Report - www.hatandsons.com

Report Overview

Submitted URL
www.hatandsons.com
IP
199.34.228.78
ASN
#27647 WEEBLY
Submitted
2023-03-22 16:35:40
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
connect.podium.com	24124	2018-06-13T20:17:43Z	2023-03-24T20:26:11Z	1.7 kB	293 kB	54.230.111.11
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	948 B	33 kB	216.58.207.227
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	447 B	166 kB	142.250.74.3
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-26T05:09:32Z	368 B	1.9 kB	104.18.20.226
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-26T05:22:59Z	1.8 kB	4.9 kB	54.230.80.227
ec.editmysite.com	12806	2017-01-29T22:50:35Z	2023-03-25T08:46:31Z	1.0 kB	745 B	50.112.171.161
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.0 kB	8.0 kB	95.101.11.115
cdn2.editmysite.com	11564	2012-10-02T20:27:39Z	2023-03-26T05:10:54Z	4.1 kB	252 kB	151.101.193.46
www.google.com	7	2015-05-10T13:11:19Z	2023-03-25T21:05:45Z	417 B	1.1 kB	142.250.74.164
mind-flayer.podium.com	26147	2018-07-27T12:01:45Z	2023-03-24T20:26:12Z	2.4 kB	4.2 kB	35.164.75.80
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	2.1 kB	4.2 kB	142.250.74.163
ssl.google-analytics.com	275	2012-10-02T06:58:30Z	2023-03-26T07:28:12Z	368 B	18 kB	142.250.74.136
lab.analyticspodium.com	unknown	2023-02-23T17:52:45Z	2023-03-25T14:17:10Z	1.3 kB	3.5 kB	52.12.46.239
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
www.hatandsons.com	unknown	2014-12-16T22:00:56Z	2023-03-22T19:22:30Z	8.7 kB	617 kB	199.34.228.78
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	52.25.208.227
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-26T05:09:33Z	350 B	1.0 kB	54.230.80.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.8 kB	60 kB	34.120.237.76
api2.analyticspodium.com	unknown	2023-02-23T17:52:46Z	2023-03-25T14:16:33Z	978 B	752 B	52.12.46.239
assets.podium.com	37552	2019-06-11T00:55:37Z	2023-03-25T14:18:25Z	412 B	248 kB	54.230.111.17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly93d3cuaGF0YW5kc29ucy5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=z9lrxz18eekq	69 B	2023-03-07	2024-04-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly93d3cuaGF0YW5kc29ucy5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=z9lrxz18eekq IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 05:45:46 Times Seen99540 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.hatandsons.com/	117 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:19 Times Seen2934 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	www.hatandsons.com/files/theme/jquery.revealer.js?1587484182	2.8 kB	2023-03-07	2024-04-25
Pretty URL www.hatandsons.com/files/theme/jquery.revealer.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:58 Last Seen2024-04-25 20:11:30 Times Seen1620 Hash c22ab67199a33d876512504cda4ff55b 36e96eae4644b6028532974fe5186a072792cb37 c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311 Loading...

	www.hatandsons.com/	22 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 05:44:19 Times Seen2279 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	www.hatandsons.com/	664 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:19 Times Seen2903 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	www.hatandsons.com/	2.3 kB	2023-03-26	2023-03-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:09:25 Last Seen2023-03-26 14:20:07 Times Seen2 Hash 5f29625496f11aca8582ca8c3f497e65 b0d529910ffb6b9eccea8cb287ad6104abc785ac 93f6acc79a37babec3eb1015e57f17f1416740b44640781f6c9633a6b0c19fd6 Loading...

	www.hatandsons.com/files/theme/plugins.js?1587484182	68 kB	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/files/theme/plugins.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:30 Last Seen2024-04-26 05:44:20 Times Seen2654 Hash 2b8d85f1ea01d2c3e8b962eac8d76a5c 936987a7e08daa4a916c77d86937edee42d657da b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5 Loading...

	www.hatandsons.com/	283 B	2023-03-26	2023-03-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:09:25 Last Seen2023-03-26 14:20:07 Times Seen2 Hash f5c2a368069956c8320b687a5089a2ce 1b4158dd3d1770cc95001e00b80556ad46782680 ba00e6b9a9f5e86192e80e8148d981a14f21dcf84a2bfced5f2307869b6450af Loading...

	www.hatandsons.com/	54 B	2023-03-26	2023-03-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:09:25 Last Seen2023-03-26 14:20:07 Times Seen2 Hash 045e7df7570fe6970d281946a20918ed 2525596b5359e838fdf5c8d5803f5fef4c5be073 c78b8a5ea82df80e621e0f2da255ff76db5bdee5e65b22359ede4c3d7f59d2ca Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1676413397&	181 kB	2023-03-26	2023-04-06
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1676413397& IP 151.101.193.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:17:56 Last Seen2023-04-06 04:14:01 Times Seen67 Hash 6582c2aade33621450a6e3a66cb31e9c c75cfa7f8043793d88ffd5db3858f4fc1adc4db9 3456d0f6931cc1d0a50ccb7fa01916ac2b398b80aaa249f8b3dd89c5d1666ef8 Loading...

	cdn2.editmysite.com/js/jquery-1.8.3.min.js	94 kB	2023-03-07	2024-04-26
Pretty URL cdn2.editmysite.com/js/jquery-1.8.3.min.js IP 151.101.193.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-26 05:44:20 Times Seen16294 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	www.hatandsons.com/	1.8 kB	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:19 Times Seen2931 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	414 kB	2023-03-26	2023-05-26
Pretty URL www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:14 Last Seen2023-05-26 08:52:16 Times Seen2778 Hash 3e73dbef941895dfc538a9d6a69ed927 dac57a54b2635c1d5e1e6ae44e95d12d0a547ad3 d9d91ff5b9a775b5ce8c6c81e51e71c27194d11ac8690353727d23c91f7b317c Loading...

	www.hatandsons.com/files/theme/custom.js?1587484182	14 kB	2023-03-07	2023-11-10
Pretty URL www.hatandsons.com/files/theme/custom.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:46 Last Seen2023-11-10 13:22:34 Times Seen12 Hash aa70c136e03aa123e837b6eb2a052c4c 2c748a49261a0677f28cce655b04ef46392fb016 1468769b297980c19fcb9b83302484686c54dc146ba1096d3107923b3a5f0b5f Loading...

	www.hatandsons.com/files/theme/jquery.pxuMenu.js?1587484182	3.7 kB	2023-03-07	2024-03-12
Pretty URL www.hatandsons.com/files/theme/jquery.pxuMenu.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:46 Last Seen2024-03-12 05:55:09 Times Seen13 Hash 8bc7ec9595b5bb649e85d8f7ab3a9af6 1037b4403bd70099175ab43b41646bb117b86569 c9dcddf220b3f09155245b206915b2384d2abe9b230890ea1a546765e63a6342 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-26
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-26 05:57:55 Times Seen28700 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	www.google.com/recaptcha/api.js?render=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6	884 B	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api.js?render=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:09:25 Last Seen2023-03-26 14:20:07 Times Seen2 Hash 12ecf51c68afadb0882773c7cb772d3f 0f43c4a58e644235ae6fd0988c7f8088944b514c 6bdb399eb3b3b96b245ef583a4ac6b10a058969a5b327c80ecf66f4377651a88 Loading...

	www.hatandsons.com/	35 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 05:44:19 Times Seen2948 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	www.hatandsons.com/files/theme/jquery.loadTemplate.min.js?1587484182	6.9 kB	2023-03-07	2024-04-05
Pretty URL www.hatandsons.com/files/theme/jquery.loadTemplate.min.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:58 Last Seen2024-04-05 19:34:29 Times Seen97 Hash 16f824204552e3b68f24b63ef3343848 ec18adddc405144de9997bbc86c1911a1287263d 28f638e3804dfb73e835b7b9ef3ddcee9a2d4dc4a20ebd82961559b090379073 Loading...

	www.hatandsons.com/	62 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:20 Times Seen2707 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	www.hatandsons.com/	32 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 05:44:19 Times Seen2957 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	www.hatandsons.com/files/theme/jquery.trend.js?1587484182	3.8 kB	2023-03-07	2024-04-25
Pretty URL www.hatandsons.com/files/theme/jquery.trend.js?1587484182 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-25 20:11:30 Times Seen1620 Hash 4beccebe0a060b2b2c43de5c2d4512ef 250a779dd017877b9f360b264cf072d9e87974ff 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738 Loading...

	www.hatandsons.com/	1.2 kB	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:20 Times Seen2909 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	www.hatandsons.com/	62 B	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 05:44:19 Times Seen2943 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	www.hatandsons.com/	2.6 kB	2023-03-26	2023-03-26
Pretty URL www.hatandsons.com/ IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:09:25 Last Seen2023-03-26 14:20:07 Times Seen2 Hash 160b1a523374ffc487b35afd068e0e8f ed9aa0e85e8588ae684cd0efa7dda7f6d7cee498 c9bfc1852c8d2d44670c696e39091d3750eb68983021eab302f8237d3bf7b6bf Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly93d3cuaGF0YW5kc29ucy5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=z9lrxz18eekq	35 kB	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly93d3cuaGF0YW5kc29ucy5jb206NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=z9lrxz18eekq IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:20:07 Last Seen2023-03-26 14:20:07 Times Seen1 Hash beb158db4cbcb0186cbef195f0b19083 a576ebe19a131befe878d51c4c38fa40c685e986 0fa272c79ca1bd0e9da1e818fca7e6497d64718c7e7a8f333947826aa17303d9 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 05:58:37 Times Seen37084569 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.hatandsons.com/files/templateArtifacts.js?1676567125	7.2 kB	2023-03-07	2024-04-26
Pretty URL www.hatandsons.com/files/templateArtifacts.js?1676567125 IP 199.34.228.78 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-04-26 05:44:19 Times Seen3741 Hash ae81ab7069097a055829fb9919258138 7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a 5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af Loading...

		Size	First Seen	Last Seen
	#1 Eval - dcfc808578674969e1920b5a41466468	16 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 06:33:43 Last Seen2023-03-26 14:44:58 Times Seen320 Hash dcfc808578674969e1920b5a41466468 715c3cdfbe877c598b5c1c163abc22405d2effb2 6c98879fb215a162c655e89c5de6a8bafc40d8ad3c6ca746da27f358ef834e38 Loading...

	#2 Eval - e4ae59bb134d81b72421c63521f93822	16 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 14:20:07 Last Seen2023-03-26 14:20:07 Times Seen1 Hash e4ae59bb134d81b72421c63521f93822 6461fe4ba08beaa4418499d7b2703bfe6b5899f0 44d986a30475debde3b349137e036a96986bafa61473dbc21ef6b6abcb85a5f4 Loading...

	#3 Eval - 590027342c4266b5c783917875b782ea	22 B	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 06:33:42 Last Seen2023-03-26 14:45:07 Times Seen322 Hash 590027342c4266b5c783917875b782ea a70a19f57acdf55246bd4a75afe2fa7f3eead587 77c22fba502910858795f2878687666711ce63b24c9d87cfa6d5738985269340 Loading...

	#4 Eval - bbbbc3648ebe52b364ad1136efbe5fdc	62 B	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 06:33:43 Last Seen2023-03-26 14:45:07 Times Seen322 Hash bbbbc3648ebe52b364ad1136efbe5fdc 1e8d63650b405b600c2e3fde274a07e85b069988 b46d151ce173a984415ee39e2db3ddd9a66cba8e49b81f747e486deda7a8d5f4 Loading...

	#5 Eval - 5a30937db10c288d7f4e18e1951a1b63	22 B	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 06:33:42 Last Seen2023-03-26 14:45:07 Times Seen322 Hash 5a30937db10c288d7f4e18e1951a1b63 646d80425e520083e9535cdfd1fcac8166060414 02688e074b45a1a530432a85dbe317df5c8fa693e103a24feec735386216b15d Loading...

HTTP Transactions (83)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ec332b81a27117ce9c16b67a5a8e4fac b6d2afa2c859d000ad830d3d8d73f57bac6ffce2 1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F" Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4348 Expires: Wed, 22 Mar 2023 17:47:57 GMT Date: Wed, 22 Mar 2023 16:35:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 65fc860bc043f3fb83bdc3debdcd322d 418010755deae099ef1284e402813c5837a10f42 d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171" Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4641 Expires: Wed, 22 Mar 2023 17:52:50 GMT Date: Wed, 22 Mar 2023 16:35:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 51a5d4696a6090c295850554508b51ce c44e143c2223546e64b19f543b8101aaf3b11e97 8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF" Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9810 Expires: Wed, 22 Mar 2023 19:18:59 GMT Date: Wed, 22 Mar 2023 16:35:29 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 22 Mar 2023 16:15:01 GMT content-type: application/json age: 1228 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Nw0S44SAs2dbLSwpL8NNLSXFyqstPQAFL4Ay7HEWZT7ZWBRMi/Igk7TNef0Fp8W/ukcdAsZLxTs= x-amz-request-id: 367SG9MGCGNP0RDE x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 22 Mar 2023 15:59:35 GMT age: 2154 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	www.hatandsons.com/	199.34.228.78	301 Moved Permanently	354 B
URL HTTP/1.1 www.hatandsons.com/ IP 199.34.228.78:0 ASN #27647 WEEBLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 354 B (354 bytes) Hash 7b36d7aee343143c810840a15f0299cd b9b1cf2ccaa7b8a30addd3b5321f21b52bed2077 1f2760ae2e04994f5631a1a8abfca9bf0df34ce93527438d5293e5f0d28f46c7 HTTP Headers `GET / HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Wed, 22 Mar 2023 16:35:29 GMT Server: Apache Set-Cookie: is_mobile=0; path=/; domain=www.hatandsons.com Vary: X-W-SSL,User-Agent Location: https://www.hatandsons.com/ X-Host: blu116.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 354 Keep-Alive: timeout=10, max=70 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 22 Mar 2023 16:35:29 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 22 Mar 2023 16:17:23 GMT age: 1086 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 403c8859698d83c769f9e17a2cf85d85 46eced652548cb50416e3e6f5bbfe7fdab656917 e0e26589138af281f1c10193aa4e08c0042256e0818e4836a417542474a95aaa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E0E26589138AF281F1C10193AA4E08C0042256E0818E4836A417542474A95AAA" Last-Modified: Tue, 21 Mar 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21583 Expires: Wed, 22 Mar 2023 22:35:12 GMT Date: Wed, 22 Mar 2023 16:35:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 050ca4dc2182e0a27573b0d9f32b7834 bec14dc5af0d0b32210470673511acd8db404308 b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF" Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6121 Expires: Wed, 22 Mar 2023 18:17:30 GMT Date: Wed, 22 Mar 2023 16:35:29 GMT Connection: keep-alive`

	www.hatandsons.com/	199.34.228.78	200 OK	11 kB
URL HTTP/1.1 www.hatandsons.com/ IP 199.34.228.78:0 ASN #27647 WEEBLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1364), with CRLF, LF line terminators Size 11 kB (10695 bytes) Hash efa01163fa13e3d6f89e47d1eedeaa13 80626e6c2cdb43476635953877c86674cf7c9bcd 5c830724b479ac4254feb126c166cde73e9f81129111a1cae625dabcf8ac8039 HTTP Headers `GET / HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Date: Wed, 22 Mar 2023 16:35:29 GMT Server: Apache Vary: X-W-SSL,Accept-Encoding,User-Agent Set-Cookie: is_mobile=0; path=/; domain=www.hatandsons.com language=en; expires=Wed, 05-Apr-2023 16:35:29 GMT; Max-Age=1209600; path=/ Cache-Control: private ETag: W/"b7baaf96d34ebdd21f444613c7011e8c-gzip" Content-Encoding: gzip X-Host: blu144.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 10695 Keep-Alive: timeout=10, max=73 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

	push.services.mozilla.com/	52.25.208.227	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.25.208.227:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: op7cIg9R0pgCcKN4vHs5eg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: iRpH1PGJsO5XoXHxX6ftxwyOf00=`

	cdn2.editmysite.com/js/jquery-1.8.3.min.js	151.101.193.46	200 OK	34 kB
URL HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65483) Size 34 kB (33467 bytes) Hash 67a5a77f65f13559b3d723829f2e0108 5e861ec7c2993abffc3591d6132c47bc7cdc3e98 ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6 HTTP Headers `GET /js/jquery-1.8.3.min.js HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Fri, 17 Mar 2023 18:04:35 GMT etag: "6414abb3-16dc4" expires: Tue, 04 Apr 2023 23:08:14 GMT cache-control: max-age=1209600 x-host: grn143.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 62834 x-served-by: cache-sjc10032-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 70, 571 x-timer: S1679502930.130264,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 33467 X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1676413397&	151.101.193.46	200 OK	33 kB
URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1676413397& IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65024) Size 33 kB (32918 bytes) Hash 4d1081b89dcc70fcdb8c8f79f75e12db ad555906800c45f4d365e543a4369ccb6324f570 c8323c96a0e19cceb48a2d8aa65b767d622b88c969713c2f425e058e76e0b98b HTTP Headers `GET /js/lang/en/stl.js?buildTime=1676413397& HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Tue, 14 Mar 2023 20:13:41 GMT etag: "6410d575-2c41e" expires: Tue, 28 Mar 2023 22:26:00 GMT cache-control: max-age=1209600 x-host: grn68.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 670169 x-served-by: cache-sjc10041-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 73, 1 x-timer: S1679502930.130401,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 32918 X-Firefox-Spdy: h2

	cdn2.editmysite.com/css/social-icons.css?buildtime=1676413397	151.101.193.46	200 OK	1.6 kB
URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1676413397 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (13080) Size 1.6 kB (1640 bytes) Hash 0d5dc1fb6962d6e90469d86a22d556f7 56257e3555575865bf4d5c8995184e5195c1e39a 52f55725b5bf98b9e009fe6d3804281844663e074c0a7d36d5d39f44217be75d HTTP Headers `GET /css/social-icons.css?buildtime=1676413397 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Mon, 13 Mar 2023 19:49:41 GMT etag: W/"640f7e55-3319" expires: Tue, 28 Mar 2023 08:39:42 GMT cache-control: max-age=1209600 x-host: grn99.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 719748 x-served-by: cache-sjc10025-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 2421, 1 x-timer: S1679502930.130090,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1640 X-Firefox-Spdy: h2

	cdn2.editmysite.com/fonts/Poppins/font.css?2	151.101.193.46	200 OK	344 B
URL HTTP/2 cdn2.editmysite.com/fonts/Poppins/font.css?2 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text Size 344 B (344 bytes) Hash 685b3693324bdfb60da06c13938e6c1f 0e019a3651c208a65e1b8b89a4034dc501524382 7342bcf35d723990ae9647f7bf4c19436fa395361cc08ec4a0b81f110c8de71d HTTP Headers `GET /fonts/Poppins/font.css?2 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Tue, 21 Mar 2023 22:55:42 GMT etag: "641a35ee-852" expires: Wed, 05 Apr 2023 10:07:10 GMT cache-control: max-age=1209600 x-host: grn118.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 23300 x-served-by: cache-sjc10058-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 9, 1 x-timer: S1679502930.135594,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 344 X-Firefox-Spdy: h2

	cdn2.editmysite.com/fonts/Open_Sans/font.css?2	151.101.193.46	200 OK	367 B
URL HTTP/2 cdn2.editmysite.com/fonts/Open_Sans/font.css?2 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text Size 367 B (367 bytes) Hash 52e94ffb1c814650bab35433c3034ac7 b42d636ac9b71805f751612208ddb34e93a6538d fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462 HTTP Headers `GET /fonts/Open_Sans/font.css?2 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Fri, 10 Mar 2023 15:06:21 GMT etag: "640b476d-a2a" expires: Mon, 27 Mar 2023 12:08:40 GMT cache-control: max-age=1209600 x-host: grn78.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 793610 x-served-by: cache-sjc10081-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 17, 3243 x-timer: S1679502930.137789,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 367 X-Firefox-Spdy: h2

	cdn2.editmysite.com/fonts/Montserrat/font.css?2	151.101.193.46	200 OK	276 B
URL HTTP/2 cdn2.editmysite.com/fonts/Montserrat/font.css?2 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text Size 276 B (276 bytes) Hash 559eefb63fcae2a3f85471dd3903016a 5e4a9f5b529f2f6d2ee1de511231f856e673066c 09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae HTTP Headers `GET /fonts/Montserrat/font.css?2 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Thu, 09 Mar 2023 13:51:11 GMT etag: "6409e44f-354" expires: Thu, 23 Mar 2023 18:07:58 GMT cache-control: max-age=1209600 x-host: blu97.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 1117651 x-served-by: cache-sjc10070-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 11, 4097 x-timer: S1679502930.137735,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 276 X-Firefox-Spdy: h2

	cdn2.editmysite.com/css/sites.css?buildTime=1676413397	151.101.193.46	200 OK	30 kB
URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1676413397 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65536), with no line terminators Size 30 kB (29746 bytes) Hash d10158b22b553f723d99dc78eaee6390 80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e HTTP Headers `GET /css/sites.css?buildTime=1676413397 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Tue, 14 Mar 2023 20:14:55 GMT etag: W/"6410d5bf-347ac" expires: Tue, 28 Mar 2023 22:26:01 GMT cache-control: max-age=1209600 x-host: blu30.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 670169 x-served-by: cache-sjc10055-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 38, 1 x-timer: S1679502930.135330,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 29746 X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/site/main.js?buildTime=1676413397	151.101.193.46	200 OK	146 kB
URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1676413397 IP 151.101.193.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32147) Size 146 kB (146400 bytes) Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4 2e0661bc7907d9e2703b3347c3fec579f0aef5d6 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40 HTTP Headers `GET /js/site/main.js?buildTime=1676413397 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Tue, 14 Mar 2023 20:15:19 GMT etag: "6410d5d7-74804" expires: Wed, 29 Mar 2023 09:45:37 GMT cache-control: max-age=1209600 x-host: blu151.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 629392 x-served-by: cache-sjc10023-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 7529, 1 x-timer: S1679502930.130600,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 146400 X-Firefox-Spdy: h2

	www.hatandsons.com/files/main_style.css?1676567125	199.34.228.78	200 OK	8.9 kB
URL HTTP/1.1 www.hatandsons.com/files/main_style.css?1676567125 IP 199.34.228.78:0 ASN #27647 WEEBLY File type ASCII text, with very long lines (576) Size 8.9 kB (8928 bytes) Hash 47b19186d74d65d627d17d2a7c33c5b8 66a4758a5a4494c43a4aeaa90330bd3c66996edc 9ee819c4029a0081c891ced1b5140199358bf94d90cba4831b84d3f37a39c619 HTTP Headers `GET /files/main_style.css?1676567125 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: grn48.sf2p.intern.weebly.net Content-Encoding: gzip`

	ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3	104.18.20.226	200 OK	1.5 kB
URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1462 bytes) Hash d379219b5a450774f78b7849505e81f2 d82251a060e1f1dc114e5e1fd72b089fa22d3fd3 3c87b7c3fa378d1d23bee2fa71982b5a5ec16b54c039393cac88be98f151e12f HTTP Headers `POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive Etag: "F0CAF7AEE6ED229A84AD4386DBB9DA8DA570D296" Expires: Thu, 23 Mar 2023 03:00:00 GMT Last-Modified: Wed, 22 Mar 2023 15:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Age: 2208 Vary: Accept-Encoding Server: cloudflare CF-RAY: 7abfd921ea5cb4ed-OSL`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 8717d7bee0b5f436ac62ab367d9ec713 212052be5850d6d5d03f4d42d71a74da0bc30199 52a11fccf67418849248914e760692d6f2466776cbd6c6ea1196a4946bf5ec2e HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=125416 Date: Wed, 22 Mar 2023 16:35:30 GMT Etag: "641a6599-1d7" Expires: Fri, 24 Mar 2023 03:25:46 GMT Last-Modified: Wed, 22 Mar 2023 02:19:05 GMT Server: ECAcc (bsa/EB4C) X-Cache: Miss from cloudfront Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ouMQgn4qLrHmMiDDWPFHqwl7JO8EvP1QzMYeq-aWZj7Wd3yv25LkjA== Age: 4001

	connect.podium.com/widget.js	54.230.111.11	200 OK	215 kB
URL HTTP/2 connect.podium.com/widget.js IP 54.230.111.11:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65472) Size 215 kB (215188 bytes) Hash b0441ae489dfea12fd5b3755f7d677c6 df75944d49b74fc5663241ec423f89dd1e6bcfbc 7ea5297c3971969f62379e9bbbf0c11a062d2c358b0dc28f2e07b6fa2400137f HTTP Headers `GET /widget.js HTTP/1.1 Host: connect.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 215188 content-encoding: gzip last-modified: Tue, 21 Mar 2023 14:38:53 GMT server: AmazonS3 date: Wed, 22 Mar 2023 15:39:29 GMT cache-control: max-age=3600 etag: "b0441ae489dfea12fd5b3755f7d677c6" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: mqrK94bi7N64i_tsvEw7ybT2Av5NBiH1nOIPm0aj0scaNH7fOyS18w== age: 3372 X-Firefox-Spdy: h2

	www.hatandsons.com/files/theme/plugins.js?1587484182	199.34.228.78	200 OK	16 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/plugins.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type ASCII text Size 16 kB (15721 bytes) Hash 43e6b0bb6eb6524188831a282f7656d7 44e73fe367fc1fb8efee7eefac557b7d76ef0f44 9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb HTTP Headers `GET /files/theme/plugins.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT x-rgw-object-type: Normal ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c" x-amz-request-id: tx000000000000001ae94c4-006284793b-b9fbc20-sfo1 X-Storage-Bucket: zb635 X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5 X-Host: grn70.sf2p.intern.weebly.net Content-Encoding: gzip

	www.hatandsons.com/files/theme/custom.js?1587484182	199.34.228.78	200 OK	3.7 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/custom.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type assembler source, ASCII text Size 3.7 kB (3678 bytes) Hash dd41d74c4d47b5eaecbe6f14a299da27 e9319714f520f31535a76270230450a48370e374 c7b58e5ed3f2125f919f732ba553ea0989528d2c55764bc56bc1763ceb2f50f9 HTTP Headers `GET /files/theme/custom.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Mon, 21 Oct 2019 15:05:04 GMT ETag: W/"aa70c136e03aa123e837b6eb2a052c4c" x-amz-request-id: tx0000000000000094bb890-005eaa69bc-10e2649-las X-Storage-Bucket: z1468 X-Storage-Object: 1468769b297980c19fcb9b83302484686c54dc146ba1096d3107923b3a5f0b5f X-Host: grn43.sf2p.intern.weebly.net Content-Encoding: gzip`

	www.hatandsons.com/files/templateArtifacts.js?1676567125	199.34.228.78	200 OK	1.6 kB
URL HTTP/1.1 www.hatandsons.com/files/templateArtifacts.js?1676567125 IP 199.34.228.78:0 ASN #27647 WEEBLY File type exported SGML document, ASCII text, with very long lines (1630) Size 1.6 kB (1632 bytes) Hash e0836e8203c22b8e4086f27e91e86f5a 28235e77f5a895c8cd411aff4a6ef4e6f7d419c2 32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6 HTTP Headers `GET /files/templateArtifacts.js?1676567125 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: blu129.sf2p.intern.weebly.net Content-Encoding: gzip`

	www.hatandsons.com/files/theme/jquery.pxuMenu.js?1587484182	199.34.228.78	200 OK	3.7 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/jquery.pxuMenu.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type HTML document, ASCII text Size 3.7 kB (3664 bytes) Hash 8bc7ec9595b5bb649e85d8f7ab3a9af6 1037b4403bd70099175ab43b41646bb117b86569 c9dcddf220b3f09155245b206915b2384d2abe9b230890ea1a546765e63a6342 HTTP Headers `GET /files/theme/jquery.pxuMenu.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Content-Length: 3664 Connection: keep-alive Last-Modified: Sun, 26 Jan 2020 11:22:39 GMT ETag: "8bc7ec9595b5bb649e85d8f7ab3a9af6" x-amz-request-id: tx00000000000000975037e-005eaa7e8e-10e2649-las X-Storage-Bucket: zc9dc X-Storage-Object: c9dcddf220b3f09155245b206915b2384d2abe9b230890ea1a546765e63a6342 X-Host: grn41.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/files/theme/jquery.trend.js?1587484182	199.34.228.78	200 OK	3.8 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/jquery.trend.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type ASCII text Size 3.8 kB (3775 bytes) Hash 4beccebe0a060b2b2c43de5c2d4512ef 250a779dd017877b9f360b264cf072d9e87974ff 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738 HTTP Headers `GET /files/theme/jquery.trend.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Content-Length: 3775 Connection: keep-alive Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT x-rgw-object-type: Normal ETag: "4beccebe0a060b2b2c43de5c2d4512ef" x-amz-request-id: tx0000000000000000443e8-006258b624-4d62951-las X-Storage-Bucket: z446f X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738 X-Host: grn48.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/files/theme/jquery.revealer.js?1587484182	199.34.228.78	200 OK	2.8 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/jquery.revealer.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type ASCII text Size 2.8 kB (2828 bytes) Hash c22ab67199a33d876512504cda4ff55b 36e96eae4644b6028532974fe5186a072792cb37 c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311 HTTP Headers `GET /files/theme/jquery.revealer.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Content-Length: 2828 Connection: keep-alive Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT x-rgw-object-type: Normal ETag: "c22ab67199a33d876512504cda4ff55b" x-amz-request-id: tx000000000000000e9fd29-0061a727a5-a9f41e7-sfo1 X-Storage-Bucket: zc4cd X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311 X-Host: grn70.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/files/theme/jquery.loadTemplate.min.js?1587484182	199.34.228.78	200 OK	2.3 kB
URL HTTP/1.1 www.hatandsons.com/files/theme/jquery.loadTemplate.min.js?1587484182 IP 199.34.228.78:0 ASN #27647 WEEBLY File type ASCII text, with very long lines (6888) Size 2.3 kB (2332 bytes) Hash 48f1121f632b1c19a8f5ed05672c032b 84a74849ede43e3c0055a51f8ef53234d6171cc5 b3b7a3ac6c9a63736fe9836486187d553a6a8eaac1357bd783af006f38bf056f HTTP Headers `GET /files/theme/jquery.loadTemplate.min.js?1587484182 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Thu, 25 Mar 2021 18:51:38 GMT x-rgw-object-type: Normal ETag: W/"16f824204552e3b68f24b63ef3343848" x-amz-request-id: tx000000000000001e80c11-006284ae7d-b9fbc64-sfo1 X-Storage-Bucket: z28f6 X-Storage-Object: 28f638e3804dfb73e835b7b9ef3ddcee9a2d4dc4a20ebd82961559b090379073 X-Host: blu84.sf2p.intern.weebly.net Content-Encoding: gzip

	www.hatandsons.com/uploads/1/0/8/5/10853415/editor/h-a-thompson-sons-since-1908-logo_1.jpg?1584023585	199.34.228.78	200 OK	5.6 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/editor/h-a-thompson-sons-since-1908-logo_1.jpg?1584023585 IP 199.34.228.78:0 ASN #27647 WEEBLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 210x123, components 3\012- data Size 5.6 kB (5582 bytes) Hash 6b1dc627d4a3ea50bf80bb70f91dae33 83ec10e0cc657f13a26950479733624a7a2ee7a6 3072f42d7bfa997d386c15841a29b5aa29d730bf9202ebc8d3b805a5828c179a HTTP Headers `GET /uploads/1/0/8/5/10853415/editor/h-a-thompson-sons-since-1908-logo_1.jpg?1584023585 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: image/jpeg Content-Length: 5582 Connection: keep-alive Last-Modified: Thu, 12 Mar 2020 14:33:05 GMT x-rgw-object-type: Normal ETag: "6b1dc627d4a3ea50bf80bb70f91dae33" x-amz-request-id: tx000000000000002924060-0062852e2a-b9fbc7f-sfo1 X-Storage-Bucket: z3072 X-Storage-Object: 3072f42d7bfa997d386c15841a29b5aa29d730bf9202ebc8d3b805a5828c179a X-Host: blu147.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/uploads/1/0/8/5/10853415/editor/nuflow.png?1584023761	199.34.228.78	200 OK	6.4 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/editor/nuflow.png?1584023761 IP 199.34.228.78:0 ASN #27647 WEEBLY File type PNG image data, 190 x 47, 8-bit/color RGBA, non-interlaced\012- data Size 6.4 kB (6398 bytes) Hash 8dc58ed9c4e0f55381005900615d233e 9ccbf623dd005cf2a8fc26e76303f9d48b7ebe6a 10d9a94a48599c945cb6f26c2ac35dcc843b7ea3d3861d6ee16f749f1c6cbdf1 HTTP Headers `GET /uploads/1/0/8/5/10853415/editor/nuflow.png?1584023761 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: image/png Content-Length: 6398 Connection: keep-alive Last-Modified: Thu, 12 Mar 2020 14:36:01 GMT x-rgw-object-type: Normal ETag: "8dc58ed9c4e0f55381005900615d233e" x-amz-request-id: tx00000000000000ca40c59-00629445b8-b9fbc63-sfo1 X-Storage-Bucket: z10d9 X-Storage-Object: 10d9a94a48599c945cb6f26c2ac35dcc843b7ea3d3861d6ee16f749f1c6cbdf1 X-Host: grn43.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/uploads/1/0/8/5/10853415/mitsubishi-diamond-contractor_orig.jpg	199.34.228.78	200 OK	12 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/mitsubishi-diamond-contractor_orig.jpg IP 199.34.228.78:0 ASN #27647 WEEBLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x177, components 3\012- data Size 12 kB (12352 bytes) Hash 833c9f84920802bc9a56fe28f6e48e30 653250f074a110398acad98152b56fd71ff561c5 c8dede7a749c3ee5eaa1adf5637754561bc4f36434f5649cb832d3b1124b1f94 HTTP Headers `GET /uploads/1/0/8/5/10853415/mitsubishi-diamond-contractor_orig.jpg HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: image/jpeg Content-Length: 12352 Connection: keep-alive Last-Modified: Thu, 12 Mar 2020 14:34:46 GMT x-rgw-object-type: Normal ETag: "833c9f84920802bc9a56fe28f6e48e30" x-amz-request-id: tx000000000000012623dac-00629e0b72-b9fbc63-sfo1 X-Storage-Bucket: zc8de X-Storage-Object: c8dede7a749c3ee5eaa1adf5637754561bc4f36434f5649cb832d3b1124b1f94 X-Host: grn72.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/uploads/1/0/8/5/10853415/editor/tcs-bug-cmyk-large-131216101207-hires.png?1584023562	199.34.228.78	200 OK	16 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/editor/tcs-bug-cmyk-large-131216101207-hires.png?1584023562 IP 199.34.228.78:0 ASN #27647 WEEBLY File type PNG image data, 124 x 110, 8-bit/color RGBA, non-interlaced\012- data Size 16 kB (15948 bytes) Hash e37201dea60d7c0bd86a948bb62738c9 6694d3e8b36a4e661f2ee72a8f3a6708f770e93a db071bf90878258780966406b89cf648859186449433bbf25233ec9ea5197393 HTTP Headers `GET /uploads/1/0/8/5/10853415/editor/tcs-bug-cmyk-large-131216101207-hires.png?1584023562 HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: image/png Content-Length: 15948 Connection: keep-alive Last-Modified: Thu, 12 Mar 2020 14:32:42 GMT x-rgw-object-type: Normal ETag: "e37201dea60d7c0bd86a948bb62738c9" x-amz-request-id: tx000000000000002c73f88-0062854c59-b9fbc64-sfo1 X-Storage-Bucket: zdb07 X-Storage-Object: db071bf90878258780966406b89cf648859186449433bbf25233ec9ea5197393 X-Host: grn77.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/uploads/1/0/8/5/10853415/2014-linc-logo_orig.jpg	199.34.228.78	200 OK	22 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/2014-linc-logo_orig.jpg IP 199.34.228.78:0 ASN #27647 WEEBLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 461x205, components 3\012- data Size 22 kB (21884 bytes) Hash ba4ea6028cbd868b9b252a65fd3271d8 fe4c45bcd2464dc15b3752db5c6da70037f05c2b a579d27b2c83e816cc45129c5e228aa1898f827aa2c5a490f8acf66e523ab8b7 HTTP Headers `GET /uploads/1/0/8/5/10853415/2014-linc-logo_orig.jpg HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:30 GMT Content-Type: image/jpeg Content-Length: 21884 Connection: keep-alive Last-Modified: Thu, 12 Mar 2020 14:28:44 GMT x-rgw-object-type: Normal ETag: "ba4ea6028cbd868b9b252a65fd3271d8" x-amz-request-id: tx0000000000000124ec34e-00629df1cf-b9fbc63-sfo1 X-Storage-Bucket: za579 X-Storage-Object: a579d27b2c83e816cc45129c5e228aa1898f827aa2c5a490f8acf66e523ab8b7 X-Host: blu26.sf2p.intern.weebly.net Accept-Ranges: bytes`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4848 Expires: Wed, 22 Mar 2023 17:56:19 GMT Date: Wed, 22 Mar 2023 16:35:31 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4848 Expires: Wed, 22 Mar 2023 17:56:19 GMT Date: Wed, 22 Mar 2023 16:35:31 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4848 Expires: Wed, 22 Mar 2023 17:56:19 GMT Date: Wed, 22 Mar 2023 16:35:31 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4848 Expires: Wed, 22 Mar 2023 17:56:19 GMT Date: Wed, 22 Mar 2023 16:35:31 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10480 bytes) Hash 6f0b9e85381489dcf646c251722b21d4 5f7ea91288a2170bcabdca6be296718c4191eacd 911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10480 x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJptHG7JoAMFSwA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT x-amz-cf-pop: SEA19-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: hqGFdT1Sk0IcvaNqfvjz5RsGBK-qMBcNKbK9FyZ7OoiH30hDL9ekxA== via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:59:52 GMT age: 66939 etag: "5f7ea91288a2170bcabdca6be296718c4191eacd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.5 kB (9459 bytes) Hash 412bd6aea60211324e649d7d920601d2 a813976bda850a584b5ab94d9a70bfe0da69aca0 d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9459 x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJqmAEhHoAMFgRQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT x-amz-cf-pop: SEA19-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: DL7vQgu72hwpt7yHbmIKnAZnoIaR4CQPE1JJAjq8M4jg0REUsq5lOw== via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:48:25 GMT age: 67626 etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg	34.120.237.76	200 OK	8.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.0 kB (8037 bytes) Hash aeb0d8069d746e467fecd886c0e42628 8229b537f84a7418dc67e30691e62db4cea67f0f 24705dc5b7eefd79a35323beee7c741aa041c3bf55801d13b4ffc2b202e6a394 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8037 x-amzn-requestid: 7a9f7bb5-d810-4831-b5d2-3eead1af864a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJprcGY1IAMFSAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a2315-53cdee4b645ed18e1dfeb92c;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT x-amz-cf-pop: HIO52-P1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: QW8T5AGg_L1mT4fE8IHeBG9TSiGpbBJpZE2yZdBtAQMJCPV8OKK5Dw== via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:43:22 GMT age: 67929 etag: "8229b537f84a7418dc67e30691e62db4cea67f0f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10407 bytes) Hash 2062cf7a271d4ac7a04c0a746d443e07 3343851f2128c5f1fe4302c2aa53e8ce1fb661ac e479263c1742d2597cf8948ef059b0bc97dbb97f47bb5cafee3d4af12069d2ce HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10407 x-amzn-requestid: 87aba2e6-d7e8-4456-a12f-e05ac556b839 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJqJhGnXIAMF1yA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a23d6-2b6c3d62366f47f506ce8415;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:38:30 GMT x-amz-cf-pop: HIO52-P1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: d7wlX2p3nm1VAV3qxRv2S1VbjxRah6GciBVRgyds7qbK1yNltNmtMQ== via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 1f41b5f27f3ec2e93db2155dbc56900c.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:49:24 GMT age: 67567 etag: "3343851f2128c5f1fe4302c2aa53e8ce1fb661ac" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d8076782b7586aea6d69480d5434652e 6bd6f10f27f62711c6783bc8b5ea72cb74622e2f ab660e165b0044aa0ca16ab2a42ac38a1922a24a6ae6e879d4e3e1e9c19822c2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25141375-9720-4300-9719-0f7e71176660.jpeg	34.120.237.76	200 OK	5.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25141375-9720-4300-9719-0f7e71176660.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.3 kB (5322 bytes) Hash 455cd4b587dddb4053a0531e9e69fcda e585c615243d74b3b94578736129d4bfc2dc6d47 bb7862a435386978963a9ab763b42221efb7cd9356239720bbe034b44033383c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25141375-9720-4300-9719-0f7e71176660.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5322 x-amzn-requestid: e85fee13-67a8-4c4e-b84a-0d3d8c85d44a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJqJiH1boAMFV2A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a23d6-781c5c143be2254771ad6b60;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:38:30 GMT x-amz-cf-pop: HIO52-P1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: N4uPkSQC--aI-7bWnSrj3qc3ZXiLjzbfjVShIeoRbFtOLfuGYcaS9w== via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:53:07 GMT age: 67344 etag: "e585c615243d74b3b94578736129d4bfc2dc6d47" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5556 bytes) Hash c831201ad81f55c63c1b101ce854a810 0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5 c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5556 x-amzn-requestid: dd5a8417-ddd5-469d-aa84-e880f4b84464 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CHqKFGRsoAMFTGQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6419570d-3f28a7502b56eda47dd82ba7;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 07:04:45 GMT x-amz-cf-pop: HIO52-P1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: JImqyag05jmvEwsJSvKFVuisuS5KNKfr7xRuN0YPyneNXvVxKkFMzg== via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 05:35:55 GMT age: 39576 etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.google.com/recaptcha/api.js?render=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6	142.250.74.164	200 OK	586 B
URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6 IP 142.250.74.164:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (884), with no line terminators Size 586 B (586 bytes) Hash 3748eecc6f9eff53d94a218e7ecf297b 4095692fb26cce4faead3144fe4303f11c2b4ac0 5137d36049f2092f16811b66ce1cbeeacc52cae539c25d9194dea08512630c7e HTTP Headers `GET /recaptcha/api.js?render=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Wed, 22 Mar 2023 16:35:31 GMT date: Wed, 22 Mar 2023 16:35:31 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 586 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.hatandsons.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]	199.34.228.78	200 OK	348 B
URL HTTP/1.1 www.hatandsons.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] IP 199.34.228.78:0 ASN #27647 WEEBLY File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size 348 B (348 bytes) Hash a944dd688c99d2901d6719be713271c0 4f5454d5d434829baf46671638610791758725d9 adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49 HTTP Headers POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 83 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en; _snow_ses.7d04=*; _snow_id.7d04=15893844-49c7-485d-add0-402c866f2a9f.1679502937.1.1679502937.1679502937.49100b25-927a-4cd0-9e98-a34ed543dceb Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Wed, 22 Mar 2023 16:35:31 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: blu34.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 348 Keep-Alive: timeout=10, max=72 Connection: Keep-Alive Content-Type: application/json`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9446303f24a6e8e8d138867549399aa2 410a03d7475ec879b8e346f1706aea491e3f1da5 f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 10acc8a0c8fa470fd1d7113295857d8c d70518e202736ec0007ea1d889b3b004f7d49e33 d40641b2da72a36daa4ba0b95a4d7a9279a79cb612246192c7922386674c45be HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=135563 Date: Wed, 22 Mar 2023 16:35:31 GMT Etag: "641a8e75-1d7" Expires: Fri, 24 Mar 2023 06:14:54 GMT Last-Modified: Wed, 22 Mar 2023 05:13:25 GMT Server: ECAcc (nya/796A) X-Cache: Miss from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Joh4DRA_G62XfMWHjDXDLYnjdUsUax7DNdazOGz80MZx4GsxaLysQA== Age: 3689

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 10acc8a0c8fa470fd1d7113295857d8c d70518e202736ec0007ea1d889b3b004f7d49e33 d40641b2da72a36daa4ba0b95a4d7a9279a79cb612246192c7922386674c45be HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 22 Mar 2023 16:35:31 GMT Last-Modified: Wed, 22 Mar 2023 14:53:24 GMT Server: ECAcc (nya/7946) X-Cache: Miss from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: jn_7_q3lw90C1LUH2YHcYuK25y8twq24mJ46WIylpsz3wHs6Fl9iIA== Age: 6127`

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 7a244401a1100785d152aad9dac6fa4c 25fb93e19c8fc109ab78f7d14399ee165eecdb59 254be89a22f49a697f6b361a374b8d85508986405b68876dca251a6bec3d2ad0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=98840 Date: Wed, 22 Mar 2023 16:35:31 GMT Etag: "641a0068-1d7" Expires: Thu, 23 Mar 2023 20:02:51 GMT Last-Modified: Tue, 21 Mar 2023 19:07:20 GMT Server: ECAcc (nya/7970) X-Cache: Miss from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: bSWc4EYqrL7NkZjujTkv-hX9byXXU-PPkF_HnmGdpCOYoldw7TurDA== Age: 3331

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash dacd2b28ff4972ce60767433753896af 500e87c6ea14be5272e183d71ab6beb00d38d682 ae0b88bd0278bf7be664dbafb740861d57cdb56dcea626a194f15eec84ade4e3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 22 Mar 2023 16:35:31 GMT Last-Modified: Wed, 22 Mar 2023 15:48:43 GMT Server: ECAcc (nya/7958) X-Cache: Miss from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: y2CBedmsabE9ieoDfsz9vGee2Fda82XfdLqNdFcVtiahrQlBsz5oJQ== Age: 2808`

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash dacd2b28ff4972ce60767433753896af 500e87c6ea14be5272e183d71ab6beb00d38d682 ae0b88bd0278bf7be664dbafb740861d57cdb56dcea626a194f15eec84ade4e3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=109265 Date: Wed, 22 Mar 2023 16:35:31 GMT Etag: "641a32dc-1d7" Expires: Thu, 23 Mar 2023 22:56:36 GMT Last-Modified: Tue, 21 Mar 2023 22:42:36 GMT Server: ECAcc (nya/1C5C) X-Cache: Miss from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: WF-_jhPu9F0Jbd8MIxXRZzTRJCJoTnd4-kH4djh2ol3ZB3BEPzsSwQ== Age: 840

	ec.editmysite.com/com.snowplowanalytics.snowplow/tp2	50.112.171.161	200 OK	0 B
URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 IP 50.112.171.161:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.hatandsons.com/ Origin: https://www.hatandsons.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:31 GMT content-length: 0 server: nginx access-control-allow-origin: https://www.hatandsons.com access-control-allow-credentials: true access-control-allow-headers: Content-Type, SP-Anonymous access-control-max-age: 600 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3e968c0f4319273e79821cbabf3bdbdc 99f1127052594878d49370fdcc61b1e4fbb69e61 82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 0086fc6b6b52670b2d7ca51fc65d8d44 1d906db50d0373e0e3e1e85031de970218264f4d 24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ssl.google-analytics.com/ga.js	142.250.74.136	200 OK	17 kB
URL HTTP/2 ssl.google-analytics.com/ga.js IP 142.250.74.136:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1305) Size 17 kB (17168 bytes) Hash 01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d HTTP Headers `GET /ga.js HTTP/1.1 Host: ssl.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 17168 date: Wed, 22 Mar 2023 15:53:14 GMT expires: Wed, 22 Mar 2023 17:53:14 GMT cache-control: public, max-age=7200 age: 2537 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	142.250.74.3	200 OK	165 kB
URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 142.250.74.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (576) Size 165 kB (164678 bytes) Hash f22f07ee02fbeed3958345c90b52b818 2aa44ea19d580589c06c2170103b4d0505e18cdb dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84 HTTP Headers `GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 164678 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 22 Mar 2023 08:21:26 GMT expires: Thu, 21 Mar 2024 08:21:26 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Mar 2023 02:02:14 GMT content-type: text/javascript vary: Accept-Encoding age: 29645 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	lab.analyticspodium.com/sdk/vardata	52.12.46.239	200 OK	0 B
URL HTTP/2 lab.analyticspodium.com/sdk/vardata IP 52.12.46.239:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /sdk/vardata HTTP/1.1 Host: lab.analyticspodium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: authorization,x-amp-exp-user Referer: https://www.hatandsons.com/ Origin: https://www.hatandsons.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:31 GMT content-length: 0 apigw-requestid: CMQtJhmGvHcEJtQ= access-control-allow-origin: https://www.hatandsons.com access-control-allow-credentials: true access-control-max-age: 1800 access-control-allow-methods: GET,POST,HEAD access-control-allow-headers: authorization,x-amp-exp-user x-amzn-trace-id: Self=1-641b2e53-3979826d34f36bcd72284bbf;Root=1-641b2e53-021395dc29bd6336056aa5e6 x-content-type-options: nosniff accept-ranges: bytes x-served-by: cache-bfi-krnt7300050-BFI x-cache: MISS x-cache-hits: 0 x-timer: S1679502932.823926,VS0,VE9 vary: Origin strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 23c054d3aee551b6fdc42a5a472a7040 b1a46c12ac7d65c979fd1998bdb243f3dba8f956 9e8b91ab91da9ea20dfb5f90c1c06239d2872b0eb80785534d0c59c3b51de404 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 0086fc6b6b52670b2d7ca51fc65d8d44 1d906db50d0373e0e3e1e85031de970218264f4d 24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 22 Mar 2023 16:35:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.hatandsons.com/favicon.ico	199.34.228.78	200 OK	1.2 kB
URL HTTP/1.1 www.hatandsons.com/favicon.ico IP 199.34.228.78:0 ASN #27647 WEEBLY File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 39072e23976396c969b128153ace0e2e 62c3aa9c6c4eeb36fb8d58c29c25db41ed22f822 ca14001a630af3407b2f1534b291f1710fdd2add5a2007efb6ba9fb440ca2373 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en; _snow_ses.7d04=*; _snow_id.7d04=15893844-49c7-485d-add0-402c866f2a9f.1679502937.1.1679502937.1679502937.49100b25-927a-4cd0-9e98-a34ed543dceb; AMP_16a5c84b5b=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjJmNjI5OGJkNy00NjBmLTQ0OWItYTJkZS1kOGRjNTIxOGM5MjAlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNjc5NTAyOTM3MDc2JTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTY3OTUwMjkzNzEzMCU3RA==; AMP_MKTG_16a5c84b5b=JTdCJTdE Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:31 GMT Content-Type: image/vnd.microsoft.icon Content-Length: 1150 Connection: keep-alive Last-Modified: Sat, 16 Mar 2019 07:21:12 GMT x-rgw-object-type: Normal ETag: "39072e23976396c969b128153ace0e2e" x-amz-request-id: tx000000000000002c27ff7-00628547d5-b9fbc29-sfo1 X-Storage-Bucket: zca14 X-Storage-Object: ca14001a630af3407b2f1534b291f1710fdd2add5a2007efb6ba9fb440ca2373 X-Host: grn72.sf2p.intern.weebly.net Accept-Ranges: bytes`

	www.hatandsons.com/uploads/1/0/8/5/10853415/background-images/472409220.jpg	199.34.228.78	200 OK	491 kB
URL HTTP/1.1 www.hatandsons.com/uploads/1/0/8/5/10853415/background-images/472409220.jpg IP 199.34.228.78:0 ASN #27647 WEEBLY File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2008:12:11 15:15:43], baseline, precision 8, 3366x1008, components 3\012- data Size 491 kB (491055 bytes) Hash 4d62bbb69f20f4274de0ac5bf866ad49 16fb3d45b02d5b7b31fd3d96b4f73064ebb2ba27 82404875017011b09493612fbe1edfa817c8870bfc3019f37f214e3c5038c2a1 HTTP Headers `GET /uploads/1/0/8/5/10853415/background-images/472409220.jpg HTTP/1.1 Host: www.hatandsons.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Wed, 22 Mar 2023 16:35:31 GMT Content-Type: image/jpeg Content-Length: 491055 Connection: keep-alive Last-Modified: Sat, 16 Mar 2019 07:19:47 GMT x-rgw-object-type: Normal ETag: "4d62bbb69f20f4274de0ac5bf866ad49" x-amz-request-id: tx00000000000000236b3a9-006284f5d4-b9fbc7f-sfo1 X-Storage-Bucket: z8240 X-Storage-Object: 82404875017011b09493612fbe1edfa817c8870bfc3019f37f214e3c5038c2a1 X-Host: grn141.sf2p.intern.weebly.net Accept-Ranges: bytes`

	ec.editmysite.com/com.snowplowanalytics.snowplow/tp2	50.112.171.161	200 OK	2 B
URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 IP 50.112.171.161:0 ASN #16509 AMAZON-02 File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers `POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1788 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:31 GMT content-type: text/plain; charset=UTF-8 content-length: 2 server: nginx set-cookie: sp=d699ffc6-65d3-49cc-9c81-a810317853fe; Expires=Thu, 21 Mar 2024 16:35:31 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://www.hatandsons.com access-control-allow-credentials: true X-Firefox-Spdy: h2`

	mind-flayer.podium.com//graphql	35.164.75.80	200 OK	0 B
URL HTTP/1.1 mind-flayer.podium.com//graphql IP 35.164.75.80:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS //graphql HTTP/1.1 Host: mind-flayer.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.hatandsons.com/ Origin: https://www.hatandsons.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-headers: accept, content-type, authorization, socket-id, origin access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE access-control-allow-origin: https://www.hatandsons.com cache-control: max-age=0, private, must-revalidate date: Wed, 22 Mar 2023 16:35:31 GMT server: Cowboy vary: origin x-request-id: F07LBKx-TlTeoec6y5nC x-robots-tag: noindex Content-Length: 0 Connection: keep-alive`

	lab.analyticspodium.com/sdk/vardata	52.12.46.239	200 OK	2.2 kB
URL HTTP/2 lab.analyticspodium.com/sdk/vardata IP 52.12.46.239:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (2167), with no line terminators Size 2.2 kB (2167 bytes) Hash c249ee5fdbb09267ab9775a47fe77365 f3e5d0777bce1bde4ceeff826e89674d46d29e65 07243bb34b055dd685f55c8d85007f375ca02ed0e4da68943b2b30994ad5af6d HTTP Headers GET /sdk/vardata HTTP/1.1 Host: lab.analyticspodium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.hatandsons.com/ Authorization: Api-Key client-Ouo1GRXThh3LlgIkIlMGrdQTd3m9VBlY X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS43LjMiLCJsYW5ndWFnZSI6ImVuLVVTIiwicGxhdGZvcm0iOiJXZWIiLCJvcyI6IkZpcmVmb3ggMTA1IiwiZGV2aWNlX21vZGVsIjoiV2luZG93cyIsImRldmljZV9pZCI6ImY2Mjk4YmQ3LTQ2MGYtNDQ5Yi1hMmRlLWQ4ZGM1MjE4YzkyMCIsInVzZXJfcHJvcGVydGllcyI6e319 Origin: https://www.hatandsons.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:32 GMT content-type: application/json;charset=utf-8 content-length: 2167 apigw-requestid: CMQtLg_GvHcEJCA= access-control-allow-origin: https://www.hatandsons.com access-control-allow-credentials: true x-amzn-trace-id: Self=1-641b2e54-4924a6022f6bb58b2353cc7e;Root=1-641b2e54-7c7f146f01649d960afb6721 x-content-type-options: nosniff accept-ranges: bytes age: 0 x-served-by: cache-bfi-krnt7300020-BFI x-cache: MISS x-cache-hits: 0 x-timer: S1679502932.011134,VS0,VE55 vary: Origin, Origin strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	mind-flayer.podium.com//graphql	35.164.75.80	200 OK	59 B
URL HTTP/1.1 mind-flayer.podium.com//graphql IP 35.164.75.80:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 59 B (59 bytes) Hash 0bb0a2ac4e3805526b87ab06e3db7568 f213ba368020cbb699bbca184cb49380179661e6 acb5776aac95fee6d653c9bc4528d6380620f45957ea21d42f14e08139abd2a3 HTTP Headers `POST //graphql HTTP/1.1 Host: mind-flayer.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 198 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://www.hatandsons.com cache-control: max-age=0, private, must-revalidate content-type: application/json; charset=utf-8 date: Wed, 22 Mar 2023 16:35:32 GMT server: Cowboy vary: origin x-request-id: F07LBLbs0iK2XDFCqxUh x-robots-tag: noindex Content-Length: 59 Connection: keep-alive`

	fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	15 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Size 15 kB (15344 bytes) Hash 5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc HTTP Headers `GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Mar 2023 21:48:03 GMT expires: Fri, 15 Mar 2024 21:48:03 GMT cache-control: public, max-age=31536000 age: 499649 last-modified: Mon, 16 Oct 2017 17:32:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	216.58.207.227	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Size 16 kB (15552 bytes) Hash 285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7 HTTP Headers `GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Mar 2023 17:56:42 GMT expires: Fri, 15 Mar 2024 17:56:42 GMT cache-control: public, max-age=31536000 age: 513530 last-modified: Mon, 16 Oct 2017 17:33:02 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	api2.analyticspodium.com/2/httpapi	52.12.46.239	200 OK	0 B
URL HTTP/2 api2.analyticspodium.com/2/httpapi IP 52.12.46.239:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /2/httpapi HTTP/1.1 Host: api2.analyticspodium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.hatandsons.com/ Origin: https://www.hatandsons.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:32 GMT content-length: 0 apigw-requestid: CMQtPi7BPHcEJxQ= access-control-allow-origin: * access-control-allow-methods: GET, POST access-control-allow-headers: content-type strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2`

	mind-flayer.podium.com//graphql	35.164.75.80	200 OK	2.0 kB
URL HTTP/1.1 mind-flayer.podium.com//graphql IP 35.164.75.80:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (2041), with no line terminators Size 2.0 kB (2041 bytes) Hash 4625c4ce0ebb56c2ea4832548c4d66c3 5c760f49356515a2390f7e583a6422262ccabc6f e5a826b443a4a237dd41524fbc33df9c138b287a3f77cc30fac454cb5efb8cd0 HTTP Headers `POST //graphql HTTP/1.1 Host: mind-flayer.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 1160 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://www.hatandsons.com cache-control: max-age=0, private, must-revalidate content-type: application/json; charset=utf-8 date: Wed, 22 Mar 2023 16:35:32 GMT server: Cowboy vary: origin x-request-id: F07LBMp70_gDkpk-vyuh x-robots-tag: noindex Content-Length: 2041 Connection: keep-alive`

	connect.podium.com/styles.css	54.230.111.11	200 OK	10 kB
URL HTTP/2 connect.podium.com/styles.css IP 54.230.111.11:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (63378), with no line terminators Size 10 kB (10169 bytes) Hash e050ad2cee6a9464eae9fe27ed8e3ef2 9b3f1fa1baa930558f6acc058f35d61ba5d35468 e185c2ae167dcc03cbd952e328a6381f416f7625138d175e0558e728d75fd57a HTTP Headers `GET /styles.css HTTP/1.1 Host: connect.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: text/css content-length: 10169 content-encoding: gzip last-modified: Tue, 21 Mar 2023 14:38:53 GMT server: AmazonS3 date: Wed, 22 Mar 2023 16:29:04 GMT cache-control: max-age=3600 etag: "e050ad2cee6a9464eae9fe27ed8e3ef2" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 4aN5YvCe6-kvx3jFVxe0GuxM2OI2xx43dt1Qmxgc9t3hyq5CU6qmdQ== age: 394 X-Firefox-Spdy: h2`

	api2.analyticspodium.com/2/httpapi	52.12.46.239	200 OK	94 B
URL HTTP/2 api2.analyticspodium.com/2/httpapi IP 52.12.46.239:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text Size 94 B (94 bytes) Hash aa98236eb8e2774a0d52c1358283ff2a bf91563f822069185c60b9f5728711ef24f343f8 4251088e4f92756d90870faba29ad66be25928fe086326c0944829f1af86e359 HTTP Headers `POST /2/httpapi HTTP/1.1 Host: api2.analyticspodium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.hatandsons.com/ Content-Type: application/json Origin: https://www.hatandsons.com Content-Length: 1172 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Wed, 22 Mar 2023 16:35:32 GMT content-type: application/json content-length: 94 apigw-requestid: CMQtRgSsvHcEJww= access-control-allow-origin: * access-control-allow-methods: GET, POST trace-id: Self=1-641b2e54-5ed2b42a3680fa46159a2bfb;Root=1-641b2e54-101ea809489469c011946d81 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2`

	mind-flayer.podium.com//graphql	35.164.75.80	200 OK	38 B
URL HTTP/1.1 mind-flayer.podium.com//graphql IP 35.164.75.80:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 38 B (38 bytes) Hash 437e479d9f8164112b5829f2e9d8125f aee7393f83a85824448bb152c06bf7347213323b 8a78824e0e4e78e9e0797e8b3e147d290c7e164e8715b6f983efc924214f9f76 HTTP Headers `POST //graphql HTTP/1.1 Host: mind-flayer.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 1117 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://www.hatandsons.com cache-control: max-age=0, private, must-revalidate content-type: application/json; charset=utf-8 date: Wed, 22 Mar 2023 16:35:31 GMT server: Cowboy vary: origin x-request-id: F07LBNk1my496MJEq-LB x-robots-tag: noindex Content-Length: 38 Connection: keep-alive`

	connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2	54.230.111.11	200 OK	30 kB
URL HTTP/2 connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2 IP 54.230.111.11:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 30548, version 1.0\012- data Size 30 kB (30548 bytes) Hash c28f8beb02447597a13d138680f42e65 56a4353e3bd6b3db69fc9d7e7a0356b031402649 1edbab3b32d1748ab14e6dfb9f30128ae7ea1e8188ff2afb35c0f6e225bb3a62 HTTP Headers `GET /434b2574637d4adc6a5a30864e8c6b3e.woff2 HTTP/1.1 Host: connect.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://connect.podium.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: binary/octet-stream content-length: 30548 date: Wed, 22 Mar 2023 16:35:33 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 cache-control: max-age=31536000 last-modified: Tue, 21 Mar 2023 14:38:52 GMT etag: "c28f8beb02447597a13d138680f42e65" server: AmazonS3 vary: Origin,Access-Control-Request-Headers x-cache: Miss from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: i_5tLXXZWwp0nrmxUd3vi76H5pvRH0llE4cTWuxHX4x9kEeIGGVtGg== X-Firefox-Spdy: h2

	connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2	54.230.111.11	200 OK	35 kB
URL HTTP/2 connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2 IP 54.230.111.11:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 34640, version 1.0\012- data Size 35 kB (34640 bytes) Hash 1d077eb2f892e7f968f043b40b6ae557 a7a1b3fd4765b43371577e1167c264786dcf80c0 ac6e8dbcf906b5d78b6538eea0df8d50e34fdd4ba6a3932bfbf38d4a085e2797 HTTP Headers `GET /d2271df8467ecc4941f02087d61c1c1e.woff2 HTTP/1.1 Host: connect.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://connect.podium.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: binary/octet-stream content-length: 34640 date: Wed, 22 Mar 2023 16:35:33 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 cache-control: max-age=31536000 last-modified: Tue, 21 Mar 2023 14:38:52 GMT etag: "1d077eb2f892e7f968f043b40b6ae557" server: AmazonS3 vary: Origin,Access-Control-Request-Headers x-cache: Miss from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: -xaEeKbmqqLAlpotIe_w18JsbDbzbsTNKG0urZF7JGxuVPa37r-sNQ== X-Firefox-Spdy: h2

	assets.podium.com/images/defaultWebchatPinkAvatar.png	54.230.111.17	200 OK	247 kB
URL HTTP/2 assets.podium.com/images/defaultWebchatPinkAvatar.png IP 54.230.111.17:0 ASN #16509 AMAZON-02 File type PNG image data, 384 x 384, 8-bit/color RGBA, non-interlaced\012- data Size 247 kB (247234 bytes) Hash b22b5db1a91f838da14ed56b4683a8f7 645f5d6f3414562033a9c026bbcc7c149cb5c661 28011ddd7bdae190a67367074378ddaabee0ffe3560b7fa40144e16e7984fce1 HTTP Headers `GET /images/defaultWebchatPinkAvatar.png HTTP/1.1 Host: assets.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: image/png content-length: 247234 last-modified: Tue, 14 Feb 2023 18:03:50 GMT x-amz-version-id: ht52AYtPtu_2..i0YhI1sBNTg142u2nN server: AmazonS3 date: Wed, 22 Mar 2023 16:27:20 GMT etag: "b22b5db1a91f838da14ed56b4683a8f7" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: fnRcG4LUe31PIFwkvn-LoHFSvaKp65779_9MGcy_fPg-wgyx0ohbpQ== age: 553 X-Firefox-Spdy: h2`

	mind-flayer.podium.com//graphql	35.164.75.80	200 OK	38 B
URL HTTP/1.1 mind-flayer.podium.com//graphql IP 35.164.75.80:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 38 B (38 bytes) Hash 437e479d9f8164112b5829f2e9d8125f aee7393f83a85824448bb152c06bf7347213323b 8a78824e0e4e78e9e0797e8b3e147d290c7e164e8715b6f983efc924214f9f76 HTTP Headers `POST //graphql HTTP/1.1 Host: mind-flayer.podium.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 1115 Origin: https://www.hatandsons.com Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK access-control-allow-credentials: true access-control-allow-origin: https://www.hatandsons.com cache-control: max-age=0, private, must-revalidate content-type: application/json; charset=utf-8 date: Wed, 22 Mar 2023 16:35:34 GMT server: Cowboy vary: origin x-request-id: F07LBVCFG4qNdE0gK2rC x-robots-tag: noindex Content-Length: 38 Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg	34.120.237.76	200 OK	3.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.5 kB (3474 bytes) Hash 7a9178701002b637a130aec44024349b d51674c9b6d98baa4ec3905e2982ffecfcb1e9cb d3888f5cc4aef7239fe7d1ae8cee2f1ca94d1c1524b1629a1da5d6327376b5da HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 3474 x-amzn-requestid: ac3a81e6-328d-4944-beda-d9c85de30aff x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJqP6F8gIAMFoww= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a23ff-52d04e4a6adace9e17003e80;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:39:11 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: WzP3lkcd3AEE-N0bujYeE5UWkvfG5xmGfqLCbIv04YMkJ_E4OaThEg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:59:58 GMT age: 66940 etag: "d51674c9b6d98baa4ec3905e2982ffecfcb1e9cb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn2.editmysite.com/css/old/fancybox.css?1676413397	151.101.193.46	200 OK	0 B
URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1676413397 IP 151.101.193.46:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css/old/fancybox.css?1676413397 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Mon, 13 Mar 2023 19:49:46 GMT etag: "640f7e5a-f47" expires: Tue, 28 Mar 2023 09:37:01 GMT cache-control: max-age=1209600 x-host: blu107.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 716308 x-served-by: cache-sjc10049-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 465, 108 x-timer: S1679502930.135611,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1218 X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1676413397	151.101.193.46	200 OK	0 B
URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1676413397 IP 151.101.193.46:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/site/main-customer-accounts-site.js?buildTime=1676413397 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hatandsons.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Fri, 17 Mar 2023 18:05:08 GMT etag: "6414abd4-82537" expires: Mon, 03 Apr 2023 13:24:02 GMT cache-control: max-age=1209600 x-host: blu140.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 22 Mar 2023 16:35:30 GMT age: 184287 x-served-by: cache-sjc10079-SJC, cache-bma1654-BMA x-cache: HIT, HIT x-cache-hits: 27, 1 x-timer: S1679502930.130911,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 158984 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML