8T8fXRbKidJj0pOn3h57zU13NLaQ==
age: 10395382
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
200 OK 17 kB URL GET HTTP/2 js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (17003), with no line terminators
Hash 65e5c965272e021ae33ff8bc39565ef5
c5a2c0cdf9c821b6ee43a1eeb52680ffeea15557
b84595cc8461bb6e8376fe94f0dd23d6657172103b03653534089c5992b058a1
GET /core/assets/js/21.b8c41db9.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 15 Jan 2024 07:31:30 GMT
last-modified: Thu, 11 Jan 2024 23:20:33 GMT
etag: W/"65e5c965272e021ae33ff8bc39565ef5"
x-amz-server-side-encryption: AES256
x-amz-version-id: mbKfJZbsWw.V.LuUA4S0Y6Eza3IzJhvH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: HhLz7XDG7iLtgnbxGqHAIvl8P6iIExWRDlTi0I_Lmz08xKnaUCsoQQ==
age: 8687020
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat%3Aital%2Cwght%400%2C400%3B0%2C500&display=swap
200 OK 3.7 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Montserrat%3Aital%2Cwght%400%2C400%3B0%2C500&display=swap
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type ASCII text, with very long lines (3750), with no line terminators
Hash a80e7a8b880905494a30ae504ccab3cc
0447c0b9236ae22488d6b3d36a6b92b4e4282e80
79fa75dc1c7c07d362383c5532ed23d41cbf653fd8cc89e490cd8540c84dd131
GET /css2?family=Montserrat%3Aital%2Cwght%400%2C400%3B0%2C500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 20:35:09 GMT
date: Wed, 24 Apr 2024 20:35:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/16.9ef4a519.chunk.js
200 OK 95 kB URL GET HTTP/2 js.driftt.com/core/assets/js/16.9ef4a519.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash b32ccc4557ebaeaebc835c96712693c2
5747bd14940cc3a54af65924cc5421b9c92211d5
d55abb3750d355b96bb3d095fd440b8f439a83253d66243737f67836077be254
GET /core/assets/js/16.9ef4a519.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 22 Mar 2024 05:01:11 GMT
last-modified: Fri, 22 Mar 2024 04:57:22 GMT
etag: W/"b32ccc4557ebaeaebc835c96712693c2"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5E7jxxxfATsk4OvK3cC2sK7jaXMjyNTX
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: CykBBM3D1xlVgssg1oA0trsmpMAebBMw56ozsukirkdyMzBezWdDfA==
age: 2907239
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
200 OK 1.6 kB URL GET HTTP/2 js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1641), with no line terminators
Hash 9b7476d3c16abfe36a1fe861744de866
19755e8c1d1a75ff67e7bbaa4cd87115c76fd26b
303fcb10bfe18be75c586e8b22c1c29a32e9cf3cea86413030f5d904e6adead8
GET /core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Thu, 04 Apr 2024 19:46:21 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ZBEiLR5jfh3iii3cnfTNRQsxvVBIMKla
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 24
date: Wed, 24 Apr 2024 20:35:10 GMT
cache-control: no-cache
etag: W/"f4497bfb5a87b7c4365be2cac47f8d1a"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: RB2SSxgVoQZGg1UKDoYqK-W4F6LeZLrkK5PADFI6i9u7HvqbEn5Q_g==
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
200 OK 1.6 kB URL GET HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
IP
Requested by https://grouptoursite.com/
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1641), with no line terminators
Hash 9b7476d3c16abfe36a1fe861744de866
19755e8c1d1a75ff67e7bbaa4cd87115c76fd26b
303fcb10bfe18be75c586e8b22c1c29a32e9cf3cea86413030f5d904e6adead8
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Thu, 04 Apr 2024 19:46:21 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ZBEiLR5jfh3iii3cnfTNRQsxvVBIMKla
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 17
date: Wed, 24 Apr 2024 20:35:10 GMT
cache-control: no-cache
etag: W/"f4497bfb5a87b7c4365be2cac47f8d1a"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 28d5osA4pZcD8aMtp4EPbJjXOxErW7iPnxRBMuafG-vZfNNUFD7rCw==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
200 OK 36 kB URL GET HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (35552), with no line terminators
Hash c6f58dd3d60f07462254b842dd4f9ca1
62c507fc6cc05f9732bcd5c593f3d8d0e0a3d7e2
2a8a441d8086f20a64563edc759aba1de84d932e34ff77b8bb0279a730cdb428
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:47 GMT
last-modified: Tue, 19 Dec 2023 18:34:39 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: xDLMc9.vfMRinFJv17uWwlTUqFMyHh91
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: aNee8Aj1j1pbWFuajGKI0qvAeTCpldm570EGekIbEjEQ5qd4XDa4uA==
age: 10395383
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/11.639238ba.chunk.js
200 OK 24 kB URL GET HTTP/2 js.driftt.com/core/assets/js/11.639238ba.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23865), with no line terminators
Hash 4049f38c00add1738dc4806148ff8829
0a631d2ccde970a13f60e147a5b5aeacb6a1b2e0
c501de88fbb90a445f1754a529bc772e7047071bf653c8c3f0330f7bb736d140
GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 15 Jan 2024 07:31:30 GMT
last-modified: Thu, 11 Jan 2024 23:20:32 GMT
etag: W/"4049f38c00add1738dc4806148ff8829"
x-amz-server-side-encryption: AES256
x-amz-version-id: fTPxsmx5We5V2pMGDl1ykjBzTcYFF2dc
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: QttUsEMcnaJgANie-P27zzvLuLw1G18Tpzd_CvtTKTLbZLbovWo2uw==
age: 8687020
X-Firefox-Spdy: h2
1094614-14.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0
101 Switching Protocols 0 B URL GET HTTP/1.1 1094614-14.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectwschat.api.drift.com
Fingerprint92:80:84:E9:D1:51:EC:08:3C:05:7D:7B:E6:2A:F5:75:C2:A9:0C:A8
ValidityFri, 15 Dec 2023 00:00:00 GMT - Sun, 12 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTA5NDYxNC0yMTcxNTQxNjI2Ny00ZAAGb3JnX2lkbQAAAAcxMDk0NjE0ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMjE3MTU0MTYyNjdkAAl1c2VyX3R5cGVkAARsZWFkbgYAQcjREY8BYgABUYA.Sr0cLAYRbdCI4UNVKSFzkQT3KYOCx1mjLjgV9QiPpmI&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: 1094614-14.chat.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xJnrA6QbHOrMpN9oYz5AfQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 24 Apr 2024 20:35:12 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: EEcyel7vDKI67cKx2oOIQ5KutJA=
server: Cowboy
upgrade: websocket
a.opmnstr.com/app/js/21.40afa0f2.min.js
200 OK 2.1 kB URL GET HTTP/2 a.opmnstr.com/app/js/21.40afa0f2.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (2148), with no line terminators
Hash b8542568b2996f577ffcbec8bb04671d
c3cd1b2eb86265f1db02f81e3983733c13c9ee98
2abc9cc79123e968eef5d23dee94e6007fa3a3eae0edda46b802dde0a68f076c
GET /app/js/21.40afa0f2.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08aac-81f"
last-modified: Tue, 12 Mar 2024 17:02:36 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: caf580a4c83919eaeaaaba246d0727f4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/26.ece538f7.min.js
200 OK 1.7 kB URL GET HTTP/2 a.opmnstr.com/app/js/26.ece538f7.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (1759), with no line terminators
Hash bcf4550d355dd645c86a5e57aefddb50
945066708f6efa246c7f83d07144754c3d52e18c
4ecf972065b2b9958b1a2c77472a932646f09843d89865b2e4490bac4b41971a
GET /app/js/26.ece538f7.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8b-6b6"
last-modified: Tue, 12 Mar 2024 17:10:35 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 752349fe356833db7dd912547b43a1a5
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/27.b5e8f5e1.chunk.css
200 OK 8.6 kB URL GET HTTP/2 js.driftt.com/core/assets/css/27.b5e8f5e1.chunk.css
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (8590), with no line terminators
Hash 884eb677129683ba518beb19f4cf6b3d
d3527640e9621038ca56b792bc8413f2905b4fb0
814ac5714d7a591c51be1335e4a6554292a551491e04d72389ecd1aa7b325887
GET /core/assets/css/27.b5e8f5e1.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Wed, 28 Feb 2024 20:33:40 GMT
last-modified: Wed, 28 Feb 2024 20:09:21 GMT
etag: W/"e7107bc29ccb3c6d928f0f8f10a0f22d"
x-amz-server-side-encryption: AES256
x-amz-version-id: zyzXY0HiUV0Kx0xDA0irOuT14sRG0uSI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 18
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: yc3D1BW0NAwAVm4lSdsx6MWmtbKLKKu3qGpZOGpYBrzyVTWeRSM-zA==
age: 4838490
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.42a90a1f.chunk.js
200 OK 15 kB URL GET HTTP/2 js.driftt.com/core/assets/js/27.42a90a1f.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (15387), with no line terminators
Hash 3305c113acc7be7b8411abd6abfa37ba
a186937d8522085d26f50ba351886021919f88a4
b781a271d23f8fcb33421408a4ab099770b32368548f88c651c0fd1c15cb2a0e
GET /core/assets/js/27.42a90a1f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:26 GMT
etag: W/"3305c113acc7be7b8411abd6abfa37ba"
x-amz-server-side-encryption: AES256
x-amz-version-id: uqJrHTB3r0l.Z3re932SJbB_rTNlMYGC
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 7np3zqZVdIlIUwi5B0Xvlf9qn6PPncgmXf6B2fyiXfoDEP0l2ZLzpQ==
age: 4054319
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/39.f1d268f5.chunk.js
200 OK 3.1 kB URL GET HTTP/2 js.driftt.com/core/assets/js/39.f1d268f5.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3268), with no line terminators
Hash c9b14ef2e23d673083c648ef2da34b8e
f2c7173abadb184d14a0bb72e8377b334737bf37
3c6024238eb3f49f56b3ae264792e90ead9d494e3fd51888aa52a50cbcdc8e8f
GET /core/assets/js/39.f1d268f5.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:11 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"b5201ff04da30312910b71e1da072dd2"
x-amz-server-side-encryption: AES256
x-amz-version-id: uVEyZ5tRXLdtqtE229DGMUJWzGeJV7TR
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 45
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: j2FpNb3FUMSkraOBLt3XC9n8eG0bQFjuTsJbZWCXLo3dOusHsgvkRA==
age: 4054319
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
200 OK 7.6 kB URL GET HTTP/2 js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (7561), with no line terminators
Hash ed4a0ea9e262b77b6356a80b0f074c20
b930fe9c5be1c23ba46ef28754443dd4775cf758
c50efe10f4d2ff4ef7bd70659ecf9eb23477a3978717bebc4c2da8bda1180b30
GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Mon, 27 Nov 2023 12:03:54 GMT
last-modified: Tue, 21 Nov 2023 16:21:39 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: Z3aGNvKDu1qrwflzzKzoomVmgF30.VOg
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: s0KsCT49QSPhrunIhuThkVZyHrKAYcvBT-osaKIfr68wHlkqRvySFg==
age: 12904276
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.9c1bd1fb.chunk.js
200 OK 64 kB URL GET HTTP/2 js.driftt.com/core/assets/js/18.9c1bd1fb.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (63529), with no line terminators
Hash 02f09379c544befa413d22eb57ed41de
156ff3fbf28d890eb0f79754e436ac3a66b3de24
e555f4b34b579e6528d6bbd4819620a634c0759b41dfa99520b7ca5aa5117b11
GET /core/assets/js/18.9c1bd1fb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"02f09379c544befa413d22eb57ed41de"
x-amz-server-side-encryption: AES256
x-amz-version-id: q8W9FNPLIM8OX5drRDX0sp4TnKuKPMbY
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: uBZ34QgJRDeCI2AKzlZInH7ceg_M9CFXkmG1_Z-C6TB9NF09md30sw==
age: 10395382
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/api.min.js
200 OK 52 kB URL GET HTTP/2 a.opmnstr.com/app/js/api.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (52320), with no line terminators
Hash 346c4463d12bd2609a4bdc9618431927
491755fcfa8b0692945c325585a2a86c11eca97c
99142e3048ff980fa6ac618f8f99305efdf4bd1afa17aa842ae535a59716936d
GET /app/js/api.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6620879b-cc60"
last-modified: Thu, 18 Apr 2024 02:38:19 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 95f7f0580d64441ae867d213a9af9e25
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.58de437c.js
200 OK 6.1 kB URL GET HTTP/2 js.driftt.com/core/assets/js/runtime~main.58de437c.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6551), with no line terminators
Hash 76a3fd1ae4829d4c32d6575099cc2a89
ceb35164f02325b8c0e227c4a56894de7766105f
f99fbf218e8dcf51627a3864736119d98d31b24c553522c46de2e2625b07236f
GET /core/assets/js/runtime~main.58de437c.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:20 GMT
last-modified: Thu, 04 Apr 2024 18:49:25 GMT
etag: W/"44c56ae0f8bd42ad553b7316b388ea1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: E0oHslzwcAyBCcPsjBe7YnkYdzCoH2Y4
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: GPyyo72612kccrQAWxpvouXQ0BX-MoGTKLSPZlqnNpW-GYQa9jzIAA==
age: 1730930
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/42.f634da7c.chunk.js
200 OK 12 kB URL GET HTTP/2 js.driftt.com/core/assets/js/42.f634da7c.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (11808), with no line terminators
Hash c65db597e762d33246cfbec56b886523
de968f5d5a9eba6f17c47beecbbad50430c806c3
df3b4f7ee9b54dc67162d74792e3906d8888a0a83068b490fb6830cc6954d5c4
GET /core/assets/js/42.f634da7c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"c65db597e762d33246cfbec56b886523"
x-amz-server-side-encryption: AES256
x-amz-version-id: vXeKg.tGpOUOXbODWyYzAbmB8cSGPgwQ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: kQZM9raWXBmKN4pBKObXuOeG24IUjwhCjpd7eNKXG2Kk88eSPaAewg==
age: 4054320
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.css
200 OK 9.8 kB URL GET HTTP/2 a.omappapi.com/app/js/api.min.css
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
FingerprintFF:39:2A:B3:5F:60:19:2C:80:46:80:C3:D0:EA:C4:F9:E6:CD:5B:E0
ValidityFri, 29 Mar 2024 17:14:58 GMT - Thu, 27 Jun 2024 17:14:57 GMT
File type ASCII text, with very long lines (9802), with no line terminators
Hash 0860b4e110eb4822f875676289eab4e4
fb666dcffa9edf836120af4545166be86121b20c
33514e7c1452c8b71049e611f198de6e284e79405a585face7932a41946f7448
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"662183d2-2644"
last-modified: Thu, 18 Apr 2024 20:34:26 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f9b8d1fff903b6de7c16b3225dc5d51b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
200 OK 24 kB URL GET HTTP/2 js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23897), with no line terminators
Hash cd29b9bc973e48a7fcd0ee7153bdf03b
ac3e5cf1c0d4183b2df14c34bebb84b3ee657799
7cb58278c8f54a62c0afa6da0c67b3a45aad637a0bf614e9c0dd42b73cee266b
GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"cd29b9bc973e48a7fcd0ee7153bdf03b"
x-amz-server-side-encryption: AES256
x-amz-version-id: O2lV9BfAoMGuWCy5h2KZx1r2hHWHdRQH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _eEFho0_nTipiz8oKETTArv9rkZeh5WvvE289Lr7RIiTYP8LoITfXw==
age: 4054320
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
200 OK 17 kB URL GET HTTP/2 js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (17003), with no line terminators
Hash 65e5c965272e021ae33ff8bc39565ef5
c5a2c0cdf9c821b6ee43a1eeb52680ffeea15557
b84595cc8461bb6e8376fe94f0dd23d6657172103b03653534089c5992b058a1
GET /core/assets/js/21.b8c41db9.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 15 Jan 2024 07:31:30 GMT
last-modified: Thu, 11 Jan 2024 23:20:33 GMT
etag: W/"65e5c965272e021ae33ff8bc39565ef5"
x-amz-server-side-encryption: AES256
x-amz-version-id: mbKfJZbsWw.V.LuUA4S0Y6Eza3IzJhvH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: vn2w1TzM8tfqwQgRgZuVSmdU3rP8blWDzqS6wJmwLg03lwN82VtHew==
age: 8687020
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/24.f2a14bf3.chunk.js
200 OK 52 kB URL GET HTTP/2 js.driftt.com/core/assets/js/24.f2a14bf3.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (52313), with no line terminators
Hash eeb141d15a5542cc12f6697498a4dae4
31f378b1af777f61e9242fdd59c53533ce1be0ad
80ca50f229e6a99c3a0e04d6e6b2aa216152dfbc3dd81b8a59e2934782f4328d
GET /core/assets/js/24.f2a14bf3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:21 GMT
last-modified: Thu, 04 Apr 2024 18:49:23 GMT
etag: W/"eeb141d15a5542cc12f6697498a4dae4"
x-amz-server-side-encryption: AES256
x-amz-version-id: h1TpcLqbPY4hV6zMUp0mzajfkh8wVGak
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p-TLC13X-JRFGKC-hu1HFh0VwHr4UObzvxv0_Td3gu8B_SuwObHU1A==
age: 1730929
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_ssgManifest.js
200 OK 77 B URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_ssgManifest.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type ASCII text, with no line terminators
Hash b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
GET /web-groups-microsite/1698155796/_next/static/P04TWqoRW9oOww12prxlB/_ssgManifest.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"b6652df95db52feb4daf4eca35380933"
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 47c883ac6f8d3248b07a2462a13d0666.cloudfront.net (CloudFront)
x-amz-cf-pop: FCO50-P2
x-amz-cf-id: uTj6whTLpptaO8b97ePnmeNtH_lIdcZoVpJXK15TTndbuQrt2TYmnw==
cf-cache-status: REVALIDATED
vary: Accept-Encoding
strict-transport-security: max-age=0
set-cookie: __cf_bm=zZVHs9Imw7tkmtSMK6Bkw7ESCgcAjgN34gJjDu6RTnI-1713990908-1.0.1.1-jaZfpsuTb7ezIumfz2Z.opQ_nC11velTXgQW6hr6IPVlWT7r7.isFibFOJDrV0iek38qKSOlR8Km6WiHDbOicg; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=M3nL5KMu23z3T4ZkcBhmr.B1S11YK_oRWCJ5aoePSL0-1713990908444-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c90c741c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.aa20860d.chunk.js
200 OK 42 kB URL GET HTTP/2 js.driftt.com/core/assets/js/17.aa20860d.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (41495), with no line terminators
Hash a013d30ad611b4379ce2caa016620cbf
002827df62207c310dbc2941b0aaab04d44ab859
04c07b8b81f862ca7992e57f80e16957cf50b245b2db8beabed85f8581bee0fb
GET /core/assets/js/17.aa20860d.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:21 GMT
last-modified: Thu, 04 Apr 2024 18:49:23 GMT
etag: W/"a013d30ad611b4379ce2caa016620cbf"
x-amz-server-side-encryption: AES256
x-amz-version-id: UqtKlP1fgnBUCni0MHDQ7kjXDpJQX9r9
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: HbLnZRaHo1Gu6uvUnh0pbTZ0o0fzlBRe4qq-2Xw68js2WWDS6pouiw==
age: 1730929
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.04e7f30b.chunk.js
200 OK 68 kB URL GET HTTP/2 js.driftt.com/core/assets/js/26.04e7f30b.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 49ce5445ddcf5d24ef3badc4eb1a11dd
dbe8cf782a53824bac569aa3ea42992dd21064d6
d70fa5dc6c8bfe9d7824be31e669528533d0879a2b1600a7df68b880f4d44296
GET /core/assets/js/26.04e7f30b.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 16:15:24 GMT
etag: W/"49ce5445ddcf5d24ef3badc4eb1a11dd"
x-amz-server-side-encryption: AES256
x-amz-version-id: cqsMaYjOHahH71A7EXhyHFywLOEay3sx
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 32
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zHueC5v1uzDnUtwviCy4tOvoWc3wmy8jcxc5zpB133j_BwR_9D6rlQ==
age: 10395382
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/webpack-e5108aeecfc3e7f070df.js
200 OK 2.3 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/webpack-e5108aeecfc3e7f070df.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type JavaScript source, ASCII text, with very long lines (2323), with no line terminators
Hash 6f3312768eeda2551159e4c795c037a6
027b4f4f0299dcd69a1d1ca909249e16c712d960
54b081f249fd39e02c34f8f070b7ce1b76920172d21cf2eea5deb7a7a5f7f0d0
GET /web-groups-microsite/1698155796/_next/static/chunks/webpack-e5108aeecfc3e7f070df.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"d107f3f1400a838c6f9c2c5f3fe9ee9a"
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: xv1O7vtKKZxJGR6r3fNnd35nWNR41f0jefVku7GY-MehAOO63fj86w==
cf-cache-status: REVALIDATED
strict-transport-security: max-age=0
set-cookie: __cf_bm=NN4EQYXJ9rMGOCfFZ2k3HWncDdrOvgjvpm91zrbY77A-1713990908-1.0.1.1-ux5HjIPWWIiV_hDOsvmHmcmz5EsXD89P2p2sjqdOr6.QmeZQwnGJOhaOBzx4EpURd9Ux9RlwDVWsGaFQYBJz0A; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=v9AQO_xafZN1M1FiwUp3nDzLX2URfcrqLqopseH5RCw-1713990908482-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c90c711c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
200 OK 24 kB URL GET HTTP/2 js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23897), with no line terminators
Hash cd29b9bc973e48a7fcd0ee7153bdf03b
ac3e5cf1c0d4183b2df14c34bebb84b3ee657799
7cb58278c8f54a62c0afa6da0c67b3a45aad637a0bf614e9c0dd42b73cee266b
GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"cd29b9bc973e48a7fcd0ee7153bdf03b"
x-amz-server-side-encryption: AES256
x-amz-version-id: O2lV9BfAoMGuWCy5h2KZx1r2hHWHdRQH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: iZjfN9ooQnoFXY_8cUvoMOgBCALBsgqqkZSd6xFayq6lNy-F7Fx-XA==
age: 4054320
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.6f85b843.chunk.js
200 OK 17 kB URL GET HTTP/2 js.driftt.com/core/assets/js/19.6f85b843.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (17065), with no line terminators
Hash e28ebc3391b56e8f01ea063dc089e9d3
d0eb0eddb70199db3533f492e7f2e22be890a1fa
afbd41e7209fa3aef6f53c7a5713aa542a7be54c432fec2d690e0dfaccd528d1
GET /core/assets/js/19.6f85b843.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"e28ebc3391b56e8f01ea063dc089e9d3"
x-amz-server-side-encryption: AES256
x-amz-version-id: TS.9ApOzy..rylGKiVPdLcCX5dJ9HsBw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: jPr-G1W5xCkbIvEH3bnFtjohGxXfd_jZth5Qaf5Tqpu4lct_lkiejw==
age: 10395382
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
200 OK 26 kB URL GET HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25600), with no line terminators
Hash 48be1563378f7c36bdadc0f2eb616856
2aa42b08fe8cc7ac0dc371d2309a38d5a465247f
63c035e2f43180086b19ec08f35c8deee82b2b804ddfcf92f7f0e6d835957bfe
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: kSQfBnXe3RrQ76A7.epJ9X5L3Vb2TouI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 36
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: YziSbqZpBAp79PEbIuHPgg05k68gQdmSdwaiStKyhh9lGhYqMOOSxA==
age: 4054320
X-Firefox-Spdy: h2
bootstrap.driftapi.com/widget_bootstrap
200 OK 29 kB URL POST HTTP/2 bootstrap.driftapi.com/widget_bootstrap
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdriftapi.com
FingerprintE1:F1:29:1D:32:86:36:32:EB:18:C7:20:0C:6D:55:CC:EF:88:4E:42
ValidityMon, 25 Dec 2023 00:00:00 GMT - Tue, 21 Jan 2025 23:59:59 GMT
Hash 203759375d2bdc177e3a1bb060d45fc9
c64f4252f24581fbb29bfd85f34a33f298cb0181
3993e47eedb771e951ef0664f5b4a59bba78a82f644ff83c530d1cf4573a5164
POST /widget_bootstrap HTTP/1.1
Host: bootstrap.driftapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 457
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 24 Apr 2024 20:35:11 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 2af144f7d3c65ebe
vary: Accept-Encoding
content-encoding: gzip
x-envoy-upstream-service-time: 379
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SDN2cmbA3dMhoAxJcUV1OWojeKu9on56SpLyxzFn-NLEQ3lBnHU2Mg==
X-Firefox-Spdy: h2
bootstrap.driftapi.com/widget_bootstrap/ping/v2
200 OK 208 B URL POST HTTP/2 bootstrap.driftapi.com/widget_bootstrap/ping/v2
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdriftapi.com
FingerprintE1:F1:29:1D:32:86:36:32:EB:18:C7:20:0C:6D:55:CC:EF:88:4E:42
ValidityMon, 25 Dec 2023 00:00:00 GMT - Tue, 21 Jan 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1d5a3a4a327509544ae7a7de6ff5cd98
a083799b380ac5933bd30113925072a45110f188
127d2502afd7658dc320c32d89ef979ed4f895a871e7885db1e5ae7a10c70a29
POST /widget_bootstrap/ping/v2 HTTP/1.1
Host: bootstrap.driftapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 112
Origin: https://js.driftt.com
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 208
date: Wed, 24 Apr 2024 20:35:11 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: e47e64d06b016511
vary: Accept-Encoding
x-envoy-upstream-service-time: 3
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bo5UELeWWDKnbZ6F4l_4CBOLv9rYp9LaciAM4qZsuVHSiIQUh0RtGg==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.aa20860d.chunk.js
200 OK 42 kB URL GET HTTP/2 js.driftt.com/core/assets/js/17.aa20860d.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (41495), with no line terminators
Hash a013d30ad611b4379ce2caa016620cbf
002827df62207c310dbc2941b0aaab04d44ab859
04c07b8b81f862ca7992e57f80e16957cf50b245b2db8beabed85f8581bee0fb
GET /core/assets/js/17.aa20860d.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 04 Apr 2024 19:46:21 GMT
last-modified: Thu, 04 Apr 2024 18:49:23 GMT
etag: W/"a013d30ad611b4379ce2caa016620cbf"
x-amz-server-side-encryption: AES256
x-amz-version-id: UqtKlP1fgnBUCni0MHDQ7kjXDpJQX9r9
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gzQ5jQIU6qTf3ni8DqxydAu8NNauIOXjGQc4x3UshASduGAhrQi2BA==
age: 1730929
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 46 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://grouptoursite.com/
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint7C:28:A0:E5:94:14:8F:43:5F:DD:F8:5E:FD:79:61:FC:C8:33:3E:1A
ValidityWed, 24 Apr 2024 02:02:41 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7F0D3CCCC01D4D4F9EAA9B1F90F8EA33 Ref B: OSL30EDGE0219 Ref C: 2024-04-24T20:35:09Z
date: Wed, 24 Apr 2024 20:35:08 GMT
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
200 OK 76 kB URL GET HTTP/2 js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
IP
Requested by https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6d77a76055d81227033363af2f18caf8
b1b94517954f8f8889a0822886dea6f5ad7c931f
19473eebfb0672867a4438e2a015de79fded34b9f5ae5598bade57eb01cf0563
GET /core/assets/js/20.8c21ea18.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1713990908152
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"6d77a76055d81227033363af2f18caf8"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4VyxTF9cOmpvyHPO7jaWSto1hTdtU.sl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 45
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: zFjqFmk8-yBT_lXRbpkVhBJzhrsS9e8MXUB0dDUeglZpMJdzAXC0Ew==
age: 10395382
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/28.b1a68bf1.min.js
200 OK 3.5 kB URL GET HTTP/2 a.opmnstr.com/app/js/28.b1a68bf1.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (3637), with no line terminators
Hash 46fdc1e2eac7f23705e84ebfafeff223
1fc7868ac808306e4cbf0f908bb713a099ce323c
ddc5cb8f8de79936ebd259f4de91280a7d7af7fe8a3390dc575ae596e60ac3fb
GET /app/js/28.b1a68bf1.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8b-d7b"
last-modified: Tue, 12 Mar 2024 17:10:35 GMT
cdn-storageserver: SE-582
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 53cd96e5f7933686997e47a26cd793e4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-LQM236SHEC>m=45je44m0v888938065z8811745238za200&_p=1713990908251&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1579328221.1713990909&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713990908&sct=1&seg=0&dl=https%3A%2F%2Fgrouptoursite.com%2F&dt=404%3A%20This%20page%20could%20not%20be%20found&en=page_view&_fv=1&_nsi=1&_ss=2&up.pagePath=%2F&up.pageUrl=https%3A%2F%2Fgrouptoursite.com%2F&tfd=962
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-LQM236SHEC>m=45je44m0v888938065z8811745238za200&_p=1713990908251&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1579328221.1713990909&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713990908&sct=1&seg=0&dl=https%3A%2F%2Fgrouptoursite.com%2F&dt=404%3A%20This%20page%20could%20not%20be%20found&en=page_view&_fv=1&_nsi=1&_ss=2&up.pagePath=%2F&up.pageUrl=https%3A%2F%2Fgrouptoursite.com%2F&tfd=962
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LQM236SHEC>m=45je44m0v888938065z8811745238za200&_p=1713990908251&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1579328221.1713990909&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713990908&sct=1&seg=0&dl=https%3A%2F%2Fgrouptoursite.com%2F&dt=404%3A%20This%20page%20could%20not%20be%20found&en=page_view&_fv=1&_nsi=1&_ss=2&up.pagePath=%2F&up.pageUrl=https%3A%2F%2Fgrouptoursite.com%2F&tfd=962 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://grouptoursite.com
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://grouptoursite.com
date: Wed, 24 Apr 2024 20:35:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
200 OK 31 kB URL GET HTTP/2 js.driftt.com/core/assets/css/8.ab226b4a.chunk.css
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (31339), with no line terminators
Hash 1e97f00f07b87f701d0bf06259f954e4
0fcedfbe2c5b8ad22e9d69905a0317d81f4b7380
ff8f406b684c6674dbd3705d3f6d2cd10b5eedbc2c67a7773f235d69ef122d04
GET /core/assets/css/8.ab226b4a.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 26 Jan 2024 21:38:16 GMT
last-modified: Fri, 26 Jan 2024 18:11:46 GMT
etag: W/"1e97f00f07b87f701d0bf06259f954e4"
x-amz-server-side-encryption: AES256
x-amz-version-id: Iy50rWLvnka9klYMF5qa_8hsgho0e_uB
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xncQ0Ye6l-X75jancuGRgeLjZH6dAiIXoo2rNRxzSSZ_XENWph8mLw==
age: 7685814
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.d0f1ccda.chunk.js
200 OK 37 kB URL GET HTTP/2 js.driftt.com/core/assets/js/35.d0f1ccda.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (36995), with no line terminators
Hash 46fa5a7bc37a22544a908e4ad950309c
7c63d2a96eddd4bc0d2c1d03947da197b4625804
e0c6f8695589df90e63442fee1c9cf14e60dfc4fd8ce7296515b1d6db41e1d3d
GET /core/assets/js/35.d0f1ccda.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 16:15:24 GMT
etag: W/"46fa5a7bc37a22544a908e4ad950309c"
x-amz-server-side-encryption: AES256
x-amz-version-id: sgEYGmeR8Py6tciS9o0uWaEb0DViiRFb
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 34
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 0q6ewPuuhjWY5aq_SCZt5oElIQjXkYNZtGWNEiRpX03KOT63FqtfPA==
age: 10395382
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
200 OK 76 kB URL GET HTTP/2 js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6d77a76055d81227033363af2f18caf8
b1b94517954f8f8889a0822886dea6f5ad7c931f
19473eebfb0672867a4438e2a015de79fded34b9f5ae5598bade57eb01cf0563
GET /core/assets/js/20.8c21ea18.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:48 GMT
last-modified: Tue, 19 Dec 2023 18:34:37 GMT
etag: W/"6d77a76055d81227033363af2f18caf8"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4VyxTF9cOmpvyHPO7jaWSto1hTdtU.sl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 45
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: kE6gusmVUiiZltqpQNANqwLItSgqMiiX0jiEyTPjR_c-43Hyd-a8Dw==
age: 10395382
X-Firefox-Spdy: h2
assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/pages/_app-5fc897e4fbdc07642d03.js
200 OK 626 kB URL GET HTTP/2 assets.goaheadtours.com/web-groups-microsite/1698155796/_next/static/chunks/pages/_app-5fc897e4fbdc07642d03.js
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoogle Trust Services LLC
Subjectgoaheadtours.com
FingerprintB3:C1:BD:90:D7:29:01:5B:03:3E:3F:AE:18:A8:E0:4B:9A:16:79:9A
ValidityTue, 26 Mar 2024 23:47:21 GMT - Mon, 24 Jun 2024 23:47:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 626 kB (626170 bytes)
Hash 1ee84ccc78d07eef3f3cd6aa41ad22a5
a172f6285609410f071c18df53ee111441bcc1f9
b8287491cb8717de986a7e5bef74cee255e1d3ec641072785930a6d19b2338bf
GET /web-groups-microsite/1698155796/_next/static/chunks/pages/_app-5fc897e4fbdc07642d03.js HTTP/1.1
Host: assets.goaheadtours.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:08 GMT
content-type: text/javascript
last-modified: Tue, 24 Oct 2023 13:57:43 GMT
etag: W/"1ee84ccc78d07eef3f3cd6aa41ad22a5"
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fdac35835bcf0937b6f910eeac10720e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: Bjc84dUnKJYKoozYTLxG11g167IFwc200zAyNqJlC4Oo5it-xBHKKQ==
cf-cache-status: REVALIDATED
strict-transport-security: max-age=0
set-cookie: __cf_bm=x9DCcZwiUQ3wly0M__xpppCpmjUs6OpTJlRZvrVEClE-1713990908-1.0.1.1-K_R2GCdVsd_hWUHa9nUOU0bP2ZOzhGuyXSD4ntX8h.OvfENkrHsHijOluDEcsGKd.SBFjicPucg6sKnASM1Z0g; path=/; expires=Wed, 24-Apr-24 21:05:08 GMT; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
_cfuvid=q3A9PCeQUvktH3aprzft29VlqQa8fC.qH4vQI0lFxLU-1713990908464-0.0.1.1-604800000; path=/; domain=.goaheadtours.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8798e0c91c861c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.opmnstr.com/app/js/0.3271ac0a.min.js
200 OK 7.5 kB URL GET HTTP/2 a.opmnstr.com/app/js/0.3271ac0a.min.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://grouptoursite.com/
Certificate IssuerLet's Encrypt
Subjecta.opmnstr.com
FingerprintE3:DB:97:DD:A3:6A:5E:85:21:76:64:55:A3:EB:D5:D6:7A:94:6F:6D
ValidityFri, 29 Mar 2024 17:14:59 GMT - Thu, 27 Jun 2024 17:14:58 GMT
File type JavaScript source, ASCII text, with very long lines (7700), with no line terminators
Hash b65657b7d8a7e7d96b2574e9ec27c039
b672e957380cc55099174ccab293a4f7d461862d
b280311bc361ce236aff666ee1da509b166845a49a3b46c059c01427855e5378
GET /app/js/0.3271ac0a.min.js HTTP/1.1
Host: a.opmnstr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 20:35:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"65f08c8b-1d49"
last-modified: Tue, 12 Mar 2024 17:10:35 GMT
cdn-storageserver: SE-583
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2024 20:24:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a188517ecb2b21fa02f0226290161089
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/31.c043863a.chunk.js
200 OK 28 kB URL GET HTTP/2 js.driftt.com/core/assets/js/31.c043863a.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (27881), with no line terminators
Hash 80a16a7469ece9a85df7ac8d39605662
54e64975f24647d242fa4dc0e20ba048a603ded2
7236ba4d18121d1c1e55329fd2110eb585b49ded5d66b2fe461f15369c7d3dda
GET /core/assets/js/31.c043863a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 08 Mar 2024 22:23:10 GMT
last-modified: Fri, 08 Mar 2024 21:52:27 GMT
etag: W/"80a16a7469ece9a85df7ac8d39605662"
x-amz-server-side-encryption: AES256
x-amz-version-id: xQshf8Fb.UbAzXwlaVlUWAyR86uYq5q8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Opc7Js1Z28V2o6mfWYtwsVRdLq1n1ciLHUrI4GMYC0S6gKmh8WtAQg==
age: 4054319
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc=&cb=1713990910889183&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1713990911704
200 OK 1.6 kB URL GET HTTP/1.1 px.mountain.com/st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc=&cb=1713990910889183&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1713990911704
IP
Requested by https://grouptoursite.com/
Certificate IssuerGoDaddy.com, Inc.
Subject*.mountain.com
Fingerprint60:38:AB:C1:29:01:0A:9E:70:DF:E1:A9:65:7C:E4:4D:66:48:51:62
ValidityMon, 12 Jun 2023 16:30:05 GMT - Sun, 23 Jun 2024 07:06:21 GMT
File type JavaScript source, ASCII text, with very long lines (1667), with no line terminators
Hash 92c1cc15c6e90e5acf58d68afa1777cc
e3f32e2ff12ac268af087865d4169b382c8c2732
9b46a486df877bdb28c3cef41266b6cb98fea080f44b43c60c4fd07a5cdbc30f
GET /st?ga_tracking_id=G-LQM236SHEC%3BUA-321712-14&ga_client_id=1579328221.1713990909&shpt=404%3A%20This%20page%20could%20not%20be%20found&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22G-LQM236SHEC%3BUA-321712-14%22%2C%22ga_client_id%22%3A%221579328221.1713990909%22%2C%22shpt%22%3A%22404%3A%20This%20page%20could%20not%20be%20found%22%2C%22dcm_cid%22%3A%221713990908.1%22%2C%22mntnis%22%3A%22GVV08%2Fqh76NWYOh1nISJaNS3SxkHMbMi%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getClientIdByCookie%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%7D%7D&dcm_cid=1713990908.1&available_ga=%5B%7B%22id%22%3A%22G-LQM236SHEC%22%2C%22sess_id%22%3A%221713990908%22%7D%2C%7B%22id%22%3A%22UA-321712-14%22%2C%22sess_id%22%3Anull%7D%5D&hardcoded_ga=&dxver=4.0.0&shaid=33640&plh=https%3A%2F%2Fgrouptoursite.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&shpp=1&shpi=(...selectors)%20%3D%3E%20%7B%20let%20image%20%3D%20null%3B%20for%20(let%20i%20of%20selectors)%20%7B%20if%20(document.querySelector(i))%20%7B%20image%20%3D%20document.querySelector(i).src%3B%20%7D%20%7D%20return%20image%20%7D&shpc=&cb=1713990910889183&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1713990911704 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://grouptoursite.com/
Cookie: guid=256c3a31-027a-11ef-adbe-1f69d1b3dd67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 24 Apr 2024 20:35:12 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=256c3a31-027a-11ef-adbe-1f69d1b3dd67;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 18
server: istio-envoy
connection: close
transfer-encoding: chunked
js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
200 OK 8.8 kB URL GET HTTP/2 js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
IP
Requested by https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Certificate IssuerAmazon
Subjectdrift.com
Fingerprint8D:87:63:40:81:FD:69:E6:E5:7B:1B:D8:C5:49:BB:2A:A5:0B:A2:EE
ValidityTue, 15 Aug 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (8912), with no line terminators
Hash e4b83ecb3264826482970c82325ce021
728b5c23bcd47b4ca79e00c1d22975c1a337d23f
967002b56a58f41a49dbebbf93955d8774d83319c9ec02db7c76e0769c7af439
GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=m5k7y7ds347b&eId=m5k7y7ds347b®ion=US&forceShow=false&skipCampaigns=false&sessionId=9568bb4f-e232-4661-94c9-eb4cb170582d&sessionStarted=1713990910.015&campaignRefreshToken=449a8884-bf17-43aa-9918-3a8e92b23003&hideController=false&pageLoadStartTime=1713990908152&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fgrouptoursite.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 26 Dec 2023 12:58:50 GMT
last-modified: Tue, 19 Dec 2023 18:34:36 GMT
etag: W/"c5efcdc9e465604f32cf24af10fd6c13"
x-amz-server-side-encryption: AES256
x-amz-version-id: wIYiMMOv59k7p4Fbql5xBCm9H7moGtf2
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: H2e79iTiKGqLWpa-s6_kmyR64mkIOkd_kz07yrvW6WGI--2tCUsfpw==
age: 10395380
X-Firefox-Spdy: h2
188.114.97.1
142.250.74.168
194.242.11.186
104.17.143.159
0.0.0.0